[v4,14/17] scsi: ufs: Fix a kernel crash during shutdown

Message ID	20211203231950.193369-15-bvanassche@acm.org
State	New
Headers	show Return-Path: <linux-scsi-owner@kernel.org> From: Bart Van Assche <bvanassche@acm.org> To: "Martin K . Petersen" <martin.petersen@oracle.com> Cc: Jaegeuk Kim <jaegeuk@kernel.org>, Adrian Hunter <adrian.hunter@intel.com>, linux-scsi@vger.kernel.org, Bart Van Assche <bvanassche@acm.org>, Bean Huo <beanhuo@micron.com>, "James E.J. Bottomley" <jejb@linux.ibm.com>, Avri Altman <avri.altman@wdc.com>, Can Guo <cang@codeaurora.org>, Stanley Chu <stanley.chu@mediatek.com>, Asutosh Das <asutoshd@codeaurora.org> Subject: [PATCH v4 14/17] scsi: ufs: Fix a kernel crash during shutdown Date: Fri, 3 Dec 2021 15:19:47 -0800 Message-Id: <20211203231950.193369-15-bvanassche@acm.org> In-Reply-To: <20211203231950.193369-1-bvanassche@acm.org> References: <20211203231950.193369-1-bvanassche@acm.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	UFS patches for kernel v5.17 \| expand [v4,00/17] UFS patches for kernel v5.17 [v4,01/17] scsi: core: Fix scsi_device_max_queue_depth() [v4,02/17] scsi: ufs: Rename a function argument [v4,03/17] scsi: ufs: Remove is_rpmb_wlun() [v4,04/17] scsi: ufs: Remove the sdev_rpmb member [v4,05/17] scsi: ufs: Remove dead code [v4,06/17] scsi: ufs: Fix race conditions related to driver data [v4,07/17] scsi: ufs: Remove ufshcd_any_tag_in_use() [v4,08/17] scsi: ufs: Rework ufshcd_change_queue_depth() [v4,09/17] scsi: ufs: Fix a deadlock in the error handler [v4,10/17] scsi: ufs: Remove hba->cmd_queue [v4,11/17] scsi: ufs: Remove the 'update_scaling' local variable [v4,12/17] scsi: ufs: Introduce ufshcd_release_scsi_cmd() [v4,13/17] scsi: ufs: Improve SCSI abort handling further [v4,14/17] scsi: ufs: Fix a kernel crash during shutdown [v4,15/17] scsi: ufs: Stop using the clock scaling lock in the error handler [v4,16/17] scsi: ufs: Optimize the command queueing code [v4,17/17] scsi: ufs: Implement polling support

Message ID

20211203231950.193369-15-bvanassche@acm.org

State

New

Headers

From: Bart Van Assche <bvanassche@acm.org>
To: "Martin K . Petersen" <martin.petersen@oracle.com>
Cc: Jaegeuk Kim <jaegeuk@kernel.org>,
        Adrian Hunter <adrian.hunter@intel.com>,
        linux-scsi@vger.kernel.org, Bart Van Assche <bvanassche@acm.org>,
        Bean Huo <beanhuo@micron.com>,
        "James E.J. Bottomley" <jejb@linux.ibm.com>,
        Avri Altman <avri.altman@wdc.com>,
        Can Guo <cang@codeaurora.org>,
        Stanley Chu <stanley.chu@mediatek.com>,
        Asutosh Das <asutoshd@codeaurora.org>
Subject: [PATCH v4 14/17] scsi: ufs: Fix a kernel crash during shutdown
Date: Fri,  3 Dec 2021 15:19:47 -0800
Message-Id: <20211203231950.193369-15-bvanassche@acm.org>
In-Reply-To: <20211203231950.193369-1-bvanassche@acm.org>
References: <20211203231950.193369-1-bvanassche@acm.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

UFS patches for kernel v5.17 | expand

Commit Message

Bart Van Assche Dec. 3, 2021, 11:19 p.m. UTC

Fix the following kernel crash:

Unable to handle kernel paging request at virtual address ffffffc91e735000
Call trace:
 __queue_work+0x26c/0x624
 queue_work_on+0x6c/0xf0
 ufshcd_hold+0x12c/0x210
 __ufshcd_wl_suspend+0xc0/0x400
 ufshcd_wl_shutdown+0xb8/0xcc
 device_shutdown+0x184/0x224
 kernel_restart+0x4c/0x124
 __arm64_sys_reboot+0x194/0x264
 el0_svc_common+0xc8/0x1d4
 do_el0_svc+0x30/0x8c
 el0_svc+0x20/0x30
 el0_sync_handler+0x84/0xe4
 el0_sync+0x1bc/0x1c0

Fix this crash by ungating the clock before destroying the work queue
on which clock gating work is queued.

Reviewed-by: Bean Huo <beanhuo@micron.com>
Tested-by: Bean Huo <beanhuo@micron.com>
Signed-off-by: Bart Van Assche <bvanassche@acm.org>
---
 drivers/scsi/ufs/ufshcd.c | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/drivers/scsi/ufs/ufshcd.c b/drivers/scsi/ufs/ufshcd.c
index 06954a6e9d5d..d434d76aa657 100644
--- a/drivers/scsi/ufs/ufshcd.c
+++ b/drivers/scsi/ufs/ufshcd.c
@@ -1648,7 +1648,8 @@  int ufshcd_hold(struct ufs_hba *hba, bool async)
 	bool flush_result;
 	unsigned long flags;
 
-	if (!ufshcd_is_clkgating_allowed(hba))
+	if (!ufshcd_is_clkgating_allowed(hba) ||
+	    !hba->clk_gating.is_initialized)
 		goto out;
 	spin_lock_irqsave(hba->host->host_lock, flags);
 	hba->clk_gating.active_reqs++;
@@ -1808,7 +1809,7 @@  static void __ufshcd_release(struct ufs_hba *hba)
 
 	if (hba->clk_gating.active_reqs || hba->clk_gating.is_suspended ||
 	    hba->ufshcd_state != UFSHCD_STATE_OPERATIONAL ||
-	    hba->outstanding_tasks ||
+	    hba->outstanding_tasks || !hba->clk_gating.is_initialized ||
 	    hba->active_uic_cmd || hba->uic_async_done ||
 	    hba->clk_gating.state == CLKS_OFF)
 		return;
@@ -1943,11 +1944,15 @@  static void ufshcd_exit_clk_gating(struct ufs_hba *hba)
 {
 	if (!hba->clk_gating.is_initialized)
 		return;
+
 	ufshcd_remove_clk_gating_sysfs(hba);
-	cancel_work_sync(&hba->clk_gating.ungate_work);
-	cancel_delayed_work_sync(&hba->clk_gating.gate_work);
-	destroy_workqueue(hba->clk_gating.clk_gating_workq);
+
+	/* Ungate the clock if necessary. */
+	ufshcd_hold(hba, false);
 	hba->clk_gating.is_initialized = false;
+	ufshcd_release(hba);
+
+	destroy_workqueue(hba->clk_gating.clk_gating_workq);
 }
 
 /* Must be called with host lock acquired */

[v4,14/17] scsi: ufs: Fix a kernel crash during shutdown

Commit Message

Patch