geom/vinum/geom_vinum_state.c

130389Sle/*-
190507Slulf * Copyright (c) 2004, 2007 Lukas Ertl
130389Sle * All rights reserved.
130389Sle *
130389Sle * Redistribution and use in source and binary forms, with or without
130389Sle * modification, are permitted provided that the following conditions
130389Sle * are met:
130389Sle * 1. Redistributions of source code must retain the above copyright
130389Sle *    notice, this list of conditions and the following disclaimer.
130389Sle * 2. Redistributions in binary form must reproduce the above copyright
130389Sle *    notice, this list of conditions and the following disclaimer in the
130389Sle *    documentation and/or other materials provided with the distribution.
130389Sle *
130389Sle * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
130389Sle * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
130389Sle * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
130389Sle * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
130389Sle * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
130389Sle * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
130389Sle * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
130389Sle * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
130389Sle * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
130389Sle * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
130389Sle * SUCH DAMAGE.
130389Sle */
130389Sle
130389Sle#include <sys/cdefs.h>
130389Sle__FBSDID("$FreeBSD$");
130389Sle
130389Sle#include <sys/libkern.h>
130389Sle#include <sys/malloc.h>
130389Sle
130389Sle#include <geom/geom.h>
130389Sle#include <geom/vinum/geom_vinum_var.h>
130389Sle#include <geom/vinum/geom_vinum.h>
130389Sle#include <geom/vinum/geom_vinum_share.h>
130389Sle
138112Slevoid
138112Slegv_setstate(struct g_geom *gp, struct gctl_req *req)
138112Sle{
138112Sle	struct gv_softc *sc;
138112Sle	struct gv_sd *s;
138112Sle	struct gv_drive *d;
190507Slulf	struct gv_volume *v;
190507Slulf	struct gv_plex *p;
138112Sle	char *obj, *state;
190507Slulf	int f, *flags, type;
138112Sle
138112Sle	f = 0;
138112Sle	obj = gctl_get_param(req, "object", NULL);
138112Sle	if (obj == NULL) {
138112Sle		gctl_error(req, "no object given");
138112Sle		return;
138112Sle	}
138112Sle
138112Sle	state = gctl_get_param(req, "state", NULL);
138112Sle	if (state == NULL) {
138112Sle		gctl_error(req, "no state given");
138112Sle		return;
138112Sle	}
138112Sle
138112Sle	flags = gctl_get_paraml(req, "flags", sizeof(*flags));
138112Sle	if (flags == NULL) {
138112Sle		gctl_error(req, "no flags given");
138112Sle		return;
138112Sle	}
138112Sle
138112Sle	if (*flags & GV_FLAG_F)
138112Sle		f = GV_SETSTATE_FORCE;
138112Sle
138112Sle	sc = gp->softc;
138112Sle	type = gv_object_type(sc, obj);
138112Sle	switch (type) {
138112Sle	case GV_TYPE_VOL:
190507Slulf		if (gv_volstatei(state) < 0) {
190507Slulf			gctl_error(req, "invalid volume state '%s'", state);
190507Slulf			break;
190507Slulf		}
190507Slulf		v = gv_find_vol(sc, obj);
190507Slulf		gv_post_event(sc, GV_EVENT_SET_VOL_STATE, v, NULL,
190507Slulf		    gv_volstatei(state), f);
190507Slulf		break;
190507Slulf
138112Sle	case GV_TYPE_PLEX:
