bio linked list corruption.

Message ID	2bdc068d-afd5-7a78-f334-26970c91aaca@fb.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <linux-btrfs-owner@kernel.org> Subject: Re: bio linked list corruption. To: Linus Torvalds <torvalds@linux-foundation.org>, Dave Jones <davej@codemonkey.org.uk>, Chris Mason <clm@fb.com>, Andy Lutomirski <luto@amacapital.net>, Andy Lutomirski <luto@kernel.org>, Al Viro <viro@zeniv.linux.org.uk>, Josef Bacik <jbacik@fb.com>, David Sterba <dsterba@suse.com>, linux-btrfs <linux-btrfs@vger.kernel.org>, Linux Kernel <linux-kernel@vger.kernel.org>, Dave Chinner <david@fromorbit.com> References: <20161026002752.qvrm6yxqb54fiqnd@codemonkey.org.uk> <CA+55aFyv0k9e6bBqGm-LL3CUwimS4+rSu341P7SOV5ezYrrW_g@mail.gmail.com> <CA+55aFydo5oxo+ihUfGffMK6cAZnbZ8WyEiF7xgEx1Bh_aOMww@mail.gmail.com> <20161026163018.wx57yy554576s6e2@codemonkey.org.uk> <CA+55aFzsrRenu3NsDYr3qqO=fC9FUxkLc3M2wzeLBpN7ghwvwA@mail.gmail.com> <20161026184201.6ofblkd3j5uxystq@codemonkey.org.uk> <CA+55aFwD9McVapb0svQrrvP1k6iSkqz5ENNGXY6b+Yo-k7wOsg@mail.gmail.com> <488f9edc-6a1c-2c68-0d33-d3aa32ece9a4@fb.com> <ac6cd46c-d609-ef1f-019f-204248c26c12@fb.com> <CA+55aFwY5jNcUAJzDWERP2r9iZHEKzHSwMi5AJCJiaVd3Z0E-g@mail.gmail.com> <20161026224025.mou27kki4bslftli@codemonkey.org.uk> <CA+55aFyyP6VHOv6KbhVdMMtNfJLftbju_Ui2GNxXt0GgkKm0Jg@mail.gmail.com> <CA+55aFyiJGk-A_cJH41Ec8Xj0Zz9M3EU-igJ9bgusj=nm28tFQ@mail.gmail.com> From: Jens Axboe <axboe@fb.com> Message-ID: <2bdc068d-afd5-7a78-f334-26970c91aaca@fb.com> Date: Wed, 26 Oct 2016 17:03:45 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.3.0 MIME-Version: 1.0 In-Reply-To: <CA+55aFyiJGk-A_cJH41Ec8Xj0Zz9M3EU-igJ9bgusj=nm28tFQ@mail.gmail.com> Content-Type: text/plain; charset="utf-8"; format=flowed Content-Transfer-Encoding: 7bit Received-SPF: None (protection.outlook.com: fb.com does not designate permitted sender hosts) X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtNV0hQUjE1TUIxMTk3OzIzOllqWDQyWSt1aldZZFVXeU5NcUZYRHlrOEFh?