Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock

[PATCH 00/16] cfg80211/mac80211 patches from our internal tree 2021-11-29 · Luca Coelho <hidden> · 2021-11-29
[PATCH 02/16] cfg80211: Add support for notifying association comeback · Luca Coelho <hidden> · 2021-11-29
[PATCH 01/16] mac80211: add more HT/VHT/HE state logging · Luca Coelho <hidden> · 2021-11-29
Re: [PATCH 01/16] mac80211: add more HT/VHT/HE state logging · Luca Coelho <hidden> · 2021-11-30
[PATCH v2] mac80211: add more HT/VHT/HE state logging · Luca Coelho <hidden> · 2021-11-30
Re: [PATCH v2] mac80211: add more HT/VHT/HE state logging · Ben Greear <hidden> · 2021-11-30
[PATCH 03/16] mac80211: Notify cfg80211 about association comeback · Luca Coelho <hidden> · 2021-11-29
[PATCH 04/16] cfg80211: Use the HE operation IE to determine a 6GHz BSS channel · Luca Coelho <hidden> · 2021-11-29
Re: [PATCH 04/16] cfg80211: Use the HE operation IE to determine a 6GHz BSS channel · Luca Coelho <hidden> · 2021-12-02
[PATCH v2] cfg80211: Use the HE operation IE to determine a 6GHz BSS channel · Luca Coelho <hidden> · 2021-12-02
[PATCH 05/16] [BUGFIX] cfg80211: check fixed size before ieee80211_he_oper_size() · Luca Coelho <hidden> · 2021-11-29
[PATCH 07/16] mac80211: mark TX-during-stop for TX in in_reconfig · Luca Coelho <hidden> · 2021-11-29
[PATCH 09/16] cfg80211: Fix order of enum nl80211_band_iftype_attr documentation · Luca Coelho <hidden> · 2021-11-29
[PATCH 08/16] mac80211: do drv_reconfig_complete() before restarting all · Luca Coelho <hidden> · 2021-11-29
[PATCH 10/16] mac80211: update channel context before station state · Luca Coelho <hidden> · 2021-11-29
[PATCH 11/16] cfg80211: simplify cfg80211_chandef_valid() · Luca Coelho <hidden> · 2021-11-29
[PATCH 12/16] mac80211: Remove a couple of obsolete TODO · Luca Coelho <hidden> · 2021-11-29
[PATCH 14/16] mac80211: fix lookup when adding AddBA extension element · Luca Coelho <hidden> · 2021-11-29
[PATCH 13/16] mac80211: Fix the size used for building probe request · Luca Coelho <hidden> · 2021-11-29
[PATCH 16/16] cfg80211: Acquire wiphy mutex on regulatory work · Luca Coelho <hidden> · 2021-11-29
Re: [PATCH 16/16] cfg80211: Acquire wiphy mutex on regulatory work · Kalle Valo <kvalo@kernel.org> · 2021-12-01
Re: [PATCH 16/16] cfg80211: Acquire wiphy mutex on regulatory work · Luca Coelho <hidden> · 2021-12-02
[PATCH v2] cfg80211: Acquire wiphy mutex on regulatory work · Luca Coelho <hidden> · 2021-12-02
[PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Luca Coelho <hidden> · 2021-11-29
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Toke Høiland-Jørgensen <hidden> · 2021-11-29
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Luca Coelho <hidden> · 2021-11-30
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Toke Høiland-Jørgensen <hidden> · 2021-11-30
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Johannes Berg <johannes@sipsolutions.net> · 2021-11-30
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Luca Coelho <hidden> · 2021-11-30
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Johannes Berg <johannes@sipsolutions.net> · 2021-11-30
Re: [PATCH 15/16] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Toke Høiland-Jørgensen <hidden> · 2021-11-30
[PATCH v2] mac80211: agg-tx: don't schedule_and_wake_txq() under sta->lock · Luca Coelho <hidden> · 2021-12-02
[PATCH 06/16] mac80211: introduce channel switch disconnect function · Luca Coelho <hidden> · 2021-11-29

From: Toke Høiland-Jørgensen <hidden>
Date: 2021-11-29 13:56:39

Luca Coelho [off-list ref] writes:

From: Johannes Berg <redacted>

When we call ieee80211_agg_start_txq(), that will in turn call
schedule_and_wake_txq(). Called from ieee80211_stop_tx_ba_cb()
this is done under sta->lock, which leads to certain circular
lock dependencies, as reported by Chris Murphy:
https://lore.kernel.org/r/CAJCQCtSXJ5qA4bqSPY=oLRMbv-irihVvP7A2uGutEbXQVkoNaw@mail.gmail.com (local)

In general, ieee80211_agg_start_txq() is usually not called
with sta->lock held, only in this one place. But it's always
called with sta->ampdu_mlme.mtx held, and that's therefore
clearly sufficient.

Change ieee80211_stop_tx_ba_cb() to also call it without the
sta->lock held, by factoring it out of ieee80211_remove_tid_tx()
(which is only called in this one place).

This breaks the locking chain and makes it less likely that
we'll have similar locking chain problems in the future.

Reported-by: Chris Murphy <redacted>
Signed-off-by: Johannes Berg <redacted>
Signed-off-by: Luca Coelho <redacted>

Does this need a fixes: tag?

-Toke

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help