Linux Kernel Virtio Device Restore Interrupt Handling Vulnerability

A vulnerability in the Linux kernel's virtio subsystem can lead to improper interrupt handling after a virtual machine (VM) resumes from suspension. This issue occurs in virtio drivers that do not explicitly call 'virtio_device_ready()' during the restore process. As a result, certain interrupts may not be properly managed, leading to warnings about unhandled interrupts. The problem arises because the .enable_cbs callback, used by some transports like virtio-pci to activate interrupts, is not invoked during the restore. The vulnerability has been addressed by ensuring 'virtio_device_ready()' is called in the .restore method, which activates the necessary callbacks and sets the DRIVER_OK status, preventing the DRIVER_OK status from being set twice for drivers that already call 'virtio_device_ready()' in their restore method.

Impact

The vulnerability can cause unhandled interrupt warnings and disrupt normal interrupt processing for affected virtio drivers, potentially leading to degraded performance or responsiveness in the virtual machine.

Remediation

Users can upgrade to the patched version of the Linux kernel where this vulnerability has been addressed. Instructions for upgrading the Linux kernel can typically be found in the documentation for the specific Linux distribution in use.