Thanks Bohdan for reporting this.

Let me have a look and try to reproduce it.

Best regards,
Nick

From: Bohdan.Hunko--- via TF-M <tf-m@lists.trustedfirmware.org>
Sent: 16 December 2025 20:54
To: tf-m@lists.trustedfirmware.org <tf-m@lists.trustedfirmware.org>
Cc: Ivan.Kozemchuk@infineon.com <Ivan.Kozemchuk@infineon.com>; Hennadiy.Kytsun@infineon.com <Hennadiy.Kytsun@infineon.com>
Subject: [TF-M] Race condition in SPM scheduler lock logic
 

Hi all,

 

I have found a bug in SPM scheduler lock logic – this bug is extremely hard to reproduce as it requires precise conditions and timings, but here is the description of the bug scenario:

  1. Partition A calls psa_wait to wait for a signal (this signal is going to be asserted by FLIH IRQ later)
  2. Currently signal is not asserted, no other partition is runnable, thus SPM marks this signal as being awaited and then schedules idle_thread
  3. idle_thread calls psa_wait to poll SPM
    1. psa_wait calls tfm_arch_thread_fn_call
    2. tfm_arch_thread_fn_call calls backend_abi_entering_spm
    3. backend_abi_entering_spm  calls arch_acquire_sched_lock
    4. arch_acquire_sched_lock sets scheduler_lock = SCHEDULER_LOCKED
    5. psa_wait (called by idle_partition) is being processed up to the point of backend_abi_leaving_spm
    6. backend_abi_leaving_spm calls arch_release_sched_lock
    7. here is where very sneaky the bug happens
    8. arch_release_sched_lock executes following assembly instructions

                                          i.    "ldr    r1, =scheduler_lock                    \n"
"ldr    r0, [r1, #0]                           \n"

                                         ii.    At this point r0 holds scheduler_lock is = SCHEDULER_LOCKED

                                        iii.    After these instructions are executed FLIH interrupt arrives

        1. FLIH handler asserts signal (which should unblock execution of the Partition A)
        2. spm_handle_interrupt calls backend_assert_signal
        3. backend_assert_signal does
             if (p_pt->signals_asserted & p_pt->signals_waiting)
          and returns STATUS_NEED_SCHEDULE
        4. spm_handle_interrupt calls arch_attempt_schedule
        5. arch_attempt_schedule checks value of scheduler_lock (which is SCHEDULER_LOCKED) and sets scheduler_lock= SCHEDULER_ATTEMPTED
        6. Interrupt returns

                                        iv.    Execution continues, now scheduler_lock is = SCHEDULER_ATTEMPTED
But the next line of code in arch_release_sched_lock is
"movs   r2, #"M2S(SCHEDULER_UNLOCKED)"         \n"/* Unlock scheduler */

This effectively overwrites scheduler_lock from SCHEDULER_ATTEMPTED to SCHEDULER_UNLOCKED
This means that following SRM scheduling logic will not trigger PendSV and just return to idle_partition – effectively resulting in a hang of a system.

 

Looks like the solution is to wrap lock logic in critical section. But may be there is other things that can be done to better fix this issue.

 

Let me know if there are other details that may be helpful to fix this bug.

 

 

Bohdan Hunko

 

Cypress Semiconductor Ukraine LLC

Senior Engineer

CSS ICW SW INT BFS SFW

Mobile: +380995019714
Bohdan.Hunko@infineon.com