lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <1759ba1149a599cda0672228d92834b307937368.camel@irl.hu>
Date: Wed, 19 Nov 2025 22:34:13 +0100
From: Gergo Koteles <soyer@....hu>
To: Ricardo Ribalda <ribalda@...omium.org>
Cc: Hans de Goede <hansg@...nel.org>,
  Laurent Pinchart <laurent.pinchart@...asonboard.com>,
  Mauro Carvalho Chehab <mchehab@...nel.org>,
  Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
  linux-media@...r.kernel.org, linux-kernel@...r.kernel.org,
  linux-usb@...r.kernel.org
Subject: Re: [PATCH 4/4] media: uvcvideo: Introduce allow_privacy_override

Hi Ricardo,

On Tue, 2025-11-18 at 19:30 +0100, Ricardo Ribalda wrote:


...

> > 
> > > 
> > > For the new MIPI cameras on laptops we have deliberately made it
> > > impossible to disable the privacy LED while streaming even though
> > > it is often controlled by a separate GPIO because of privacy reasons.
> > > 
> > > For the same privacy reasons I fully agree with Ricardo that this should
> > > be behind a module option. Which replaces step 1. with creating
> > > a /etc/modprobe.d/uvc.conf file, so just about as much work.
> > > 
> > 
> > I agree that this will be useful. The module parameter is also simpler
> > than per-V4L2 control permission management. And the latter is not
> > needed in other cases, I think.
> > 
> > However, if allow_privacy_override is enabled, would it be worth
> > mapping these controls by the kernel?
> > So uvcdynctrl or cameractrls would not be needed for this control.
> 
> If allow_privacy_override is enabled and there is a standard control
> in include/uapi/linux/v4l2-controls.h that supports such control: I
> have no issue adding the mapping for it.
> 

I was misled by V4L2_CID_LED1_MODE in uvcdynctrl's logitech.xml.
That is not in v4l-controls.h.

> Right now we only have V4L2_CID_PRIVACY which is a boolean and has
> usually been used to tell if the privacy shutter is on or off, not to
> configure the LED.
> 
> In any case, the default value of allow_privacy_override should be
> false. I would even argue that the best approach is to block all the
> known LED config controls after a deprecation period.
> Check: https://lore.kernel.org/linux-media/CANiDSCuv8UG6TMx6pK348okK+NYzAorPEgPYzoRCEZiBDgPP=A@mail.gmail.com/
> 

I use these controls now and would use them in 1-2-3 years, so I don't
think removing them completely is a good idea :)

Almost no one compiles their own kernel anymore, so the usefulness of
putting them behind a kernel configuration is questionable.

I also saw these being used in the users of motion project. If someone
is using it as a surveillance camera, there is no need for it to light
up.

The c920 has LEDs like this, that are not easy to cover up with tape
and definitely not aesthetic.
https://www.nikktech.com/main/images/pics/reviews/logitech/c920_webcam/logitech_c920_015.JPG


Regards,
Gergo

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