runtime: make GODEBUG=dontfreezetheworld=1 safer

Stowage/go

mirror of https://github.com/golang/go.git synced 2025-12-08 06:10:04 +00:00

GODEBUG=dontfreezetheworld=1 allows goroutines to continue execution
during fatal panic. This increases the chance that tracebackothers will
encounter running goroutines that it must skip, which is expected and
fine. However, it also introduces the risk that a goroutine transitions
from stopped to running in the middle of traceback, which is unsafe and
may cause traceback crashes.

Mitigate this by halting M execution if it naturally enters the
scheduler. This ensures that goroutines cannot transition from stopped
to running after freezetheworld. We simply deadlock rather than using
gcstopm to continue keeping disturbance to scheduler state to a minimum.

Change-Id: I9aa8d84abf038ae17142f34f4384e920b1490e81
Reviewed-on: https://go-review.googlesource.com/c/go/+/501255
Auto-Submit: Michael Pratt <mpratt@google.com>
Reviewed-by: Austin Clements <austin@google.com>
Run-TryBot: Michael Pratt <mpratt@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Michael Knyszek <mknyszek@google.com>

This commit is contained in:

Michael Pratt

2023-06-06 13:02:29 -04:00

• committed by

Gopher Robot

parent 1aaf1b219a

commit 5b6e6d2b3d

3 changed files with 48 additions and 9 deletions

									
										3

src/runtime/panic.go
									
										View file
										
				@ -1247,9 +1247,6 @@ func startpanic_m() bool {

						if debug.schedtrace > 0 || debug.scheddetail > 0 {

							schedtrace(true)

						}

						if debug.dontfreezetheworld > 0 {

							return true

						}

						freezetheworld()

						return true

					case 1:

Rows
Columns

runtime: make GODEBUG=dontfreezetheworld=1 safer

3 src/runtime/panic.go Unescape Escape View file

3

src/runtime/panic.go

View file