= =?utf-8?B?S1VwRElUZGhCcDdENmpxUnRDSGdCelVaZ2ZlZDdMUlZSeWt1UEpiMFZReHpY?= =?utf-8?B?d2ExSzZwcy85ZVA0Y0cwZiswa2YxK1NjbTlONHZEN3FENmNGY2tKREVBTkFx?= =?utf-8?B?RjllTHY2bXhqc3lZM1V3VSs0ZmxtVmd3NHRvbHdTQ1I2S0NkWDdQQVJrM3Fr?= =?utf-8?B?VkZJS3dnbXdMZ2hZc1Ntb2U1U0V1dkxEdkVMbU5yOThGSXZZM2ozTHd0SnB4?= =?utf-8?B?NUpCWDhQNk84dS83UGk5YmNQTFpXMU8wdEY3NVBxZEVLQ0YvMXRpSUpsY0ZL?= =?utf-8?B?OUF0M1BHQlM5R0thb081MjVqQU5OcC84WHpGdFBmWTNySURQeHR2YU1xM1NJ?= =?utf-8?B?ckU5cXdHMDFmWkxDRmN5R05CZ0UyLzl0dEZjWjRzdStpTEJIbzAyWnB4K3gr?= =?utf-8?B?aElKazdOWlkyVU8rd2N0eWs2elgzemVlYmVSYzVuR0ZWZUhZT3dxQy8xcHBy?= =?utf-8?B?cnIrTGJVMVUzdTZNNHBpcEswc1N1aThweTJBcEh0Ui9KWERrdTNoYTJzRDQy?= =?utf-8?B?eGE3ak9Fc25uck1rUVVnc1NPQUNCT1lqRzh2RlZRTmJMUlVkaU9ML0Q5aVVS?= =?utf-8?B?ZHJqZHlBeW1XQVFTNjhlTkJVSDdKTjFXdFZxek1Tak0yYkMwdWNSaUlrcEEr?= =?utf-8?B?cCsrSmd5ejNCS3ZMQ1MzYUY2KzFjc2lOcm9lUU1DdCtod0hFeUZUYUE2Wi9w?= =?utf-8?B?b2QwdzZsNWtud3QzTEN0VW1ZeHlsdDlkQmthQlFnaC9Ybld6SzYyNmxhWXpR?= =?utf-8?B?RWJmaytKak5hTzE5K3ZQTm1CVTZ5akFNNFJSV3E3VGJYdi9FcStpZDQ1cjAz?= =?utf-8?B?NEcyUG15YzZkMnR5N1BiTy85TVpYUURRbXFnNHRISEdzYU1qTm00ZlhVRU1Z?= =?utf-8?B?NnRPM0lzNlB3NGo2SzlZRlUvOEs5ZmlITXQ2R2g3bXB3elhid24yL2RUOXAy?= =?utf-8?B?b0V3dFZ2aWloYTRhQjNoVXBQVExTUkxRSy9uSFZYRGhEeFZNVW8yTHBCclhl?= =?utf-8?B?MXd3S2M3bmNoVGdhZk9hWkppcFZ4QkN2YmlWaFhlaTdBNmRUWFM3UDNyZWt3?= =?utf-8?B?WDl1ZjRYUWlKNkk2Sng4UmdZY0FNTUJsOFd2L1o1YWJ4VnhuTzVrdzRaeEox?= =?utf-8?B?M0pQQTBuYWdGaXFrUWNmeFJqc1NwRnV0K2NXTTRQNXZEem9WaHAvVkJPdGNr?= =?utf-8?B?RTBVVGlYN3RUb0lkSms4VTRIQ1ptYnN6VTJ4L3ZoSXhVdzhOTStZNnQ2SjZV?= =?utf-8?B?YUx6bVQxWGp2MVhmVWlRRHBvemRDNThKc3VhVmdwOHlrS1pRYjFCWkVlcEl3?= =?utf-8?B?L3p1V3V4K2xCN0M2Wk1id0tFRXJRTmxBdkN3bTFSOTk0NnljbVFKdGhGa08x?= =?utf-8?B?cnhJL2xXb3B4NDF1OTNFT3lVNWZCamdYUVRrMU1RbVFGOC9XSXpMdmxtZGpS?= =?utf-8?B?Y2cwaXN2di9SWlQ2VmhheUtyQVlHQmJ5S01FYkRTcU8zNk4xYWxMRjN4alla?= =?utf-8?B?QmNaWThaWXM5NmJYczE2MG5ZZ05jYTdlN2h6V1FreGlRSUx0dk8yWkZNb2xI?