Date: Thu, 30 Aug 2018 21:27:35 +0000 From: bugzilla-noreply@freebsd.org To: fs@FreeBSD.org Subject: [Bug 230752] panic: excl->share in newnfs_request Message-ID: <bug-230752-3630-Z8791OA4HN@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-230752-3630@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=230752 --- Comment #10 from Dimitry Andric <dim@FreeBSD.org> --- Unfortunately I had a crash again, this time with the clang700-import branch at r338392, which has been sync'd with head as of r338391, so after r338193. Unread portion of the kernel message buffer: shared lock of (lockmgr) ufs @ /usr/src/sys/kern/vfs_lookup.c:671 while exclusively locked from /usr/src/sys/kern/vfs_subr.c:2590 panic: excl->share cpuid = 3 time = 1535629184 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe000059c0e0 vpanic() at vpanic+0x1b4/frame 0xfffffe000059c140 panic() at panic+0x43/frame 0xfffffe000059c1a0 witness_checkorder() at witness_checkorder+0xbc4/frame 0xfffffe000059c230 lockmgr_slock_hard() at lockmgr_slock_hard+0x6e/frame 0xfffffe000059c2c0 __lockmgr_args() at __lockmgr_args+0x758/frame 0xfffffe000059c360 ffs_lock() at ffs_lock+0xa5/frame 0xfffffe000059c3b0 VOP_LOCK1_APV() at VOP_LOCK1_APV+0x92/frame 0xfffffe000059c3e0 _vn_lock() at _vn_lock+0x65/frame 0xfffffe000059c440 lookup() at lookup+0x100/frame 0xfffffe000059c4e0 namei() at namei+0x4bd/frame 0xfffffe000059c5a0 unp_connectat() at unp_connectat+0x155/frame 0xfffffe000059c830 soconnectat() at soconnectat+0xe8/frame 0xfffffe000059c880 clnt_vc_create() at clnt_vc_create+0x349/frame 0xfffffe000059c9c0 clnt_reconnect_call() at clnt_reconnect_call+0x20b/frame 0xfffffe000059ca70 newnfs_request() at newnfs_request+0x8fc/frame 0xfffffe000059cbe0 nfsrv_getuser() at nfsrv_getuser+0x129/frame 0xfffffe000059cd80 nfsrv_getgrpscred() at nfsrv_getgrpscred+0xca/frame 0xfffffe000059cdd0 nfsd_excred() at nfsd_excred+0x10e/frame 0xfffffe000059cdf0 nfsrvd_dorpc() at nfsrvd_dorpc+0x130f/frame 0xfffffe000059cfd0 nfssvc_program() at nfssvc_program+0x527/frame 0xfffffe000059d190 svc_run_internal() at svc_run_internal+0x9f9/frame 0xfffffe000059d2d0 svc_run() at svc_run+0x1ee/frame 0xfffffe000059d330 nfsrvd_nfsd() at nfsrvd_nfsd+0x356/frame 0xfffffe000059d490 nfssvc_nfsd() at nfssvc_nfsd+0x57a/frame 0xfffffe000059d960 sys_nfssvc() at sys_nfssvc+0xcf/frame 0xfffffe000059d980 amd64_syscall() at amd64_syscall+0x28a/frame 0xfffffe000059dab0 fast_syscall_common() at fast_syscall_common+0x101/frame 0xfffffe000059dab0 --- syscall (155, FreeBSD ELF64, sys_nfssvc), rip = 0x8002dee8a, rsp = 0x7fffffffe518, rbp = 0x7fffffffe7b0 --- KDB: enter: panic __curthread () at ./machine/pcpu.h:230 230 ./machine/pcpu.h: No such file or directory. (kgdb) bt #0 __curthread () at ./machine/pcpu.h:230 #1 doadump (textdump=<optimized out>) at /usr/src/sys/kern/kern_shutdown.c:366 #2 0xffffffff8044f16b in db_dump (dummy=<optimized out>, dummy2=<unavailable>, dummy3=<unavailable>, dummy4=<unavailable>) at /usr/src/sys/ddb/db_command.c:574 #3 0xffffffff8044ef39 in db_command (last_cmdp=<optimized out>, cmd_table=<optimized out>, dopager=1) at /usr/src/sys/ddb/db_command.c:481 #4 0xffffffff8044ecb4 in db_command_loop () at /usr/src/sys/ddb/db_command.c:534 #5 0xffffffff80451e6f in db_trap (type=<optimized out>, code=<optimized out>) at /usr/src/sys/ddb/db_main.c:252 #6 0xffffffff80be47f5 in kdb_trap (type=3, code=0, tf=<optimized out>) at /usr/src/sys/kern/subr_kdb.c:693 #7 0xffffffff8106d0c5 in trap (frame=0xfffffe000059c010) at /usr/src/sys/amd64/amd64/trap.c:619 #8 <signal handler called> #9 kdb_enter (why=0xffffffff812f5de0 "panic", msg=<optimized out>) at /usr/src/sys/kern/subr_kdb.c:479 #10 0xffffffff80b9c5c1 in vpanic (fmt=<optimized out>, ap=0xfffffe000059c180) at /usr/src/sys/kern/kern_shutdown.c:861 #11 0xffffffff80b9c353 in panic (fmt=0xffffffff81e8e998 <cnputs_mtx> "B\267+\201\377\377\377\377") at /usr/src/sys/kern/kern_shutdown.c:799 #12 0xffffffff80c04114 in witness_checkorder (lock=<optimized out>, flags=<optimized out>, file=<optimized out>, line=671, interlock=<optimized out>) at /usr/src/sys/kern/subr_witness.c:1176 #13 0xffffffff80b70fae in lockmgr_slock_hard (lk=<optimized out>, flags=2106368, ilk=0xfffff8000422c278, file=<optimized out>, line=<optimized out>, lwa=<optimized out>) at /usr/src/sys/kern/kern_lock.c:567 #14 0xffffffff80b71f48 in __lockmgr_args (lk=<optimized out>, flags=<optimized out>, ilk=0xfffff8000422c278, wmesg=<optimized out>, pri=<optimized out>, timo=<optimized out>, file=0xffffffff812f19eb "/usr/src/sys/kern/vfs_lookup.c", line=671) at /usr/src/sys/kern/kern_lock.c:1195 #15 0xffffffff80eb46e5 in _lockmgr_args (lk=0xfffff8000422c248, flags=2106368, ilk=<optimized out>, wmesg=<optimized out>, prio=0, timo=0, file=<optimized out>, line=18) at /usr/src/sys/sys/lockmgr.h:104 #16 ffs_lock (ap=0xfffffe000059c3f0) at /usr/src/sys/ufs/ffs/ffs_vnops.c:428 #17 0xffffffff811ec2c2 in VOP_LOCK1_APV (vop=0xffffffff81b635e0 <ffs_vnodeops2>, a=0xfffffe000059c3f0) at vnode_if.c:2087 #18 0xffffffff80c7e645 in VOP_LOCK1 (vp=<optimized out>, flags=2106368, file=0xffffffff812f19eb "/usr/src/sys/kern/vfs_lookup.c", line=671) at ./vnode_if.h:859 #19 _vn_lock (vp=0xfffff8000422c1e0, flags=2106368, file=<optimized out>, line=<optimized out>) at /usr/src/sys/kern/vfs_vnops.c:1531 #20 0xffffffff80c613c0 in lookup (ndp=0xfffffe000059c5b0) at /usr/src/sys/kern/vfs_lookup.c:669 #21 0xffffffff80c60ead in namei (ndp=0xfffffe000059c5b0) at /usr/src/sys/kern/vfs_lookup.c:450 #22 0xffffffff80c431b5 in unp_connectat (fd=<optimized out>, so=<optimized out>, nam=<optimized out>, td=0xfffff80003316580) at /usr/src/sys/kern/uipc_usrreq.c:1554 #23 0xffffffff80c358b8 in soconnectat (fd=<optimized out>, so=<optimized out>, nam=0x1030000, td=0xffffffff80c0327a <witness_init+138>) at /usr/src/sys/kern/uipc_socket.c:1230 #24 0xffffffff80e507a9 in clnt_vc_create (so=0xfffff80004cb96d0, raddr=0xfffff800041c7420, prog=553713921, vers=1, sendsz=4096, recvsz=4096, intrflag=0) at /usr/src/sys/rpc/clnt_vc.c:159 #25 0xffffffff80e4fa3b in clnt_reconnect_connect (cl=0xfffff8000386f5c0) at /usr/src/sys/rpc/clnt_rc.c:193 #26 clnt_reconnect_call (cl=0xfffff8000386f5c0, ext=0xfffffe000059cac0, proc=1, args=0xfffff8000480a200, resultsp=<optimized out>, utimeout=...) at /usr/src/sys/rpc/clnt_rc.c:265 #27 0xffffffff80a65cac in newnfs_request (nd=0xfffffe000059cc38, nmp=0x0, clp=0x0, nrp=0xffffffff82080298 <nfsrv_nfsuserdsock>, vp=0x0, td=0x0, cred=0xfffff80032c74700, prog=553713921, vers=1, retsum=0x0, toplevel=0, xidp=0x0, dssep=0x0) at /usr/src/sys/fs/nfs/nfs_commonkrpc.c:818 #28 0xffffffff80a6fa79 in nfsrv_getuser (procnum=1, uid=<optimized out>, gid=<optimized out>, name=0x0, p=0x0) at /usr/src/sys/fs/nfs/nfs_commonsubs.c:3616 #29 0xffffffff80a6fb9a in nfsrv_getgrpscred (oldcred=0xfffff80032c74800) at /usr/src/sys/fs/nfs/nfs_commonsubs.c:3150 #30 0xffffffff80ad16be in nfsd_excred (nd=0xfffffe000059d008, exp=<optimized out>, credanon=0xfffffe000059bfd0) at /usr/src/sys/fs/nfsserver/nfs_nfsdport.c:2932 #31 0xffffffff80aaa79f in nfsrvd_compound (nd=<optimized out>, isdgram=<optimized out>, tag=0x10 <error: Cannot access memory at address 0x10>, taglen=<optimized out>, minorvers=<optimized out>, p=<optimized out>) at /usr/src/sys/fs/nfsserver/nfs_nfsdsocket.c:1008 #32 nfsrvd_dorpc (nd=0xfffffe000059d008, isdgram=0, tag=0x10 <error: Cannot access memory at address 0x10>, taglen=7, minorvers=2, p=0xfffff80003316580) at /usr/src/sys/fs/nfsserver/nfs_nfsdsocket.c:560 #33 0xffffffff80abe597 in nfs_proc (xid=<optimized out>, xprt=<optimized out>, nd=<optimized out>, rpp=<optimized out>) at /usr/src/sys/fs/nfsserver/nfs_nfsdkrpc.c:387 #34 nfssvc_program (rqst=0xfffff80096076800, xprt=0xfffff8000369a800) at /usr/src/sys/fs/nfsserver/nfs_nfsdkrpc.c:272 #35 0xffffffff80e57789 in svc_executereq (rqstp=<optimized out>) at /usr/src/sys/rpc/svc.c:1031 #36 svc_run_internal (grp=<optimized out>, ismaster=1) at /usr/src/sys/rpc/svc.c:1306 #37 0xffffffff80e56cce in svc_run (pool=<optimized out>) at /usr/src/sys/rpc/svc.c:1385 #38 0xffffffff80abebf6 in nfsrvd_nfsd (td=<optimized out>, args=0xfffffe000059d520) at /usr/src/sys/fs/nfsserver/nfs_nfsdkrpc.c:542 #39 0xffffffff80ad4b0a in nfssvc_nfsd (td=0xfffff80003316580, uap=<optimized out>) at /usr/src/sys/fs/nfsserver/nfs_nfsdport.c:3451 #40 0xffffffff80e3572f in sys_nfssvc (td=0xfffff80003316580, uap=0xfffff80003316940) at /usr/src/sys/nfs/nfs_nfssvc.c:111 #41 0xffffffff8106de6a in syscallenter (td=0xfffff80003316580) at /usr/src/sys/amd64/amd64/../../kern/subr_syscall.c:135 #42 amd64_syscall (td=0xfffff80003316580, traced=0) at /usr/src/sys/amd64/amd64/trap.c:1043 #43 <signal handler called> #44 0x00000008002dee8a in ?? () Backtrace stopped: Cannot access memory at address 0x7fffffffe518 -- You are receiving this mail because: You are the assignee for the bug.help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-230752-3630-Z8791OA4HN>