2 * Copyright (c) 1986, 1988, 1991, 1993
3 * The Regents of the University of California. All rights reserved.
4 * (c) UNIX System Laboratories, Inc.
5 * All or some portions of this file are derived from material licensed
6 * to the University of California by American Telephone and Telegraph
7 * Co. or Unix System Laboratories, Inc. and are reproduced herein with
8 * the permission of UNIX System Laboratories, Inc.
10 * Redistribution and use in source and binary forms, with or without
11 * modification, are permitted provided that the following conditions
13 * 1. Redistributions of source code must retain the above copyright
14 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in the
17 * documentation and/or other materials provided with the distribution.
18 * 4. Neither the name of the University nor the names of its contributors
19 * may be used to endorse or promote products derived from this software
20 * without specific prior written permission.
22 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
26 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
27 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
28 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
29 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
30 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 * @(#)kern_shutdown.c 8.3 (Berkeley) 1/21/94
37 #include <sys/cdefs.h>
38 __FBSDID("$FreeBSD$");
43 #include "opt_panic.h"
44 #include "opt_show_busybufs.h"
45 #include "opt_sched.h"
47 #include <sys/param.h>
48 #include <sys/systm.h>
53 #include <sys/eventhandler.h>
55 #include <sys/kernel.h>
56 #include <sys/kthread.h>
57 #include <sys/malloc.h>
58 #include <sys/mount.h>
61 #include <sys/reboot.h>
62 #include <sys/resourcevar.h>
63 #include <sys/sched.h>
64 #include <sys/smp.h> /* smp_active */
65 #include <sys/sysctl.h>
66 #include <sys/sysproto.h>
70 #include <machine/cpu.h>
71 #include <machine/pcb.h>
72 #include <machine/smp.h>
74 #include <security/mac/mac_framework.h>
77 #include <vm/vm_object.h>
78 #include <vm/vm_page.h>
79 #include <vm/vm_pager.h>
80 #include <vm/swap_pager.h>
82 #include <sys/signalvar.h>
84 #ifndef PANIC_REBOOT_WAIT_TIME
85 #define PANIC_REBOOT_WAIT_TIME 15 /* default to 15 seconds */
89 * Note that stdarg.h and the ANSI style va_start macro is used for both
90 * ANSI and traditional C compilers.
92 #include <machine/stdarg.h>
96 int debugger_on_panic = 0;
98 int debugger_on_panic = 1;
100 SYSCTL_INT(_debug, OID_AUTO, debugger_on_panic, CTLFLAG_RW,
101 &debugger_on_panic, 0, "Run debugger on kernel panic");
104 int trace_on_panic = 1;
106 int trace_on_panic = 0;
108 SYSCTL_INT(_debug, OID_AUTO, trace_on_panic, CTLFLAG_RW,
109 &trace_on_panic, 0, "Print stack trace on kernel panic");
112 int sync_on_panic = 0;
113 SYSCTL_INT(_kern, OID_AUTO, sync_on_panic, CTLFLAG_RW,
114 &sync_on_panic, 0, "Do a sync before rebooting from a panic");
116 SYSCTL_NODE(_kern, OID_AUTO, shutdown, CTLFLAG_RW, 0, "Shutdown environment");
119 * Variable panicstr contains argument to first call to panic; used as flag
120 * to indicate that the kernel has already called panic.
