Date: Tue, 07 Apr 2020 01:32:44 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 245414] panic: softdep_setup_blkfree: not free Message-ID: <bug-245414-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D245414 Bug ID: 245414 Summary: panic: softdep_setup_blkfree: not free Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: sigsys@gmail.com I'm getting reproducible panics on up-to-date -CURRENT (r359682) whenever a process coredumps on a UFS partition. I tried to disable TRIM and it doesn= 't prevent the panic. On a VM with a single UFS partition, the panic occurs a second or so after a coredump. Sending CTRL+\ to any process triggers it every time so far. On another non-VM system I've tested on it takes a few times before it panics. <6>[46] pid 4472 (cat), jid 0, uid 1001: exited on signal 3 (core dumped) [202] WARNING: /mnt: TRIM flag on fs but disk does not support TRIM <6>[237] pid 23049 (cat), jid 0, uid 1001: exited on signal 3 (core dumped) <6>[326] pid 26313 (cat), jid 0, uid 1001: exited on signal 3 (core dumped) <6>[327] pid 26399 (cat), jid 0, uid 1001: exited on signal 3 (core dumped) <6>[328] pid 26504 (cat), jid 0, uid 1001: exited on signal 3 (core dumped) [329] panic: softdep_setup_blkfree: not free [329] cpuid =3D 2 [329] time =3D 1586221947 [329] KDB: stack backtrace: [329] db_trace_self_wrapper() at db_trace_self_wrapper+0x2c/frame 0xfffffe00ff8a6830 [329] vpanic() at vpanic+0x186/frame 0xfffffe00ff8a6880 [329] panic() at panic+0x43/frame 0xfffffe00ff8a68e0 [329] softdep_setup_blkfree() at softdep_setup_blkfree+0x292/frame 0xfffffe00ff8a6940 [329] ffs_blkfree_cg() at ffs_blkfree_cg+0x421/frame 0xfffffe00ff8a69f0 [329] ffs_blkfree() at ffs_blkfree+0xa4/frame 0xfffffe00ff8a6a50 [329] handle_workitem_freefrag() at handle_workitem_freefrag+0xbf/frame 0xfffffe00ff8a6aa0 [329] process_worklist_item() at process_worklist_item+0x272/frame 0xfffffe00ff8a6b40 [329] softdep_process_worklist() at softdep_process_worklist+0xc6/frame 0xfffffe00ff8a6b80 [329] softdep_flush() at softdep_flush+0xef/frame 0xfffffe00ff8a6bb0 [329] fork_exit() at fork_exit+0x7f/frame 0xfffffe00ff8a6bf0 [329] fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe00ff8a6bf0 [329] --- trap 0, rip =3D 0, rsp =3D 0, rbp =3D 0 --- [329] KDB: enter: panic Unread portion of the kernel message buffer: panic: softdep_setup_blkfree: not free cpuid =3D 5 time =3D 1586219503 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe003c7d3= 910 vpanic() at vpanic+0x182/frame 0xfffffe003c7d3960 panic() at panic+0x43/frame 0xfffffe003c7d39c0 softdep_setup_blkfree() at softdep_setup_blkfree+0x282/frame 0xfffffe003c7d= 3a20 ffs_blkfree_cg() at ffs_blkfree_cg+0x440/frame 0xfffffe003c7d3ac0 ffs_blkfree_trim_task() at ffs_blkfree_trim_task+0x54/frame 0xfffffe003c7d3= b00 taskqueue_run_locked() at taskqueue_run_locked+0xaa/frame 0xfffffe003c7d3b80 taskqueue_thread_loop() at taskqueue_thread_loop+0x94/frame 0xfffffe003c7d3= bb0 fork_exit() at fork_exit+0x80/frame 0xfffffe003c7d3bf0 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe003c7d3bf0 --- trap 0, rip =3D 0, rsp =3D 0, rbp =3D 0 --- KDB: enter: panic __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55 55 __asm("movq %%gs:%P1,%0" : "=3Dr" (td) : "n" (offsetof(stru= ct pcpu, (kgdb) #0 __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55 #1 doadump (textdump=3D0) at /usr/src/sys/kern/kern_shutdown.c:394 #2 0xffffffff8049b43a in db_dump (dummy=3D<optimized out>, dummy2=3D<unavailable>, dummy3=3D<unavailable>, dummy4=3D<unavailable>) at /usr/src/sys/ddb/db_command.c:575 #3 0xffffffff8049b1fc in db_command (last_cmdp=3D<optimized out>, cmd_table=3D<optimized out>, dopager=3D1) at /usr/src/sys/ddb/db_comman= d.c:482 #4 0xffffffff8049af6d in db_command_loop () at /usr/src/sys/ddb/db_command.c:535 #5 0xffffffff8049e168 in db_trap (type=3D<optimized out>, code=3D<optimize= d out>) at /usr/src/sys/ddb/db_main.c:253 #6 0xffffffff80c07dd4 in kdb_trap (type=3D3, code=3D0, tf=3D<optimized out= >) at /usr/src/sys/kern/subr_kdb.c:699 #7 0xffffffff8105cc08 in trap (frame=3D0xfffffe003c7d3840) at /usr/src/sys/amd64/amd64/trap.c:578 #8 <signal handler called> #9 kdb_enter (why=3D0xffffffff811eb48a "panic", msg=3D<optimized out>) at /usr/src/sys/kern/subr_kdb.c:486 #10 0xffffffff80bbd8ae in vpanic (fmt=3D<optimized out>, ap=3D<optimized ou= t>) at /usr/src/sys/kern/kern_shutdown.c:902 #11 0xffffffff80bbd643 in panic ( fmt=3D0xffffffff81c7c198 <cnputs_mtx> "\340\367\032\201\377\377\377\377= ") at /usr/src/sys/kern/kern_shutdown.c:839 #12 0xffffffff80ec9882 in softdep_setup_blkfree (mp=3D0xfffffe0034596100, bp=3D<optimized out>, blkno=3D7563456, frags=3D1, wkhd=3D0xfffff8000491= 6b28) at /usr/src/sys/ufs/ffs/ffs_softdep.c:10917 #13 0xffffffff80eaa950 in ffs_blkfree_cg (ump=3D<optimized out>, fs=3D0xfffffe0034599000, devvp=3D0x12, bno=3D<optimized out>, size=3D<optimized out>, inum=3D<optimized out>, dephd=3D0xfffff80004916= b28) at /usr/src/sys/ufs/ffs/ffs_alloc.c:2335 #14 0xffffffff80eabbd4 in ffs_blkfree_trim_task (ctx=3D0xfffff800048dcb00, pending=3D<optimized out>) at /usr/src/sys/ufs/ffs/ffs_alloc.c:2420 #15 0xffffffff80c1bffa in taskqueue_run_locked (queue=3D0xfffff800032e1500) at /usr/src/sys/kern/subr_taskqueue.c:476 #16 0xffffffff80c1d084 in taskqueue_thread_loop (arg=3D<optimized out>) at /usr/src/sys/kern/subr_taskqueue.c:793 #17 0xffffffff80b7b440 in fork_exit ( callout=3D0xffffffff80c1cff0 <taskqueue_thread_loop>, arg=3D0xfffff800032f5560, frame=3D0xfffffe003c7d3c00) at /usr/src/sys/kern/kern_fork.c:1051 #18 <signal handler called> --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-245414-227>