Re: [bug] 6.5.7 - ixbe freezes and causes RCU deadlock?
From: Ian Kumlien
Date: Sun Oct 15 2023 - 08:01:45 EST
On Sun, Oct 15, 2023 at 7:05 AM Bagas Sanjaya <bagasdotme@xxxxxxxxx> wrote:
>
> On Sun, Oct 15, 2023 at 12:11:41AM +0200, Ian Kumlien wrote:
> > So, this keeps happening - it's happened for quite some time now...
> > I can't really reproduce it but it starts with a network adapter
> > freezing and ends with RCU errors
> > and watchdog reboot... :/
> >
> > cat bug.txt | ./scripts/decode_stacktrace.sh vmlinux
> > [185433.169006] ------------[ cut here ]------------
> > [185433.169018] NETDEV WATCHDOG: eno3 (ixgbe): transmit queue 2 timed
> > out 9736 ms
> > [185433.169094] WARNING: CPU: 3 PID: 0 at net/sched/sch_generic.c:525
> > dev_watchdog (net/sched/sch_generic.c:525 (discriminator 3))
> > [185433.169113] Modules linked in: chaoskey
> > [185433.169126] CPU: 3 PID: 0 Comm: swapper/3 Not tainted 6.5.7 #393
> > [185433.169136] Hardware name: Supermicro Super
> > Server/A2SDi-12C-HLN4F, BIOS 1.7a 10/13/2022
> > [185433.169142] RIP: 0010:dev_watchdog (net/sched/sch_generic.c:525
> > (discriminator 3))
> > [185433.169152] Code: ff ff ff 48 89 df c6 05 e7 2a f8 00 01 e8 30 1f
> > fa ff 45 89 f8 44 89 f1 48 89 de 48 89 c2 48 c7 c7 98 f9 cd 89 e8 48
> > 65 28 ff <0f> 0b e9 2a ff ff ff 90 55 53 48 89 fb 48 8b 6f 18 0f 1f 44
> > 00 00
> > All code
> > ========
> > 0: ff (bad)
> > 1: ff (bad)
> > 2: ff 48 89 decl -0x77(%rax)
> > 5: df c6 ffreep %st(6)
> > 7: 05 e7 2a f8 00 add $0xf82ae7,%eax
> > c: 01 e8 add %ebp,%eax
> > e: 30 1f xor %bl,(%rdi)
> > 10: fa cli
> > 11: ff 45 89 incl -0x77(%rbp)
> > 14: f8 clc
> > 15: 44 89 f1 mov %r14d,%ecx
> > 18: 48 89 de mov %rbx,%rsi
> > 1b: 48 89 c2 mov %rax,%rdx
> > 1e: 48 c7 c7 98 f9 cd 89 mov $0xffffffff89cdf998,%rdi
> > 25: e8 48 65 28 ff call 0xffffffffff286572
> > 2a:* 0f 0b ud2 <-- trapping instruction
> > 2c: e9 2a ff ff ff jmp 0xffffffffffffff5b
> > 31: 90 nop
> > 32: 55 push %rbp
> > 33: 53 push %rbx
> > 34: 48 89 fb mov %rdi,%rbx
> > 37: 48 8b 6f 18 mov 0x18(%rdi),%rbp
> > 3b: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1)
> >
> > Code starting with the faulting instruction
> > ===========================================
> > 0: 0f 0b ud2
> > 2: e9 2a ff ff ff jmp 0xffffffffffffff31
> > 7: 90 nop
> > 8: 55 push %rbp
> > 9: 53 push %rbx
> > a: 48 89 fb mov %rdi,%rbx
> > d: 48 8b 6f 18 mov 0x18(%rdi),%rbp
> > 11: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1)
> > [185433.169161] RSP: 0018:ffffad6e4017cea8 EFLAGS: 00010282
> > [185433.169170] RAX: 0000000000000000 RBX: ffff9f2ac5a38000 RCX:
> > 0000000000000027
> > [185433.169177] RDX: ffff9f2e2fadb408 RSI: 0000000000000001 RDI:
> > ffff9f2e2fadb400
> > [185433.169183] RBP: ffff9f2ac5a38488 R08: 0000000000000000 R09:
> > ffffad6e4017cd48
> > [185433.169189] R10: 0000000000000003 R11: ffffffff89f47928 R12:
> > ffff9f2ac5c18280
> > [185433.169194] R13: ffff9f2ac5a383dc R14: 0000000000000002 R15:
> > 0000000000002608
> > [185433.169200] FS: 0000000000000000(0000) GS:ffff9f2e2fac0000(0000)
> > knlGS:0000000000000000
> > [185433.169208] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
> > [185433.169214] CR2: 00007f16daf82638 CR3: 000000010273a000 CR4:
> > 00000000003526e0
> > [185433.169221] Call Trace:
> > [185433.169228] <IRQ>
> > [185433.169233] ? dev_watchdog (net/sched/sch_generic.c:525 (discriminator 3))
> > [185433.169242] ? __warn (kernel/panic.c:673)
