Site Navigation

Date:      Tue, 18 Nov 2025 19:03:16 -0800
From:      Mark Millard <marklmi@yahoo.com>
To:        freebsd-arm@freebsd.org, freebsd-current@freebsd.org
Subject:   Re: Still seeing Failed assertion: "p[i] == 0" on armv7 buildworld  [Notes from another example core dump: #4] [New common range #0..#10 __je_pa_alloc]
Message-ID:  <3E0D6079-0F5B-463E-94D4-37506A837D33@yahoo.com>
In-Reply-To: <F9590F2F-0CB0-4AA9-870E-A97D45C1EC01@yahoo.com>
References:  <aOvTG-20QRJtJJwf@int21h> <CANCZdfrJ8rph_rkT3Mk-sNYKNspoV15SvHWLsahzS0HnULi4ww@mail.gmail.com> <aO068RrAehdiHOoZ@www.zefox.net> <aRUJPryA4Vmu8dDD@www.zefox.net> <4957be52-e57f-4f5f-9626-d0f706480fe1@FreeBSD.org> <87ldkai9lu.fsf@panix.com> <aRXuLTN4hkGykHIl@www.zefox.net> <877bvthymv.fsf@panix.com> <aRdJ5xYeKEmhuIgh@www.zefox.net> <ouy1pm0nued.fsf@panix3.panix.com> <aRtBYaaa0n3_lwar@www.zefox.net> <CAJ-Vmo=TbT7nD7rBrNnq3cutwMp9f7WXtQ-k9mUBne5ht4zGWg@mail.gmail.com> <13E753F4-84F8-4ADB-96B6-908897D6971C@yahoo.com> <3174F751-9853-4697-B0C0-98B54518A69F@yahoo.com> <E634EF40-545C-44D7-9050-83D18090F6EB@yahoo.com> <BA9E6753-F895-46C8-95F3-C3C8B1692033@yahoo.com> <A27FE12B-0074-4403-81F7-8A224CC96CC8@yahoo.com> <D17E06B0-4591-45F2-8C46-70D94E371941@yahoo.com> <463AC500-C7C7-43FB-B5EF-332CEBA3D944@yahoo.com> <F9590F2F-0CB0-4AA9-870E-A97D45C1EC01@yahoo.com>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

I'm only sending notes from testing of how similar other failures appear
to the 2 lists. Folks can ask that I do otherwise for them if they want.

This one does not have area_malloc involved at all.

This one is for size 20480 (5 pages). It looks like #0..#10 are similar to
the prior reports. #10 is __je_pa_alloc.

