** Summary changed: - zfs crash with kernel 6.11 + zfs 2.2.6 + zfs crash with kernel 6.11 + zfs 2.2.2
-- You received this bug notification because you are a member of Kernel Packages, which is subscribed to zfs-linux in Ubuntu. https://bugs.launchpad.net/bugs/2098207 Title: zfs crash with kernel 6.11 + zfs 2.2.2 Status in zfs-linux package in Ubuntu: New Bug description: memcpy: detected field-spanning write (size 4) of single field "(char *)(lr + 1)" at /build/linux-hwe-6.11-3BG8pi/linux-hwe-6.11-6.11.0/debian/build/build-generic/__________________________________________________________dkms/build/zfs/2.2.6/build/module/zfs/zfs_log.c:514 (size 0) WARNING: CPU: 2 PID: 1294 at /build/linux-hwe-6.11-3BG8pi/linux-hwe-6.11-6.11.0/debian/build/build-generic/__________________________________________________________dkms/build/zfs/2.2.6/build/module/zfs/zfs_log.c:514 do_zfs_log_rename+0x13c/0x180 [zfs] Modules linked in: overlay cfg80211 ip6t_REJECT nf_reject_ipv6 xt_hl ip6t_rt ipt_REJECT nf_reject_ipv4 xt_LOG nf_log_syslog xt_comment nft_limit xt_limit xt_addrtype xt_tcpudp xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nft_compat binfmt_misc nf_tables amd_atl intel_rapl_msr intel_rapl_common edac_mce_amd kvm_amd kvm crct10dif_pclmul polyval_clmulni polyval_generic ghash_clmulni_intel sha256_ssse3 irdma sha1_ssse3 aesni_intel spd5118 i40e crypto_simd ipmi_ssif ib_uverbs i2c_piix4 cryptd ast nls_iso8859_1 ccp zfs(PO) rapl wmi_bmof acpi_ipmi ib_core i2c_smbus i2c_algo_bit k10temp ipmi_si ipmi_devintf ipmi_msghandler amd_pmc spl(O) mac_hid sch_fq_codel efi_pstore nfnetlink dmi_sysfs ip_tables x_tables autofs4 raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq libcrc32c raid0 raid1 ice nvme ahci xhci_pci nvme_core gnss video crc32_pclmul libahci xhci_pci_renesas nvme_auth libie wmi CPU: 2 UID: 0 PID: 1294 Comm: dockerd Tainted: P O 6.11.0-17-generic #17~24.04.2-Ubuntu Tainted: [P]=PROPRIETARY_MODULE, [O]=OOT_MODULE Hardware name: MSI MSIS366/S3661, BIOS ES366AOC.10CT01 06/12/2024 RIP: 0010:do_zfs_log_rename+0x13c/0x180 [zfs] Code: 00 e9 3b ff ff ff 4d 8d 74 24 01 31 c9 48 c7 c2 a0 81 cf c0 48 c7 c7 78 82 cf c0 4c 89 f6 c6 05 b2 6b 13 00 01 e8 44 95 80 c6 <0f> 0b 4c 89 f2 48 89 de 4c 89 ff e8 a4 52 99 c7 eb 83 48 8b 75 b0 RSP: 0018:ffffae5fb80df860 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff9d920984c3f8 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffae5fb80df8b0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000003 R13: ffff9d92d0b32200 R14: 0000000000000004 R15: ffff9d92d0b32278 FS: 00007f191282a200(0000) GS:ffff9d995d900000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000c00058c100 CR3: 000000024c3e6000 CR4: 0000000000f50ef0 PKRU: 55555554 Call Trace: <TASK> ? show_regs+0x6c/0x80 ? __warn+0x88/0x140 ? do_zfs_log_rename+0x13c/0x180 [zfs] ? report_bug+0x182/0x1b0 ? handle_bug+0x6e/0xb0 ? exc_invalid_op+0x18/0x80 ? asm_exc_invalid_op+0x1b/0x20 ? do_zfs_log_rename+0x13c/0x180 [zfs] zfs_log_rename+0x18/0x30 [zfs] zfs_rename+0xd71/0x11f0 [zfs] zpl_rename2+0x9b/0x190 [zfs] vfs_rename+0x794/0xbc0 ? apparmor_path_rename.part.0+0x4a/0x280 ? __d_lookup+0x83/0xd0 do_renameat2+0x5ef/0x670 __x64_sys_renameat+0x48/0x70 x64_sys_call+0x1b03/0x25f0 do_syscall_64+0x7e/0x170 ? srso_alias_return_thunk+0x5/0xfbef5 ? do_sys_openat2+0x9f/0xe0 ? srso_alias_return_thunk+0x5/0xfbef5 ? __x64_sys_openat+0x55/0xa0 ? srso_alias_return_thunk+0x5/0xfbef5 ? syscall_exit_to_user_mode+0x4e/0x250 ? srso_alias_return_thunk+0x5/0xfbef5 ? do_syscall_64+0x8a/0x170 ? srso_alias_return_thunk+0x5/0xfbef5 ? ksys_write+0xe6/0x100 ? srso_alias_return_thunk+0x5/0xfbef5 ? syscall_exit_to_user_mode+0x4e/0x250 ? srso_alias_return_thunk+0x5/0xfbef5 ? do_syscall_64+0x8a/0x170 ? srso_alias_return_thunk+0x5/0xfbef5 ? __count_memcg_events+0x86/0x160 ? srso_alias_return_thunk+0x5/0xfbef5 ? count_memcg_events.constprop.0+0x2a/0x50 ? srso_alias_return_thunk+0x5/0xfbef5 ? handle_mm_fault+0x1df/0x2d0 ? srso_alias_return_thunk+0x5/0xfbef5 ? do_user_addr_fault+0x5d5/0x870 ? srso_alias_return_thunk+0x5/0xfbef5 ? irqentry_exit_to_user_mode+0x43/0x250 ? srso_alias_return_thunk+0x5/0xfbef5 ? irqentry_exit+0x43/0x50 ? srso_alias_return_thunk+0x5/0xfbef5 ? exc_page_fault+0x96/0x1c0 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x5e4f153f1dee Code: 48 83 ec 38 e8 13 00 00 00 48 83 c4 38 5d c3 cc cc cc cc cc cc cc cc cc cc cc cc cc 49 89 f2 48 89 fa 48 89 ce 48 89 df 0f 05 <48> 3d 01 f0 ff ff 76 15 48 f7 d8 48 89 c1 48 c7 c0 ff ff ff ff 48 RSP: 002b:000000c0006c9448 EFLAGS: 00000206 ORIG_RAX: 0000000000000108 RAX: ffffffffffffffda RBX: ffffffffffffff9c RCX: 00005e4f153f1dee RDX: ffffffffffffff9c RSI: 000000c0003e60d8 RDI: ffffffffffffff9c RBP: 000000c0006c9488 R08: 0000000000000000 R09: 0000000000000000 R10: 000000c0003e60f0 R11: 0000000000000206 R12: 000000c0003e60f0 R13: 0000000000000000 R14: 000000c0000061c0 R15: 001fffffffffffff </TASK> ---[ end trace 0000000000000000 ]--- memcpy: detected field-spanning write (size 8) of single field "lr + 1" at /build/linux-hwe-6.11-3BG8pi/linux-hwe-6.11-6.11.0/debian/build/build-generic/__________________________________________________________dkms/build/zfs/2.2.6/build/module/zfs/zfs_log.c:425 (size 0) WARNING: CPU: 8 PID: 1306 at /build/linux-hwe-6.11-3BG8pi/linux-hwe-6.11-6.11.0/debian/build/build-generic/__________________________________________________________dkms/build/zfs/2.2.6/build/module/zfs/zfs_log.c:425 zfs_log_remove+0x113/0x120 [zfs] Modules linked in: overlay cfg80211 ip6t_REJECT nf_reject_ipv6 xt_hl ip6t_rt ipt_REJECT nf_reject_ipv4 xt_LOG nf_log_syslog xt_comment nft_limit xt_limit xt_addrtype xt_tcpudp xt_conntrack nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 nft_compat binfmt_misc nf_tables amd_atl intel_rapl_msr intel_rapl_common edac_mce_amd kvm_amd kvm crct10dif_pclmul polyval_clmulni polyval_generic ghash_clmulni_intel sha256_ssse3 irdma sha1_ssse3 aesni_intel spd5118 i40e crypto_simd ipmi_ssif ib_uverbs i2c_piix4 cryptd ast nls_iso8859_1 ccp zfs(PO) rapl wmi_bmof acpi_ipmi ib_core i2c_smbus i2c_algo_bit k10temp ipmi_si ipmi_devintf ipmi_msghandler amd_pmc spl(O) mac_hid sch_fq_codel efi_pstore nfnetlink dmi_sysfs ip_tables x_tables autofs4 raid10 raid456 async_raid6_recov async_memcpy async_pq async_xor async_tx xor raid6_pq libcrc32c raid0 raid1 ice nvme ahci xhci_pci nvme_core gnss video crc32_pclmul libahci xhci_pci_renesas nvme_auth libie wmi CPU: 8 UID: 0 PID: 1306 Comm: dockerd Tainted: P W O 6.11.0-17-generic #17~24.04.2-Ubuntu Tainted: [P]=PROPRIETARY_MODULE, [W]=WARN, [O]=OOT_MODULE Hardware name: MSI MSIS366/S3661, BIOS ES366AOC.10CT01 06/12/2024 RIP: 0010:zfs_log_remove+0x113/0x120 [zfs] Code: 00 4c 8b 45 d0 eb dc 31 c9 48 c7 c2 b0 83 cf c0 4c 89 fe 4c 89 45 d0 48 c7 c7 78 82 cf c0 c6 05 2f 60 13 00 01 e8 bd 89 80 c6 <0f> 0b 4c 8b 45 d0 eb 8b 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 RSP: 0018:ffffae5fb8127ce0 EFLAGS: 00010246 RAX: 0000000000000000 RBX: ffff9d9374ba0000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 RBP: ffffae5fb8127d18 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffff9d920131dcc0 R13: ffff9d920984c3f8 R14: 0000000000000000 R15: 0000000000000008 FS: 00007f18c17fa6c0(0000) GS:ffff9d995dc00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000c0006d3840 CR3: 000000024c3e6000 CR4: 0000000000f50ef0 PKRU: 55555554 Call Trace: <TASK> ? show_regs+0x6c/0x80 ? __warn+0x88/0x140 ? zfs_log_remove+0x113/0x120 [zfs] ? report_bug+0x182/0x1b0 ? handle_bug+0x6e/0xb0 ? exc_invalid_op+0x18/0x80 ? asm_exc_invalid_op+0x1b/0x20 ? zfs_log_remove+0x113/0x120 [zfs] zfs_rmdir+0x3b4/0x450 [zfs] zpl_rmdir+0x65/0xc0 [zfs] vfs_rmdir+0x9b/0x240 do_rmdir+0x1a4/0x1b0 __x64_sys_unlinkat+0x56/0x80 x64_sys_call+0x16b6/0x25f0 do_syscall_64+0x7e/0x170 ? syscall_exit_to_user_mode+0x18d/0x250 ? srso_alias_return_thunk+0x5/0xfbef5 ? do_syscall_64+0x8a/0x170 ? srso_alias_return_thunk+0x5/0xfbef5 ? irqentry_exit_to_user_mode+0x43/0x250 ? srso_alias_return_thunk+0x5/0xfbef5 ? irqentry_exit+0x43/0x50 ? srso_alias_return_thunk+0x5/0xfbef5 entry_SYSCALL_64_after_hwframe+0x76/0x7e RIP: 0033:0x5e4f153f1dee Code: 48 83 ec 38 e8 13 00 00 00 48 83 c4 38 5d c3 cc cc cc cc cc cc cc cc cc cc cc cc cc 49 89 f2 48 89 fa 48 89 ce 48 89 df 0f 05 <48> 3d 01 f0 ff ff 76 15 48 f7 d8 48 89 c1 48 c7 c0 ff ff ff ff 48 RSP: 002b:000000c00024fd70 EFLAGS: 00000216 ORIG_RAX: 0000000000000107 RAX: ffffffffffffffda RBX: ffffffffffffff9c RCX: 00005e4f153f1dee RDX: 0000000000000200 RSI: 000000c0001c92a8 RDI: ffffffffffffff9c RBP: 000000c00024fdb0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000216 R12: 000000c0001c92a8 R13: 0000000000000000 R14: 000000c0006888c0 R15: 00ffffffffffffff </TASK> ---[ end trace 0000000000000000 ]--- Description: Ubuntu 24.04.2 LTS Release: 24.04 zfsutils-linux: Installed: 2.2.2-0ubuntu9.1 Candidate: 2.2.2-0ubuntu9.1 Version table: *** 2.2.2-0ubuntu9.1 500 500 http://archive.ubuntu.com/ubuntu noble-updates/main amd64 Packages 100 /var/lib/dpkg/status 2.2.2-0ubuntu9 500 500 http://archive.ubuntu.com/ubuntu noble/main amd64 Packages CPU: AMD EPYC 4244P 6-Core Processor Linux server-01 6.11.0-17-generic #17~24.04.2-Ubuntu SMP PREEMPT_DYNAMIC Mon Jan 20 22:48:29 UTC 2 x86_64 x86_64 x86_64 GNU/Linux Same problem on many server. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/zfs-linux/+bug/2098207/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
