[apple/xnu.git] / bsd / kern / kern_shutdown.c

/*
 * Copyright (c) 2000-2006 Apple Computer, Inc. All rights reserved.
 *
 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
 * 
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. The rights granted to you under the License
 * may not be used to create, or enable the creation or redistribution of,
 * unlawful or unlicensed copies of an Apple operating system, or to
 * circumvent, violate, or enable the circumvention or violation of, any
 * terms of an Apple operating system software license agreement.
 * 
 * Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this file.
 * 
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 * 
 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
 */
/*
 *	File:	bsd/kern/kern_shutdown.c
 *
 *	Copyright (C) 1989, NeXT, Inc.
 *
 */

#include <sys/param.h>
#include <sys/systm.h>
#include <sys/kernel.h>
#include <sys/vm.h>
#include <sys/proc_internal.h>
#include <sys/user.h>
#include <sys/reboot.h>
#include <sys/conf.h>
#include <sys/vnode_internal.h>
#include <sys/file_internal.h>
#include <sys/clist.h>
#include <sys/callout.h>
#include <sys/mbuf.h>
#include <sys/msgbuf.h>
#include <sys/ioctl.h>
#include <sys/signal.h>
#include <sys/tty.h>
#include <kern/task.h>
#include <sys/quota.h>
#include <vm/vm_kern.h>
#include <mach/vm_param.h>
#include <sys/filedesc.h>
#include <mach/host_priv.h>
#include <mach/host_reboot.h>

#include <security/audit/audit.h>

#include <kern/sched_prim.h>		/* for thread_block() */
#include <kern/host.h>			/* for host_priv_self() */
#include <net/if_var.h>			/* for if_down_all() */
#include <sys/buf_internal.h>		/* for count_busy_buffers() */
#include <sys/mount_internal.h>		/* for vfs_unmountall() */
#include <mach/task.h>			/* for task_suspend() */
#include <sys/sysproto.h>		/* abused for sync() */
#include <kern/clock.h>			/* for delay_for_interval() */
#include <libkern/OSAtomic.h>

#include <sys/kdebug.h>

uint32_t system_inshutdown = 0;

/* XXX should be in a header file somewhere, but isn't */
extern void md_prepare_for_shutdown(int, int, char *);
extern void (*unmountroot_pre_hook)(void);

unsigned int proc_shutdown_exitcount = 0;

static int  sd_openlog(vfs_context_t);
static int  sd_closelog(vfs_context_t);
static void sd_log(vfs_context_t, const char *, ...);
static void proc_shutdown(void);

extern void IOSystemShutdownNotification(void);

struct sd_filterargs{
	int delayterm;
	int shutdownstate;
};


struct sd_iterargs {
	int signo;		/* the signal to be posted */
	int setsdstate;  	/* shutdown state to be set */
	int countproc;		/* count processes on action */
	int activecount; 	/* number of processes on which action was done */
};

static vnode_t sd_logvp = NULLVP;
static off_t sd_log_offset = 0;


static int sd_filt1(proc_t, void *);
static int sd_filt2(proc_t, void *);
static int  sd_callback1(proc_t p, void * arg);
static int  sd_callback2(proc_t p, void * arg);
static int  sd_callback3(proc_t p, void * arg);

int
boot(int paniced, int howto, char *command)
{
	struct proc *p = current_proc();	/* XXX */
	int hostboot_option=0;

	if (!OSCompareAndSwap(0, 1, &system_inshutdown)) {
		if ( (howto&RB_QUICK) == RB_QUICK)
			goto force_reboot;
		return (EBUSY);
	}
	/*
	 * Temporary hack to notify the power management root domain
	 * that the system will shut down.
	 */
	IOSystemShutdownNotification();

	md_prepare_for_shutdown(paniced, howto, command);

	if ((howto&RB_QUICK)==RB_QUICK) {
		printf("Quick reboot...\n");
		if ((howto&RB_NOSYNC)==0) {
			sync(p, (void *)NULL, (int *)NULL);
		}
	}
	else if ((howto&RB_NOSYNC)==0) {
		int iter, nbusy;

		printf("syncing disks... ");

		/*
		 * Release vnodes held by texts before sync.
		 */

		/* handle live procs (deallocate their root and current directories). */		
		proc_shutdown();

#if CONFIG_AUDIT
		audit_shutdown();
#endif

		if (unmountroot_pre_hook != NULL)
			unmountroot_pre_hook();

		sync(p, (void *)NULL, (int *)NULL);

		/*
		 * Now that all processes have been terminated and system is
		 * sync'ed up, suspend init
		 */
			
		if (initproc && p != initproc)
			task_suspend(initproc->task);

		if (kdebug_enable)
			kdbg_dump_trace_to_file("/var/log/shutdown/shutdown.trace");

		/*
		 * Unmount filesystems
		 */
		vfs_unmountall();