190507Slulf		if (gv_plexstatei(state) < 0) {
190507Slulf			gctl_error(req, "invalid plex state '%s'", state);
190507Slulf			break;
190507Slulf		}
190507Slulf		p = gv_find_plex(sc, obj);
190507Slulf		gv_post_event(sc, GV_EVENT_SET_PLEX_STATE, p, NULL,
190507Slulf		    gv_plexstatei(state), f);
138112Sle		break;
138112Sle
138112Sle	case GV_TYPE_SD:
190507Slulf		if (gv_sdstatei(state) < 0) {
138112Sle			gctl_error(req, "invalid subdisk state '%s'", state);
138112Sle			break;
138112Sle		}
138112Sle		s = gv_find_sd(sc, obj);
190507Slulf		gv_post_event(sc, GV_EVENT_SET_SD_STATE, s, NULL,
190507Slulf		    gv_sdstatei(state), f);
138112Sle		break;
138112Sle
138112Sle	case GV_TYPE_DRIVE:
190507Slulf		if (gv_drivestatei(state) < 0) {
138112Sle			gctl_error(req, "invalid drive state '%s'", state);
138112Sle			break;
138112Sle		}
138112Sle		d = gv_find_drive(sc, obj);
190507Slulf		gv_post_event(sc, GV_EVENT_SET_DRIVE_STATE, d, NULL,
190507Slulf		    gv_drivestatei(state), f);
138112Sle		break;
138112Sle
138112Sle	default:
138112Sle		gctl_error(req, "unknown object '%s'", obj);
138112Sle		break;
138112Sle	}
138112Sle}
138112Sle
190507Slulf/* Update drive state; return 0 if the state changes, otherwise error. */
130389Sleint
130389Slegv_set_drive_state(struct gv_drive *d, int newstate, int flags)
130389Sle{
130389Sle	struct gv_sd *s;
130389Sle	int oldstate;
130389Sle
130389Sle	KASSERT(d != NULL, ("gv_set_drive_state: NULL d"));
130389Sle
130389Sle	oldstate = d->state;
130389Sle
130389Sle	if (newstate == oldstate)
138112Sle		return (0);
130389Sle
130389Sle	/* We allow to take down an open drive only with force. */
190507Slulf	if ((newstate == GV_DRIVE_DOWN) && gv_consumer_is_open(d->consumer) &&
130389Sle	    (!(flags & GV_SETSTATE_FORCE)))
190507Slulf		return (GV_ERR_ISBUSY);
130389Sle
130389Sle	d->state = newstate;
130389Sle
130389Sle	if (d->state != oldstate) {
130389Sle		LIST_FOREACH(s, &d->subdisks, from_drive)
130389Sle			gv_update_sd_state(s);
130389Sle	}
130389Sle
135162Sle	/* Save the config back to disk. */
135162Sle	if (flags & GV_SETSTATE_CONFIG)
190507Slulf		gv_save_config(d->vinumconf);
135162Sle
138112Sle	return (0);
130389Sle}
130389Sle
130389Sleint
130389Slegv_set_sd_state(struct gv_sd *s, int newstate, int flags)
130389Sle{
130389Sle	struct gv_drive *d;
130389Sle	struct gv_plex *p;
130389Sle	int oldstate, status;
130389Sle
130389Sle	KASSERT(s != NULL, ("gv_set_sd_state: NULL s"));
130389Sle
130389Sle	oldstate = s->state;
130389Sle
130389Sle	/* We are optimistic and assume it will work. */
130389Sle	status = 0;
130389Sle
130389Sle	if (newstate == oldstate)
130389Sle		return (0);
130389Sle
130389Sle	switch (newstate) {
130389Sle	case GV_SD_DOWN:
130389Sle		/*
130389Sle		 * If we're attached to a plex, we won't go down without use of
130389Sle		 * force.
130389Sle		 */
130389Sle		if ((s->plex_sc != NULL) && !(flags & GV_SETSTATE_FORCE))
190507Slulf			return (GV_ERR_ISATTACHED);
130389Sle		break;
130389Sle
190507Slulf	case GV_SD_REVIVING:
190507Slulf	case GV_SD_INITIALIZING:
190507Slulf		/*
190507Slulf		 * Only do this if we're forced, since it usually is done
190507Slulf		 * internally, and then we do use the force flag.
