On Mon, 2017-06-05 at 18:54 +0300, Kalle Valo wrote: > > BTW, since you're taking an interest in this code now, can I > > trouble you with a question? Looking at mwifiex_uninit_sw() (after > > this patchset), you can see a loop like this: > > > > /* Stop data */ > > for (i = 0; i < adapter->priv_num; i++) { > > priv = adapter->priv[i]; > > if (priv && priv->netdev) { > > mwifiex_stop_net_dev_queue(priv->netdev, > > adapter); > > if (netif_carrier_ok(priv->netdev)) > > netif_carrier_off(priv->netdev); > > netif_device_detach(priv->netdev); > > } > > } > > > > That seems to be the only attempt to prevent user space from > > talking to the device while we proceed to shut down > > (mwifiex_shutdown_drv()). AIUI, that's wholly insufficient, and we > > need to actually stop all the virtual interfaces (and possibly the > > wiphy as well) first. I'm looking at trying to move the > > mwifiex_del_virtual_intf() loop up much further in this function > > (but there are other bugs preventing me from doing that yet). > > > > Does that sound like the right approach to you? I'm kinda figuring > > this should better mimic the mac80211 ieee80211_remove_interfaces() > > structure. > > Johannes is much better person to answer this (CCed). Wait, what? You're throwing me into pretty deep water ;-) I'm not sure what you mean by "we need to atually stop all the virtual interfaces ([...]) first". There are essentially only two/three ways to reach this - data path, which is getting stopped here, and control path (both nl80211 and perhaps ndo ops like start/stop). Without checking the code now, it seems entirely plausible that this is holding some lock that would lock out the control path entirely, for the duration until the wiphy is actually unregistered? Actually, you can't unregister with the relevant locks held (without causing deadlocks), so perhaps it's marking the wiphy as unavailable so that all operations fail? johannes