Skip to content

Commit

Permalink
Relax the lockcount assertion in vputonfreelist(). Back when I fixed
Browse files Browse the repository at this point in the history 
several problems with the vnode exclusive lock implementation, I
overlooked the fact that a vnode can be in a state where the usecount is
zero while the holdcount still being positive. There could still be
threads waiting on the vnode lock in uvn_io() as long as the holdcount
is positive.

"go ahead" mpi@

Reported-by: syzbot+767d6deb1a647850a0ca@syzkaller.appspotmail.com
  • Loading branch information
anton committed Mar 27, 2020
1 parent 044f8b1 commit 2a9890d
Showing 1 changed file with 6 additions and 2 deletions.
8 changes: 6 additions & 2 deletions sys/kern/vfs_subr.c
View file
@@ -1,4 +1,4 @@
/* $OpenBSD: vfs_subr.c,v 1.300 2020/02/13 08:47:10 claudio Exp $ */
/* $OpenBSD: vfs_subr.c,v 1.301 2020/03/27 07:58:17 anton Exp $ */
/* $NetBSD: vfs_subr.c,v 1.53 1996/04/22 01:39:13 christos Exp $ */

/*
Expand Down Expand Up @@ -704,7 +704,11 @@ vputonfreelist(struct vnode *vp)
if (vp->v_usecount != 0)
panic("Use count is not zero!");

if (vp->v_lockcount != 0)
/*
* If the hold count is still positive, one or many threads could still
* be waiting on the vnode lock inside uvn_io().
*/
if (vp->v_holdcnt == 0 && vp->v_lockcount != 0)
panic("%s: lock count is not zero", __func__);

if (vp->v_bioflag & VBIOONFREELIST) {
Expand Down

0 comments on commit 2a9890d

Please sign in to comment.