190507Slulf		 */
190507Slulf		if (!flags & GV_SETSTATE_FORCE)
190507Slulf			return (GV_ERR_SETSTATE);
190507Slulf		break;
190507Slulf
130389Sle	case GV_SD_UP:
130389Sle		/* We can't bring the subdisk up if our drive is dead. */
130389Sle		d = s->drive_sc;
130389Sle		if ((d == NULL) || (d->state != GV_DRIVE_UP))
190507Slulf			return (GV_ERR_SETSTATE);
130389Sle
130389Sle		/* Check from where we want to be brought up. */
130389Sle		switch (s->state) {
130389Sle		case GV_SD_REVIVING:
130389Sle		case GV_SD_INITIALIZING:
130389Sle			/*
130389Sle			 * The subdisk was initializing.  We allow it to be
130389Sle			 * brought up.
130389Sle			 */
130389Sle			break;
130389Sle
130389Sle		case GV_SD_DOWN:
130389Sle			/*
130389Sle			 * The subdisk is currently down.  We allow it to be
130389Sle			 * brought up if it is not attached to a plex.
130389Sle			 */
130389Sle			p = s->plex_sc;
130389Sle			if (p == NULL)
130389Sle				break;
130389Sle
130389Sle			/*
130389Sle			 * If this subdisk is attached to a plex, we allow it
130389Sle			 * to be brought up if the plex if it's not a RAID5
130389Sle			 * plex, otherwise it's made 'stale'.
130389Sle			 */
130389Sle
130389Sle			if (p->org != GV_PLEX_RAID5)
130389Sle				break;
190507Slulf			else if (s->flags & GV_SD_CANGOUP) {
190507Slulf				s->flags &= ~GV_SD_CANGOUP;
138112Sle				break;
190507Slulf			} else if (flags & GV_SETSTATE_FORCE)
190507Slulf				break;
130389Sle			else
130389Sle				s->state = GV_SD_STALE;
130389Sle
190507Slulf			status = GV_ERR_SETSTATE;
130389Sle			break;
130389Sle
130389Sle		case GV_SD_STALE:
130389Sle			/*
135434Sle			 * A stale subdisk can be brought up only if it's part
135434Sle			 * of a concat or striped plex that's the only one in a
135434Sle			 * volume, or if the subdisk isn't attached to a plex.
135434Sle			 * Otherwise it needs to be revived or initialized
135434Sle			 * first.
130389Sle			 */
135434Sle			p = s->plex_sc;
138112Sle			if (p == NULL || flags & GV_SETSTATE_FORCE)
135434Sle				break;
135434Sle
190507Slulf			if ((p->org != GV_PLEX_RAID5 &&
190507Slulf			    p->vol_sc->plexcount == 1) ||
190507Slulf			    (p->flags & GV_PLEX_SYNCING &&
190507Slulf			    p->synced > 0 &&
190507Slulf			    p->org == GV_PLEX_RAID5))
135434Sle				break;
135434Sle			else
190507Slulf				return (GV_ERR_SETSTATE);
135434Sle
130389Sle		default:
190507Slulf			return (GV_ERR_INVSTATE);
130389Sle		}
130389Sle		break;
130389Sle
130389Sle	/* Other state transitions are only possible with force. */
130389Sle	default:
130389Sle		if (!(flags & GV_SETSTATE_FORCE))
190507Slulf			return (GV_ERR_SETSTATE);
130389Sle	}
130389Sle
130389Sle	/* We can change the state and do it. */
130389Sle	if (status == 0)
130389Sle		s->state = newstate;
130389Sle
130389Sle	/* Update our plex, if we're attached to one. */
130389Sle	if (s->plex_sc != NULL)
130389Sle		gv_update_plex_state(s->plex_sc);
130389Sle
