| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The algorithm is supposed to work as follows:
in order to prevent starvation, when a new client starts being served we
record the start time and reset the counter of bytes served.
We then switch to a new client after a certain amount of time or bytes,
even if the current one still has pending requests.
To avoid charging a new client the time of the first seek,
we start counting time when the first request is served.
Unfortunately a bug in the previous version of the code failed
to set the start time in certain cases, resulting in some processes
exceeding their timeslice.
The fix (in this patch) is trivial, though it took a while to find
out and replicate the bug.
Thanks to Tommaso Caprai for investigating and fixing the problem.
Submitted by: Tommaso Caprai
MFC after: 1 week
|
| |
|
|
|
|
| |
functions to obtain the address and size of the preloaded key files.
Sponsored by: Juniper Networks.
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
EBR schemes: fat32, ebr, linux-data, linux-raid, linux-swap and
linux-lvm. Add bios-boot GUID and alias for the GPT scheme. It used by
GRUB 2 loader. Also do sorting definitions of types in diskmbr.h
and in g_part.c.
PR: bin/120990, kern/147664
MFC after: 2 weeks
|
| |
|
|
|
|
|
| |
within provider's bounds. If not then reject this disklabel.
Mark bbarea as NULL to do not free it again in destroy method.
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
|
|
| |
unfunctional. Wiring the user buffer has only been done explicitly
since r101422.
Mark the kern.disks sysctl as MPSAFE since it is and it seems to have
been mis-using the NOLOCK flag.
Partially break the KPI (but not the KBI) for the sysctl_req 'lock'
field since this member should be private and the "REQ_LOCKED" state
seems meaningless now.
|
| |
|
|
|
|
|
|
| |
from syncer. We shall not sleep on running buffer space when suspending.
Reproduced and tested by: pho
PR: kern/154228
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
|
| |
and can prevent kernel memory exhausting when big value is specified
from command line.
Split reading and writing operation to several iteration to do not
trigger KASSERT when data length is greater than MAXPHYS.
PR: kern/144962, kern/147851
MFC after: 2 weeks
|
| |
|
|
| |
Commit the geom piece.
|
| |
|
|
|
|
|
|
| |
sector size from user-specified block size, report to user about
big blocksize.
PR: kern/147851
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
|
|
|
| |
in g_io_request when geom classes doing tasting.
PR: kern/147852
MFC after: 1 week
|
| |
|
|
|
|
|
|
| |
was specified incorrectly, causing the bzero to run past the end of a
malloc(9)'d object.
Submitted by: Eric Youngblut < eyoungblut AT isilon DOT com >
MFC after: 3 days
|
| |
|
|
|
|
| |
that need to be committed (or undone).
MFC after: 2 weeks
|
| |
|
|
| |
MFC after: 2 weeks
|
| |
|
|
|
|
|
|
| |
Non-zero value of attribute means that device supports BIO_DELETE.
Suggested and reviewed by: pjd
Tested by: pho
MFC after: 1 week
|
| |
|
|
| |
MFC after: 2 week
|
| |
|
|
|
|
|
|
|
|
|
| |
small non fatal inconsistency. EBR may contain boot loader and sometimes
it just has some garbage data. Now this does not prevent FreeBSD to use
extended partitions. But since we do not support bootcode for EBR we mark
tables which have non empty boot area as corrupt. This does make them
readonly and we can not damage this data.
PR: kern/141235
MFC after: 1 month
|
| |
|
|
|
| |
Modern disks use LBA and create a fake CHS geometry that doesn't have any
relation to the on-disk layout of data.
|
| |
|
|
|
|
| |
a 512 byte sector but when choosing magic numbers, 20 looks nicer.
Discussed with: marcel
|
| |
|
|
|
|
|
|
| |
created with glabel(8).
- Fix a typo in an error message.
- Fix comment typos.
Approved by: pjd
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
and replace tsleep(9) with msleep(9) which doesn't use a timeout. The
previously used timeout caused the event process to wake up ten times
per second on an idle system.
one_event() is now called with the topology lock held and it returns
with both the topology and event locks held when there are no more
events in the queue.
Reported by: mav, Marius NĂ¼nnerich
Reviewed by: freebsd-geom
|
| |
|
|
|
|
|
|
|
|
|
| |
during boot.
Change the last argument of gets() to indicate a visibility flag and add
definitions for the numerical constants. Except for the value 2, gets()
will behave exactly the same, so existing consumers shouldn't break. We
only use it in two places, though.
Submitted by: lme (older version)
|
| |
|
|
|
|
|
|
|
|
| |
"arg0 'provider': Invalid argument" after creating new partition
table.