= =?utf-8?B?UkVaRFhScGZTQTlmNWJIa2pJT2d1RjZtcitRSy92Rk5hRlBLWmI3UmFBN0pW?= =?utf-8?B?M2U3ZXBQdXlkRzFWMzlhbWFtZjV4dE12YVlUVGMzVzAvTWEyZmFCWW1MdEdl?= =?utf-8?B?V3R4TTVwUVA1dnhlQ2dNRnhqUmd2d09JSEd2K0ZDd0tTS1lzTHdxU0NiR3dN?= =?utf-8?B?bkpCZWc5ODAyTlJKTXFXdFlhWjk2Q3ZOSHlpVDVtVktaanQ5aGRacWs2UU5y?= =?utf-8?B?YVFSWlNaQnV1K3g4QWN4MWsxM2VBdGtvc0NFM25YRElIb1hWckZZdVVQWm9j?= =?utf-8?B?RjlKNHhZMG93PT0=?= X-Microsoft-Exchange-Diagnostics: 1; MWHPR15MB1197; 6:v8KbVlanBzI08C9eeGAZOiufDpBjJRK0blzgODwjgJxjqPbmGGKWwC4UOIXKpoPZft5BrMi+WiTZE1KGFjrw4NadhvE7IjjvuSQCaRISBV2atFVJuS2sNeh8rIpP3b5RwLv6dskNEbHIb8HghWLxh4auV3PwcIhZmm/HAUmULyCpNIc4JnZauex51g20awhU+xml7lg0C+5b/4HJCtETyO+OJD1+SN2Zm/+H1LjWkKs4XCa4V3Zo8TkBFviaKJMZe1340J+nVDM6HRk6HfPw+vwgD6GQScg4iyZWz2Q1GBVaSgyAvi3KVVUtDH64Dy2T; 5:cbSG3mWfVeqcMo1hNEGpc89R2bnz2XYItJKVoDaABWeHVZywt6NHAsch9Ed8/7RtWGmp1LuVn7p0Z+2NzT0FtluSWfdsrUN4uIrvFmoSrPCKD+zglUzRKLiqxy6wQ+f9AdQ0pzNcsNCHzqkVIDCHxg==; 24:n5hDQ4JFrmM21fCcJZXF6UZ3Nw6CrcaOMMx9a6cU8cLe75nN4YFf2wWD79tBC9oblsuvY0UFKeUTEyoaOzrASbyymUAJ6NJCOW/dd5Od5iY=; 7:nwcc4rQSOAeTR0gnbg2G5TzMUdXeScBIXVo9pJVnhKSyrR/e0YatRZ5ngyCPF0whftZNUM6ojb63tWhpTd+4HmHopIWWdqRzvON4rdhJ7nNwU/5FOIHiSsFLV4EBmCfU0mv3pub7QOw2RjniV3obn2YXe8RZt3fm53lw1tWCpb+3W+iU694R4LmD+NW3n9hfGUExs+wNPLbuRpgkQXzcIvxB7Y8OpM97ZCByuNJhZ6LbekrU3OWoRR8Y1a9vrTGtJLVSRWb0x0HyEZLTvrHpW7lOgs2kR6S1HfOmblarn4pO3lWVXXRuvewxrzBev3WL8PQY5aiTVqmDYd0HwYM15IjdbSA8 M8LTadIttWC7CYY= SpamDiagnosticOutput: 1:99 SpamDiagnosticMetadata: NSPM X-Microsoft-Exchange-Diagnostics: 1; MWHPR15MB1197; 20:VUTfzjYoe5fRlkpJgYDIPhSsr916FYBZkoyr5WGna4/RsNJ3d4x8EY48sC838a24AXw5gNF9un98zVv3ZD9W3ZRYn6s2xEWZeNiuX+PFqix3O/zXAE8GrBny2obb5ksZGc761wgi5wiqUlWMojJEpDFTVEFHTq2CPORFY6N3/gU= X-MS-Exchange-CrossTenant-OriginalArrivalTime: 26 Oct 2016 23:04:05.8256 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR15MB1197 Sender: linux-btrfs-owner@vger.kernel.org Precedence: bulk