130389Sle	/* Save the config back to disk. */
130389Sle	if (flags & GV_SETSTATE_CONFIG)
190507Slulf		gv_save_config(s->vinumconf);
130389Sle
130389Sle	return (status);
130389Sle}
130389Sle
190507Slulfint
190507Slulfgv_set_plex_state(struct gv_plex *p, int newstate, int flags)
190507Slulf{
190507Slulf	struct gv_volume *v;
190507Slulf	int oldstate, plexdown;
130389Sle
190507Slulf	KASSERT(p != NULL, ("gv_set_plex_state: NULL p"));
190507Slulf
190507Slulf	oldstate = p->state;
190507Slulf	v = p->vol_sc;
190507Slulf	plexdown = 0;
190507Slulf
190507Slulf	if (newstate == oldstate)
190507Slulf		return (0);
190507Slulf
190507Slulf	switch (newstate) {
190507Slulf	case GV_PLEX_UP:
190507Slulf		/* Let update_plex handle if the plex can come up */
190507Slulf		gv_update_plex_state(p);
190507Slulf		if (p->state != GV_PLEX_UP && !(flags & GV_SETSTATE_FORCE))
190507Slulf			return (GV_ERR_SETSTATE);
190507Slulf		p->state = newstate;
190507Slulf		break;
190507Slulf	case GV_PLEX_DOWN:
190507Slulf		/*
190507Slulf		 * Set state to GV_PLEX_DOWN only if no-one is using the plex,
190507Slulf		 * or if the state is forced.
190507Slulf		 */
190507Slulf		if (v != NULL) {
190507Slulf			/* If the only one up, force is needed. */
190507Slulf			plexdown = gv_plexdown(v);
190507Slulf			if ((v->plexcount == 1 ||
190507Slulf			    (v->plexcount - plexdown == 1)) &&
190507Slulf			    ((flags & GV_SETSTATE_FORCE) == 0))
190507Slulf				return (GV_ERR_SETSTATE);
190507Slulf		}
190507Slulf		p->state = newstate;
190507Slulf		break;
190507Slulf	case GV_PLEX_DEGRADED:
190507Slulf		/* Only used internally, so we have to be forced. */
190507Slulf		if (flags & GV_SETSTATE_FORCE)
190507Slulf			p->state = newstate;
190507Slulf		break;
190507Slulf	}
190507Slulf
190507Slulf	/* Update our volume if we have one. */
190507Slulf	if (v != NULL)
190507Slulf		gv_update_vol_state(v);
190507Slulf
190507Slulf	/* Save config. */
190507Slulf	if (flags & GV_SETSTATE_CONFIG)
190507Slulf		gv_save_config(p->vinumconf);
190507Slulf	return (0);
190507Slulf}
190507Slulf
190507Slulfint
190507Slulfgv_set_vol_state(struct gv_volume *v, int newstate, int flags)
190507Slulf{
190507Slulf	int oldstate;
190507Slulf
190507Slulf	KASSERT(v != NULL, ("gv_set_vol_state: NULL v"));
190507Slulf
190507Slulf	oldstate = v->state;
190507Slulf
190507Slulf	if (newstate == oldstate)
190507Slulf		return (0);
190507Slulf
190507Slulf	switch (newstate) {
190507Slulf	case GV_VOL_UP:
190507Slulf		/* Let update handle if the volume can come up. */
190507Slulf		gv_update_vol_state(v);
190507Slulf		if (v->state != GV_VOL_UP && !(flags & GV_SETSTATE_FORCE))
190507Slulf			return (GV_ERR_SETSTATE);
190507Slulf		v->state = newstate;
190507Slulf		break;
190507Slulf	case GV_VOL_DOWN:
190507Slulf		/*
190507Slulf		 * Set state to GV_VOL_DOWN only if no-one is using the volume,
190507Slulf		 * or if the state should be forced.
