Re: Yet another hot unplug NULL pointer dereference (was Re: statusof oops in sd_revalidate_disk?)

From: Jun'ichi Nomura
Date: Fri Mar 16 2012 - 04:59:53 EST

Next message: Jason Wang: "[V5 PATCH] virtio-net: send gratuitous packets when needed"
Previous message: Xiao Guangrong: "Re: [PATCH 3/4] KVM: Switch to srcu-less get_dirty_log()"
Next in thread: Bart Van Assche: "Re: Yet another hot unplug NULL pointer dereference (was Re: statusof oops in sd_revalidate_disk?)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

On 03/14/12 03:10, Bart Van Assche wrote:
> Now that I've had some more time to think about this: has anyone
> considered to hold a reference on the SCSI host instead of the SCSI
> device as long as sd_probe_async() is active ? If sd_prep_fn() can ever
> see a NULL queuedata pointer then that means that
> scsi_host_dev_release() can get invoked while sd_prep_fn() is running.

Holding a host reference does not help, I think.
It does not stop __scsi_remove_device() setting NULL
to sdev's q->queuedata.

So, while there might be another race between sd_probe_async
and scsi_host_remove, I believe your "[PATCH] Fix device
removal NULL pointer dereference" still makes sense.

> That doesn't look correct to me.

--
Jun'ichi Nomura, NEC Corporation
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jason Wang: "[V5 PATCH] virtio-net: send gratuitous packets when needed"
Previous message: Xiao Guangrong: "Re: [PATCH 3/4] KVM: Switch to srcu-less get_dirty_log()"
Next in thread: Bart Van Assche: "Re: Yet another hot unplug NULL pointer dereference (was Re: statusof oops in sd_revalidate_disk?)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]