| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20260124231830.3088323-1-joelagnelf@nvidia.com> Date: Sat, 24 Jan 2026 18:18:25 -0500 From: Joel Fernandes <joelagnelf@...dia.com> To: linux-kernel@...r.kernel.org, Paul Walmsley <pjw@...nel.org>, Palmer Dabbelt <palmer@...belt.com>, Albert Ou <aou@...s.berkeley.edu>, Alexandre Ghiti <alex@...ti.fr>, Miguel Ojeda <ojeda@...nel.org>, Boqun Feng <boqun.feng@...il.com>, Gary Guo <gary@...yguo.net>, Björn Roy Baron <bjorn3_gh@...tonmail.com>, Benno Lossin <lossin@...nel.org>, Andreas Hindborg <a.hindborg@...nel.org>, Alice Ryhl <aliceryhl@...gle.com>, Trevor Gross <tmgross@...ch.edu>, Danilo Krummrich <dakr@...nel.org> Cc: Alexandre Courbot <acourbot@...dia.com>, John Hubbard <jhubbard@...dia.com>, Alistair Popple <apopple@...dia.com>, Timur Tabi <ttabi@...dia.com>, Edwin Peer <epeer@...dia.com>, Zhi Wang <zhiw@...dia.com>, David Airlie <airlied@...il.com>, Simona Vetter <simona@...ll.ch>, Bjorn Helgaas <bhelgaas@...gle.com>, Alex Gaynor <alex.gaynor@...il.com>, nouveau@...ts.freedesktop.org, dri-devel@...ts.freedesktop.org, rust-for-linux@...r.kernel.org, Joel Fernandes <joelagnelf@...dia.com>, linux-riscv@...ts.infradead.org Subject: [PATCH v1 0/5] gpu: nova-core: use checked arithmetic for firmware parsing robustness This series adds checked arithmetic throughout nova-core's firmware parsing code to guard rust code against integer overflow from corrupt firmware. Without checked arithmetic, firmware could cause integer overflow when computing offsets. The danger is not just wrapping to a huge value (which may fail validation in other paths), but potentially wrapping to a small plausible offset that accesses entirely wrong data, causing silent corruption or security issues. The series converts all firmware offset calculations to use checked arithmetic. This has been rebased on drm-rust-next. I would like to consider merging for the upcoming merge window to avoid future conflicts. Tested probing with GPU name printed in dmesg on my GA102 (Ampere). The git tree with all patches can be found at: git://git.kernel.org/pub/scm/linux/kernel/git/jfern/linux.git (tag: nova-checked-arith-v1-20260124) Joel Fernandes (5): gpu: nova-core: use checked arithmetic in FWSEC firmware parsing gpu: nova-core: use checked arithmetic in Booter signature parsing gpu: nova-core: use checked arithmetic in frombytes_at helper gpu: nova-core: use checked arithmetic in BinFirmware::data gpu: nova-core: use checked arithmetic in RISC-V firmware parsing drivers/gpu/nova-core/firmware.rs | 3 +- drivers/gpu/nova-core/firmware/booter.rs | 22 ++++++--- drivers/gpu/nova-core/firmware/fwsec.rs | 60 ++++++++++++++---------- drivers/gpu/nova-core/firmware/riscv.rs | 6 ++- 4 files changed, 57 insertions(+), 34 deletions(-) base-commit: 58d26d42818c0f8c9b334cc7cf318b43046e675f -- 2.34.1
Powered by blists - more mailing lists