geli: fix a livelock during panic
ClosedPublic
Actions

Authored by asomers on May 5 2020, 2:51 PM.

Details

Reviewers

jhb
pjd

Commits

rS362118: MFC r361562:
rS361562: geli: fix a livelock during panic

Summary

geli: fix a livelock during panic

During any kind of shutdown, kern_reboot calls geli's pre_sync event hook,
which tries to destroy all unused geli devices. But during a panic, geli
can't destroy any devices, because the scheduler is stopped, so it can't
switch threads. A livelock results, and the system never dumps core.

This commit fixes the problem by refusing to destroy any devices during
panic, used or otherwise.

PR: 246207
Sponsored By: Axcient

Test Plan

Manual testing as described in PR.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

asomers created this revision.May 5 2020, 2:51 PM

Herald added a subscriber: imp. · View Herald TranscriptMay 5 2020, 2:51 PM

asomers requested review of this revision.May 5 2020, 2:51 PM

Harbormaster completed remote builds in B30909: Diff 71402.May 5 2020, 2:51 PM

ping @jhb @pjd does this change look ok to you two?

jhb accepted this revision.May 27 2020, 6:33 PM

jhb added inline comments.

sys/geom/eli/g_eli.c
1416 ↗	(On Diff #71402)	kib@ would probably want you to do != 0 for all of those, but I'm fine with whatever pattern is normally used here in GEOM (e.g. should it be testing the sum != 0 instead of a bunch of \|\|?)