Date: Fri, 15 Jan 2021 03:12:46 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 252700] page fault in zfsctl_snapdir_lookup Message-ID: <bug-252700-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D252700 Bug ID: 252700 Summary: page fault in zfsctl_snapdir_lookup Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Severity: Affects Many People Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: asomers@FreeBSD.org I hit the following page fault on FreeBSD 13.0-CURRENT at revision d2b3ceddccac60b563f642898e3a314647666a10. It's reproducible by running the sys/cddl/zfs/tests/snapshot/snapshot_test:snapshot_019_pos test case. #0 __curthread () at /usr/home/somers/src/freebsd.org/src/sys/amd64/include/pcpu_aux.h:55 #1 doadump (textdump=3Dtextdump@entry=3D0) at /usr/home/somers/src/freebsd.org/src/sys/kern/kern_shutdown.c:399 #2 0xffffffff804b6f4a in db_dump (dummy=3D<optimized out>,=20 dummy2=3D<unavailable>, dummy3=3D<unavailable>, dummy4=3D<unavailable>) at /usr/home/somers/src/freebsd.org/src/sys/ddb/db_command.c:575 #3 0xffffffff804b6d10 in db_command (last_cmdp=3D<optimized out>,=20 cmd_table=3D<optimized out>, dopager=3Ddopager@entry=3D1) at /usr/home/somers/src/freebsd.org/src/sys/ddb/db_command.c:482 #4 0xffffffff804b6a6d in db_command_loop () at /usr/home/somers/src/freebsd.org/src/sys/ddb/db_command.c:535 #5 0xffffffff804b9dd6 in db_trap (type=3D<optimized out>, code=3D<optimize= d out>) at /usr/home/somers/src/freebsd.org/src/sys/ddb/db_main.c:270 #6 0xffffffff80c406a4 in kdb_trap (type=3Dtype@entry=3D3, code=3Dcode@entr= y=3D0,=20 tf=3D<optimized out>, tf@entry=3D0xfffffe0084f87f20) at /usr/home/somers/src/freebsd.org/src/sys/kern/subr_kdb.c:727 #7 0xffffffff8104719e in trap (frame=3D0xfffffe0084f87f20) at /usr/home/somers/src/freebsd.org/src/sys/amd64/amd64/trap.c:576 #8 <signal handler called> #9 kdb_enter (why=3D0xffffffff8122e0ac "panic", msg=3D<optimized out>) at /usr/home/somers/src/freebsd.org/src/sys/kern/subr_kdb.c:506 #10 0xffffffff80bf41a2 in vpanic (fmt=3D<optimized out>, ap=3D<optimized ou= t>,=20 ap@entry=3D0xfffffe0084f88080) at /usr/home/somers/src/freebsd.org/src/sys/kern/kern_shutdown.c:907 #11 0xffffffff80bf3f33 in panic ( fmt=3D0xffffffff81c94178 <cnputs_mtx> "\375\342\036\201\377\377\377\377= ") at /usr/home/somers/src/freebsd.org/src/sys/kern/kern_shutdown.c:843 #12 0xffffffff810475f7 in trap_fatal (frame=3D0xfffffe0084f88280, eva=3D0) at /usr/home/somers/src/freebsd.org/src/sys/amd64/amd64/trap.c:915 #13 0xffffffff81047697 in trap_pfault (frame=3Dframe@entry=3D0xfffffe0084f8= 8280,=20 usermode=3Dfalse, signo=3D<optimized out>, signo@entry=3D0x0,=20 ucode=3D<optimized out>, ucode@entry=3D0x0) at /usr/home/somers/src/freebsd.org/src/sys/amd64/amd64/trap.c:732 #14 0xffffffff81046c8b in trap (frame=3D0xfffffe0084f88280) at /usr/home/somers/src/freebsd.org/src/sys/amd64/amd64/trap.c:398 #15 <signal handler called> #16 0x0000000000000000 in ?? () #17 0xffffffff81109215 in VOP_CLOSE_APV ( vop=3D0xffffffff826f0a90 <zfsctl_ops_snapshot>,=20 a=3Da@entry=3D0xfffffe0084f88370) at vnode_if.c:498 #18 0xffffffff80cd9839 in VOP_CLOSE (vp=3D0xfffff801d8df91e8, fflag=3D4,=20 cred=3D0x0, td=3D0xfffffe0085416e00) at ./vnode_if.h:249 #19 vgonel (vp=3Dvp@entry=3D0xfffff801d8df91e8) at /usr/home/somers/src/freebsd.org/src/sys/kern/vfs_subr.c:3913 #20 0xffffffff80cda05f in vgone (vp=3Dvp@entry=3D0xfffff801d8df91e8) at /usr/home/somers/src/freebsd.org/src/sys/kern/vfs_subr.c:3788 #21 0xffffffff80cc8104 in vfs_hash_insert (vp=3D0xfffff801d8df91e8,=20 hash=3Dhash@entry=3D138, flags=3Dflags@entry=3D2097152, td=3D<optimized= out>,=20 td@entry=3D0xfffffe0085416e00, vpp=3Dvpp@entry=3D0xfffffe0084f889f8,=20 fn=3D0xffffffff82438590 <sfs_compare_ids>, arg=3D0xfffff80136d08a80) at /usr/home/somers/src/freebsd.org/src/sys/kern/vfs_hash.c:175 #22 0xffffffff8243852b in sfs_vnode_insert (vp=3D0xfffffe0084f88370,=20 flags=3D2097152, parent_id=3D<optimized out>, id=3D<optimized out>,=20 vpp=3D0xfffffe0084f889f8) at /usr/home/somers/src/freebsd.org/src/sys/contrib/openzfs/module/os/freebsd/= zfs/zfs_ctldir.c:152 #23 sfs_vgetx (mp=3D<optimized out>, flags=3D62819872, flags@entry=3D209715= 2,=20 parent_id=3Dparent_id@entry=3D2, id=3D138, tag=3D<optimized out>,=20 vops=3D0xffffffff826f0a90 <zfsctl_ops_snapshot>,=20 setup=3D0xffffffff824397d0 <zfsctl_snapshot_vnode_setup>,=20 arg=3D0xfffffe0084f885f0, vpp=3D0xfffffe0084f889f8) at /usr/home/somers/src/freebsd.org/src/sys/contrib/openzfs/module/os/freebsd/= zfs/zfs_ctldir.c:200 #24 0xffffffff824390bd in zfsctl_snapdir_lookup (ap=3D<optimized out>) at /usr/home/somers/src/freebsd.org/src/sys/contrib/openzfs/module/os/freebsd/= zfs/zfs_ctldir.c:949 #25 0xffffffff80cca581 in VOP_LOOKUP (dvp=3D0xfffff8008c771988,=20 vpp=3D0xfffffe0084f889f8, cnp=3D0xfffffe0084f88a20) at ./vnode_if.h:69 #26 lookup (ndp=3Dndp@entry=3D0xfffffe0084f889a0) at /usr/home/somers/src/freebsd.org/src/sys/kern/vfs_lookup.c:1091 #27 0xffffffff80cc9960 in namei (ndp=3Dndp@entry=3D0xfffffe0084f889a0) at /usr/home/somers/src/freebsd.org/src/sys/kern/vfs_lookup.c:631 #28 0xffffffff80ce5259 in kern_chdir (td=3D0xfffffe0085416e00,=20 path=3D0x8008b73e1 <error: Cannot access memory at address 0x8008b73e1>= ,=20 pathseg=3DUIO_USERSPACE) at /usr/home/somers/src/freebsd.org/src/sys/kern/vfs_syscalls.c:948 #29 0xffffffff81047fbe in syscallenter (td=3D<optimized out>) at /usr/home/somers/src/freebsd.org/src/sys/amd64/amd64/../../kern/subr_syscal= l.c:189 #30 amd64_syscall (td=3D0xfffffe0085416e00, traced=3D0) at /usr/home/somers/src/freebsd.org/src/sys/amd64/amd64/trap.c:1156 #31 <signal handler called> #32 0x000000080058fa0a in ?? () --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-252700-227>