Linux Kernel RDMA/mlx5 QP/RQ Destruction Failure Vulnerability

A vulnerability in the Linux kernel's RDMA mlx5 implementation could lead to issues when destroying Queue Pairs (QPs) or Receive Queues (RQs). Previously, the firmware's destruction result was ignored, leaving upper layers unaware of any failures. This lack of communication could cause the upper layers to mistakenly believe that the QP/RQ was successfully destroyed, potentially leading to kernel warnings. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability could cause upper layers to operate under the false assumption that QPs or RQs were successfully destroyed, when in fact they were not. This could lead to kernel warnings about the undestroyed resources.

Reproduction

The vulnerability can be reproduced by creating a QP or RQ, and then destroying it. The destruction process will complete without error, but the upper layers will not be informed of the failure, leading to a kernel warning about the undestroyed resource.

Remediation

Users can upgrade to the latest version of the Linux kernel, where this vulnerability has been addressed.