		/* Wait for the buffer cache to clean remaining dirty buffers */
		for (iter = 0; iter < 100; iter++) {
			nbusy = count_busy_buffers();
			if (nbusy == 0)
				break;
			printf("%d ", nbusy);
			delay_for_interval( 1 * nbusy, 1000 * 1000);
		}
		if (nbusy)
			printf("giving up\n");
		else
			printf("done\n");
	}
#if NETWORKING
	/*
	 * Can't just use an splnet() here to disable the network
	 * because that will lock out softints which the disk
	 * drivers depend on to finish DMAs.
	 */
	if_down_all();
#endif /* NETWORKING */

force_reboot:
	if (howto & RB_POWERDOWN)
		hostboot_option = HOST_REBOOT_HALT;
	if (howto & RB_HALT)
		hostboot_option = HOST_REBOOT_HALT;
	if (paniced == RB_PANIC)
		hostboot_option = HOST_REBOOT_HALT;

	if (howto & RB_UPSDELAY) {
		hostboot_option = HOST_REBOOT_UPSDELAY;
	}

	host_reboot(host_priv_self(), hostboot_option);
	/*
	 * should not be reached
	 */
	return (0);
}

static int
sd_openlog(vfs_context_t ctx)
{
	int error = 0;
	struct timeval tv;
	
	/* Open shutdown log */
	if ((error = vnode_open(PROC_SHUTDOWN_LOG, (O_CREAT | FWRITE | O_NOFOLLOW), 0644, 0, &sd_logvp, ctx))) {
		printf("Failed to open %s: error %d\n", PROC_SHUTDOWN_LOG, error);
		sd_logvp = NULLVP;
		return error;
	}

	vnode_setsize(sd_logvp, (off_t)0, 0, ctx);

	/* Write a little header */
	microtime(&tv);
	sd_log(ctx, "Process shutdown log.  Current time is %lu (in seconds).\n\n", tv.tv_sec);

	return 0;
}

static int
sd_closelog(vfs_context_t ctx)
{
	int error = 0;
	if (sd_logvp != NULLVP) {
		VNOP_FSYNC(sd_logvp, MNT_WAIT, ctx);
		error = vnode_close(sd_logvp, FWRITE, ctx);
	}

	return error;
}

static void
sd_log(vfs_context_t ctx, const char *fmt, ...) 
{
	int resid, log_error, len;
	char logbuf[100];
	va_list arglist;

	/* If the log isn't open yet, open it */
	if (sd_logvp == NULLVP) {
		if (sd_openlog(ctx) != 0) {
			/* Couldn't open, we fail out */
			return;
		}
	}

	va_start(arglist, fmt);
	len = vsnprintf(logbuf, sizeof(logbuf), fmt, arglist);
	log_error = vn_rdwr(UIO_WRITE, sd_logvp, (caddr_t)logbuf, len, sd_log_offset,
			UIO_SYSSPACE, IO_UNIT | IO_NOAUTH, vfs_context_ucred(ctx), &resid, vfs_context_proc(ctx));
	if (log_error == EIO || log_error == 0) {
		sd_log_offset += (len - resid);
	}

	va_end(arglist);

}

static int
sd_filt1(proc_t p, void * args)
{
	proc_t self = current_proc();
	struct sd_filterargs * sf = (struct sd_filterargs *)args;
	int delayterm = sf-> delayterm;
	int shutdownstate = sf->shutdownstate;

	if (((p->p_flag&P_SYSTEM) != 0) || (p->p_ppid == 0) 
		||(p == self) || (p->p_stat == SZOMB) 
		|| (p->p_shutdownstate != shutdownstate) 
		||((delayterm == 0) && ((p->p_lflag& P_LDELAYTERM) == P_LDELAYTERM))
		|| ((p->p_sigcatch & sigmask(SIGTERM))== 0)) {
			return(0);
		}
        else 
                return(1);
}


static int  
sd_callback1(proc_t p, void * args)
{
	struct sd_iterargs * sd = (struct sd_iterargs *)args;
	int signo = sd->signo;
	int setsdstate = sd->setsdstate;
	int countproc = sd->countproc;

	proc_lock(p);
	p->p_shutdownstate = setsdstate;
	if (p->p_stat != SZOMB) {
		proc_unlock(p);
		if (countproc != 0) {
			proc_list_lock();
			p->p_listflag |= P_LIST_EXITCOUNT;
			proc_shutdown_exitcount++;
			proc_list_unlock();
		}

		psignal(p, signo);
		if (countproc !=  0)
			sd->activecount++;
	} else
		proc_unlock(p);
	return(PROC_RETURNED);
}

static int
sd_filt2(proc_t p, void * args)
{
	proc_t self = current_proc();
	struct sd_filterargs * sf = (struct sd_filterargs *)args;
	int delayterm = sf-> delayterm;
	int shutdownstate = sf->shutdownstate;

	if (((p->p_flag&P_SYSTEM) != 0) || (p->p_ppid == 0) 
		||(p == self) || (p->p_stat == SZOMB) 
		|| (p->p_shutdownstate == shutdownstate) 
		||((delayterm == 0) && ((p->p_lflag& P_LDELAYTERM) == P_LDELAYTERM))) {
			return(0);
		}
        else
                return(1);
}

static int  
sd_callback2(proc_t p, void * args)
{
	struct sd_iterargs * sd = (struct sd_iterargs *)args;
	int signo = sd->signo;
	int setsdstate = sd->setsdstate;
	int countproc = sd->countproc;

	proc_lock(p);
	p->p_shutdownstate = setsdstate;
	if (p->p_stat != SZOMB) {
		proc_unlock(p);
		if (countproc !=  0) {
			proc_list_lock();
			p->p_listflag |= P_LIST_EXITCOUNT;
			proc_shutdown_exitcount++;
			proc_list_unlock();
		}
		psignal(p, signo);
		if (countproc !=  0)
			sd->activecount++;
	} else
		proc_unlock(p);

	return(PROC_RETURNED);

