2414486 – (CVE-2025-40136) CVE-2025-40136 kernel: crypto: hisilicon/qm - request reserved interrupt for virtual function

Bug 2414486 (CVE-2025-40136) - CVE-2025-40136 kernel: crypto: hisilicon/qm - request reserved interrupt for virtual function

Summary: CVE-2025-40136 kernel: crypto: hisilicon/qm - request reserved interrupt for ...

Keywords:
Status:	NEW
Alias:	CVE-2025-40136
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-11-12 11:02 UTC by OSIDB Bzimport
Modified:	2025-11-26 13:45 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-11-12 11:02:53 UTC

In the Linux kernel, the following vulnerability has been resolved:

crypto: hisilicon/qm - request reserved interrupt for virtual function

The device interrupt vector 3 is an error interrupt for
physical function and a reserved interrupt for virtual function.
However, the driver has not registered the reserved interrupt for
virtual function. When allocating interrupts, the number of interrupts
is allocated based on powers of two, which includes this interrupt.
When the system enables GICv4 and the virtual function passthrough
to the virtual machine, releasing the interrupt in the driver
triggers a warning.

The WARNING report is:
WARNING: CPU: 62 PID: 14889 at arch/arm64/kvm/vgic/vgic-its.c:852 its_free_ite+0x94/0xb4

Therefore, register a reserved interrupt for VF and set the
IRQF_NO_AUTOEN flag to avoid that warning.

Comment 1 Alexander B 2025-11-13 15:29:43 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025111255-CVE-2025-40136-9c55@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.