Linux Kernel GuC Communication Vulnerability in SR-IOV VF Mode

A vulnerability in the Linux kernel's Direct Rendering Manager (DRM) component for the Xe graphics driver has been addressed. In virtual function (VF) mode of Single Root I/O Virtualization (SR-IOV), VFs need to communicate with the Graphics Compute Unit (GuC) to obtain the Graphics Management Device ID (GMDID) value. However, recent changes in the kernel delayed the initialization of the Graphics Technology (GT) Memory-Mapped I/O (MMIO) registers. This delay caused a Null Pointer Dereference (NPD) crash when VFs attempted to use the GuC functions that rely on the GT MMIO being set up, leading to a page fault error.

Impact

Exploitation of this vulnerability could lead to a page fault error caused by a Null Pointer Dereference, causing a crash.

Reproduction

The vulnerability can be reproduced by running a virtual function in SR-IOV VF mode on a system with the affected Linux kernel. The GT MMIO registers will not be properly initialized before the VF attempts to communicate with the GuC, causing a Null Pointer Dereference crash when the VF tries to read or write MMIO registers using GuC functions.

Remediation

The vulnerability has been resolved by modifying the initialization process to ensure that the GT MMIO registers are set up before VFs communicate with the GuC. Users should update to the latest version of the Linux kernel where this vulnerability has been addressed.