Re: PATCH: tty locking for 2.6.9rc2

[Paul Fulghum]

On Wed, 2004-09-15 at 11:30, Alan Cox wrote:
> On Wed, Sep 15, 2004 at 11:26:35AM -0500, Paul Fulghum wrote:
> > I tried this patch and can't change line disciplines.
> > The user program waits forever on ioctl(TIOCSETD).
> > I am going to add printk statements to
> 
> Is the tty currently in use - that implies maybe an ldisc leak
> 
> > Each line discipline has a refcount.
> > This single refcount is modified by all
> > entities using that line discipline.
> 
> Nope. tty->ldisc is a -copy- of the ldisc structure rather than a 
> pointer. It has always been that way

Got it.

Global ldisc array refcount is used to know
when an ldisc module can be unloaded.

Per tty ldisc refcount is used to know
when an ldisc can be switched.

The problem is that the per tty ldisc structure is being
initialized with the global ldisc array entry
including the global refcount.

So the per tty refcount starts non zero and
never goes to zero and can't be changed.

The per tty ldisc refcount must be initialized to zero 
after copying the global ldisc structure.

There are 6 places where this needs to be done:
3 in tty_set_ldisc
2 in release_dev
1 in initialize_tty_struct

Also:
Switching back to N_TTY ldisc in release_dev() of tty_io.c
takes a global ldisc reference (tty_ldisc_get) but
then frees the tty structure. This causes a reference
leak (global ldisc refcount) on N_TTY because there
is no corresponding tty_ldisc_put.


--
Paul Fulghum
paulkf@xxxxxxxxxxxxx


-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/