Linux Kernel RCU Torture Test Preemption Handling Vulnerability in Real-Time Kernels

A vulnerability has been identified in the Linux kernel's real-time (RT) configuration, specifically within the RCU (Read-Copy-Update) torture testing framework. When the kernel is built with real-time preemption enabled, the RCU torture tests can trigger a warning related to preemption counts. This issue arises because, in RT kernels, the preemption count does not accurately reflect the status of soft interrupts, which can lead to improper handling of RCU callbacks and potentially cause performance issues or missed synchronization events.

Impact

This vulnerability can cause incorrect RCU synchronization behavior in real-time kernels, potentially leading to performance degradation or missed synchronization points, which could disrupt the expected behavior of real-time applications.

Reproduction

To reproduce this vulnerability, compile the Linux kernel with the CONFIG_PREEMPT_RT option enabled. Once this kernel is running, execute the RCU torture tests. The test will generate a warning indicating a mismatch in the preemption count, specifically related to the handling of soft interrupts. This warning can be observed in the kernel log, where it will detail the RCU torture test's attempt to manage preemption in a way that is incompatible with the current kernel's interrupt handling configuration.

Remediation

Users can upgrade to a version of the Linux kernel that includes the commit fixing this vulnerability. This commit is available in the Linux kernel stable tree.