Linux Kernel MMIO Range Mismanagement Vulnerability in PowerPC pSeries IOMMU

A vulnerability exists in the Linux kernel's PowerPC pSeries IOMMU implementation, where the IOMMU fails to properly reserve memory-mapped input/output (MMIO) pages that overlap with the Dynamic DMA Window (DDW) range, particularly in 32-bit addressing. This mismanagement causes the Logical Partition (LPAR) to encounter a kernel panic during boot, as the IOMMU incorrectly maps Direct Memory Access (DMA) buffers into the unreserved MMIO range.

Impact

The vulnerability leads to a kernel panic in the affected LPAR, caused by improper handling of memory access, specifically a segmentation fault due to accessing an invalid memory area.

Reproduction

The vulnerability can be reproduced on a PowerPC pSeries system running the affected Linux kernel version. During the boot process, the IOMMU incorrectly maps DMA buffers into the MMIO range that overlaps with the Dynamic DMA Window, causing the kernel to OOPS and the system to fail to boot properly.