Skip to content

audio: check for NULL buffers in case of invalid IPC flows #9985

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kv2019i merged 2 commits into from
May 5, 2025
Merged

audio: check for NULL buffers in case of invalid IPC flows #9985

kv2019i merged 2 commits into from
May 5, 2025

Conversation

@lyakh
Copy link
Collaborator

@lyakh lyakh commented May 2, 2025

An invalid IPC flow can trigger a NULL pointer dereference when handling a TRIGGER operation. Add the missing checks.

lyakh added 2 commits May 2, 2025 16:53
@lyakh
audio: check NULL linked buffer in .trigger()
441173f 
If .trigger() is wrongly called on a pipeline, that isn't connected
to a DAI, its edge component will hit a NULL buffer, which then has
to be checked.

Signed-off-by: Guennadi Liakhovetski <guennadi.liakhovetski@linux.intel.com>
@lyakh
ipc3: explicit active component check in ipc_buffer_free()
0e17558 
It is possible that both the source and the sink component are
inactive in ipc_buffer_free(), Add an explicit check for this. The
present code behaves correctly now as well, because it checks for
active_comp->state > COMP_STATE_READY, but active component
misidentification is confusing.

Signed-off-by: Guennadi Liakhovetski <guennadi.liakhovetski@linux.intel.com>
@ranj063
Copy link
Collaborator

ranj063 commented May 2, 2025

@lyakh this is awesome. I have hit this several times if the order in which the widgets are set up and connected doesnt confirm to the source->sink ordering. How did you discover this?

@lyakh
Copy link
Collaborator Author

lyakh commented May 2, 2025

@lyakh this is awesome. I have hit this several times if the order in which the widgets are set up and connected doesnt confirm to the source->sink ordering. How did you discover this?

@ranj063 by reading the code, while working on #9563

@lgirdwood
Copy link
Member

lgirdwood commented May 3, 2025

@wszypelt @lrudyX not expecting this fix to fail tests. Good to merge ?

@wszypelt
Copy link

wszypelt commented May 5, 2025
edited
Loading

@lgirdwood Internal Intel CI build and tests passed :)

@kv2019i kv2019i merged commit a36b63f into thesofproject:main May 5, 2025
42 of 51 checks passed
@lyakh lyakh mentioned this pull request May 5, 2025
Merged
@lyakh lyakh deleted the nullbuff branch May 5, 2025 12:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lgirdwood lgirdwood lgirdwood approved these changes

@kv2019i kv2019i kv2019i approved these changes

@tlissows tlissows Awaiting requested review from tlissows tlissows is a code owner

@plbossart plbossart Awaiting requested review from plbossart plbossart is a code owner

@mmaka1 mmaka1 Awaiting requested review from mmaka1 mmaka1 is a code owner

@lbetlej lbetlej Awaiting requested review from lbetlej lbetlej is a code owner

@dbaluta dbaluta Awaiting requested review from dbaluta dbaluta is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@lyakh @ranj063 @lgirdwood @wszypelt @kv2019i