On Wed Aug 22 19:33:52 EDT 2012, cinap_len...@gmx.de wrote: > i think we'r seeing exactly what russ described on 9fans here: > > http://9fans.net/archive/2011/02/358 > > after we set q->done = 1; (the unlock of m probably doesnt even > matter) it might be possible for mountio()'s sleep() call to return > immidiately and return, freeing the rpc before mountmux() > on another proc/cpu even call wakeup() and potentialy hitting freed > memory.
devaoe (9atom version) deals with a similar problem. see strategy(). - erik