190507Slulf		 */
190507Slulf		if (!gv_provider_is_open(v->provider) &&
190507Slulf		    !(flags & GV_SETSTATE_FORCE))
190507Slulf			return (GV_ERR_ISBUSY);
190507Slulf		v->state = newstate;
190507Slulf		break;
190507Slulf	}
190507Slulf	/* Save config */
190507Slulf	if (flags & GV_SETSTATE_CONFIG)
190507Slulf		gv_save_config(v->vinumconf);
190507Slulf	return (0);
190507Slulf}
190507Slulf
130389Sle/* Update the state of a subdisk based on its environment. */
130389Slevoid
130389Slegv_update_sd_state(struct gv_sd *s)
130389Sle{
130389Sle	struct gv_drive *d;
140591Sle	int oldstate;
130389Sle
130389Sle	KASSERT(s != NULL, ("gv_update_sd_state: NULL s"));
130389Sle	d = s->drive_sc;
130389Sle	KASSERT(d != NULL, ("gv_update_sd_state: NULL d"));
140591Sle
140591Sle	oldstate = s->state;
130389Sle
130389Sle	/* If our drive isn't up we cannot be up either. */
190507Slulf	if (d->state != GV_DRIVE_UP) {
130389Sle		s->state = GV_SD_DOWN;
130389Sle	/* If this subdisk was just created, we assume it is good.*/
190507Slulf	} else if (s->flags & GV_SD_NEWBORN) {
130389Sle		s->state = GV_SD_UP;
130389Sle		s->flags &= ~GV_SD_NEWBORN;
190507Slulf	} else if (s->state != GV_SD_UP) {
190507Slulf		if (s->flags & GV_SD_CANGOUP) {
190507Slulf			s->state = GV_SD_UP;
190507Slulf			s->flags &= ~GV_SD_CANGOUP;
190507Slulf		} else
190507Slulf			s->state = GV_SD_STALE;
190507Slulf	} else
130389Sle		s->state = GV_SD_UP;
130389Sle
140591Sle	if (s->state != oldstate)
184292Slulf		G_VINUM_DEBUG(1, "subdisk %s state change: %s -> %s", s->name,
184292Slulf		    gv_sdstate(oldstate), gv_sdstate(s->state));
140591Sle
130389Sle	/* Update the plex, if we have one. */
130389Sle	if (s->plex_sc != NULL)
130389Sle		gv_update_plex_state(s->plex_sc);
130389Sle}
130389Sle
130389Sle/* Update the state of a plex based on its environment. */
130389Slevoid
130389Slegv_update_plex_state(struct gv_plex *p)
130389Sle{
190507Slulf	struct gv_sd *s;
130389Sle	int sdstates;
140591Sle	int oldstate;
130389Sle
130389Sle	KASSERT(p != NULL, ("gv_update_plex_state: NULL p"));
130389Sle
140591Sle	oldstate = p->state;
140591Sle
130389Sle	/* First, check the state of our subdisks. */
130389Sle	sdstates = gv_sdstatemap(p);
130389Sle
130389Sle	/* If all subdisks are up, our plex can be up, too. */
130389Sle	if (sdstates == GV_SD_UPSTATE)
130389Sle		p->state = GV_PLEX_UP;
130389Sle
130389Sle	/* One or more of our subdisks are down. */
130389Sle	else if (sdstates & GV_SD_DOWNSTATE) {
130389Sle		/* A RAID5 plex can handle one dead subdisk. */
130389Sle		if ((p->org == GV_PLEX_RAID5) && (p->sddown == 1))
130389Sle			p->state = GV_PLEX_DEGRADED;
130389Sle		else
130389Sle			p->state = GV_PLEX_DOWN;
130389Sle
130389Sle	/* Some of our subdisks are initializing. */
130389Sle	} else if (sdstates & GV_SD_INITSTATE) {
190507Slulf
190507Slulf		if (p->flags & GV_PLEX_SYNCING ||
