From e5bb601d876e7b6c83f20153df48a100d0ce71d6 Mon Sep 17 00:00:00 2001
From: John Baldwin <jhb@FreeBSD.org>
Date: Fri, 27 Feb 2004 18:39:09 +0000
Subject: [PATCH] Drop sched_lock around the wakeup of the parent process after
 setting the process state to zombie when a process exits to avoid a lock
 order reversal with the sleepqueue locks.  This appears to be the only place
 that we call wakeup() with sched_lock held.

---
 sys/kern/kern_exit.c | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/sys/kern/kern_exit.c b/sys/kern/kern_exit.c
index 84c0680a6ec..f81de284082 100644
--- a/sys/kern/kern_exit.c
+++ b/sys/kern/kern_exit.c
@@ -494,21 +494,26 @@ exit1(struct thread *td, int rv)
 	PROC_LOCK(p);
 	PROC_LOCK(p->p_pptr);
 	sx_xunlock(&proctree_lock);
-	mtx_lock_spin(&sched_lock);
 
 	while (mtx_owned(&Giant))
 		mtx_unlock(&Giant);
 
 	/*
 	 * We have to wait until after acquiring all locks before
-	 * changing p_state.  If we block on a mutex then we will be
-	 * back at SRUN when we resume and our parent will never
-	 * harvest us.
+	 * changing p_state.  We need to avoid any possibly context
+	 * switches while marked as a zombie including blocking on
+	 * a mutex.
 	 */
+	mtx_lock_spin(&sched_lock);
 	p->p_state = PRS_ZOMBIE;
+	critical_enter();
+	mtx_unlock_spin(&sched_lock);
 
 	wakeup(p->p_pptr);
 	PROC_UNLOCK(p->p_pptr);
+
+	mtx_lock_spin(&sched_lock);
+	critical_exit();
 	cnt.v_swtch++;
 	binuptime(PCPU_PTR(switchtime));
 	PCPU_SET(switchticks, ticks);