Linux Kernel HuC Delayed Loading Fence Early Probe Error Vulnerability

A vulnerability in the Linux kernel's Intel graphics driver (i915) relates to the handling of delayed loading fences for the HuC component. When an early probe error occurs, the fence, which is registered with the object tracker, is not properly unregistered. This oversight can lead to kernel warnings by allowing the memory allocated for the fence to be reused inappropriately during future driver probes, tainting the kernel with debug object destruction warnings. The issue arises because the fence cleanup is not executed on early probe errors, leaving behind a dangling reference that can cause problems when the driver is reloaded.

Impact

The vulnerability can lead to kernel warnings that taint the kernel, indicating a potential issue with the driver's handling of object references.

Reproduction

The vulnerability can be reproduced by using the Intel graphics test suite (igt) to reload the i915 module while injecting faults that simulate early probe errors. This process will trigger the improper handling of the HuC delayed loading fence, resulting in the kernel warnings that indicate the issue.

Remediation

The vulnerability has been addressed by modifying the driver to ensure that the fence cleanup is moved to the appropriate release path, preventing the issue from occurring.