122 const char *panicstr;
124 int dumping; /* system is dumping */
125 int rebooting; /* system is rebooting */
126 static struct dumperinfo dumper; /* our selected dumper */
128 /* Context information for dump-debuggers. */
129 static struct pcb dumppcb; /* Registers. */
130 static lwpid_t dumptid; /* Thread ID. */
132 static void boot(int) __dead2;
133 static void poweroff_wait(void *, int);
134 static void shutdown_halt(void *junk, int howto);
135 static void shutdown_panic(void *junk, int howto);
136 static void shutdown_reset(void *junk, int howto);
138 /* register various local shutdown events */
140 shutdown_conf(void *unused)
143 EVENTHANDLER_REGISTER(shutdown_final, poweroff_wait, NULL,
145 EVENTHANDLER_REGISTER(shutdown_final, shutdown_halt, NULL,
146 SHUTDOWN_PRI_LAST + 100);
147 EVENTHANDLER_REGISTER(shutdown_final, shutdown_panic, NULL,
148 SHUTDOWN_PRI_LAST + 100);
149 EVENTHANDLER_REGISTER(shutdown_final, shutdown_reset, NULL,
150 SHUTDOWN_PRI_LAST + 200);
153 SYSINIT(shutdown_conf, SI_SUB_INTRINSIC, SI_ORDER_ANY, shutdown_conf, NULL);
156 * The system call that results in a reboot.
160 reboot(struct thread *td, struct reboot_args *uap)
166 error = mac_check_system_reboot(td->td_ucred, uap->opt);
169 error = priv_check(td, PRIV_REBOOT);
179 * Called by events that want to shut down.. e.g <CTL><ALT><DEL> on a PC
181 static int shutdown_howto = 0;
184 shutdown_nice(int howto)
187 shutdown_howto = howto;
189 /* Send a signal to init(8) and have it shutdown the world */
190 if (initproc != NULL) {
192 psignal(initproc, SIGINT);
193 PROC_UNLOCK(initproc);
195 /* No init(8) running, so simply reboot */
200 static int waittime = -1;
211 if (ts.tv_sec >= 86400) {
212 printf("%ldd", (long)ts.tv_sec / 86400);
216 if (f || ts.tv_sec >= 3600) {
217 printf("%ldh", (long)ts.tv_sec / 3600);
221 if (f || ts.tv_sec >= 60) {
222 printf("%ldm", (long)ts.tv_sec / 60);
226 printf("%lds\n", (long)ts.tv_sec);
234 * Sometimes people have to call this from the kernel debugger.
235 * (if 'panic' can not dump)
236 * Give them a clue as to why they can't dump.
238 if (dumper.dumper == NULL) {
239 printf("Cannot dump. No dump device defined.\n");
244 dumptid = curthread->td_tid;
247 if (textdump_pending)
248 textdump_dumpsys(&dumper);
256 isbufbusy(struct buf *bp)
258 if (((bp->b_flags & (B_INVAL | B_PERSISTENT)) == 0 &&
259 BUF_REFCNT(bp) > 0) ||
260 ((bp->b_flags & (B_DELWRI | B_INVAL)) == B_DELWRI))
266 * Shutdown the system cleanly to prepare for reboot, halt, or power off.
271 static int first_buf_printf = 1;
275 * Bind us to CPU 0 so that all shutdown code runs there. Some
276 * systems don't shutdown properly (i.e., ACPI power off) if we
277 * run on another processor.
279 thread_lock(curthread);
280 sched_bind(curthread, 0);
281 thread_unlock(curthread);
282 KASSERT(PCPU_GET(cpuid) == 0, ("boot: not running on cpu 0"));
284 /* We're in the process of rebooting. */
287 /* collect extra flags that shutdown_nice might have set */
288 howto |= shutdown_howto;
290 /* We are out of the debugger now. */
294 * Do any callouts that should be done BEFORE syncing the filesystems.
296 EVENTHANDLER_INVOKE(shutdown_pre_sync, howto);
299 * Now sync filesystems
301 if (!cold && (howto & RB_NOSYNC) == 0 && waittime < 0) {
302 register struct buf *bp;
303 int iter, nbusy, pbusy;
310 sync(curthread, NULL);
313 * With soft updates, some buffers that are
314 * written will be remarked as dirty until other
315 * buffers are written.
