From 627bfe0df313357fbfb6ec8889ea66bac973ee4c Mon Sep 17 00:00:00 2001 From: Luis R. Rodriguez Date: Wed, 23 Dec 2009 15:50:14 -0800 Subject: [PATCH 1/5] mac80211: fix race with suspend and dynamic_ps_disable_work This is a port of upstream commit: When mac80211 suspends it calls a driver's suspend callback as a last step and after that the driver assumes no calls will be made to it until we resume and its start callback is kicked. If such calls are made, however, suspend can end up throwing hardware in an unexpected state and making the device unusable upon resume. This situation is observed with ath9k but likely possible with any other device which supports and supports dynampic PS and enabled. When mac80211 suspends it tears down BA sessions with ieee80211_sta_tear_down_BA_sessions() and since this ends up transmitting frames through ieee80211_xmit() mac80211 could end up scheduling the dynamic_ps_disable_work work onto the mac80211 workqueue. This allows for a race between the work kicking off and mac80211 completing the suspend work by calling the driver's stop callback. If the driver's stop callback is run first and the scheduled work runs later (this is expected as we don't flush in between) the driver's config callback could run after the hardware has been turned off which amongst other things could end up leaving the card with enabled interrupts and awake leaving the harware in an unpredictable state prior to suspend. Upon resume the device can become completely unfunctional displaying PCI-express errors such as "unsupported request detected" and the driver's respective start callback would failing. Apart from leaving the hardware in an unresponsive state since mac80211 currently allows failed start calls to go through new interrupts will be unhandled and as such the interrupt for the device will end up getting disabled as follows: irq 18: nobody cared (try booting with the "irqpoll" option) Pid: 0, comm: swapper Not tainted 2.6.31.4-intel-menlow #5 Call Trace: [] __report_bad_irq+0x2e/0x6f [] note_interrupt+0xf5/0x14d [] handle_fasteoi_irq+0x7d/0x9b [] handle_irq+0x3b/0x46 [] do_IRQ+0x41/0x95 [] common_interrupt+0x29/0x30 [] ? ptrace_notify+0x12/0x97 [] ? tick_nohz_stop_sched_tick+0x2ee/0x2f6 [] cpu_idle+0x27/0x5e [] rest_init+0x53/0x55 [] start_kernel+0x2f6/0x2fb [] i386_start_kernel+0x70/0x77 Fix this by preventing mac80211 to schedule dynamic_ps_disable_work by checking for when mac80211 starts to suspend and starts quiescing. Frames should be allowed to go through though as that is part of the quiescing steps and we do not flush the mac80211 workqueue since it was already done towards the beginning of suspend cycle. The other mac80211 issue will be hanled in the next patch. For further details see refer to the thread: http://marc.info/?t=126144866100001&r=1&w=2 Cc: stable@kernel.org Signed-off-by: Luis R. Rodriguez --- net/mac80211/tx.c | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/net/mac80211/tx.c b/net/mac80211/tx.c index eaa4118..d398197 100644 --- a/net/mac80211/tx.c +++ b/net/mac80211/tx.c @@ -1401,6 +1401,7 @@ static void ieee80211_xmit(struct ieee80211_sub_if_data *sdata, if ((local->hw.flags & IEEE80211_HW_PS_NULLFUNC_STACK) && local->hw.conf.dynamic_ps_timeout > 0 && + !local->quiescing && !(local->scanning) && local->ps_sdata) { if (local->hw.conf.flags & IEEE80211_CONF_PS) { ieee80211_stop_queues_by_reason(&local->hw, -- 1.6.3.3