Date: Thu, 30 Aug 2018 21:27:35 +0000 From: bugzilla-noreply@freebsd.org To: fs@FreeBSD.org Subject: [Bug 230752] panic: excl->share in newnfs_request Message-ID: <bug-230752-3630-Z8791OA4HN@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-230752-3630@https.bugs.freebsd.org/bugzilla/> References: <bug-230752-3630@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D230752 --- Comment #10 from Dimitry Andric <dim@FreeBSD.org> --- Unfortunately I had a crash again, this time with the clang700-import branc= h at r338392, which has been sync'd with head as of r338391, so after r338193. Unread portion of the kernel message buffer: shared lock of (lockmgr) ufs @ /usr/src/sys/kern/vfs_lookup.c:671 while exclusively locked from /usr/src/sys/kern/vfs_subr.c:2590 panic: excl->share cpuid =3D 3 time =3D 1535629184 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe000059c= 0e0 vpanic() at vpanic+0x1b4/frame 0xfffffe000059c140 panic() at panic+0x43/frame 0xfffffe000059c1a0 witness_checkorder() at witness_checkorder+0xbc4/frame 0xfffffe000059c230 lockmgr_slock_hard() at lockmgr_slock_hard+0x6e/frame 0xfffffe000059c2c0 __lockmgr_args() at __lockmgr_args+0x758/frame 0xfffffe000059c360 ffs_lock() at ffs_lock+0xa5/frame 0xfffffe000059c3b0 VOP_LOCK1_APV() at VOP_LOCK1_APV+0x92/frame 0xfffffe000059c3e0 _vn_lock() at _vn_lock+0x65/frame 0xfffffe000059c440 lookup() at lookup+0x100/frame 0xfffffe000059c4e0 namei() at namei+0x4bd/frame 0xfffffe000059c5a0 unp_connectat() at unp_connectat+0x155/frame 0xfffffe000059c830 soconnectat() at soconnectat+0xe8/frame 0xfffffe000059c880 clnt_vc_create() at clnt_vc_create+0x349/frame 0xfffffe000059c9c0 clnt_reconnect_call() at clnt_reconnect_call+0x20b/frame 0xfffffe000059ca70 newnfs_request() at newnfs_request+0x8fc/frame 0xfffffe000059cbe0 nfsrv_getuser() at nfsrv_getuser+0x129/frame 0xfffffe000059cd80 nfsrv_getgrpscred() at nfsrv_getgrpscred+0xca/frame 0xfffffe000059cdd0 nfsd_excred() at nfsd_excred+0x10e/frame 0xfffffe000059cdf0 nfsrvd_dorpc() at nfsrvd_dorpc+0x130f/frame 0xfffffe000059cfd0 nfssvc_program() at nfssvc_program+0x527/frame 0xfffffe000059d190 svc_run_internal() at svc_run_internal+0x9f9/frame 0xfffffe000059d2d0 svc_run() at svc_run+0x1ee/frame 0xfffffe000059d330 nfsrvd_nfsd() at nfsrvd_nfsd+0x356/frame 0xfffffe000059d490 nfssvc_nfsd() at nfssvc_nfsd+0x57a/frame 0xfffffe000059d960 sys_nfssvc() at sys_nfssvc+0xcf/frame 0xfffffe000059d980 amd64_syscall() at amd64_syscall+0x28a/frame 0xfffffe000059dab0 fast_syscall_common() at fast_syscall_common+0x101/frame 0xfffffe000059dab0 --- syscall (155, FreeBSD ELF64, sys_nfssvc), rip =3D 0x8002dee8a, rsp =3D 0x7fffffffe518, rbp =3D 0x7fffffffe7b0 --- KDB: enter: panic __curthread () at ./machine/pcpu.h:230 230 ./machine/pcpu.h: No such file or directory. (kgdb) bt #0 __curthread () at ./machine/pcpu.h:230 #1 doadump (textdump=3D<optimized out>) at /usr/src/sys/kern/kern_shutdown= .c:366 #2 0xffffffff8044f16b in db_dump (dummy=3D<optimized out>, dummy2=3D<unava= ilable>, dummy3=3D<unavailable>, dummy4=3D<unavailable>) at /usr/src/sys/ddb/db_command.c:574 #3 0xffffffff8044ef39 in db_command (last_cmdp=3D<optimized out>, cmd_table=3D<optimized out>, dopager=3D1) at /usr/src/sys/ddb/db_command.c:= 481 #4 0xffffffff8044ecb4 in db_command_loop () at /usr/src/sys/ddb/db_command.c:534 #5 0xffffffff80451e6f in db_trap (type=3D<optimized out>, code=3D<optimize= d out>) at /usr/src/sys/ddb/db_main.c:252 #6 0xffffffff80be47f5 in kdb_trap (type=3D3, code=3D0, tf=3D<optimized out= >) at /usr/src/sys/kern/subr_kdb.c:693 #7 0xffffffff8106d0c5 in trap (frame=3D0xfffffe000059c010) at /usr/src/sys/amd64/amd64/trap.c:619 #8 <signal handler called> #9 kdb_enter (why=3D0xffffffff812f5de0 "panic", msg=3D<optimized out>) at /usr/src/sys/kern/subr_kdb.c:479 #10 0xffffffff80b9c5c1 in vpanic (fmt=3D<optimized out>, ap=3D0xfffffe00005= 9c180) at /usr/src/sys/kern/kern_shutdown.c:861 #11 0xffffffff80b9c353 in panic (fmt=3D0xffffffff81e8e998 <cnputs_mtx> "B\267+\201\377\377\377\377") at /usr/src/sys/kern/kern_shutdown.c:799 #12 0xffffffff80c04114 in witness_checkorder (lock=3D<optimized out>, flags=3D<optimized out>, file=3D<optimized out>, line=3D671, interlock=3D<o= ptimized out>) at /usr/src/sys/kern/subr_witness.c:1176 #13 0xffffffff80b70fae in lockmgr_slock_hard (lk=3D<optimized out>, flags=3D2106368, ilk=3D0xfffff8000422c278, file=3D<optimized out>, line=3D<= optimized out>, lwa=3D<optimized out>) at /usr/src/sys/kern/kern_lock.c:567 #14 0xffffffff80b71f48 in __lockmgr_args (lk=3D<optimized out>, flags=3D<op= timized out>, ilk=3D0xfffff8000422c278, wmesg=3D<optimized out>, pri=3D<optimized o= ut>, timo=3D<optimized out>, file=3D0xffffffff812f19eb "/usr/src/sys/kern/vfs_lookup.c", line=3D671)= at /usr/src/sys/kern/kern_lock.c:1195 #15 0xffffffff80eb46e5 in _lockmgr_args (lk=3D0xfffff8000422c248, flags=3D2= 106368, ilk=3D<optimized out>, wmesg=3D<optimized out>, prio=3D0, timo=3D0, file=3D= <optimized out>, line=3D18) at /usr/src/sys/sys/lockmgr.h:104 #16 ffs_lock (ap=3D0xfffffe000059c3f0) at /usr/src/sys/ufs/ffs/ffs_vnops.c:= 428 #17 0xffffffff811ec2c2 in VOP_LOCK1_APV (vop=3D0xffffffff81b635e0 <ffs_vnodeops2>, a=3D0xfffffe000059c3f0) at vnode_if.c:2087 #18 0xffffffff80c7e645 in VOP_LOCK1 (vp=3D<optimized out>, flags=3D2106368, file=3D0xffffffff812f19eb "/usr/src/sys/kern/vfs_lookup.c", line=3D671) at ./vnode_if.h:859 #19 _vn_lock (vp=3D0xfffff8000422c1e0, flags=3D2106368, file=3D<optimized o= ut>, line=3D<optimized out>) at /usr/src/sys/kern/vfs_vnops.c:1531 #20 0xffffffff80c613c0 in lookup (ndp=3D0xfffffe000059c5b0) at /usr/src/sys/kern/vfs_lookup.c:669 #21 0xffffffff80c60ead in namei (ndp=3D0xfffffe000059c5b0) at /usr/src/sys/kern/vfs_lookup.c:450 #22 0xffffffff80c431b5 in unp_connectat (fd=3D<optimized out>, so=3D<optimi= zed out>, nam=3D<optimized out>, td=3D0xfffff80003316580) at /usr/src/sys/kern/uipc_usrreq.c:1554 #23 0xffffffff80c358b8 in soconnectat (fd=3D<optimized out>, so=3D<optimize= d out>, nam=3D0x1030000, td=3D0xffffffff80c0327a <witness_init+138>) at /usr/src/sys/kern/uipc_socket.c:1230 #24 0xffffffff80e507a9 in clnt_vc_create (so=3D0xfffff80004cb96d0, raddr=3D0xfffff800041c7420, prog=3D553713921, vers=3D1, sendsz=3D4096, recv= sz=3D4096, intrflag=3D0) at /usr/src/sys/rpc/clnt_vc.c:159 #25 0xffffffff80e4fa3b in clnt_reconnect_connect (cl=3D0xfffff8000386f5c0) = at /usr/src/sys/rpc/clnt_rc.c:193 #26 clnt_reconnect_call (cl=3D0xfffff8000386f5c0, ext=3D0xfffffe000059cac0,= proc=3D1, args=3D0xfffff8000480a200, resultsp=3D<optimized out>, utimeout=3D...) at /usr/src/sys/rpc/clnt_rc.c:265 #27 0xffffffff80a65cac in newnfs_request (nd=3D0xfffffe000059cc38, nmp=3D0x= 0, clp=3D0x0, nrp=3D0xffffffff82080298 <nfsrv_nfsuserdsock>, vp=3D0x0, td=3D0x= 0, cred=3D0xfffff80032c74700, prog=3D553713921, vers=3D1, retsum=3D0x0, toplevel=3D0, xidp=3D0x0, dssep=3D0x0) at /usr/src/sys/fs/nfs/nfs_commonkrpc.c:818 #28 0xffffffff80a6fa79 in nfsrv_getuser (procnum=3D1, uid=3D<optimized out>, gid=3D<optimized out>, name=3D0x0, p=3D0x0) at /usr/src/sys/fs/nfs/nfs_commonsubs.c:3616 #29 0xffffffff80a6fb9a in nfsrv_getgrpscred (oldcred=3D0xfffff80032c74800) = at /usr/src/sys/fs/nfs/nfs_commonsubs.c:3150 #30 0xffffffff80ad16be in nfsd_excred (nd=3D0xfffffe000059d008, exp=3D<opti= mized out>, credanon=3D0xfffffe000059bfd0) at /usr/src/sys/fs/nfsserver/nfs_nfsdport.c:2932 #31 0xffffffff80aaa79f in nfsrvd_compound (nd=3D<optimized out>, isdgram=3D<optimized out>, tag=3D0x10 <error: Cannot access memory at addre= ss 0x10>, taglen=3D<optimized out>, minorvers=3D<optimized out>, p=3D<optimized out>) at /usr/src/sys/fs/nfsserver/nfs_nfsdsocket.c:1008 #32 nfsrvd_dorpc (nd=3D0xfffffe000059d008, isdgram=3D0, tag=3D0x10 <error: = Cannot access memory at address 0x10>, taglen=3D7, minorvers=3D2, p=3D0xfffff80003= 316580) at /usr/src/sys/fs/nfsserver/nfs_nfsdsocket.c:560 #33 0xffffffff80abe597 in nfs_proc (xid=3D<optimized out>, xprt=3D<optimize= d out>, nd=3D<optimized out>, rpp=3D<optimized out>) at /usr/src/sys/fs/nfsserver/nfs_nfsdkrpc.c:387 #34 nfssvc_program (rqst=3D0xfffff80096076800, xprt=3D0xfffff8000369a800) at /usr/src/sys/fs/nfsserver/nfs_nfsdkrpc.c:272 #35 0xffffffff80e57789 in svc_executereq (rqstp=3D<optimized out>) at /usr/src/sys/rpc/svc.c:1031 #36 svc_run_internal (grp=3D<optimized out>, ismaster=3D1) at /usr/src/sys/rpc/svc.c:1306 #37 0xffffffff80e56cce in svc_run (pool=3D<optimized out>) at /usr/src/sys/rpc/svc.c:1385 #38 0xffffffff80abebf6 in nfsrvd_nfsd (td=3D<optimized out>, args=3D0xfffffe000059d520) at /usr/src/sys/fs/nfsserver/nfs_nfsdkrpc.c:542 #39 0xffffffff80ad4b0a in nfssvc_nfsd (td=3D0xfffff80003316580, uap=3D<opti= mized out>) at /usr/src/sys/fs/nfsserver/nfs_nfsdport.c:3451 #40 0xffffffff80e3572f in sys_nfssvc (td=3D0xfffff80003316580, uap=3D0xfffff80003316940) at /usr/src/sys/nfs/nfs_nfssvc.c:111 #41 0xffffffff8106de6a in syscallenter (td=3D0xfffff80003316580) at /usr/src/sys/amd64/amd64/../../kern/subr_syscall.c:135 #42 amd64_syscall (td=3D0xfffff80003316580, traced=3D0) at /usr/src/sys/amd64/amd64/trap.c:1043 #43 <signal handler called> #44 0x00000008002dee8a in ?? () Backtrace stopped: Cannot access memory at address 0x7fffffffe518 --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-230752-3630-Z8791OA4HN>