317 for (iter = pbusy = 0; iter < 20; iter++) {
319 for (bp = &buf[nbuf]; --bp >= buf; )
323 if (first_buf_printf)
324 printf("All buffers synced.");
327 if (first_buf_printf) {
328 printf("Syncing disks, buffers remaining... ");
329 first_buf_printf = 0;
331 printf("%d ", nbusy);
335 sync(curthread, NULL);
339 * Drop Giant and spin for a while to allow
340 * interrupt threads to run.
347 * Drop Giant and context switch several times to
348 * allow interrupt threads to run.
351 for (subiter = 0; subiter < 50 * iter; subiter++) {
352 thread_lock(curthread);
353 mi_switch(SW_VOL, NULL);
354 thread_unlock(curthread);
362 * Count only busy local buffers to prevent forcing
363 * a fsck if we're just a client of a wedged NFS server
366 for (bp = &buf[nbuf]; --bp >= buf; ) {
369 /* XXX: This is bogus. We should probably have a BO_REMOTE flag instead */
370 if (bp->b_dev == NULL) {
371 TAILQ_REMOVE(&mountlist,
372 bp->b_vp->v_mount, mnt_list);
377 #if defined(SHOW_BUSYBUFS) || defined(DIAGNOSTIC)
379 "%d: bufobj:%p, flags:%0x, blkno:%ld, lblkno:%ld\n",
381 bp->b_flags, (long)bp->b_blkno,
388 * Failed to sync all blocks. Indicate this and don't
389 * unmount filesystems (thus forcing an fsck on reboot).
391 printf("Giving up on %d buffers\n", nbusy);
392 DELAY(5000000); /* 5 seconds */
394 if (!first_buf_printf)
395 printf("Final sync complete\n");
397 * Unmount filesystems
403 DELAY(100000); /* wait for console output to finish */
409 * Ok, now do things that assume all filesystem activity has
412 EVENTHANDLER_INVOKE(shutdown_post_sync, howto);
414 /* XXX This doesn't disable interrupts any more. Reconsider? */
417 if ((howto & (RB_HALT|RB_DUMP)) == RB_DUMP && !cold && !dumping)
420 /* Now that we're going to really halt the system... */
421 EVENTHANDLER_INVOKE(shutdown_final, howto);
423 for(;;) ; /* safety against shutdown_reset not working */
428 * If the shutdown was a clean halt, behave accordingly.
431 shutdown_halt(void *junk, int howto)
434 if (howto & RB_HALT) {
436 printf("The operating system has halted.\n");
437 printf("Please press any key to reboot.\n\n");
439 case -1: /* No console, just die */
450 * Check to see if the system paniced, pause and then reboot
451 * according to the specified delay.
454 shutdown_panic(void *junk, int howto)
458 if (howto & RB_DUMP) {
459 if (PANIC_REBOOT_WAIT_TIME != 0) {
460 if (PANIC_REBOOT_WAIT_TIME != -1) {
461 printf("Automatic reboot in %d seconds - "
462 "press a key on the console to abort\n",
463 PANIC_REBOOT_WAIT_TIME);
464 for (loop = PANIC_REBOOT_WAIT_TIME * 10;
466 DELAY(1000 * 100); /* 1/10th second */
467 /* Did user type a key? */
468 if (cncheckc() != -1)
474 } else { /* zero time specified - reboot NOW */
477 printf("--> Press a key on the console to reboot,\n");
478 printf("--> or switch off the system now.\n");
484 * Everything done, now reset
487 shutdown_reset(void *junk, int howto)
490 printf("Rebooting...\n");
491 DELAY(1000000); /* wait 1 sec for printf's to complete and be read */
492 /* cpu_boot(howto); */ /* doesn't do anything at the moment */
494 /* NOTREACHED */ /* assuming reset worked */
498 static u_int panic_cpu = NOCPU;
502 * Panic is called on unresolvable fatal errors. It prints "panic: mesg",
503 * and then reboots. If we are called twice, then we avoid trying to sync
504 * the disks as this often leads to recursive panics.
