[PATCH 1/1] drm/i915: Fix ref->mutex deadlock in i915_active_wait()
Chris Wilson
chris at chris-wilson.co.uk
Tue Apr 14 08:13:28 UTC 2020
Quoting Sultan Alsawaf (2020-04-07 07:26:22)
> From: Sultan Alsawaf <sultan at kerneltoast.com>
>
> The following deadlock exists in i915_active_wait() due to a double lock
> on ref->mutex (call chain listed in order from top to bottom):
> i915_active_wait();
> mutex_lock_interruptible(&ref->mutex); <-- ref->mutex first acquired
> i915_active_request_retire();
> node_retire();
> active_retire();
> mutex_lock_nested(&ref->mutex, SINGLE_DEPTH_NESTING); <-- DEADLOCK
>
> Fix the deadlock by skipping the second ref->mutex lock when
> active_retire() is called through i915_active_request_retire().
>
> Fixes: 12c255b5dad1 ("drm/i915: Provide an i915_active.acquire callback")
> Cc: <stable at vger.kernel.org> # 5.4.x
> Signed-off-by: Sultan Alsawaf <sultan at kerneltoast.com>
Incorrect.
You missed that it cannot retire from inside the wait due to the active
reference held on the i915_active for the wait.
The only point it can enter retire from inside i915_active_wait() is via
the terminal __active_retire() which releases the mutex in doing so.
-Chris
More information about the dri-devel
mailing list