}

static int  
sd_callback3(proc_t p, void * args)
{
	struct sd_iterargs * sd = (struct sd_iterargs *)args;
	vfs_context_t ctx = vfs_context_current();

	int setsdstate = sd->setsdstate;

	proc_lock(p);
	p->p_shutdownstate = setsdstate;
	if (p->p_stat != SZOMB) {
	       /*
		* NOTE: following code ignores sig_lock and plays
		* with exit_thread correctly.  This is OK unless we
		* are a multiprocessor, in which case I do not
		* understand the sig_lock.  This needs to be fixed.
		* XXX
		*/
		if (p->exit_thread) {	/* someone already doing it */
			proc_unlock(p);
			/* give him a chance */
			thread_block(THREAD_CONTINUE_NULL);
		} else {
			p->exit_thread = current_thread();
			printf(".");

			sd_log(ctx, "%s[%d] had to be forced closed with exit1().\n", p->p_comm, p->p_pid);

			proc_unlock(p);
			KERNEL_DEBUG_CONSTANT(BSDDBG_CODE(DBG_BSD_PROC, BSD_PROC_FRCEXIT) | DBG_FUNC_NONE,
					      p->p_pid, 0, 1, 0, 0);
			sd->activecount++;
			exit1(p, 1, (int *)NULL);
		}
	} else
		proc_unlock(p);

	return(PROC_RETURNED);
}


/*
 * proc_shutdown()
 *
 *	Shutdown down proc system (release references to current and root
 *	dirs for each process).
 *
 * POSIX modifications:
 *
 *	For POSIX fcntl() file locking call vno_lockrelease() on 
 *	the file to release all of its record locks, if any.
 */

static void
proc_shutdown(void)
{
	vfs_context_t ctx = vfs_context_current();
	struct proc *p, *self;
	int delayterm = 0;
	struct sd_filterargs sfargs;
	struct sd_iterargs sdargs;
	int error = 0;
	struct timespec ts;

	/*
	 *	Kill as many procs as we can.  (Except ourself...)
	 */
	self = (struct proc *)current_proc();
	
	/*
	 * Signal the init with SIGTERM so that he does not launch
	 * new processes 
	 */
	p = proc_find(1);
	if (p && p != self) {
		psignal(p, SIGTERM);
	}
	proc_rele(p);

	printf("Killing all processes ");

sigterm_loop:
	/*
	 * send SIGTERM to those procs interested in catching one
	 */
	sfargs.delayterm = delayterm;
	sfargs.shutdownstate = 0;
	sdargs.signo = SIGTERM;
	sdargs.setsdstate = 1;
	sdargs.countproc = 1;
	sdargs.activecount = 0;

	error = 0;
	/* post a SIGTERM to all that catch SIGTERM and not marked for delay */
	proc_rebootscan(sd_callback1, (void *)&sdargs, sd_filt1, (void *)&sfargs);

	if (sdargs.activecount != 0 && proc_shutdown_exitcount!= 0) {
		proc_list_lock();
		if (proc_shutdown_exitcount != 0) {
			/*
	 		* now wait for up to 30 seconds to allow those procs catching SIGTERM
	 		* to digest it
	 		* as soon as these procs have exited, we'll continue on to the next step
	 		*/
			ts.tv_sec = 30;
			ts.tv_nsec = 0;
			error = msleep(&proc_shutdown_exitcount, proc_list_mlock, PWAIT, "shutdownwait", &ts);
			if (error != 0) {
				for (p = allproc.lh_first; p; p = p->p_list.le_next) {
					if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
						p->p_listflag &= ~P_LIST_EXITCOUNT;
				}
				for (p = zombproc.lh_first; p; p = p->p_list.le_next) {
					if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
						p->p_listflag &= ~P_LIST_EXITCOUNT;
				}
			}
			
		}
		proc_list_unlock();
	}
	if (error == ETIMEDOUT) {
		/*
		 * log the names of the unresponsive tasks
		 */


		proc_list_lock();

		for (p = allproc.lh_first; p; p = p->p_list.le_next) {
			if (p->p_shutdownstate == 1) {
				printf("%s[%d]: didn't act on SIGTERM\n", p->p_comm, p->p_pid);
				sd_log(ctx, "%s[%d]: didn't act on SIGTERM\n", p->p_comm, p->p_pid);
			}
		}

		proc_list_unlock();

		delay_for_interval(1000 * 5, 1000 * 1000);
	}

	/*
	 * send a SIGKILL to all the procs still hanging around
	 */
	sfargs.delayterm = delayterm;
	sfargs.shutdownstate = 2;
	sdargs.signo = SIGKILL;
	sdargs.setsdstate = 2;
	sdargs.countproc = 1;
	sdargs.activecount = 0;

	/* post a SIGKILL to all that catch SIGTERM and not marked for delay */
	proc_rebootscan(sd_callback2, (void *)&sdargs, sd_filt2, (void *)&sfargs);

	if (sdargs.activecount != 0 && proc_shutdown_exitcount!= 0) {
		proc_list_lock();
		if (proc_shutdown_exitcount != 0) {
			/*
	 		* wait for up to 60 seconds to allow these procs to exit normally
	 		*
	 		* History:	The delay interval was changed from 100 to 200
	 		*		for NFS requests in particular.
	 		*/
			ts.tv_sec = 60;
			ts.tv_nsec = 0;
			error = msleep(&proc_shutdown_exitcount, proc_list_mlock, PWAIT, "shutdownwait", &ts);
			if (error != 0) {
				for (p = allproc.lh_first; p; p = p->p_list.le_next) {
					if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
						p->p_listflag &= ~P_LIST_EXITCOUNT;
				}
				for (p = zombproc.lh_first; p; p = p->p_list.le_next) {
					if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
						p->p_listflag &= ~P_LIST_EXITCOUNT;
				}
			}
		}
		proc_list_unlock();
	}

	/*
	 * if we still have procs that haven't exited, then brute force 'em
	 */
	sfargs.delayterm = delayterm;
	sfargs.shutdownstate = 3;
	sdargs.signo = 0;
	sdargs.setsdstate = 3;
	sdargs.countproc = 0;
	sdargs.activecount = 0;

	/* post a SIGTERM to all that catch SIGTERM and not marked for delay */
	proc_rebootscan(sd_callback3, (void *)&sdargs, sd_filt2, (void *)&sfargs);
	printf("\n");

	/* Now start the termination of processes that are marked for delayed termn */
	if (delayterm == 0) {
		delayterm = 1;
		goto  sigterm_loop;
	}

	sd_closelog(ctx);

