re: Locking strategy for device deletion (also see PR kern/48536)

To: Paul Goyette <paul%whooppee.com@localhost>
Subject: re: Locking strategy for device deletion (also see PR kern/48536)
From: matthew green <mrg%eterna.com.au@localhost>
Date: Wed, 08 Jun 2016 04:42:21 +1000

Paul Goyette writes:
> Can anyone suggest a reliable way to ensure that a device-driver module 
> can be _really_ safely detached?

the method the USB drivers use seems to be fairly safe.  there's one
condition i'm not 100% sure about, but seems unlikely.

see the usage of eg, sc_dying in ugen.c.  there still could be a
problem if a thread were to lookup it's device data, and get
preempted for some other task, and while this is happening, the
module could be unloaded and then it's running on unmapped exec
pages and boom.

that one i think is a much larger issue that affects *all* of our
drivers and needs a general fix where eg device_lookup_private()
returns a reference counted value that must be returned, before the
module can be considered ready to unload (this still leaves a very
minor race between device_put(d); and return;...)

.mrg.

Follow-Ups:
- Re: Locking strategy for device deletion (also see PR kern/48536)
  - From: Taylor R Campbell

References:
- Locking strategy for device deletion (also see PR kern/48536)
  - From: Paul Goyette

Prev by Date: Re: gets in the kernel
Next by Date: Re: Locking strategy for device deletion (also see PR kern/48536)
Previous by Thread: Re: Locking strategy for device deletion (also see PR kern/48536)
Next by Thread: Re: Locking strategy for device deletion (also see PR kern/48536)
Indexes:

Home | Main Index | Thread Index | Old Index