Move code for search of existing geom into g_part_find_geom
function and use this function instead of g_part_parm_geom
in g_part_ctl_create.
Approved by: kib (mentor)
|
| |
|
|
|
|
|
| |
ctlreq parameters was changed to "arg0". Fix the last place where
it is used.
Approved by: kib (mentor)
|
| |
|
|
|
|
|
|
|
| |
of the EV_DONE flag and use the mutex to protect against losing wakeups
in g_waitfor_event().
Reported by: davidxu
Tested by: davidxu
Discussed on: freebsd-current
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This was needed for recover implementation.
Implement the recover command for GPT. Now GPT will marked as
corrupt when any of three types of corruption will be detected:
1. Damaged primary GPT header or table
2. Damaged secondary GPT header or table
3. Secondary header is not located in the last LBA
Marked GPT becomes read-only. Any changes with corrupt table
are prohibited. Only "destroy" and "recover" commands are allowed.
Discussed with: geom@ (mostly silence)
Tested by: Ilya A. Arhipov
Approved by: mav (mentor)
MFC after: 2 weeks
|
| |
|
|
|
|
|
|
| |
information that device is already suspended or that device is using
one-time key and suspend is not supported.
- 'geli suspend -a' silently skips devices that use one-time key, this is fine,
but because we log which device were suspended on the console, log also which
devices were skipped.
|
| | |
|
| |
|
|
|
|
|
| |
# geli status
Name Status Components
da0.eli SUSPENDED da0
da1.eli ACTIVE da1
|
| |
|
|
| |
we don't panic when we detach suspended device.
|
| |
|
|
|
| |
function which eliminates code duplication and will ensure proper order
of operation.
|
| | |
|
| |
|
|
| |
initializing it.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Before this change if you wanted to suspend your laptop and be sure that your
encryption keys are safe, you had to stop all processes that use file system
stored on encrypted device, unmount the file system and detach geli provider.
This isn't very handy. If you are a lucky user of a laptop where suspend/resume
actually works with FreeBSD (I'm not!) you most likely want to suspend your
laptop, because you don't want to start everything over again when you turn
your laptop back on.
And this is where geli suspend/resume steps in. When you execute:
# geli suspend -a
geli will wait for all in-flight I/O requests, suspend new I/O requests, remove
all geli sensitive data from the kernel memory (like encryption keys) and will
wait for either 'geli resume' or 'geli detach'.
Now with no keys in memory you can suspend your laptop without stopping any
processes or unmounting any file systems.
When you resume your laptop you have to resume geli devices using 'geli resume'
command. You need to provide your passphrase, etc. again so the keys can be
restored and suspended I/O requests released.
Of course you need to remember that 'geli suspend' won't clear file system
cache and other places where data from your geli-encrypted file system might be
present. But to get rid of those stopping processes and unmounting file system
won't help either - you have to turn your laptop off. Be warned.
Also note, that suspending geli device which contains file system with geli
utility (or anything used by 'geli resume') is not very good idea, as you won't
be able to resume it - when you execute geli(8), the kernel will try to read it
and this read I/O request will be suspended.
|
| |
|
|
| |
- Make a comment consistent with others.
|
| |
|
|
|
|
|
|
|
|
| |
and print a diagnostic if the call fails.
This avoids a panic when a device with an invalid name is attempted to
be registered. For example the label class gets device names from
untrusted input.
Reviewed by: freebsd-geom
|
| |
|
|
| |
("%s", __func__). This avoids clang's -Wformat-string warnings.
|
| |
|
|
|
|
| |
Suggested by: kib
Approved by: kib (mentor)
MFC after: 5 days
|
| |
|
|
|
| |
Submitted by: arundel
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
|
| |
GEOM does withering this memory doesn't freed. Add G_PART_DESTROY
call to g_part_wither. Also add missed g_free() call to G_PART_READ
method for MBR and PC98 schemes.
Submitted by: jh (previous version)
Reviewed by: pjd
Approved by: kib (mentor)
|
| |
|
|
|
|
| |
kern.geom.eli.debug sysctl to -1.
MFC after: 2 weeks
|
| |
|
|
|
|
| |
really killed. What we really care about are write errors only.
MFC after: 2 weeks
|
| |
|
|
|
|
|
|
| |
attribute (it should be allowed only to unset it), but for test purposes it
might be useful, so the current code allows it.
Reviewed by: arch@ (Message-ID: <20100917234542.GE1902@garage.freebsd.pl>)
MFC after: 2 weeks
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
|
|
|
| |
This ensures the same encryption key won't be used for more than
2^20 blocks (sectors). This will be the default now.
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