	/* drop the ref on initproc */
	proc_rele(initproc);
	printf("continuing\n");
}
Commit	Line	Data
1c79356b	1	/*
2d21ac55	2	* Copyright (c) 2000-2006 Apple Computer, Inc. All rights reserved.
5d5c5d0d	3	*
2d21ac55	4	* @APPLE_OSREFERENCE_LICENSE_HEADER_START@
1c79356b	5	*
2d21ac55 A	6	* This file contains Original Code and/or Modifications of Original Code
	7	* as defined in and that are subject to the Apple Public Source License
	8	* Version 2.0 (the 'License'). You may not use this file except in
	9	* compliance with the License. The rights granted to you under the License
	10	* may not be used to create, or enable the creation or redistribution of,
	11	* unlawful or unlicensed copies of an Apple operating system, or to
	12	* circumvent, violate, or enable the circumvention or violation of, any
	13	* terms of an Apple operating system software license agreement.
8f6c56a5	14	*
2d21ac55 A	15	* Please obtain a copy of the License at
	16	* http://www.opensource.apple.com/apsl/ and read it before using this file.
	17	*
	18	* The Original Code and all software distributed under the License are
	19	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
8f6c56a5 A	20	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
8f6c56a5 A	21	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
2d21ac55 A	22	* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
	23	* Please see the License for the specific language governing rights and
	24	* limitations under the License.
8f6c56a5	25	*
2d21ac55	26	* @APPLE_OSREFERENCE_LICENSE_HEADER_END@
1c79356b A	27	*/
	28	/*
	29	* File: bsd/kern/kern_shutdown.c
	30	*
	31	* Copyright (C) 1989, NeXT, Inc.
	32	*
	33	*/
	34
	35	#include <sys/param.h>
	36	#include <sys/systm.h>
	37	#include <sys/kernel.h>
	38	#include <sys/vm.h>
91447636	39	#include <sys/proc_internal.h>
1c79356b	40	#include <sys/user.h>
1c79356b A	41	#include <sys/reboot.h>
1c79356b A	42	#include <sys/conf.h>
91447636 A	43	#include <sys/vnode_internal.h>
91447636 A	44	#include <sys/file_internal.h>
1c79356b A	45	#include <sys/clist.h>
	46	#include <sys/callout.h>
	47	#include <sys/mbuf.h>
	48	#include <sys/msgbuf.h>
	49	#include <sys/ioctl.h>
	50	#include <sys/signal.h>
	51	#include <sys/tty.h>
	52	#include <kern/task.h>
9bccf70c	53	#include <sys/quota.h>
1c79356b A	54	#include <vm/vm_kern.h>
	55	#include <mach/vm_param.h>
	56	#include <sys/filedesc.h>
91447636	57	#include <mach/host_priv.h>
1c79356b	58	#include <mach/host_reboot.h>
91447636	59
b0d623f7	60	#include <security/audit/audit.h>
1c79356b	61
2d21ac55 A	62	#include <kern/sched_prim.h> /* for thread_block() */
	63	#include <kern/host.h> /* for host_priv_self() */
	64	#include <net/if_var.h> /* for if_down_all() */
	65	#include <sys/buf_internal.h> /* for count_busy_buffers() */
	66	#include <sys/mount_internal.h> /* for vfs_unmountall() */
	67	#include <mach/task.h> /* for task_suspend() */
	68	#include <sys/sysproto.h> /* abused for sync() */
	69	#include <kern/clock.h> /* for delay_for_interval() */
6d2010ae	70	#include <libkern/OSAtomic.h>
2d21ac55	71
b0d623f7 A	72	#include <sys/kdebug.h>
b0d623f7 A	73
6d2010ae	74	uint32_t system_inshutdown = 0;
b0d623f7	75
2d21ac55 A	76	/* XXX should be in a header file somewhere, but isn't */
2d21ac55 A	77	extern void md_prepare_for_shutdown(int, int, char *);
b0d623f7	78	extern void (*unmountroot_pre_hook)(void);
2d21ac55	79
b0d623f7	80	unsigned int proc_shutdown_exitcount = 0;
2d21ac55	81
b0d623f7 A	82	static int sd_openlog(vfs_context_t);
	83	static int sd_closelog(vfs_context_t);
	84	static void sd_log(vfs_context_t, const char *, ...);
2d21ac55	85	static void proc_shutdown(void);
2d21ac55 A	86
	87	extern void IOSystemShutdownNotification(void);
	88
	89	struct sd_filterargs{
	90	int delayterm;
	91	int shutdownstate;
	92	};
	93
	94
	95	struct sd_iterargs {
b0d623f7 A	96	int signo; /* the signal to be posted */
	97	int setsdstate; /* shutdown state to be set */
	98	int countproc; /* count processes on action */
	99	int activecount; /* number of processes on which action was done */
2d21ac55 A	100	};
2d21ac55 A	101
b0d623f7 A	102	static vnode_t sd_logvp = NULLVP;
	103	static off_t sd_log_offset = 0;
	104
	105
2d21ac55 A	106	static int sd_filt1(proc_t, void *);
	107	static int sd_filt2(proc_t, void *);
	108	static int sd_callback1(proc_t p, void * arg);
	109	static int sd_callback2(proc_t p, void * arg);
	110	static int sd_callback3(proc_t p, void * arg);
1c79356b	111
6d2010ae	112	int
2d21ac55	113	boot(int paniced, int howto, char *command)
1c79356b	114	{
1c79356b A	115	struct proc p = current_proc(); / XXX */
1c79356b A	116	int hostboot_option=0;