Message ID

2bdc068d-afd5-7a78-f334-26970c91aaca@fb.com (mailing list archive)

State

New, archived

Headers

Subject: Re: bio linked list corruption.
To: Linus Torvalds <torvalds@linux-foundation.org>,
	Dave Jones <davej@codemonkey.org.uk>, Chris Mason <clm@fb.com>,
	Andy Lutomirski <luto@amacapital.net>, Andy Lutomirski <luto@kernel.org>,
	Al Viro <viro@zeniv.linux.org.uk>, Josef Bacik <jbacik@fb.com>,
	David Sterba <dsterba@suse.com>,
	linux-btrfs <linux-btrfs@vger.kernel.org>,
	Linux Kernel <linux-kernel@vger.kernel.org>,
	Dave Chinner <david@fromorbit.com>
References: <20161026002752.qvrm6yxqb54fiqnd@codemonkey.org.uk>
	<CA+55aFyv0k9e6bBqGm-LL3CUwimS4+rSu341P7SOV5ezYrrW_g@mail.gmail.com>
	<CA+55aFydo5oxo+ihUfGffMK6cAZnbZ8WyEiF7xgEx1Bh_aOMww@mail.gmail.com>
	<20161026163018.wx57yy554576s6e2@codemonkey.org.uk>
	<CA+55aFzsrRenu3NsDYr3qqO=fC9FUxkLc3M2wzeLBpN7ghwvwA@mail.gmail.com>
	<20161026184201.6ofblkd3j5uxystq@codemonkey.org.uk>
	<CA+55aFwD9McVapb0svQrrvP1k6iSkqz5ENNGXY6b+Yo-k7wOsg@mail.gmail.com>
	<488f9edc-6a1c-2c68-0d33-d3aa32ece9a4@fb.com>
	<ac6cd46c-d609-ef1f-019f-204248c26c12@fb.com>
	<CA+55aFwY5jNcUAJzDWERP2r9iZHEKzHSwMi5AJCJiaVd3Z0E-g@mail.gmail.com>
	<20161026224025.mou27kki4bslftli@codemonkey.org.uk>
	<CA+55aFyyP6VHOv6KbhVdMMtNfJLftbju_Ui2GNxXt0GgkKm0Jg@mail.gmail.com>
	<CA+55aFyiJGk-A_cJH41Ec8Xj0Zz9M3EU-igJ9bgusj=nm28tFQ@mail.gmail.com>
From: Jens Axboe <axboe@fb.com>
Message-ID: <2bdc068d-afd5-7a78-f334-26970c91aaca@fb.com>
Date: Wed, 26 Oct 2016 17:03:45 -0600
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101
	Thunderbird/45.3.0
MIME-Version: 1.0
In-Reply-To: <CA+55aFyiJGk-A_cJH41Ec8Xj0Zz9M3EU-igJ9bgusj=nm28tFQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format=flowed
Content-Transfer-Encoding: 7bit
Received-SPF: None (protection.outlook.com: fb.com does not designate
	permitted sender hosts)
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 26 Oct 2016 23:04:05.8256
	(UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR15MB1197
X-OriginatorOrg: fb.com
X-Proofpoint-Spam-Reason: safe
X-FB-Internal: Safe
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:, ,
	definitions=2016-10-26_14:, , signatures=0
Sender: linux-btrfs-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-btrfs.vger.kernel.org>
X-Mailing-List: linux-btrfs@vger.kernel.org
X-Virus-Scanned: ClamAV using ClamSMTP

Commit Message

Jens Axboe Oct. 26, 2016, 11:03 p.m. UTC

On 10/26/2016 04:58 PM, Linus Torvalds wrote:
> On Wed, Oct 26, 2016 at 3:51 PM, Linus Torvalds
> <torvalds@linux-foundation.org> wrote:
>>
>> Dave: it might be a good idea to split that "WARN_ON_ONCE()" in
>> blk_mq_merge_queue_io() into two
>
> I did that myself too, since Dave sees this during boot.
>
> But I'm not getting the warning ;(
>
> Dave gets it with ext4, and thats' what I have too, so I'm not sure
> what the required trigger would be.

Actually, I think I see what might trigger it. You are on nvme, iirc,
and that has a deep queue. Dave, are you testing on a sata drive or
something similar with a shallower queue depth? If we end up sleeping
for a request, I think we could trigger data->ctx being different.

Dave, can you hit the warnings with this? Totally untested...

