lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20180204121530.sl3h77mxbwusp2ul@pali>
Date:   Sun, 4 Feb 2018 13:15:30 +0100
From:   Pali Rohár <pali.rohar@...il.com>
To:     Alexander Sergeyev <sergeev917@...il.com>
Cc:     Mario.Limonciello@...l.com, dvhart@...radead.org,
        andy@...radead.org, linux-kernel@...r.kernel.org,
        mjg59@...f.ucam.org, platform-driver-x86@...r.kernel.org
Subject: Re: PROBLEM: NULL pointer dereference in dell_set_arguments() in 4.15

On Sunday 04 February 2018 12:23:33 Alexander Sergeyev wrote:
> Mario,
> 
> > Would you please try https://patchwork.kernel.org/patch/10194287/
> > And see if it cleans up this null pointer dereference?
> 
> Yes, it does.

So problem which I spotted is not only theoretical, but already affects
users... Pity that I have not looked at that patch which introduced that
problem deeply earlier :-(

So there is race condition between initializing dell-laptop driver and
calling exported function from this driver. But does not we still have
same problem at layer between dell-laptop.ko dell-sbios.ko and
dell-smbios-*.ko?

To make dell_micmute_led_set() work properly we need to ensure that
either WMI or SMM driver is already loaded and initialized.

> Is there any estimates on when the patch will be merged into mainline? I
> want to put something into my distribution bug tracker, but it's unlikely
> they will use this patch before its stabilization.

It should go in next round of merging into linus tree and after that
with proper commit message tags it should included in next stable
versions.

-- 
Pali Rohár
pali.rohar@...il.com

Download attachment "signature.asc" of type "application/pgp-signature" (196 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