[Bug 253158] Panic: snapacct_ufs2: bad block - Non-suJ mksnap_ffs(8) crash

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Sat Feb 13 07:21:30 UTC 2021 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=253158

--- Comment #25 from Cy Schubert <cy at FreeBSD.org> ---
With -O0 -g.

#12 0xffffffff8166a738 in ffs_read (ap=0xfffffe0087e5a598)
    at /opt/src/vm64/sys/ufs/ffs/ffs_vnops.c:789
789                             error = vn_io_fault_pgmove(bp->b_pages,
blkoffset,
(kgdb) info args
ap = 0xfffffe0087e5a598
(kgdb) info locals
vp = 0xfffff8001cb0c1e8
ip = 0xfffff8000797f0a0
uio = 0xfffffe0087e5a728
fs = 0xfffffe0088551000
bp = 0xfffffe000132b480
lbn = 128
nextlbn = 129
bytesinfile = 17175707648
size = 32768
xfersize = 32768
blkoffset = 0
orig_resid = 16486400
bflag = 72
error = 0
ioflag = 0
seqcount = 0
(kgdb) p *fs
$1 = {fs_firstfield = 0, fs_unused_1 = 0, fs_sblkno = 24, fs_cblkno = 32,
fs_iblkno = 40, 
  fs_dblkno = 5048, fs_old_cgoffset = 0, fs_old_cgmask = 0, fs_old_time = 0,
fs_old_size = 0, 
  fs_old_dsize = 0, fs_ncg = 27, fs_bsize = 32768, fs_fsize = 4096, fs_frag =
8, fs_minfree = 8, 
  fs_old_rotdelay = 0, fs_old_rps = 0, fs_bmask = -32768, fs_fmask = -4096,
fs_bshift = 15, 
  fs_fshift = 12, fs_maxcontig = 32, fs_maxbpg = 4096, fs_fragshift = 3,
fs_fsbtodb = 3, 
  fs_sbsize = 4096, fs_spare1 = {0, 0}, fs_nindir = 4096, fs_inopb = 128,
fs_old_nspf = 0, 
  fs_optim = 0, fs_old_npsect = 0, fs_old_interleave = 0, fs_old_trackskew = 0,
fs_id = {1613200563, 
    1688935920}, fs_old_csaddr = 0, fs_cssize = 4096, fs_cgsize = 32768,
fs_spare2 = 0, 
  fs_old_nsect = 0, fs_old_spc = 0, fs_old_ncyl = 0, fs_old_cpg = 0, fs_ipg =
80128, 
  fs_fpg = 160056, fs_old_cstotal = {cs_ndir = 0, cs_nbfree = 0, cs_nifree = 0,
cs_nffree = 0}, 
  fs_fmod = 1 '\001', fs_clean = 0 '\000', fs_ronly = 0 '\000', fs_old_flags =
-128 '\200', 
  fs_fsmnt = "/mnt", '\000' <repeats 463 times>, fs_volname = '\000' <repeats
31 times>, 
  fs_swuid = 0, fs_pad = 0, fs_cgrotor = 18, fs_ocsp = {0x0 <repeats 15
times>}, 
  fs_si = 0xfffff800042d7320, fs_old_cpc = 0, fs_maxbsize = 32768, fs_unrefs =
0, 
  fs_providersize = 4194304, fs_metaspace = 6400, fs_sparecon64 = {0 <repeats
13 times>}, 
  fs_sblockactualloc = 65536, fs_sblockloc = 65536, fs_cstotal = {cs_ndir = 2,
cs_nbfree = 507157, 
    cs_nifree = 2163451, cs_nffree = 21, cs_numclusters = 0, cs_spare = {0, 0,
0}}, 
  fs_time = 1613200585, fs_size = 4194304, fs_dsize = 4058631, fs_csaddr =
5048, 
  fs_pendingblocks = 0, fs_pendinginodes = 0, fs_snapinum = {4, 0 <repeats 19
times>}, 
  fs_avgfilesize = 16384, fs_avgfpdir = 64, fs_save_cgsize = 0, fs_mtime =
1613200569, 
  fs_sujfree = 0, fs_sparecon32 = {0 <repeats 21 times>}, fs_ckhash =
2732082773, fs_metackhash = 7, 
