Linux Kernel ath12k Deadlock Vulnerability in Management Frame Processing

A deadlock vulnerability has been identified in the Linux kernel's ath12k Wi-Fi driver, specifically in the management frame transmission process. This issue arises when a management frame is queued for transmission, and the ath12k_mac_op_flush() function is called to clear pending frames. The flush process takes control of the wiphy lock, preventing the queued transmission work from being processed, which leads to a deadlock. As a result, authentication and association processes can be aborted, causing disruptions in wireless connectivity.

Impact

The deadlock prevents the proper transmission of management frames, causing authentication and association processes to fail. This disruption can lead to connectivity issues, where devices are unable to establish or maintain a wireless connection.

Remediation

The deadlock can be avoided by modifying the ath12k_mac_op_flush() function to properly handle cases where the virtual interface (vif) is NULL. This adjustment ensures that the queued management transmission work is flushed before the wiphy lock is acquired, preventing the deadlock scenario.