How is that possible at all ? Did you observed this in real-life scenario ?

It seems that the flag is either set for the file, or the file is removed from the list, under the single kld_sx-protected region. Then, I do not see how could kldnext consumer, protected by the same lock, see a file without the flag.

In D8167#169639, @kib wrote:

How is that possible at all ? Did you observed this in real-life scenario ?

Don't know if it is possible. No, not observed.

It seems inconsistent with linker_find_file_by_id and sys_kldnext, which is also only used under the same sx lock.

It seems that the flag is either set for the file, or the file is removed from the list, under the single kld_sx-protected region. Then, I do not see how could kldnext consumer, protected by the same lock, see a file without the flag.

If this is true, I don't see why we need to even check for the flag in kldnext or linker_find_file_by_id.

In D8167#169675, @cem wrote:

If this is true, I don't see why we need to even check for the flag in kldnext or linker_find_file_by_id.

The flag should be removed where not needed. I suspect that it is result of the code first being locked by Giant which is dropped during sleeps.

I did not traced all paths in the code to confirm either validity of the patch in review, nor the removal of flags.

In D8167#170196, @cem wrote:

Run-time loaded linker files are present on the global list but missing LINKER_FILE_LINKED during linker_file_sysinit() in linker_file_load(), where kld_sx is dropped.

In this case, I think that LINKER_FILE_LINKED might be reasonably set before sysinit sets are invoked. There is no possible failure in linker_file_sysinit(), so the state is de-facto finalized.

Then unset the flag if linker_file_unload/ENOEXEC is returned.

Ok, please commit this as is. I do think that implementing my last note would make the change better, but anyway, just go ahead.