1c79356b	117
6d2010ae A	118	if (!OSCompareAndSwap(0, 1, &system_inshutdown)) {
	119	if ( (howto&RB_QUICK) == RB_QUICK)
	120	goto force_reboot;
	121	return (EBUSY);
	122	}
	123	/*
	124	* Temporary hack to notify the power management root domain
	125	* that the system will shut down.
	126	*/
2d21ac55 A	127	IOSystemShutdownNotification();
2d21ac55 A	128
0b4e3aa0	129	md_prepare_for_shutdown(paniced, howto, command);
1c79356b	130
6d2010ae	131	if ((howto&RB_QUICK)==RB_QUICK) {
b0d623f7 A	132	printf("Quick reboot...\n");
	133	if ((howto&RB_NOSYNC)==0) {
	134	sync(p, (void )NULL, (int )NULL);
	135	}
	136	}
6d2010ae	137	else if ((howto&RB_NOSYNC)==0) {
1c79356b A	138	int iter, nbusy;
1c79356b A	139
1c79356b A	140	printf("syncing disks... ");
	141
	142	/*
	143	* Release vnodes held by texts before sync.
	144	*/
	145
	146	/* handle live procs (deallocate their root and current directories). */
	147	proc_shutdown();
	148
b0d623f7	149	#if CONFIG_AUDIT
6d2010ae	150	audit_shutdown();
2d21ac55	151	#endif
55e303ae	152
b0d623f7 A	153	if (unmountroot_pre_hook != NULL)
	154	unmountroot_pre_hook();
	155
1c79356b A	156	sync(p, (void )NULL, (int )NULL);
1c79356b A	157
91447636	158	/*
2d21ac55 A	159	* Now that all processes have been terminated and system is
2d21ac55 A	160	* sync'ed up, suspend init
91447636	161	*/
6d2010ae	162
2d21ac55 A	163	if (initproc && p != initproc)
2d21ac55 A	164	task_suspend(initproc->task);
1c79356b	165
b0d623f7 A	166	if (kdebug_enable)
	167	kdbg_dump_trace_to_file("/var/log/shutdown/shutdown.trace");
	168
1c79356b A	169	/*
	170	* Unmount filesystems
	171	*/
91447636	172	vfs_unmountall();
1c79356b A	173
1c79356b A	174	/* Wait for the buffer cache to clean remaining dirty buffers */
91447636	175	for (iter = 0; iter < 100; iter++) {
1c79356b A	176	nbusy = count_busy_buffers();
	177	if (nbusy == 0)
	178	break;
	179	printf("%d ", nbusy);
2d21ac55	180	delay_for_interval( 1 * nbusy, 1000 * 1000);
1c79356b A	181	}
	182	if (nbusy)
	183	printf("giving up\n");
	184	else
	185	printf("done\n");
	186	}
2d21ac55	187	#if NETWORKING
1c79356b A	188	/*
	189	* Can't just use an splnet() here to disable the network
	190	* because that will lock out softints which the disk
	191	* drivers depend on to finish DMAs.
	192	*/
	193	if_down_all();
2d21ac55	194	#endif /* NETWORKING */
1c79356b	195
6d2010ae	196	force_reboot:
1c79356b A	197	if (howto & RB_POWERDOWN)
	198	hostboot_option = HOST_REBOOT_HALT;
	199	if (howto & RB_HALT)
	200	hostboot_option = HOST_REBOOT_HALT;
	201	if (paniced == RB_PANIC)
	202	hostboot_option = HOST_REBOOT_HALT;
	203
6d2010ae A	204	if (howto & RB_UPSDELAY) {
	205	hostboot_option = HOST_REBOOT_UPSDELAY;
	206	}
0c530ab8	207
1c79356b	208	host_reboot(host_priv_self(), hostboot_option);
6d2010ae A	209	/*
	210	* should not be reached
	211	*/
	212	return (0);
1c79356b A	213	}
1c79356b A	214
b0d623f7 A	215	static int
	216	sd_openlog(vfs_context_t ctx)
	217	{
	218	int error = 0;
	219	struct timeval tv;
	220
	221	/* Open shutdown log */
	222	if ((error = vnode_open(PROC_SHUTDOWN_LOG, (O_CREAT \| FWRITE \| O_NOFOLLOW), 0644, 0, &sd_logvp, ctx))) {
	223	printf("Failed to open %s: error %d\n", PROC_SHUTDOWN_LOG, error);
	224	sd_logvp = NULLVP;
	225	return error;
	226	}
	227
	228	vnode_setsize(sd_logvp, (off_t)0, 0, ctx);
	229
	230	/* Write a little header */
	231	microtime(&tv);
	232	sd_log(ctx, "Process shutdown log. Current time is %lu (in seconds).\n\n", tv.tv_sec);
	233
	234	return 0;
	235	}
	236
	237	static int
	238	sd_closelog(vfs_context_t ctx)
	239	{
	240	int error = 0;
	241	if (sd_logvp != NULLVP) {
	242	VNOP_FSYNC(sd_logvp, MNT_WAIT, ctx);
	243	error = vnode_close(sd_logvp, FWRITE, ctx);
	244	}
	245
	246	return error;
	247	}
	248
	249	static void
	250	sd_log(vfs_context_t ctx, const char *fmt, ...)
	251	{
	252	int resid, log_error, len;
	253	char logbuf[100];
	254	va_list arglist;
	255
	256	/* If the log isn't open yet, open it */
	257	if (sd_logvp == NULLVP) {
	258	if (sd_openlog(ctx) != 0) {
	259	/* Couldn't open, we fail out */
	260	return;
	261	}
	262	}
	263
	264	va_start(arglist, fmt);
	265	len = vsnprintf(logbuf, sizeof(logbuf), fmt, arglist);
	266	log_error = vn_rdwr(UIO_WRITE, sd_logvp, (caddr_t)logbuf, len, sd_log_offset,
	267	UIO_SYSSPACE, IO_UNIT \| IO_NOAUTH, vfs_context_ucred(ctx), &resid, vfs_context_proc(ctx));
	268	if (log_error == EIO \|\| log_error == 0) {
	269	sd_log_offset += (len - resid);
	270	}
	271
	272	va_end(arglist);
	273
	274	}
	275
2d21ac55 A	276	static int
	277	sd_filt1(proc_t p, void * args)
	278	{
	279	proc_t self = current_proc();
	280	struct sd_filterargs * sf = (struct sd_filterargs *)args;