#11 is: __je_arena_extent_alloc_large

(gdb) bt
#0  thr_kill () at thr_kill.S:4
#1  0x2a08ef24 in __raise (s=6) at /usr/src/lib/libc/gen/raise.c:48
#2  0x2a145f38 in abort () at /usr/src/lib/libc/stdlib/abort.c:61
#3  0x2a196128 in ehooks_debug_zero_check (addr=addr@entry=0x34b1e000, size=size@entry=20480) at /usr/src/contrib/jemalloc/include/jemalloc/internal/ehooks.h:170
#4  0x2a191f60 in ehooks_alloc (tsdn=0x2a2e4060, ehooks=0x2a600080, new_addr=0x0, size=<optimized out>, alignment=4096, zero=0xffff9067, commit=<optimized out>)
    at /usr/src/contrib/jemalloc/include/jemalloc/internal/ehooks.h:208
#5  __je_extent_alloc_wrapper (tsdn=tsdn@entry=0x2a2e4060, pac=0x2a601810, ehooks=<optimized out>, new_addr=<optimized out>, size=20480, alignment=64, zero=true, commit=0xffff90c7, 
    growing_retained=<optimized out>) at jemalloc_extent.c:1003
#6  0x2a1916e0 in __je_ecache_alloc_grow (tsdn=<optimized out>, tsdn@entry=0x2a2e4060, pac=pac@entry=0x2a601810, ehooks=ehooks@entry=0x2a600080, ecache=<optimized out>, ecache@entry=0x2a603dd0, 
    expand_edata=0x0, size=20480, alignment=64, zero=<optimized out>, guarded=<optimized out>) at jemalloc_extent.c:126
#7  0x2a1c9680 in pac_alloc_real (tsdn=0x2a2e4060, pac=0x2a601810, ehooks=0x2a600080, size=20480, alignment=64, zero=<optimized out>, guarded=false) at jemalloc_pac.c:124
#8  pac_alloc_impl (tsdn=tsdn@entry=0x2a2e4060, self=0x2a601810, size=size@entry=20480, alignment=64, zero=<optimized out>, guarded=false, frequent_reuse=<optimized out>, 
    deferred_work_generated=<optimized out>) at jemalloc_pac.c:178
#9  0x2a1c7ae8 in pai_alloc (tsdn=0x2a2e4060, self=0x0, size=20480, alignment=2147483615, alignment@entry=20480, zero=<optimized out>, guarded=false, frequent_reuse=false, 
    deferred_work_generated=<optimized out>) at /usr/src/contrib/jemalloc/include/jemalloc/internal/pai.h:43
#10 __je_pa_alloc (tsdn=tsdn@entry=0x2a2e4060, shard=shard@entry=0x2a601800, size=size@entry=20480, alignment=<optimized out>, alignment@entry=64, slab=false, szind=39, zero=<optimized out>, 
    guarded=false, deferred_work_generated=0xffff9193) at jemalloc_pa.c:139
#11 0x2a169108 in __je_arena_extent_alloc_large (tsdn=tsdn@entry=0x2a2e4060, arena=arena@entry=0x2a600540, usize=usize@entry=16384, alignment=alignment@entry=64, zero=<optimized out>)
    at jemalloc_arena.c:338
#12 0x2a1976fc in __je_large_palloc (tsdn=tsdn@entry=0x2a2e4060, arena=<optimized out>, arena@entry=0x0, usize=usize@entry=16384, alignment=64, zero=<optimized out>) at jemalloc_large.c:37
#13 0x2a197230 in __je_large_malloc (tsdn=0x2a2e4060, arena=0x0, usize=16384, zero=false) at jemalloc_large.c:17
#14 0x2a16cb70 in __je_arena_palloc (tsdn=0x0, tsdn@entry=0x2a2e4060, arena=0x0, usize=0, usize@entry=16384, alignment=alignment@entry=8, zero=<optimized out>, tcache=0x0) at jemalloc_arena.c:1228
#15 0x2a16559c in ipallocztm (tsdn=0x2a2e4060, tsdn@entry=0x2a2e42c8, usize=16384, alignment=8, zero=false, tcache=0x2a2e42c8, is_internal=false, arena=0x0)
    at /usr/src/contrib/jemalloc/include/jemalloc/internal/jemalloc_internal_inlines_c.h:80
#16 ipalloct (tsdn=0x0, tsdn@entry=0x2a2e4060, usize=16384, alignment=8, zero=false, tcache=0x2a2e42c8, arena=0x0)
    at /usr/src/contrib/jemalloc/include/jemalloc/internal/jemalloc_internal_inlines_c.h:91
#17 0x2a1651f4 in imalloc_no_sample (sopts=0xffff92a4, dopts=0xffff9284, tsd=0x2a2e4060, size=16384, usize=16384, ind=<optimized out>) at jemalloc_jemalloc.c:2398
