Commit 7a846455 authored Mar 04, 2026 by zhidao su Committed by Tejun Heo Mar 04, 2026

sched_ext: Use WRITE_ONCE() for the write side of dsq->seq update



bpf_iter_scx_dsq_new() reads dsq->seq via READ_ONCE() without holding
any lock, making dsq->seq a lock-free concurrently accessed variable.
However, dispatch_enqueue(), the sole writer of dsq->seq, uses a plain
increment without the matching WRITE_ONCE() on the write side:

    dsq->seq++;
    ^^^^^^^^^^^
    plain write -- KCSAN data race

The KCSAN documentation requires that if one accessor uses READ_ONCE()
or WRITE_ONCE() on a variable to annotate lock-free access, all other
accesses must also use the appropriate accessor. A plain write leaves
the pair incomplete and will trigger KCSAN warnings.

Fix by using WRITE_ONCE() for the write side of the update:

    WRITE_ONCE(dsq->seq, dsq->seq + 1);

This is consistent with bpf_iter_scx_dsq_new() and makes the
concurrent access annotation complete and KCSAN-clean.

Signed-off-by: zhidao su <suzhidao@xiaomi.com>
Signed-off-by: Tejun Heo <tj@kernel.org>

parent 0031c068

kernel/sched/ext.c

+1 −1

Original line number	Diff line number	Diff line
		@@ -1103,7 +1103,7 @@ static void dispatch_enqueue(struct scx_sched sch, struct scx_dispatch_q dsq,
		}

		/* seq records the order tasks are queued, used by BPF DSQ iterator */
		dsq->seq++;
		WRITE_ONCE(dsq->seq, dsq->seq + 1);
		p->scx.dsq_seq = dsq->seq;

		dsq_mod_nr(dsq, 1);