Linux Kernel IAVF Driver Deadlock Vulnerability Due to Improper Lock Management

A vulnerability in the Linux kernel's IAVF driver has been addressed, which was causing deadlocks during the removal of virtual functions. The issue stemmed from the use of a critical lock that created circular locking dependencies. This vulnerability affected the scheduling and cancellation of tasks, leading to potential deadlocks when removing virtual functions. The problematic critical lock has been removed, and the task scheduling has been adjusted to prevent such deadlocks.

Impact

The vulnerability could lead to deadlocks during the removal of virtual functions, causing circular locking dependencies and disrupting normal operations.

Reproduction

The deadlock can be reproduced by removing a virtual function while the IAVF driver's watchdog task is active. This process will trigger a circular locking dependency, as the removal task holds a lock that the watchdog task is trying to acquire, leading to a deadlock situation.

Remediation

Users should update to the latest version of the Linux kernel where this vulnerability has been addressed.