git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Tejun Heo <tj@kernel.org>
	Tue, 9 Dec 2025 21:04:33 +0000 (11:04 -1000)
committer	Tejun Heo <tj@kernel.org>
	Thu, 11 Dec 2025 16:27:35 +0000 (06:27 -1000)
commit	9f769637a93fac81689b80df6855f545839cf999
tree	42e1ffe84c94fe2e74b87f358cf142f372d99901	tree \| snapshot
parent	12b5cd99a05f7cbc2ceb88b3b9601d404ef2236a	commit \| diff

sched_ext: Fix bypass depth leak on scx_enable() failure

scx_enable() calls scx_bypass(true) to initialize in bypass mode and then
scx_bypass(false) on success to exit. If scx_enable() fails during task
initialization - e.g. scx_cgroup_init() or scx_init_task() returns an error -
it jumps to err_disable while bypass is still active. scx_disable_workfn()
then calls scx_bypass(true/false) for its own bypass, leaving the bypass depth
at 1 instead of 0. This causes the system to remain permanently in bypass mode
after a failed scx_enable().

Failures after task initialization is complete - e.g. scx_tryset_enable_state()
at the end - already call scx_bypass(false) before reaching the error path and
are not affected. This only affects a subset of failure modes.

Fix it by tracking whether scx_enable() called scx_bypass(true) in a bool and
having scx_disable_workfn() call an extra scx_bypass(false) to clear it. This
is a temporary measure as the bypass depth will be moved into the sched
instance, which will make this tracking unnecessary.

Fixes: 8c2090c504e9 ("sched_ext: Initialize in bypass mode")
Cc: stable@vger.kernel.org # v6.12+
Reported-by: Chris Mason <clm@meta.com>
Reviewed-by: Emil Tsalapatis <emil@etsalapatis.com>
Link: https://lore.kernel.org/stable/286e6f7787a81239e1ce2989b52391ce%40kernel.org
Signed-off-by: Tejun Heo <tj@kernel.org>