  fs_flags = 512, fs_contigsumsize = 16, fs_maxsymlinklen = 120,
fs_old_inodefmt = 0, 
  fs_maxfilesize = 2252349704110079, fs_qbmask = 32767, fs_qfmask = 4095,
fs_state = 0, 
  fs_old_postblformat = 0, fs_old_nrpos = 0, fs_spare5 = {0, 0}, fs_magic =
424935705}
(kgdb) p *ip
$2 = {i_nextsnap = {tqe_next = 0x0, tqe_prev = 0xfffff80007220b10}, i_vnode =
0xfffff8001cb0c1e8, 
  i_ump = 0xfffff800063a0800, i_dquot = {0x0, 0x0}, i_un = {dirhash = 0x0,
snapblklist = 0x0}, 
  dinode_u = {din1 = 0xfffff80006521600, din2 = 0xfffff80006521600}, i_number =
4, i_flag = 1024, 
  i_effnlink = 1, i_count = 0, i_endoff = 0, i_diroff = 0, i_offset = 0,
i_nextclustercg = -1, 
  i_ea_area = 0x0, i_ea_len = 0, i_ea_error = 0, i_ea_refs = 0, i_size =
17179901952, 
  i_gen = 466217878, i_flags = 2097152, i_uid = 0, i_gid = 5, i_mode = 33056,
i_nlink = 1}
(kgdb) p *bp
$3 = {b_bufobj = 0xfffff8001cb0c2d0, b_bcount = 32768, b_caller1 = 0x0, 
  b_data = 0xfffffe00450d4000 <error: Cannot access memory at address
0xfffffe00450d4000>, 
  b_error = 0, b_iocmd = 1, b_ioflags = 16, b_iooffset = 4194304, b_resid = 0,
b_iodone = 0x0, 
  b_ckhashcalc = 0x0, b_ckhash = 0, b_blkno = 8192, b_offset = 4194304,
b_bobufs = {
    tqe_next = 0xfffffe0001320480, tqe_prev = 0xfffffe000132ba60}, b_vflags =
0, 
  b_qindex = 0 '\000', b_domain = 0 '\000', b_subqueue = 65535, b_flags =
805306912, b_xflags = 2, 
  b_lock = {lock_object = {lo_name = 0xffffffff81b9a2a3 "bufwait", lo_flags =
645070848, 
      lo_data = 0, lo_witness = 0xfffff8001fd6b580}, lk_lock =
18446741876973481472, 
    lk_exslpfail = 0, lk_timo = 0, lk_pri = 96}, b_bufsize = 32768,
b_runningbufspace = 0, 
  b_kvasize = 0, b_dirtyoff = 0, b_dirtyend = 0, 
  b_kvabase = 0xfffffe00450d4000 <error: Cannot access memory at address
0xfffffe00450d4000>, 
  b_lblkno = 128, b_vp = 0xfffff8001cb0c1e8, b_rcred = 0x0, b_wcred = 0x0,
{b_freelist = {
      tqe_next = 0xffffffffffffffff, tqe_prev = 0xffffffffffffffff}, {
      b_pgiodone = 0xffffffffffffffff, b_pgbefore = -1, b_pgafter = -1}},
b_cluster = {
    cluster_head = {tqh_first = 0x0, tqh_last = 0x0}, cluster_entry = {tqe_next
= 0x0, 
      tqe_prev = 0x0}}, b_npages = 8, b_dep = {lh_first = 0x0}, b_fsprivate1 =
0x0, 
  b_fsprivate2 = 0x0, b_fsprivate3 = 0x0, b_io_tracking = {0xffffffff81af1ffc
"getblkx", 
    0xffffffff81a62d1e "g_vfs_strategy", 0xffffffff81af0ca8 "g_io_request", 
    0xffffffff81b81378 "g_io_check", 0xffffffff81ad975d "g_disk_start", 
    0xffffffff81aaa544 "biodone", 0xffffffff81b990e4 "g_io_deliver",
0xffffffff81aaa544 "biodone", 
    0xffffffff81adac85 "bufdone", 0x0 <repeats 23 times>}, b_io_tcnt = 9, 
  b_pages = 0xfffffe000132b6c0}
(kgdb)

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-fs mailing list