190507Slulf		    p->flags & GV_PLEX_REBUILDING)
130389Sle			p->state = GV_PLEX_DEGRADED;
130389Sle		else
130389Sle			p->state = GV_PLEX_DOWN;
130389Sle	} else
130389Sle		p->state = GV_PLEX_DOWN;
130389Sle
190507Slulf	if (p->state == GV_PLEX_UP) {
190507Slulf		LIST_FOREACH(s, &p->subdisks, in_plex) {
190507Slulf			if (s->flags & GV_SD_GROW) {
190507Slulf				p->state = GV_PLEX_GROWABLE;
190507Slulf				break;
190507Slulf			}
190507Slulf		}
190507Slulf	}
190507Slulf
140591Sle	if (p->state != oldstate)
184292Slulf		G_VINUM_DEBUG(1, "plex %s state change: %s -> %s", p->name,
140591Sle		    gv_plexstate(oldstate), gv_plexstate(p->state));
140591Sle
130389Sle	/* Update our volume, if we have one. */
130389Sle	if (p->vol_sc != NULL)
130389Sle		gv_update_vol_state(p->vol_sc);
130389Sle}
130389Sle
130389Sle/* Update the volume state based on its plexes. */
130389Slevoid
130389Slegv_update_vol_state(struct gv_volume *v)
130389Sle{
130389Sle	struct gv_plex *p;
130389Sle
130389Sle	KASSERT(v != NULL, ("gv_update_vol_state: NULL v"));
134014Sle
157292Sle	/* The volume can't be up without plexes. */
157292Sle	if (v->plexcount == 0) {
157292Sle		v->state = GV_VOL_DOWN;
157292Sle		return;
157292Sle	}
157292Sle
130389Sle	LIST_FOREACH(p, &v->plexes, in_volume) {
130389Sle		/* One of our plexes is accessible, and so are we. */
130389Sle		if (p->state > GV_PLEX_DEGRADED) {
130389Sle			v->state = GV_VOL_UP;
130389Sle			return;
134014Sle
134014Sle		/* We can handle a RAID5 plex with one dead subdisk as well. */
134014Sle		} else if ((p->org == GV_PLEX_RAID5) &&
134014Sle		    (p->state == GV_PLEX_DEGRADED)) {
134014Sle			v->state = GV_VOL_UP;
134014Sle			return;
130389Sle		}
130389Sle	}
130389Sle
130389Sle	/* Not one of our plexes is up, so we can't be either. */
130389Sle	v->state = GV_VOL_DOWN;
130389Sle}
130389Sle
130389Sle/* Return a state map for the subdisks of a plex. */
130389Sleint
130389Slegv_sdstatemap(struct gv_plex *p)
130389Sle{
130389Sle	struct gv_sd *s;
130389Sle	int statemap;
130389Sle
130389Sle	KASSERT(p != NULL, ("gv_sdstatemap: NULL p"));
130389Sle
130389Sle	statemap = 0;
130389Sle	p->sddown = 0;	/* No subdisks down yet. */
130389Sle
130389Sle	LIST_FOREACH(s, &p->subdisks, in_plex) {
130389Sle		switch (s->state) {
130389Sle		case GV_SD_DOWN:
130389Sle		case GV_SD_STALE:
130389Sle			statemap |= GV_SD_DOWNSTATE;
130389Sle			p->sddown++;	/* Another unusable subdisk. */
130389Sle			break;
130389Sle
130389Sle		case GV_SD_UP:
130389Sle			statemap |= GV_SD_UPSTATE;
130389Sle			break;
130389Sle
130389Sle		case GV_SD_INITIALIZING:
130389Sle			statemap |= GV_SD_INITSTATE;
130389Sle			break;
130389Sle
130389Sle		case GV_SD_REVIVING:
130389Sle			statemap |= GV_SD_INITSTATE;
130389Sle			p->sddown++;	/* XXX: Another unusable subdisk? */
130389Sle			break;
130389Sle		}
130389Sle	}
130389Sle	return (statemap);
130389Sle}