* [alsa-devel] what's the kernel policy WRT firmware parsing security?
@ 2019-10-06 10:47 Guennadi Liakhovetski
2019-10-06 14:10 ` Jaroslav Kysela
0 siblings, 1 reply; 3+ messages in thread
From: Guennadi Liakhovetski @ 2019-10-06 10:47 UTC (permalink / raw)
To: alsa-devel
Hi,
I decided to have a look at whether the ALSA topology parsing is bullet
proof against malformed topology files. It seems not quite to be the case.
At least I seem to have found a possibility of crashing the kernel by a
malformed topology file. I haven't tested it, so, maybe I'm wrong.
In principle, firmware files can only be written by root, and if you have
root access to the system, it's anyway doomed. Is this the approach and
we aren't really trying to make topology parsing 100% safe, or do we want
to fix any such possible parsing issues?
Thanks
Guennadi
_______________________________________________
Alsa-devel mailing list
Alsa-devel@alsa-project.org
https://mailman.alsa-project.org/mailman/listinfo/alsa-devel
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [alsa-devel] what's the kernel policy WRT firmware parsing security?
2019-10-06 10:47 [alsa-devel] what's the kernel policy WRT firmware parsing security? Guennadi Liakhovetski
@ 2019-10-06 14:10 ` Jaroslav Kysela
2019-10-07 14:16 ` Guennadi Liakhovetski
0 siblings, 1 reply; 3+ messages in thread
From: Jaroslav Kysela @ 2019-10-06 14:10 UTC (permalink / raw)
To: alsa-devel; +Cc: Guennadi Liakhovetski
Dne 06. 10. 19 v 12:47 Guennadi Liakhovetski napsal(a):
> Hi,
>
> I decided to have a look at whether the ALSA topology parsing is bullet
> proof against malformed topology files. It seems not quite to be the case.
> At least I seem to have found a possibility of crashing the kernel by a
> malformed topology file. I haven't tested it, so, maybe I'm wrong.
>
> In principle, firmware files can only be written by root, and if you have
> root access to the system, it's anyway doomed. Is this the approach and
> we aren't really trying to make topology parsing 100% safe, or do we want
> to fix any such possible parsing issues?
The kernel should not crash. Dot. If you found a serious issue, please,
report it or better, send the fix.
Thanks,
Jaroslav
--
Jaroslav Kysela <perex@perex.cz>
Linux Sound Maintainer; ALSA Project; Red Hat, Inc.
_______________________________________________
Alsa-devel mailing list
Alsa-devel@alsa-project.org
https://mailman.alsa-project.org/mailman/listinfo/alsa-devel
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [alsa-devel] what's the kernel policy WRT firmware parsing security?
2019-10-06 14:10 ` Jaroslav Kysela
@ 2019-10-07 14:16 ` Guennadi Liakhovetski
0 siblings, 0 replies; 3+ messages in thread
From: Guennadi Liakhovetski @ 2019-10-07 14:16 UTC (permalink / raw)
To: Jaroslav Kysela; +Cc: alsa-devel
Hi Jaroslav,
On Sun, Oct 06, 2019 at 04:10:28PM +0200, Jaroslav Kysela wrote:
> Dne 06. 10. 19 v 12:47 Guennadi Liakhovetski napsal(a):
> > Hi,
> >
> > I decided to have a look at whether the ALSA topology parsing is bullet
> > proof against malformed topology files. It seems not quite to be the case.
> > At least I seem to have found a possibility of crashing the kernel by a
> > malformed topology file. I haven't tested it, so, maybe I'm wrong.
> >
> > In principle, firmware files can only be written by root, and if you have
> > root access to the system, it's anyway doomed. Is this the approach and
> > we aren't really trying to make topology parsing 100% safe, or do we want
> > to fix any such possible parsing issues?
>
> The kernel should not crash. Dot. If you found a serious issue, please,
> report it or better, send the fix.
Sorry, I'm still configuring / getting used to mutt and git send-mail on this
PC, so adding you to CC didn't work out :-/ Here's a link:
https://mailman.alsa-project.org/pipermail/alsa-devel/2019-October/156352.html
Thanks
Guennadi
> Thanks,
> Jaroslav
>
> --
> Jaroslav Kysela <perex@perex.cz>
> Linux Sound Maintainer; ALSA Project; Red Hat, Inc.
_______________________________________________
Alsa-devel mailing list
Alsa-devel@alsa-project.org
https://mailman.alsa-project.org/mailman/listinfo/alsa-devel
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2019-10-07 14:17 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2019-10-06 10:47 [alsa-devel] what's the kernel policy WRT firmware parsing security? Guennadi Liakhovetski
2019-10-06 14:10 ` Jaroslav Kysela
2019-10-07 14:16 ` Guennadi Liakhovetski
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox