ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot (499cc881) · Commits · Mirrors / github.com / c-sky_csky-linux

Unverified Commit 499cc881 authored Jul 12, 2022 by

Peter Ujfalusi Committed by Mark Brown Jul 12, 2022

ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot



It is not yet clear, but it is possible to create a firmware so broken
that it will send a reply message before a FW_READY message (it is not
yet clear if FW_READY will arrive later).
Since the reply_data is allocated only after the FW_READY message, this
will lead to a NULL pointer dereference if not filtered out.

The issue was reported with IPC4 firmware but the same condition is present
for IPC3.

Reported-by: Kai Vehmanen <kai.vehmanen@linux.intel.com>
Signed-off-by: Peter Ujfalusi <peter.ujfalusi@linux.intel.com>
Reviewed-by: Ranjani Sridharan <ranjani.sridharan@linux.intel.com>
Reviewed-by: Pierre-Louis Bossart <pierre-louis.bossart@linux.intel.com>
Link: https://lore.kernel.org/r/20220712122357.31282-3-peter.ujfalusi@linux.intel.com
Signed-off-by: Mark Brown <broonie@kernel.org>

parent acacd9ee

Hide whitespace changes

Inline Side-by-side

Please register or to comment