Linux Kernel Time-Travel Mode Scheduling Vulnerability

A vulnerability in the Linux kernel's user-mode Linux (UML) implementation affects scheduling in time-travel mode. The issue arises because the 'sched_yield' syscall from userspace may not prompt an immediate context switch, leading to potential performance degradation or deadlocks. This behavior is exacerbated by certain kernel configurations, such as 'CONFIG_UML_MAX_USERSPACE_ITERATIONS', and is linked to a poorly designed userspace spinlock in AddressSanitizer (ASAN). The vulnerability can cause significant slowdowns or even deadlocks, depending on the kernel settings.

Impact

Exploitation of this vulnerability can lead to severe performance issues, causing extreme slowdowns or deadlocks in the affected process, particularly in user-mode Linux time-travel mode.

Remediation

The vulnerability has been addressed by modifying the kernel to account for time whenever a 'sched_yield' syscall is executed, ensuring that the scheduling mechanism functions correctly in time-travel mode.