> > [185433.169255] ? dev_watchdog (net/sched/sch_generic.c:525 (discriminator 3))
> > [185433.169264] ? report_bug (lib/bug.c:180 lib/bug.c:219)
> > [185433.169273] ? handle_bug (arch/x86/kernel/traps.c:324)
> > [185433.169282] ? exc_invalid_op (arch/x86/kernel/traps.c:345 (discriminator 1))
> > [185433.169291] ? asm_exc_invalid_op (./arch/x86/include/asm/idtentry.h:568)
> > [185433.169305] ? dev_watchdog (net/sched/sch_generic.c:525 (discriminator 3))
> > [185433.169313] ? dev_watchdog (net/sched/sch_generic.c:525 (discriminator 3))
> > [185433.169320] ? pfifo_fast_reset (net/sched/sch_generic.c:496)
> > [185433.169328] ? pfifo_fast_reset (net/sched/sch_generic.c:496)
> > [185433.169336] call_timer_fn (./arch/x86/include/asm/jump_label.h:27
> > ./include/linux/jump_label.h:207 ./include/trace/events/timer.h:127
> > kernel/time/timer.c:1701)
> > [185433.169345] __run_timers.part.0 (kernel/time/timer.c:1752
> > kernel/time/timer.c:2022)
> > [185433.169354] ? __hrtimer_run_queues (./include/linux/seqlock.h:612
> > kernel/time/hrtimer.c:1714 kernel/time/hrtimer.c:1752)
> > [185433.169362] ? recalibrate_cpu_khz
> > (./arch/x86/include/asm/msr.h:215 arch/x86/kernel/tsc.c:1130)
> > [185433.169375] ? ktime_get (kernel/time/timekeeping.c:292
> > (discriminator 3) kernel/time/timekeeping.c:388 (discriminator 3)
> > kernel/time/timekeeping.c:848 (discriminator 3))
> > [185433.169384] run_timer_softirq (kernel/time/timer.c:2037)
> > [185433.169392] __do_softirq (./arch/x86/include/asm/jump_label.h:27
> > ./include/linux/jump_label.h:207 ./include/trace/events/irq.h:142
> > kernel/softirq.c:554)
> > [185433.169404] irq_exit_rcu (kernel/softirq.c:427
> > kernel/softirq.c:632 kernel/softirq.c:644)
> > [185433.169413] sysvec_apic_timer_interrupt
> > (arch/x86/kernel/apic/apic.c:1109 (discriminator 14))
> > [185433.169425] </IRQ>
> > [185433.169429] <TASK>
> > [185433.169433] asm_sysvec_apic_timer_interrupt
> > (./arch/x86/include/asm/idtentry.h:645)
> > [185433.169445] RIP: 0010:cpuidle_enter_state (drivers/cpuidle/cpuidle.c:291)
> > [185433.169456] Code: 00 e8 c2 8f fa fe e8 7d fa ff ff 8b 53 04 49 89
> > c5 0f 1f 44 00 00 31 ff e8 5b 02 fa fe 45 84 ff 0f 85 60 02 00 00 fb
> > 45 85 f6 <0f> 88 8e 01 00 00 49 63 ce 4c 8b 14 24 48 8d 04 49 48 8d 14
> > 81 48
> > All code
> > ========
> > 0: 00 e8 add %ch,%al
> > 2: c2 8f fa ret $0xfa8f
> > 5: fe (bad)
> > 6: e8 7d fa ff ff call 0xfffffffffffffa88
> > b: 8b 53 04 mov 0x4(%rbx),%edx
> > e: 49 89 c5 mov %rax,%r13
> > 11: 0f 1f 44 00 00 nopl 0x0(%rax,%rax,1)
> > 16: 31 ff xor %edi,%edi
> > 18: e8 5b 02 fa fe call 0xfffffffffefa0278
> > 1d: 45 84 ff test %r15b,%r15b
> > 20: 0f 85 60 02 00 00 jne 0x286
> > 26: fb sti
> > 27: 45 85 f6 test %r14d,%r14d
> > 2a:* 0f 88 8e 01 00 00 js 0x1be <-- trapping instruction
> > 30: 49 63 ce movslq %r14d,%rcx
> > 33: 4c 8b 14 24 mov (%rsp),%r10
> > 37: 48 8d 04 49 lea (%rcx,%rcx,2),%rax
> > 3b: 48 8d 14 81 lea (%rcx,%rax,4),%rdx
> > 3f: 48 rex.W
> >
> > Code starting with the faulting instruction
> > ===========================================
> > 0: 0f 88 8e 01 00 00 js 0x194
> > 6: 49 63 ce movslq %r14d,%rcx
> > 9: 4c 8b 14 24 mov (%rsp),%r10
> > d: 48 8d 04 49 lea (%rcx,%rcx,2),%rax
> > 11: 48 8d 14 81 lea (%rcx,%rax,4),%rdx
> > 15: 48 rex.W
> > [185433.169463] RSP: 0018:ffffad6e400afe98 EFLAGS: 00000202
> > [185433.169472] RAX: ffff9f2e2faebb80 RBX: ffff9f2e2faf6500 RCX:
> > 000000000000001f
