Date: Fri, 05 Aug 2016 15:45:28 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 211535] ZFS crash zap_leaf_array_create() in zap_leaf.c Message-ID: <bug-211535-8-kXQXNKeQt6@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-211535-8@https.bugs.freebsd.org/bugzilla/> References: <bug-211535-8@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D211535 --- Comment #3 from dgilbert@eicat.ca --- I got another crash with a slightly different signature. Still ending in t= he same stuff: (kgdb) bt #0 doadump (textdump=3D1) at ../../../kern/kern_shutdown.c:298 #1 0xffffffff80df6d9a in kern_reboot (howto=3D260) at ../../../kern/kern_shutdown.c:486 #2 0xffffffff80df770c in vpanic (fmt=3D0xffffffff81796b99 "vm_fault: fault= on nofault entry, addr: %lx", ap=3D0xfffffe0c563a2560) at ../../../kern/kern_shutdown.c:889 #3 0xffffffff80df74d0 in panic (fmt=3D0xffffffff81796b99 "vm_fault: fault = on nofault entry, addr: %lx") at ../../../kern/kern_shutdown.c:818 #4 0xffffffff8126b4d6 in vm_fault_hold (map=3D0xfffff80003000000, vaddr=3D18446741878753259520, fault_type=3D1 '\001', fault_flags=3D0, m_hold=3D0x0) at ../../../vm/vm_fault.c:329 #5 0xffffffff8126b259 in vm_fault (map=3D0xfffff80003000000, vaddr=3D18446741878753259520, fault_type=3D1 '\001', fault_flags=3D0) at ../../../vm/vm_fault.c:273 #6 0xffffffff8142001a in trap_pfault (frame=3D0xfffffe0c563a2e60, usermode= =3D0) at ../../../amd64/amd64/trap.c:757 #7 0xffffffff8141ed93 in trap (frame=3D0xfffffe0c563a2e60) at ../../../amd64/amd64/trap.c:447 #8 0xffffffff813f78d2 in calltrap () at ../../../amd64/amd64/exception.S:2= 36 #9 0xffffffff822daba7 in zap_leaf_chunk_alloc (l=3D0xfffff80566424b00) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= ap_leaf.c:198 #10 0xffffffff822da1d8 in zap_leaf_array_create (l=3D0xfffff80566424b00, buf=3D0xfffff80848a09a30 "service-perfdata.1470234364", integer_size=3D= 1, num_integers=3D28) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= ap_leaf.c:239 #11 0xffffffff822daa39 in zap_entry_create (l=3D0xfffff80566424b00, zn=3D0xfffff8001ca1c200, cd=3D0, integer_size=3D8 '\b', num_integers=3D1, buf=3D0xfffffe0c563a33a8, zeh=3D0xfffffe0c563a3100) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= ap_leaf.c:644 #12 0xffffffff822d4d1d in fzap_add_cd (zn=3D0xfffff8001ca1c200, integer_siz= e=3D8, num_integers=3D1, val=3D0xfffffe0c563a33a8, cd=3D4294967295, tx=3D0xfffff805f57b1300) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= ap.c:814 #13 0xffffffff822d5427 in fzap_add (zn=3D0xfffff8001ca1c200, integer_size= =3D8, num_integers=3D1, val=3D0xfffffe0c563a33a8, tx=3D0xfffff805f57b1300) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= ap.c:841 #14 0xffffffff822de5d1 in zap_add (os=3D0xfffff8002d0bac00, zapobj=3D60627, key=3D0xfffff80848a09a30 "service-perfdata.1470234364", integer_size=3D= 8, num_integers=3D1, val=3D0xfffffe0c563a33a8, tx=3D0xfffff805f57b1300) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= ap_micro.c:1008 #15 0xffffffff82313c59 in zfs_link_create (dl=3D0xfffff80848a09a00, zp=3D0xfffff806f6a4cb80, tx=3D0xfffff805f57b1300, flag=3D16) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= fs_dir.c:767 #16 0xffffffff8233f5fb in zfs_rename (sdvp=3D0xfffff804d7613938, snm=3D0xfffff8001fa3e817 "service-perfdata", tdvp=3D0xfffff804d7613588, tnm=3D0xfffff8001fa8cc1c "service-perfdata.1470234364", cr=3D0xfffff8049f296e00, ct=3D0x0, flags=3D0) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= fs_vnops.c:4067 #17 0xffffffff82339aaf in zfs_freebsd_rename (ap=3D0xfffffe0c563a3628) at /usr/src/sys/modules/zfs/../../cddl/contrib/opensolaris/uts/common/fs/zfs/z= fs_vnops.c:6513 #18 0xffffffff8161877b in VOP_RENAME_APV (vop=3D0xffffffff823c75f0, a=3D0xfffffe0c563a3628) at vnode_if.c:1546 #19 0xffffffff80f22519 in VOP_RENAME (fdvp=3D0xfffff804d7613938, fvp=3D0xfffff809a51ddb10, fcnp=3D0xfffffe0c563a38b0, tdvp=3D0xfffff804d7613588, tvp=3D0x0, tcnp=3D0xfffffe0c563a37e0) at vnode_if.h:636 #20 0xffffffff80f223a3 in kern_renameat (td=3D0xfffff804258d5960, oldfd=3D-= 100, old=3D0x806c201c0 <Address 0x806c201c0 out of bounds>, newfd=3D-100, new=3D0x806c51180 <Address 0x806c51180 out of bounds>, pathseg=3DUIO_US= ERSPACE) at ../../../kern/vfs_syscalls.c:3752 #21 0xffffffff80f21d63 in kern_rename (td=3D0xfffff804258d5960, from=3D0x80= 6c201c0 <Address 0x806c201c0 out of bounds>, to=3D0x806c51180 <Address 0x806c51180 out of bounds>, pathseg=3DUIO_USE= RSPACE) at ../../../kern/vfs_syscalls.c:3644 #22 0xffffffff80f21d2a in sys_rename (td=3D0xfffff804258d5960, uap=3D0xfffffe0c563a3b98) at ../../../kern/vfs_syscalls.c:3621 #23 0xffffffff81421163 in syscallenter (td=3D0xfffff804258d5960, sa=3D0xfffffe0c563a3b88) at subr_syscall.c:141 #24 0xffffffff8142073f in amd64_syscall (td=3D0xfffff804258d5960, traced=3D= 0) at ../../../amd64/amd64/trap.c:959 #25 0xffffffff813f7bbb in Xfast_syscall () at ../../../amd64/amd64/exception.S:396 #26 0x000000080381fbaa in ?? () --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-211535-8-kXQXNKeQt6>