507 panic(const char *fmt, ...)
509 struct thread *td = curthread;
510 int bootopt, newpanic;
512 static char buf[256];
517 * We don't want multiple CPU's to panic at the same time, so we
518 * use panic_cpu as a simple spinlock. We have to keep checking
519 * panic_cpu if we are spinning in case the panic on the first
522 if (panic_cpu != PCPU_GET(cpuid))
523 while (atomic_cmpset_int(&panic_cpu, NOCPU,
524 PCPU_GET(cpuid)) == 0)
525 while (panic_cpu != NOCPU)
529 bootopt = RB_AUTOBOOT | RB_DUMP;
532 bootopt |= RB_NOSYNC;
540 (void)vsnprintf(buf, sizeof(buf), fmt, ap);
542 printf("panic: %s\n", buf);
550 printf("cpuid = %d\n", PCPU_GET(cpuid));
554 if (newpanic && trace_on_panic)
556 if (debugger_on_panic)
557 kdb_enter_why(KDB_WHY_PANIC, "panic");
558 #ifdef RESTARTABLE_PANICS
559 /* See if the user aborted the panic, in which case we continue. */
560 if (panicstr == NULL) {
562 atomic_store_rel_int(&panic_cpu, NOCPU);
568 /*thread_lock(td); */
569 td->td_flags |= TDF_INPANIC;
570 /* thread_unlock(td); */
572 bootopt |= RB_NOSYNC;
578 * Support for poweroff delay.
580 #ifndef POWEROFF_DELAY
581 # define POWEROFF_DELAY 5000
583 static int poweroff_delay = POWEROFF_DELAY;
585 SYSCTL_INT(_kern_shutdown, OID_AUTO, poweroff_delay, CTLFLAG_RW,
586 &poweroff_delay, 0, "");
589 poweroff_wait(void *junk, int howto)
592 if (!(howto & RB_POWEROFF) || poweroff_delay <= 0)
594 DELAY(poweroff_delay * 1000);
598 * Some system processes (e.g. syncer) need to be stopped at appropriate
599 * points in their main loops prior to a system shutdown, so that they
600 * won't interfere with the shutdown process (e.g. by holding a disk buf
601 * to cause sync to fail). For each of these system processes, register
602 * shutdown_kproc() as a handler for one of shutdown events.
604 static int kproc_shutdown_wait = 60;
605 SYSCTL_INT(_kern_shutdown, OID_AUTO, kproc_shutdown_wait, CTLFLAG_RW,
606 &kproc_shutdown_wait, 0, "");
609 kproc_shutdown(void *arg, int howto)
612 char procname[MAXCOMLEN + 1];
618 p = (struct proc *)arg;
619 strlcpy(procname, p->p_comm, sizeof(procname));
620 printf("Waiting (max %d seconds) for system process `%s' to stop...",
621 kproc_shutdown_wait, procname);
622 error = kthread_suspend(p, kproc_shutdown_wait * hz);
624 if (error == EWOULDBLOCK)
625 printf("timed out\n");
630 /* Registration of dumpers */
632 set_dumper(struct dumperinfo *di)
636 bzero(&dumper, sizeof dumper);
639 if (dumper.dumper != NULL)
645 /* Call dumper with bounds checking. */
647 dump_write(struct dumperinfo *di, void *virtual, vm_offset_t physical,
648 off_t offset, size_t length)
651 if (length != 0 && (offset < di->mediaoffset ||
652 offset - di->mediaoffset + length > di->mediasize)) {
653 printf("Attempt to write outside dump device boundaries.\n");
656 return (di->dumper(di->priv, virtual, physical, offset, length));
659 #if defined(__powerpc__)
661 dumpsys(struct dumperinfo *di __unused)
664 printf("Kernel dumps not implemented on this architecture\n");
projects / FreeBSD / releng / 7.2.git / blob