On Thursday 15 April 2010, Douglas Gilbert wrote: > At the level of SCSI commands, tape device state assumptions > made by the st driver could be compromised by SCSI commands > sent by the sg driver. However the BKL was never meant > to address that concern. > > From the comment in st_open() [st.c] it would be using > nonseekable_open() as well but there are apps out there > that do lseek()s on its file descriptors. Not sure > how long nonseekable_open() has been in the sg driver > but no-one has complained to me about it. It's been there for a long time, at least since the start of the git history, and it's very likely correct this way. > > The most simple solution for this would be to let sg > > take both blkdev_mutex and the BKL, which of course > > feels like a step backwards. > > > > A better way is to get rid of the BKL in sg, which requires > > a better understanding of what it's actually protecting. > > It only gets it in the open and ioctl functions, which is a > > result of the pushdown from the respective file operations. > > Chances are that it's not needed at all, but that's really > > hard to tell. Can you shed some more light on this? > > The BKL is not used to protect any of the internal > objects within the sg driver. From memory it was added > in some large code sweep through, not unlike what you > are proposing now. The one in the open function was moved there when the BKL was moved out from vfs_open(), while the use in ioctl is implicit by never having been converted to unlocked_ioctl. I don't see anything that really needs BKL protection in sg_open, so that can probably just be killed. For sg_ioctl, at least the blk_trace_* and scsi_ioctl stuff is currently called with BKL held everywhere else (not in st_ioctl though) and may still need that. > So I would not be concerned about any kernel locking > interactions between the sg and st drivers. I have > added Kai Makisara (st maintainer) to the cc list. Ok. I've also checked st.c again and noticed that it doesn't use use the BKL in ioctl() but only in open(), which is very unlikely to race against anything in sg.c or the block subsystem. Arnd -- To unsubscribe from this list: send the line "unsubscribe linux-scsi" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html