	281	int delayterm = sf-> delayterm;
	282	int shutdownstate = sf->shutdownstate;
	283
	284	if (((p->p_flag&P_SYSTEM) != 0) \|\| (p->p_ppid == 0)
	285	\|\|(p == self) \|\| (p->p_stat == SZOMB)
	286	\|\| (p->p_shutdownstate != shutdownstate)
	287	\|\|((delayterm == 0) && ((p->p_lflag& P_LDELAYTERM) == P_LDELAYTERM))
	288	\|\| ((p->p_sigcatch & sigmask(SIGTERM))== 0)) {
	289	return(0);
	290	}
	291	else
	292	return(1);
	293	}
	294
	295
	296	static int
	297	sd_callback1(proc_t p, void * args)
	298	{
	299	struct sd_iterargs * sd = (struct sd_iterargs *)args;
	300	int signo = sd->signo;
	301	int setsdstate = sd->setsdstate;
b0d623f7	302	int countproc = sd->countproc;
2d21ac55 A	303
	304	proc_lock(p);
	305	p->p_shutdownstate = setsdstate;
	306	if (p->p_stat != SZOMB) {
	307	proc_unlock(p);
b0d623f7 A	308	if (countproc != 0) {
	309	proc_list_lock();
	310	p->p_listflag \|= P_LIST_EXITCOUNT;
	311	proc_shutdown_exitcount++;
	312	proc_list_unlock();
	313	}
	314
2d21ac55	315	psignal(p, signo);
b0d623f7 A	316	if (countproc != 0)
b0d623f7 A	317	sd->activecount++;
2d21ac55 A	318	} else
	319	proc_unlock(p);
	320	return(PROC_RETURNED);
2d21ac55 A	321	}
	322
	323	static int
	324	sd_filt2(proc_t p, void * args)
	325	{
	326	proc_t self = current_proc();
	327	struct sd_filterargs * sf = (struct sd_filterargs *)args;
	328	int delayterm = sf-> delayterm;
	329	int shutdownstate = sf->shutdownstate;
	330
	331	if (((p->p_flag&P_SYSTEM) != 0) \|\| (p->p_ppid == 0)
	332	\|\|(p == self) \|\| (p->p_stat == SZOMB)
	333	\|\| (p->p_shutdownstate == shutdownstate)
	334	\|\|((delayterm == 0) && ((p->p_lflag& P_LDELAYTERM) == P_LDELAYTERM))) {
	335	return(0);
	336	}
	337	else
	338	return(1);
	339	}
	340
	341	static int
	342	sd_callback2(proc_t p, void * args)
	343	{
	344	struct sd_iterargs * sd = (struct sd_iterargs *)args;
	345	int signo = sd->signo;
	346	int setsdstate = sd->setsdstate;
b0d623f7	347	int countproc = sd->countproc;
2d21ac55 A	348
	349	proc_lock(p);
	350	p->p_shutdownstate = setsdstate;
	351	if (p->p_stat != SZOMB) {
	352	proc_unlock(p);
b0d623f7 A	353	if (countproc != 0) {
	354	proc_list_lock();
	355	p->p_listflag \|= P_LIST_EXITCOUNT;
	356	proc_shutdown_exitcount++;
	357	proc_list_unlock();
	358	}
2d21ac55	359	psignal(p, signo);
b0d623f7 A	360	if (countproc != 0)
b0d623f7 A	361	sd->activecount++;
2d21ac55 A	362	} else
	363	proc_unlock(p);
	364
	365	return(PROC_RETURNED);
	366
	367	}
	368
	369	static int
	370	sd_callback3(proc_t p, void * args)
	371	{
	372	struct sd_iterargs * sd = (struct sd_iterargs *)args;
b0d623f7 A	373	vfs_context_t ctx = vfs_context_current();
b0d623f7 A	374
2d21ac55 A	375	int setsdstate = sd->setsdstate;
	376
	377	proc_lock(p);
	378	p->p_shutdownstate = setsdstate;
	379	if (p->p_stat != SZOMB) {
	380	/*
	381	* NOTE: following code ignores sig_lock and plays
	382	* with exit_thread correctly. This is OK unless we
	383	* are a multiprocessor, in which case I do not
	384	* understand the sig_lock. This needs to be fixed.
	385	* XXX
	386	*/
	387	if (p->exit_thread) { /* someone already doing it */
	388	proc_unlock(p);
	389	/* give him a chance */
	390	thread_block(THREAD_CONTINUE_NULL);
	391	} else {
	392	p->exit_thread = current_thread();
	393	printf(".");
b0d623f7 A	394
	395	sd_log(ctx, "%s[%d] had to be forced closed with exit1().\n", p->p_comm, p->p_pid);
	396
2d21ac55	397	proc_unlock(p);
b0d623f7 A	398	KERNEL_DEBUG_CONSTANT(BSDDBG_CODE(DBG_BSD_PROC, BSD_PROC_FRCEXIT) \| DBG_FUNC_NONE,
	399	p->p_pid, 0, 1, 0, 0);
	400	sd->activecount++;
2d21ac55 A	401	exit1(p, 1, (int *)NULL);
	402	}
	403	} else
	404	proc_unlock(p);
	405
	406	return(PROC_RETURNED);
	407	}
	408
	409
1c79356b A	410	/*
	411	* proc_shutdown()
	412	*
	413	* Shutdown down proc system (release references to current and root
	414	* dirs for each process).
	415	*
	416	* POSIX modifications:
	417	*
	418	* For POSIX fcntl() file locking call vno_lockrelease() on
	419	* the file to release all of its record locks, if any.
	420	*/
	421
	422	static void
2d21ac55	423	proc_shutdown(void)
1c79356b	424	{
b0d623f7 A	425	vfs_context_t ctx = vfs_context_current();
b0d623f7 A	426	struct proc p, self;
91447636	427	int delayterm = 0;
2d21ac55 A	428	struct sd_filterargs sfargs;
2d21ac55 A	429	struct sd_iterargs sdargs;
b0d623f7 A	430	int error = 0;
b0d623f7 A	431	struct timespec ts;
1c79356b A	432
	433	/*
	434	* Kill as many procs as we can. (Except ourself...)
	435	*/
0b4e3aa0	436	self = (struct proc *)current_proc();
1c79356b A	437
1c79356b A	438	/*
91447636 A	439	* Signal the init with SIGTERM so that he does not launch