#18 imalloc_body (sopts=0xffff92a4, dopts=0xffff9284, tsd=0x2a2e4060) at jemalloc_jemalloc.c:2577
#19 0x2a156188 in imalloc (sopts=sopts@entry=0xffff92a4, dopts=<optimized out>, dopts@entry=0xffff9284) at jemalloc_jemalloc.c:2693
#20 0x2a15677c in __aligned_alloc (alignment=8, size=16384) at jemalloc_jemalloc.c:2821
#21 0x29e61a00 in std::__1::__libcpp_aligned_alloc[abi:se190107](unsigned int, unsigned int) (__alignment=8, __size=<optimized out>)
    at /usr/src/contrib/llvm-project/libcxx/include/__memory/aligned_alloc.h:43
#22 operator_new_aligned_impl (size=<optimized out>, alignment=8) at /usr/src/contrib/llvm-project/libcxx/src/new.cpp:129
#23 operator new (size=<optimized out>, alignment=<optimized out>) at /usr/src/contrib/llvm-project/libcxx/src/new.cpp:141
#24 0x20ff35f8 in Allocate () at /usr/src/contrib/llvm-project/llvm/include/llvm/Support/AllocatorBase.h:92
#25 StartNewSlab () at /usr/src/contrib/llvm-project/llvm/include/llvm/Support/Allocator.h:344
#26 AllocateSlow () at /usr/src/contrib/llvm-project/llvm/include/llvm/Support/Allocator.h:200
#27 0x267d7424 in Allocate () at /usr/src/contrib/llvm-project/llvm/include/llvm/Support/Allocator.h:176
#28 Allocate () at /usr/src/contrib/llvm-project/llvm/include/llvm/Support/Allocator.h:214
#29 operator new<llvm::MallocAllocator, 4096U, 4096U, 128U> () at /usr/src/contrib/llvm-project/llvm/include/llvm/Support/Allocator.h:448
#30 addValue () at /usr/src/contrib/llvm-project/llvm/include/llvm/CodeGen/DIE.h:741
#31 0x2680e144 in addAttribute<llvm::DIEInteger> () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfUnit.h:95
#32 addUInt () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfUnit.cpp:227
#33 0x267ce318 in constructInlinedScopeDIE () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfCompileUnit.cpp:721
#34 0x267ce010 in constructScopeDIE () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfCompileUnit.cpp:601
#35 0x267cf328 in createAndAddScopeChildren () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfCompileUnit.cpp:1161
#36 0x267ce094 in constructScopeDIE () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfCompileUnit.cpp:615
#37 0x267cf328 in createAndAddScopeChildren () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfCompileUnit.cpp:1161
#38 0x267d1790 in constructSubprogramScopeDIE () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfCompileUnit.cpp:1101
#39 0x267e7320 in endFunctionImpl () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DwarfDebug.cpp:2337
#40 0x267c92ac in endFunction () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/DebugHandlerBase.cpp:419
#41 0x26778bcc in emitFunctionBody () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/AsmPrinter/AsmPrinter.cpp:1987
#42 0x2825f94c in runOnMachineFunction () at /usr/src/contrib/llvm-project/llvm/lib/Target/ARM/ARMAsmPrinter.cpp:168
#43 0x26c15e88 in runOnFunction () at /usr/src/contrib/llvm-project/llvm/lib/CodeGen/MachineFunctionPass.cpp:94
#44 0x276a9e74 in runOnFunction () at /usr/src/contrib/llvm-project/llvm/lib/IR/LegacyPassManager.cpp:1440
#45 0x276b0d40 in runOnModule () at /usr/src/contrib/llvm-project/llvm/lib/IR/LegacyPassManager.cpp:1486
#46 0x276aa5e0 in runOnModule () at /usr/src/contrib/llvm-project/llvm/lib/IR/LegacyPassManager.cpp:1555
#47 run () at /usr/src/contrib/llvm-project/llvm/lib/IR/LegacyPassManager.cpp:541
