[cc'ing linux-serial] On Tue, 2012-10-23 at 10:51 +0100, Alan Cox wrote: > > 1. The ldisc drops the contents of tty_buffer on hangup (rather than > > waiting for completion). Maybe for other devices this isn't so > > noticeable because the ldisc can mostly keep up with the device, but on > > firewire the ldisc lags well behind. Right now, this driver works around > > this by holding off the hangup until the ldisc empties the tty_buffer. > > The driver determines how much data is still left in the tty_buffer by > > walking the flip buffers. > > The driver should not be trying to look at this, so it's good that it > broke now. If you need it to process the data on then hangup then the > core code wants fixing to allow this to occur. Sorry. I assumed not waiting for ldisc completion on hangup was architectural. tty_ldisc_hangup() has this comment from '09: /* * FIXME: Once we trust the LDISC code better we can wait here for * ldisc completion and fix the driver call race */ and then several lines below specifically stops emptying the tty_buffer: cancel_work_sync(&tty->buf.work); But even earlier in tty_ldisc_hangup(), the ldisc has been flushed (which the n_tty ldisc interprets as a reset). > > 2. Because this driver can fill the entire tty_buffer (64K +) before the > > ldisc even runs once, this driver has to self-throttle when feeding the > > tty_buffer. > > That wants investigating properly. We do multiple megabits quite happily > via the tty layer with 3G modems over USB. What is your data rate ? The _slowest_ Firewire does 125 Mbits/sec using only the portion of the bus cycle assigned for async tx (which is what this driver uses). That's 2Kbytes every 125us. Real world can be pretty close to that because Firewire uses autonomous DMA and most controllers allow spillover into the portion of bus cycle assigned for sync tx (which is another 4Kbytes per 125us). (Technical note: the actual total max for combined async and sync tx is 6144 bytes per 125us clock) 2Kbytes/125us = 16Kbytes/1ms = 160Kbytes/jiffy (for CONFIG_HZ_100) Some retail Firewire controllers do twice that, controllers in early-production do 4x that, and reportedly at least one prototype does 8x that (although I haven't seen it or tested it). 'cat /dev/fwtty0' using this driver gets considerably less that, but still enough to find this race. Ignoring for a moment the data rates, the throttling logic is racy because the ldisc sends the throttle from non-atomic context (so that termios can be locked and accessed) but the driver fills the tty_buffer from atomic context. In other words, the condition for which the ldisc will send a throttle (receive_room < TTY_THRESHOLD_THROTTLE) hasn't yet happened, but it will the next time receive_buf() runs. So, the best that tty_insert_flip_string_* can do is return an error that tty_buffer_alloc() refuses to allocate more than 64k. But the problem is this driver has data that __must__ go somewhere at that particular point in time. This driver could introduce another layer of buffering in front of this but that would defeat the purpose of even having tty_buffer in the first place. Checking how much space might be avail for future rx and throttling if too low seems like the natural solution here. Of course, directly peeking at tty_buffer is the wrong way to go about doing it. But what if that was properly exposed by tty_buffer, such as (adjusted for Jiri's recent changes): int tty_buffer_space_avail(struct tty_struct *tty) { struct tty_port *port = tty->port; struct tty_bufhead *buf = &port->buf; unsigned long flags; int avail; spin_lock_irqsave(&buf->lock, flags); avail = 65536 - buf.memory_used; /* threshold used by tty_buffer_alloc() */ spin_unlock_irqrestore(&buf->lock, flags); return avail; } Regards, Peter Hurley _______________________________________________ devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxx http://driverdev.linuxdriverproject.org/mailman/listinfo/devel