Comments

Dave Jones Oct. 26, 2016, 11:07 p.m. UTC | #1

On Wed, Oct 26, 2016 at 05:03:45PM -0600, Jens Axboe wrote:
 > On 10/26/2016 04:58 PM, Linus Torvalds wrote:
 > > On Wed, Oct 26, 2016 at 3:51 PM, Linus Torvalds
 > > <torvalds@linux-foundation.org> wrote:
 > >>
 > >> Dave: it might be a good idea to split that "WARN_ON_ONCE()" in
 > >> blk_mq_merge_queue_io() into two
 > >
 > > I did that myself too, since Dave sees this during boot.
 > >
 > > But I'm not getting the warning ;(
 > >
 > > Dave gets it with ext4, and thats' what I have too, so I'm not sure
 > > what the required trigger would be.
 > 
 > Actually, I think I see what might trigger it. You are on nvme, iirc,
 > and that has a deep queue. Dave, are you testing on a sata drive or
 > something similar with a shallower queue depth? If we end up sleeping
 > for a request, I think we could trigger data->ctx being different.

yeah, just regular sata. I've been meaning to put an ssd in that box for
a while, but now it sounds like my procrastination may have paid off.

 > Dave, can you hit the warnings with this? Totally untested...
 
Coming up..
 
	Dave

--
To unsubscribe from this list: send the line "unsubscribe linux-btrfs" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Linus Torvalds Oct. 26, 2016, 11:08 p.m. UTC | #2

On Wed, Oct 26, 2016 at 4:03 PM, Jens Axboe <axboe@fb.com> wrote:
>
> Actually, I think I see what might trigger it. You are on nvme, iirc,
> and that has a deep queue.

Yes. I have long since moved on from slow disks, so all my systems are
not just flash, but m.2 nvme ssd's.

So at least that could explain why Dave sees it at bootup but I don't.

            Linus
--
To unsubscribe from this list: send the line "unsubscribe linux-btrfs" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Chris Mason Oct. 26, 2016, 11:19 p.m. UTC | #3

On Wed, Oct 26, 2016 at 05:03:45PM -0600, Jens Axboe wrote:
>On 10/26/2016 04:58 PM, Linus Torvalds wrote:
>>On Wed, Oct 26, 2016 at 3:51 PM, Linus Torvalds
>><torvalds@linux-foundation.org> wrote:
>>>
>>>Dave: it might be a good idea to split that "WARN_ON_ONCE()" in
>>>blk_mq_merge_queue_io() into two
>>
>>I did that myself too, since Dave sees this during boot.
>>
>>But I'm not getting the warning ;(
>>
>>Dave gets it with ext4, and thats' what I have too, so I'm not sure
>>what the required trigger would be.
>
>Actually, I think I see what might trigger it. You are on nvme, iirc,
>and that has a deep queue. Dave, are you testing on a sata drive or
>something similar with a shallower queue depth? If we end up sleeping
>for a request, I think we could trigger data->ctx being different.
>
>Dave, can you hit the warnings with this? Totally untested...

Confirmed, totally untested ;)  Don't try this one at home folks 
(working this out with Jens offlist)

G: unable to handle kernel paging request at 0000000002411200
IP: [<ffffffff819acff2>] _raw_spin_lock+0x22/0x40
PGD 12840a067
PUD 128446067
PMD 0

