Linux Kernel Tiny SRCU Grace Period Management Vulnerability

A vulnerability in the Linux kernel's Tiny SRCU (Synchronize Read Copy Update) implementation has been addressed. The issue arose because the function responsible for starting grace periods in Tiny SRCU directly invoked 'schedule_work()', which locked the workqueue pool. This created a conflict when 'call_srcu()' was used while holding a scheduler lock, leading to a lock dependency warning. The problem was resolved by modifying the grace period initiation to use 'irq_work', which avoids the scheduler lock conflict. Additionally, 'irq_work_sync()' was added to the cleanup process to prevent a use-after-free error if a queued interrupt work item was processed after the cleanup started.

Impact

The vulnerability could cause a deadlock situation by creating a lock dependency warning, which could disrupt the normal operation of the scheduler and workqueue management.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.