[BUG] drivers/gpio: some possible sleep-in-atomic bugs

From: Jia-Ju Bai
Date: Mon Dec 11 2017 - 23:00:10 EST

Next message: Jakub Kicinski: "Re: [RFC][PATCH] new byteorder primitives - ..._{replace,get}_bits()"
Previous message: Jia-Ju Bai: "Re: [PATCH] NCR5380: Fix a possible sleep-in-atomic bug in NCR5380_poll_politely2"
Next in thread: Andreas Larsson: "Re: [BUG] drivers/gpio: some possible sleep-in-atomic bugs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

According to drivers/gpio/gpio-grgpio.c, the kernel module may sleep under a spinlock.
The function call paths are:
grgpio_remove (acquire the spinlock)
gpiochip_remove
gpiochip_sysfs_unregister
device_unregister --> may sleep
mutex_lock --> may sleep

grgpio_remove (acquire the spinlock)
gpiochip_remove
gpiochip_sysfs_unregister
gpiod_free
__gpiod_free
gpiod_unexport
device_unregister --> may sleep
mutex_lock --> may sleep

grgpio_remove (acquire the spinlock)
irq_domain_remove
mutex_lock --> may sleep

grgpio_irq_map (acquire the spinlock)
request_irq --> may sleep

grgpio_irq_unmap (acquire the spinlock)
free_irq --> may sleep

I do not find a good way to fix them, so I only report.
These possible bugs is found by my static analysis tool (DSAC) and checked by my code review.

Thanks,
Jia-Ju Bai

Next message: Jakub Kicinski: "Re: [RFC][PATCH] new byteorder primitives - ..._{replace,get}_bits()"
Previous message: Jia-Ju Bai: "Re: [PATCH] NCR5380: Fix a possible sleep-in-atomic bug in NCR5380_poll_politely2"
Next in thread: Andreas Larsson: "Re: [BUG] drivers/gpio: some possible sleep-in-atomic bugs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]