Date: Mon, 01 Feb 2016 15:10:14 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 206820] [ext2fs] Panic when writing to ext3fs mounted as ext2fs Message-ID: <bug-206820-8-GSCdjHu4Ko@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-206820-8@https.bugs.freebsd.org/bugzilla/> References: <bug-206820-8@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206820 --- Comment #3 from Arrigo Marchiori <ardovm@yahoo.it> --- The panic is also reproducible when writing to a md(4) instead of a USB drive. The stack trace is analogous. (kgdb) bt #0 doadump (textdump=1) at pcpu.h:250 #1 0xc0aed3ae in kern_reboot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:454 #2 0xc0aed6a5 in panic (fmt=<value optimized out>) at /usr/src/sys/kern/kern_shutdown.c:642 #3 0xc0d70ede in vm_fault_hold (map=0xc1b8d000, vaddr=3799322624, fault_type=2 '\002', fault_flags=0, m_hold=0x0) at /usr/src/sys/vm/vm_fault.c:289 #4 0xc0d7355b in vm_fault (map=0xc1b8d000, vaddr=3799322624, fault_type=<value optimized out>, fault_flags=0) at /usr/src/sys/vm/vm_fault.c:229 #5 0xc0fb619f in trap_pfault (frame=0xf0a8c964, usermode=0, eva=3799322628) at /usr/src/sys/i386/i386/trap.c:932 #6 0xc0fb744b in trap (frame=0xf0a8c964) at /usr/src/sys/i386/i386/trap.c:553 #7 0xc0f9fee7 in calltrap () at /usr/src/sys/i386/i386/exception.s:173 #8 0xcc966759 in ext2_i2ei (ip=0xc7ba8300, ei=0xe2750f80) at /usr/src/sys/modules/ext2fs/../../fs/ext2fs/ext2_inode_cnv.c:152 #9 0xcc965a56 in ext2_update (vp=0xc99c5470, waitfor=1) at /usr/src/sys/modules/ext2fs/../../fs/ext2fs/ext2_inode.c:91 #10 0xcc96bd12 in ext2_makeinode (mode=8, dvp=0xc99c46a8, vpp=0xf0a8cb88, cnp=0xf0a8cb9c) at /usr/src/sys/modules/ext2fs/../../fs/ext2fs/ext2_vnops.c:1586 #11 0xc0fdd612 in VOP_CREATE_APV (vop=0xcc96f3a0, a=0xf0a8cae8) at vnode_if.c:260 #12 0xc0b9d989 in vn_open_cred (ndp=0xf0a8cb5c, flagp=0xf0a8cc24, cmode=<value optimized out>, vn_open_flags=0, cred=0xc8bcf600, fp=0xc940bdc8) at vnode_if.h:109 #13 0xc0b9de6b in vn_open (ndp=0xf0a8cb5c, flagp=0xf0a8cc24, cmode=493, fp=0xc940bdc8) at /usr/src/sys/kern/vfs_vnops.c:113 #14 0xc0b99460 in kern_openat (td=0xca383900, fd=-100, path=0x284a61a0 <Address 0x284a61a0 out of bounds>, pathseg=UIO_USERSPACE, flags=2562, mode=493) at /usr/src/sys/kern/vfs_syscalls.c:1128 #15 0xc0b998b5 in kern_open (td=0xca383900, path=0x284a61a0 <Address 0x284a61a0 out of bounds>, pathseg=UIO_USERSPACE, flags=2561, mode=493) at /usr/src/sys/kern/vfs_syscalls.c:1079 #16 0xc0b998f0 in sys_open (td=0xca383900, uap=0xf0a8cccc) at /usr/src/sys/kern/vfs_syscalls.c:1055 #17 0xc0fb6869 in syscall (frame=0xf0a8cd08) at subr_syscall.c:142 #18 0xc0f9ff8c in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:279 (kgdb) frame 8 #8 0xcc966759 in ext2_i2ei (ip=0xc7ba8300, ei=0xe2750f80) at /usr/src/sys/modules/ext2fs/../../fs/ext2fs/ext2_inode_cnv.c:152 152 ei->e2di_ctime_extra = NSEC_TO_XTIME(ip->i_ctimensec); (kgdb) print *ip $1 = {i_vnode = 0xc99c5470, i_ump = 0xc7b92380, i_flag = 0, i_number = 49160, i_e2fs = 0xc7858c00, i_modrev = 18475684767084, i_count = 0, i_endoff = 0, i_diroff = 0, i_offset = 0, i_block_group = 24, i_next_alloc_block = 0, i_next_alloc_goal = 0, i_mode = 33261, i_nlink = 1, i_uid = 0, i_gid = 0, i_size = 0, i_blocks = 0, i_atime = 1454338085, i_mtime = 1454338085, i_ctime = 1454338085, i_birthtime = 1454338085, i_mtimensec = 522810000, i_atimensec = 522810000, i_ctimensec = 522810000, i_birthnsec = 522809000, i_gen = 679956546, i_flags = 0, i_db = {0 <repeats 12 times>}, i_ib = {0, 0, 0}, i_ext_cache = {ec_start = 0, ec_blk = 0, ec_len = 0, ec_type = 0}} (kgdb) print *ei Cannot access memory at address 0xe2750f80 (kgdb) frame 9 #9 0xcc965a56 in ext2_update (vp=0xc99c5470, waitfor=1) at /usr/src/sys/modules/ext2fs/../../fs/ext2fs/ext2_inode.c:91 91 ext2_i2ei(ip, (struct ext2fs_dinode *)((char *)bp->b_data + (kgdb) print *vp $2 = {v_type = VREG, v_tag = 0xcc96e830 "ext2fs", v_op = 0xcc96f3a0, v_data = 0xc7ba8300, v_mount = 0xc7dc77ec, v_nmntvnodes = {tqe_next = 0x0, tqe_prev = 0xc99c56bc}, v_un = {vu_mount = 0x0, vu_socket = 0x0, vu_cdev = 0x0, vu_fifoinfo = 0x0}, v_hashlist = {le_next = 0x0, le_prev = 0xc793f988}, v_hash = 49160, v_cache_src = {lh_first = 0x0}, v_cache_dst = {tqh_first = 0x0, tqh_last = 0xc99c54a0}, v_cache_dd = 0x0, v_cstart = 0, v_lasta = 0, v_lastw = 0, v_clen = 0, v_lock = {lock_object = { lo_name = 0xcc96e830 "ext2fs", lo_flags = 108199944, lo_data = 0, lo_witness = 0x0}, lk_lock = 3392682240, lk_exslpfail = 0, lk_timo = 51, lk_pri = 96}, v_interlock = {lock_object = { lo_name = 0xc11003e9 "vnode interlock", lo_flags = 16973824, lo_data = 0, lo_witness = 0x0}, mtx_lock = 4}, v_vnlock = 0xc99c54c8, v_holdcnt = 1, v_usecount = 1, v_iflag = 512, v_vflag = 0, v_writecount = 0, v_actfreelist = {tqe_next = 0xc99c56a8, tqe_prev = 0xc7dc782c}, v_bufobj = { bo_mtx = {lock_object = {lo_name = 0xc11003f9 "bufobj interlock", lo_flags = 16973824, lo_data = 0, lo_witness = 0x0}, mtx_lock = 4}, bo_clean = {bv_hd = {tqh_first = 0x0, tqh_last = 0xc99c5530}, bv_root = 0x0, bv_cnt = 0}, bo_dirty = {bv_hd = {tqh_first = 0x0, tqh_last = 0xc99c5540}, bv_root = 0x0, bv_cnt = 0}, bo_numoutput = 0, bo_flag = 0, bo_ops = 0xc1371e80, bo_bsize = 1024, bo_object = 0x0, bo_synclist = {le_next = 0x0, le_prev = 0x0}, bo_private = 0xc99c5470, __bo_vnode = 0xc99c5470}, v_pollinfo = 0x0, v_label = 0x0, v_lockf = 0x0, v_rl = {rl_waiters = {tqh_first = 0x0, tqh_last = 0xc99c5580}, rl_currdep = 0x0}} -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-206820-8-GSCdjHu4Ko>