Oops: 0002 [#1] PREEMPT SMP
Modules linked in: virtio_blk(+)
CPU: 4 PID: 125 Comm: modprobe Not tainted 
4.9.0-rc2-00041-g811d54d-dirty #320
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.9.0-1.fc24 
04/01/2014
task: ffff88013849aac0 task.stack: ffff8801293d8000
RIP: 0010:[<ffffffff819acff2>]  [<ffffffff819acff2>] 
_raw_spin_lock+0x22/0x40
RSP: 0018:ffff8801293db278  EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000002411200 RCX: 0000000000000000
RDX: 0000000000000001 RSI: ffff88013a5c1048 RDI: 0000000000000000
RBP: ffff8801293db288 R08: 0000000000000005 R09: ffff880128449380
R10: 0000000000000000 R11: 0000000000000008 R12: 0000000000000000
R13: 0000000000000001 R14: 0000000000000076 R15: ffff8801293b6a80
FS:  00007f1a2a9cdb40(0000) GS:ffff88013fd00000(0000) 
knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000002411200 CR3: 000000013a5d1000 CR4: 00000000000406e0
Stack:
 ffff8801293db2d0 ffff880128488000 ffff8801293db348 ffffffff814debff
 00ff8801293db2c8 ffff8801293db338 ffff8801284888c0 ffff8801284888b8
 000060fec00004f9 0000000002411200 ffff880128f810c0 ffff880128f810c0
Call Trace:
 [<ffffffff814debff>] blk_sq_make_request+0x34f/0x580
 [<ffffffff8116b005>] ? mempool_alloc_slab+0x15/0x20
 [<ffffffff814d5444>] generic_make_request+0x104/0x200
 [<ffffffff814d55a5>] submit_bio+0x65/0x130
 [<ffffffff8122a06e>] submit_bh_wbc+0x16e/0x210
 [<ffffffff8122a123>] submit_bh+0x13/0x20
 [<ffffffff8122b075>] block_read_full_page+0x205/0x3d0
 [<ffffffff8122cf00>] ? I_BDEV+0x20/0x20
 [<ffffffff8117a1fe>] ? lru_cache_add+0xe/0x10
 [<ffffffff81167502>] ? add_to_page_cache_lru+0x92/0xf0
 [<ffffffff81166c41>] ? __page_cache_alloc+0xd1/0xe0
 [<ffffffff8122df38>] blkdev_readpage+0x18/0x20
 [<ffffffff8116ada6>] do_read_cache_page+0x1c6/0x380
 [<ffffffff8122df20>] ? blkdev_writepages+0x10/0x10
 [<ffffffff811c6662>] ? alloc_pages_current+0xb2/0x1c0
 [<ffffffff8116af92>] read_cache_page+0x12/0x20
 [<ffffffff814e6b11>] read_dev_sector+0x31/0xb0
 [<ffffffff814eb31d>] read_lba+0xbd/0x130
 [<ffffffff814eb682>] find_valid_gpt+0xa2/0x580
 [<ffffffff814ebb60>] ? find_valid_gpt+0x580/0x580
 [<ffffffff814ebbc7>] efi_partition+0x67/0x3d0
 [<ffffffff81509cfa>] ? vsnprintf+0x2aa/0x470
 [<ffffffff81509f64>] ? snprintf+0x34/0x40
 [<ffffffff814ebb60>] ? find_valid_gpt+0x580/0x580
 [<ffffffff814e8f46>] check_partition+0x106/0x1e0
 [<ffffffff814e741c>] rescan_partitions+0x8c/0x270
 [<ffffffff8122ef98>] __blkdev_get+0x328/0x3f0
 [<ffffffff8122f0b4>] blkdev_get+0x54/0x320
 [<ffffffff8120be7a>] ? unlock_new_inode+0x5a/0x80
 [<ffffffff8122dc0f>] ? bdget+0xff/0x110
 [<ffffffff814e4d16>] device_add_disk+0x3c6/0x450
 [<ffffffff8151970a>] ? ioread8+0x1a/0x40
 [<ffffffff815bc68e>] ? vp_get+0x4e/0x70
 [<ffffffffa0001540>] virtblk_probe+0x460/0x708 [virtio_blk]
 [<ffffffff815bc556>] ? vp_finalize_features+0x36/0x50
 [<ffffffff815b8c82>] virtio_dev_probe+0x132/0x1e0
 [<ffffffff81619709>] driver_probe_device+0x1a9/0x2d0
 [<ffffffff819aa9e4>] ? mutex_lock+0x24/0x50
 [<ffffffff816198ed>] __driver_attach+0xbd/0xc0
 [<ffffffff81619830>] ? driver_probe_device+0x2d0/0x2d0
 [<ffffffff81619830>] ? driver_probe_device+0x2d0/0x2d0
 [<ffffffff816178aa>] bus_for_each_dev+0x8a/0xb0
 [<ffffffff8161920e>] driver_attach+0x1e/0x20
 [<ffffffff81618bf6>] bus_add_driver+0x1b6/0x230
 [<ffffffff8161a200>] driver_register+0x60/0xe0
 [<ffffffff815b8f50>] register_virtio_driver+0x20/0x40
 [<ffffffffa0004057>] init+0x57/0x81 [virtio_blk]
 [<ffffffffa0004000>] ? 0xffffffffa0004000
 [<ffffffffa0004000>] ? 0xffffffffa0004000
 [<ffffffff810003a6>] do_one_initcall+0x46/0x150
 [<ffffffff810e923a>] do_init_module+0x6a/0x210
 [<ffffffff811b32b7>] ? vfree+0x37/0x90
 [<ffffffff810ebe68>] load_module+0x1638/0x1860
 [<ffffffff810e83f0>] ? do_free_init+0x30/0x30
 [<ffffffff811f6da4>] ? kernel_read_file_from_fd+0x54/0x90
 [<ffffffff810ec152>] SYSC_finit_module+0xc2/0xd0
 [<ffffffff810ec16e>] SyS_finit_module+0xe/0x10
 [<ffffffff819ad1a0>] entry_SYSCALL_64_fastpath+0x13/0x94
Code: 89 df e8 a2 52 70 ff eb e6 55 48 89 e5 53 48 83 ec 08 66 66 66 66 
90 48 89 fb bf 01 00 00 00 e8 95 53 6e ff 31 c0 ba 01 00 00 00 <f0> 0f 
b1 13 85 c0 75 07 48 83 c4 08 5b c9 c3 89 c6 48 89 df e8
RIP  [<ffffffff819acff2>] _raw_spin_lock+0x22/0x40
 RSP <ffff8801293db278>
CR2: 0000000002411200
---[ end trace e8cb117e64947621 ]---
Kernel panic - not syncing: Fatal exception
Kernel Offset: disabled
---[ end Kernel panic - not syncing: Fatal exception