#48 0x2216d2e8 in RunCodegenPipeline () at /usr/src/contrib/llvm-project/clang/lib/CodeGen/BackendUtil.cpp:1157
--Type <RET> for more, q to quit, c to continue without paging--
#49 EmitAssembly () at /usr/src/contrib/llvm-project/clang/lib/CodeGen/BackendUtil.cpp:1180
#50 EmitBackendOutput () at /usr/src/contrib/llvm-project/clang/lib/CodeGen/BackendUtil.cpp:1341
#51 0x225cbca0 in HandleTranslationUnit () at /usr/src/contrib/llvm-project/clang/lib/CodeGen/CodeGenAction.cpp:354
#52 0x22cff8e4 in ParseAST () at /usr/src/contrib/llvm-project/clang/lib/Parse/ParseAST.cpp:184
#53 0x22b5a7b8 in Execute () at /usr/src/contrib/llvm-project/clang/lib/Frontend/FrontendAction.cpp:1078
#54 0x22adb800 in ExecuteAction () at /usr/src/contrib/llvm-project/clang/lib/Frontend/CompilerInstance.cpp:1061
#55 0x22bf6a90 in ExecuteCompilerInvocation () at /usr/src/contrib/llvm-project/clang/lib/FrontendTool/ExecuteCompilerInvocation.cpp:280
#56 0x0002afc8 in cc1_main () at /usr/src/contrib/llvm-project/clang/tools/driver/cc1_main.cpp:284
#57 0x00038548 in ExecuteCC1Tool () at /usr/src/contrib/llvm-project/clang/tools/driver/driver.cpp:215
#58 0x227877ec in operator() () at /usr/src/contrib/llvm-project/llvm/include/llvm/ADT/STLFunctionalExtras.h:68
#59 operator() () at /usr/src/contrib/llvm-project/clang/lib/Driver/Job.cpp:440
#60 callback_fn<(lambda at /usr/src/contrib/llvm-project/clang/lib/Driver/Job.cpp:440:22)>(void) () at /usr/src/contrib/llvm-project/llvm/include/llvm/ADT/STLFunctionalExtras.h:45
#61 0x27d88624 in operator() () at /usr/src/contrib/llvm-project/llvm/include/llvm/ADT/STLFunctionalExtras.h:68
#62 RunSafely () at /usr/src/contrib/llvm-project/llvm/lib/Support/CrashRecoveryContext.cpp:426
#63 0x22786e90 in Execute () at /usr/src/contrib/llvm-project/clang/lib/Driver/Job.cpp:440
#64 0x22748074 in ExecuteCommand () at /usr/src/contrib/llvm-project/clang/lib/Driver/Compilation.cpp:199
#65 0x227483d0 in ExecuteJobs () at /usr/src/contrib/llvm-project/clang/lib/Driver/Compilation.cpp:253
#66 0x22765bb8 in ExecuteCompilation () at /usr/src/contrib/llvm-project/clang/lib/Driver/Driver.cpp:1943
#67 0x00037ba4 in clang_main () at /usr/src/contrib/llvm-project/clang/tools/driver/driver.cpp:391
#68 0x000363a8 in main () at /usr/src/usr.bin/clang/clang/clang-driver.cpp:17


0x34b1dfd0:	0x34b1dfdc	0x00000001	0x00000004	0x2a436f28
0x34b1dfe0:	0x00000000	0xa5a5a5a5	0xa5a5a5a5	0xa5a5a5a5
0x34b1dff0:	0xa5a5a5a5	0xa5a5a5a5	0xa5a5a5a5	0xa5a5a5a5
(gdb) x /1024x ((size_t*)addr)+0
0x34b1e000:	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a
0x34b1e010:	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a
0x34b1e020:	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a
. . .
0x34b22fd0:	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a
0x34b22fe0:	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a
0x34b22ff0:	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a	0x5a5a5a5a
(gdb) x /1024x ((size_t*)addr)+5192
0x34b23120:	Cannot access memory at address 0x34b23120


For #0..#10: The prior examples and the above
agree about:

#5  __je_extent_alloc_wrapper zero=true

But also there was in this example:
#13 __je_large_malloc         zero=false

(The others before #13 are optimized out.)


===
Mark Millard
marklmi at yahoo.com

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3E0D6079-0F5B-463E-94D4-37506A837D33>

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact