coredump #3
(gdb) bt
#0 raise (sig=sig@entry=11) at ../sysdeps/unix/sysv/linux/raise.c:51
#1 0x000055bd9a04f6b0 in reraise_fatal (signum=11) at
./src/global/signal_handler.cc:81
#2 handle_fatal_signal (signum=11) at
./src/global/signal_handler.cc:326
#3 <signal handler called>
#4 tcmalloc::SLL_Next (t=0x0) at src/linked_list.h:45
#5 tcmalloc::SLL_PopRange (end=<synthetic pointer>, start=<synthetic
pointer>, N=176, head=0x55bd9c1d2bf0) at src/linked_list.h:76
#6 tcmalloc::ThreadCache::FreeList::PopRange (end=<synthetic pointer>,
start=<synthetic pointer>, N=176, this=0x55bd9c1d2bf0) at src/thread_cache.h:225
#7 tcmalloc::ThreadCache::ReleaseToCentralCache
(this=this@entry=0x55bd9c1d2a40, src=src@entry=0x55bd9c1d2bf0, cl=<optimized
out>, N=176, N@entry=273) at src/thread_cache.cc:195
#8 0x00007f036eed4c9b in tcmalloc::ThreadCache::ListTooLong
(this=this@entry=0x55bd9c1d2a40, list=0x55bd9c1d2bf0, cl=<optimized out>) at
src/thread_cache.cc:157
#9 0x00007f036eee36f5 in tcmalloc::ThreadCache::Deallocate
(cl=<optimized out>, ptr=0x55bd9e12e0f0, this=0x55bd9c1d2a40) at
src/thread_cache.h:387
#10 (anonymous namespace)::do_free_helper
(invalid_free_fn=0x7f036eec3ce0 <(anonymous namespace)::InvalidFree(void*)>,
size_hint=0, use_hint=false, heap_must_be_valid=true, heap=0x55bd9c1d2a40,
ptr=0x55bd9e12e0f0) at src/tcmalloc.cc:1305
#11 (anonymous namespace)::do_free_with_callback
(invalid_free_fn=0x7f036eec3ce0 <(anonymous namespace)::InvalidFree(void*)>,
size_hint=0, use_hint=false, ptr=0x55bd9e12e0f0) at src/tcmalloc.cc:1337
#12 (anonymous namespace)::do_free (ptr=0x55bd9e12e0f0) at
src/tcmalloc.cc:1345
#13 tc_free (ptr=0x55bd9e12e0f0) at src/tcmalloc.cc:1610
#14 0x00007f036ec61164 in __gnu_cxx::new_allocator<OSDOp>::deallocate
(this=0x55bd9c982c80, __p=<optimized out>) at
/usr/include/c++/7/ext/new_allocator.h:125
#15 std::allocator_traits<std::allocator<OSDOp> >::deallocate (__a=...,
__n=<optimized out>, __p=<optimized out>) at
/usr/include/c++/7/bits/alloc_traits.h:462
#16 std::_Vector_base<OSDOp, std::allocator<OSDOp> >::_M_deallocate
(this=0x55bd9c982c80, __n=<optimized out>, __p=<optimized out>) at
/usr/include/c++/7/bits/stl_vector.h:180
#17 std::_Vector_base<OSDOp, std::allocator<OSDOp> >::~_Vector_base
(this=0x55bd9c982c80, __in_chrg=<optimized out>) at
/usr/include/c++/7/bits/stl_vector.h:162
#18 std::vector<OSDOp, std::allocator<OSDOp> >::~vector
(this=0x55bd9c982c80, __in_chrg=<optimized out>) at
/usr/include/c++/7/bits/stl_vector.h:435
#19 MOSDOp::~MOSDOp (this=0x55bd9c982a00, __in_chrg=<optimized out>) at
./src/messages/MOSDOp.h:195
#20 MOSDOp::~MOSDOp (this=0x55bd9c982a00, __in_chrg=<optimized out>) at
./src/messages/MOSDOp.h:195
#21 0x00007f036593ddb7 in RefCountedObject::put (this=0x55bd9c982a00)
at ./src/common/RefCountedObj.h:64
#22 0x00007f0365bd9d30 in ProtocolV2::write_message
(this=this@entry=0x55bd9dc68000, m=m@entry=0x55bd9c982a00,
more=more@entry=false) at ./src/msg/async/ProtocolV2.cc:571
#23 0x00007f0365bedf0b in ProtocolV2::write_event (this=0x55bd9dc68000)
at ./src/msg/async/ProtocolV2.cc:658
#24 0x00007f0365bad263 in AsyncConnection::handle_write
(this=0x55bd9dc58900) at ./src/msg/async/AsyncConnection.cc:692
#25 0x00007f0365c01757 in EventCenter::process_events
(this=this@entry=0x55bd9c8ece00, timeout_microseconds=<optimized out>,
timeout_microseconds@entry=30000000,
working_dur=working_dur@entry=0x7f035b62dbe8) at ./src/msg/async/Event.cc:441
#26 0x00007f0365c05e48 in NetworkStack::<lambda()>::operator()
(__closure=0x55bd9c9bd958) at ./src/msg/async/Stack.cc:53
#27 std::_Function_handler<void(), NetworkStack::add_thread(unsigned
int)::<lambda()> >::_M_invoke(const std::_Any_data &) (__functor=...) at
/usr/include/c++/7/bits/std_function.h:316
#28 0x00007f0363e366df in ?? () from
/usr/lib/x86_64-linux-gnu/libstdc++.so.6
#29 0x00007f03641096db in start_thread (arg=0x7f035b630700) at
pthread_create.c:463
#30 0x00007f03634f3a3f in clone () at
../sysdeps/unix/sysv/linux/x86_64/clone.S:95
Again, interaction between SLL_Pop(Range) and SLL_Next.
#4 tcmalloc::SLL_Next (t=0x0) at src/linked_list.h:45
#5 tcmalloc::SLL_PopRange (end=<synthetic pointer>, start=<synthetic
pointer>, N=176, head=0x55bd9c1d2bf0) at src/linked_list.h:76
Same as previous case, same function/instruction/register/pointer:
(gdb) f 4
(gdb) x/i $rip
=> 0x7f036eed4bcb
<tcmalloc::ThreadCache::ReleaseToCentralCache(tcmalloc::ThreadCache::FreeList*,
unsigned long, int)+219>: mov (%rdx),%rdx
(gdb) x $rdx
0x0: Cannot access memory at address 0x0
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1921749
Title:
nautilus: ceph radosgw beast frontend coroutine stack corruption
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/1921749/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