-chris
--
To unsubscribe from this list: send the line "unsubscribe linux-btrfs" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Jens Axboe Oct. 26, 2016, 11:21 p.m. UTC | #4

On 10/26/2016 05:19 PM, Chris Mason wrote:
> On Wed, Oct 26, 2016 at 05:03:45PM -0600, Jens Axboe wrote:
>> On 10/26/2016 04:58 PM, Linus Torvalds wrote:
>>> On Wed, Oct 26, 2016 at 3:51 PM, Linus Torvalds
>>> <torvalds@linux-foundation.org> wrote:
>>>>
>>>> Dave: it might be a good idea to split that "WARN_ON_ONCE()" in
>>>> blk_mq_merge_queue_io() into two
>>>
>>> I did that myself too, since Dave sees this during boot.
>>>
>>> But I'm not getting the warning ;(
>>>
>>> Dave gets it with ext4, and thats' what I have too, so I'm not sure
>>> what the required trigger would be.
>>
>> Actually, I think I see what might trigger it. You are on nvme, iirc,
>> and that has a deep queue. Dave, are you testing on a sata drive or
>> something similar with a shallower queue depth? If we end up sleeping
>> for a request, I think we could trigger data->ctx being different.
>>
>> Dave, can you hit the warnings with this? Totally untested...
>
> Confirmed, totally untested ;)  Don't try this one at home folks
> (working this out with Jens offlist)

Ahem, I did say untested! The one I just sent in reply to Linus should
be better. Though that one is completely untested as well...

diff --git a/block/blk-mq.c b/block/blk-mq.c
index ddc2eed64771..80a9c45a9235 100644
--- a/block/blk-mq.c
+++ b/block/blk-mq.c
@@ -1217,9 +1217,7 @@  static struct request *blk_mq_map_request(struct 
request_queue *q,
  	blk_mq_set_alloc_data(&alloc_data, q, 0, ctx, hctx);
  	rq = __blk_mq_alloc_request(&alloc_data, op, op_flags);

-	hctx->queued++;
-	data->hctx = hctx;
-	data->ctx = ctx;
+	data->hctx->queued++;
  	return rq;
  }

bio linked list corruption.

Commit Message

Comments

Patch