> > [185433.169478] RDX: 0000000000000003 RSI: 0000000040000000 RDI:
> > 0000000000000000
> > [185433.169483] RBP: 0000000000000002 R08: 0000000000000000 R09:
> > ffff9f2e2faea6c4
> > [185433.169489] R10: 0000000000000008 R11: 00000000000003d9 R12:
> > ffffffff8a017140
> > [185433.169494] R13: 0000a8a6862ac667 R14: 0000000000000002 R15:
> > 0000000000000000
> > [185433.169505] ? cpuidle_enter_state (drivers/cpuidle/cpuidle.c:285)
> > [185433.169516] cpuidle_enter (drivers/cpuidle/cpuidle.c:390)
> > [185433.169530] do_idle (kernel/sched/idle.c:219 kernel/sched/idle.c:282)
> > [185433.169540] cpu_startup_entry (kernel/sched/idle.c:379 (discriminator 1))
> > [185433.169550] start_secondary (arch/x86/kernel/smpboot.c:326)
> > [185433.169562] secondary_startup_64_no_verify (arch/x86/kernel/head_64.S:441)
> > [185433.169575] </TASK>
> > [185433.169579] ---[ end trace 0000000000000000 ]---
> > [185433.169594] ixgbe 0000:07:00.0 eno3: initiating reset due to tx timeout
> > [185433.169621] ixgbe 0000:07:00.0 eno3: Reset adapter
> >
> > And in the IPMI console:
> > [185433.169621] ixgbe 0000:07:00.0 eno3: Reset adapter
> > [185444.166717] rcu: INFO: rcu_preempt self-detected stall on CPU
> > [185444.172665] rcu: 0-...!: (20999 ticks this GP)
> > idle=8d84/1/0x4000000000000000 softirq=1976223/1976223 fqs=2
> > [185444.182681] rcu: (t=21015 jiffies g=6787421 q=738 ncpus=12)
> > [185444.188523] rcu: rcu_preempt kthread timer wakeup didn't happen
> > for 21009 jiffies! g6787421 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
> > [185444.200361] rcu: Possible timer handling issue on cpu=8
> > timer-softirq=1196063
> > [185444.207761] rcu: rcu_preempt kthread starved for 21032 jiffies!
> > g6787421 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=8
> > [185444.218639] rcu: Unless rcu_preempt kthread gets sufficient CPU
> > time, OOM is now expected behavior.
> > [185444.227946] rcu: RCU grace-period kthread stack dump:
> > [185444.233347] rcu: Stack dump where RCU GP kthread last ran:
> > [185507.243156] rcu: INFO: rcu_preempt self-detected stall on CPU
> > [185507.249098] rcu: 0-....: (84002 ticks this GP)
> > idle=8d84/1/0x4000000000000000 softirq=1976223/1976223 fqs=1559
> > [185507.259375] rcu: (t=84094 jiffies g=6787421 q=1213 ncpus=12)
> > [185570.265595] rcu: INFO: rcu_preempt self-detected stall on CPU
> > [185570.271532] rcu: 0-....: (147002 ticks this GP)
> > idle=8d84/1/0x4000000000000000 softirq=1976223/1976223 fqs=13844
> > [185570.282016] rcu: (t=147117 jiffies g=6787421 q=1273 ncpus=12)
> > [185570.288049] rcu: rcu_preempt kthread timer wakeup didn't happen
> > for 13787 jiffies! g6787421 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
> > [185570.299914] rcu: Possible timer handling issue on cpu=9
> > timer-softirq=1211534
> > [185570.307347] rcu: rcu_preempt kthread starved for 13810 jiffies!
> > g6787421 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=9
> > [185570.318258] rcu: Unless rcu_preempt kthread gets sufficient CPU
> > time, OOM is now expected behavior.
> > [185570.327601] rcu: RCU grace-period kthread stack dump:
> > [185570.333005] rcu: Stack dump where RCU GP kthread last ran:
> >
> > And thats everything i have...
>
> Do you have above on kernel v6.1?
I don't think I did, I think it started in 6.4/6.5 but I'm
uncertain... Since i don't have a easy way to reproduce it... it's
hard to test
> --
> An old man doll... just what I always wanted! - Clara