Linux Kernel igc Driver Precision Time Protocol Vulnerability

A vulnerability in the Linux kernel's igc driver related to Precision Time Protocol (PTP) operation has been addressed. The issue arose because writing to clear the PTM status 'valid' bit while the PTM cycle was triggered led to unreliable PTM performance. This vulnerability affected systems using the igc driver, particularly in scenarios involving PTP transactions. The problem could be reproduced by sending PTP offset commands at an unrealistically high frequency, which caused timeouts and disrupted normal PTP operations. Additionally, the vulnerability created a hang during the driver probing process in kdump kernels on systems supporting PTP, further complicating the issue.

Impact

The vulnerability caused unreliable PTP operations, with the potential to disrupt time synchronization processes. In kdump kernels, it could lead to hangs during driver probing, breaking the kdump functionality.

Reproduction

The vulnerability can be reproduced by using the 'phc2sys' command with a high frequency parameter, which triggers PTM transactions. This causes the 'ioctl PTP_OFFSET_PRECISE: Connection timed out' error, indicating a failed PTM transaction. The issue also arises when the igc driver is loaded in the kdump kernel, as the driver enables PTM triggering. If a crash occurs while PTM is triggered, it can leave the network interface card (NIC) in a state that disrupts normal operations, causing hangs during driver probing.

Remediation

The vulnerability has been addressed in the Linux kernel by modifying the igc driver's PTM cycle trigger logic. Users should apply the latest kernel updates where this patch is included.