koverstreet
fsck causes page fault at "RIP: 0010:bch2_chardev_exit+0x6e4/0xac0 [bcachefs]" when compiled with clang 19
Running fsck on a bcachefs file system results in a kernel oops when the kernel is compiled with clang. It seems to be only triggered by fsck, the file system can be successfully mounted manually.
The attached log was taken in initrd recovery mode, command 'bcachefs fsck /dev/nvme0n1p2'.
This does not happen when compiled with GCC 14.
I'm not sure if the trace in the log is helpful, so let me know if I can provide anything else.
Operating System: Gentoo Linux ~amd64 Kernel: 6.11.2-gentoo-dist (sys-kernel/gentoo-kernel-6.11.2), default config CPU: Intel Core i7-13700F Clang/LLVM 19.1.1 bcachefs-tools 1.11.0
This could be https://lore.kernel.org/linux-bcachefs/ZvV6X5FPBBW7CO1f@archlinux/T/#u According to Kees Cook counted_by under LLVM should be disabled until you can target an LLVM version that fixes it.
Are you sure? The trace looks completely different. If it's the same bug I would at least expect __fortify_panic or __fortify_report in the call stack. Also theirs happens during mount, I can mount the file system fine.
I could try however, how would I disable that?
Sorry, I was only going off the fact that there was another recent LLVM-specific issue. I don't think there's a config to ignore the attribute yet. Another option mentioned in thread was to remove it manually from the source (various reverts mentioned by Kees and Thorsten Blum); or building LLVM main branch which has a partial fix; but this is heavy for just diagnosing the issue.
Could you pipe the backtrace through scripts/decode_stacktrace.sh?
This is a different log, I rebuilt the kernel in between so I took a new one. Still crashes in bch2_chardev_exit though.
However, it's giving the misleading "WARNING! Modules path isn't set, but is needed to parse this symbol", it actually does find the module file but for some reason it doesn't have a .debug_line section. Since the source location in the bcachefs module is probably what you're looking for, I'll have to investigate... the rest of the backtrace is there though.
Here you go. Was compiled with strip USE flag which I didn't see, oops.
Here's a patch that disables counted_by on current clang releases: https://lore.kernel.org/all/ZxB-uh1KzfD4ww2a@archlinux/
You might want to switch the condition to just
if __has_attribute(__counted_by__) && !defined(__clang__)
Since the clang fix isn't merged yet
Patch for newer kernels since the original one doesn't apply anymore:
diff -Nar -U 7 a/init/Kconfig b/init/Kconfig
--- a/init/Kconfig 2025-02-26 17:23:18.972907790 +0100
+++ b/init/Kconfig 2025-02-26 17:23:37.013215122 +0100
@@ -123,15 +123,15 @@
config CC_HAS_COUNTED_BY
# TODO: when gcc 15 is released remove the build test and add
# a gcc version check
def_bool $(success,echo 'struct flex { int count; int array[] __attribute__((__counted_by__(count))); };' | $(CC) $(CLANG_FLAGS) -x c - -c -o /dev/null -Werror)
# clang needs to be at least 19.1.3 to avoid __bdos miscalculations
# https://github.com/llvm/llvm-project/pull/110497
# https://github.com/llvm/llvm-project/pull/112636
- depends on !(CC_IS_CLANG && CLANG_VERSION < 190103)
+ depends on !CC_IS_CLANG
config PAHOLE_VERSION
int
default $(shell,$(srctree)/scripts/pahole-version.sh $(PAHOLE))
config CONSTRUCTORS
bool