91447636 A	440	* new processes
1c79356b	441	*/
2d21ac55	442	p = proc_find(1);
91447636 A	443	if (p && p != self) {
	444	psignal(p, SIGTERM);
	445	}
2d21ac55	446	proc_rele(p);
1c79356b	447
1c79356b A	448	printf("Killing all processes ");
1c79356b A	449
2d21ac55	450	sigterm_loop:
1c79356b A	451	/*
	452	* send SIGTERM to those procs interested in catching one
	453	*/
2d21ac55 A	454	sfargs.delayterm = delayterm;
	455	sfargs.shutdownstate = 0;
	456	sdargs.signo = SIGTERM;
	457	sdargs.setsdstate = 1;
b0d623f7 A	458	sdargs.countproc = 1;
b0d623f7 A	459	sdargs.activecount = 0;
2d21ac55	460
b0d623f7	461	error = 0;
2d21ac55 A	462	/* post a SIGTERM to all that catch SIGTERM and not marked for delay */
2d21ac55 A	463	proc_rebootscan(sd_callback1, (void )&sdargs, sd_filt1, (void )&sfargs);
91447636	464
b0d623f7	465	if (sdargs.activecount != 0 && proc_shutdown_exitcount!= 0) {
2d21ac55	466	proc_list_lock();
b0d623f7 A	467	if (proc_shutdown_exitcount != 0) {
	468	/*
	469	* now wait for up to 30 seconds to allow those procs catching SIGTERM
	470	* to digest it
	471	* as soon as these procs have exited, we'll continue on to the next step
	472	*/
	473	ts.tv_sec = 30;
	474	ts.tv_nsec = 0;
	475	error = msleep(&proc_shutdown_exitcount, proc_list_mlock, PWAIT, "shutdownwait", &ts);
	476	if (error != 0) {
	477	for (p = allproc.lh_first; p; p = p->p_list.le_next) {
	478	if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
	479	p->p_listflag &= ~P_LIST_EXITCOUNT;
	480	}
	481	for (p = zombproc.lh_first; p; p = p->p_list.le_next) {
	482	if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
	483	p->p_listflag &= ~P_LIST_EXITCOUNT;
	484	}
91447636	485	}
b0d623f7	486
1c79356b	487	}
2d21ac55	488	proc_list_unlock();
1c79356b	489	}
b0d623f7	490	if (error == ETIMEDOUT) {
91447636	491	/*
55e303ae A	492	* log the names of the unresponsive tasks
55e303ae A	493	*/
91447636	494
2d21ac55 A	495
	496	proc_list_lock();
	497
b0d623f7	498	for (p = allproc.lh_first; p; p = p->p_list.le_next) {
91447636	499	if (p->p_shutdownstate == 1) {
b0d623f7 A	500	printf("%s[%d]: didn't act on SIGTERM\n", p->p_comm, p->p_pid);
b0d623f7 A	501	sd_log(ctx, "%s[%d]: didn't act on SIGTERM\n", p->p_comm, p->p_pid);
91447636	502	}
55e303ae	503	}
2d21ac55 A	504
	505	proc_list_unlock();
	506
	507	delay_for_interval(1000 * 5, 1000 * 1000);
55e303ae	508	}
1c79356b A	509
	510	/*
	511	* send a SIGKILL to all the procs still hanging around
	512	*/
2d21ac55 A	513	sfargs.delayterm = delayterm;
	514	sfargs.shutdownstate = 2;
	515	sdargs.signo = SIGKILL;
	516	sdargs.setsdstate = 2;
b0d623f7 A	517	sdargs.countproc = 1;
b0d623f7 A	518	sdargs.activecount = 0;
2d21ac55	519
b0d623f7	520	/* post a SIGKILL to all that catch SIGTERM and not marked for delay */
2d21ac55	521	proc_rebootscan(sd_callback2, (void )&sdargs, sd_filt2, (void )&sfargs);
91447636	522
b0d623f7	523	if (sdargs.activecount != 0 && proc_shutdown_exitcount!= 0) {
2d21ac55	524	proc_list_lock();
b0d623f7 A	525	if (proc_shutdown_exitcount != 0) {
	526	/*
	527	* wait for up to 60 seconds to allow these procs to exit normally
	528	*
	529	* History: The delay interval was changed from 100 to 200
	530	* for NFS requests in particular.
	531	*/
	532	ts.tv_sec = 60;
	533	ts.tv_nsec = 0;
	534	error = msleep(&proc_shutdown_exitcount, proc_list_mlock, PWAIT, "shutdownwait", &ts);
	535	if (error != 0) {
	536	for (p = allproc.lh_first; p; p = p->p_list.le_next) {
	537	if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
	538	p->p_listflag &= ~P_LIST_EXITCOUNT;
	539	}
	540	for (p = zombproc.lh_first; p; p = p->p_list.le_next) {
	541	if ((p->p_listflag & P_LIST_EXITCOUNT) == P_LIST_EXITCOUNT)
	542	p->p_listflag &= ~P_LIST_EXITCOUNT;
	543	}
	544	}
1c79356b	545	}
2d21ac55	546	proc_list_unlock();
1c79356b A	547	}
	548
	549	/*
	550	* if we still have procs that haven't exited, then brute force 'em
	551	*/
2d21ac55 A	552	sfargs.delayterm = delayterm;
	553	sfargs.shutdownstate = 3;
	554	sdargs.signo = 0;
	555	sdargs.setsdstate = 3;
b0d623f7 A	556	sdargs.countproc = 0;
b0d623f7 A	557	sdargs.activecount = 0;
4a249263	558
2d21ac55 A	559	/* post a SIGTERM to all that catch SIGTERM and not marked for delay */
	560	proc_rebootscan(sd_callback3, (void )&sdargs, sd_filt2, (void )&sfargs);
	561	printf("\n");
91447636 A	562
	563	/* Now start the termination of processes that are marked for delayed termn */
	564	if (delayterm == 0) {
	565	delayterm = 1;
	566	goto sigterm_loop;
1c79356b	567	}
b0d623f7 A	568
	569	sd_closelog(ctx);
	570
2d21ac55 A	571	/* drop the ref on initproc */
2d21ac55 A	572	proc_rele(initproc);
1c79356b A	573	printf("continuing\n");
	574	}
	575