Page 4 of 6 FirstFirst ... 23456 LastLast
Results 31 to 40 of 59

Thread: A Backdoor In AMD's Catalyst OpenCL Library?

  1. #31
    Join Date
    Mar 2011
    Posts
    351

    Default

    here's the asm dump http://pastebin.com/K1hRupTp

  2. #32
    Join Date
    Jan 2014
    Posts
    5

    Default This is weird

    I've been looking throught the code (disassembled with IDA) and there some very weird things.

    The osTestBackdoorATI function takes two arguments. The first is a value used in the main switch, the other is a pointer.
    Depending on the first argument osTestBackdoorATI will call different functions.

    Now the weird part is that a lot of this code seems to be doing ... nothing at all.

    For example at the very start a global object's address is fetched from the GOT and placed into ebx. And then functions are called and ebx is overwritten before even being used.

    There's one function that does NOTHING AT ALL.
    It takes the value in ebx, does nothing with it, changes ebp, zeroes eax even if eax isn't used after this point, then restores ebp, canceling the changes, and returns.



    This definitely looks like handwritten assembly. A compiler would never generate empty functions like that. Not unless you disabled ~every optimisations.

    I'm still trying to understand what it's doing.

  3. #33
    Join Date
    Feb 2008
    Location
    Linuxland
    Posts
    5,332

    Default

    Quote Originally Posted by FLHerne View Post
    Put my bet down for 'not actually a backdoor; humorously-named test function'.

    If you were going to put a top-secret NSA backdoor into your driver, why would you give it such an obvious name? You'd call it osDefinitelyNotABackdoor instead, right?!
    Never forget Microsoft and their NSAkey.

  4. #34
    Join Date
    Oct 2012
    Posts
    299

    Default

    Quote Originally Posted by FLHerne View Post
    Put my bet down for 'not actually a backdoor; humorously-named test function'.

    If you were going to put a top-secret NSA backdoor into your driver, why would you give it such an obvious name? You'd call it osDefinitelyNotABackdoor instead, right?!
    i would prefere:
    "osTrustMeThisIsNotABackDoor"

  5. #35
    Join Date
    Jan 2014
    Posts
    11

    Default

    Guys, seriously... I know with the recent NSA and Snowden stuff and all, but the word "backdoor" has a lot of other meanings besides something that can be used to invade your privacy and fetch your private information.

    As a software developer, if I had to put myself in the shoes of AMD devs, I guess it would make sense to use the name "osTestBackdoor" as the symbol for something like a function to be able to insert tests into a running driver to debug its behavior. That is my best guess about what it does, and if I were to write such a function, that would be a good thing to call it. I highly doubt it would be the type of backdoor you guys are thinking of with the NSA and everything, especially since the name is so obvious.

    Although, I guess it never hurts to be extra paranoid, just in case .

  6. #36
    Join Date
    Oct 2012
    Location
    Washington State
    Posts
    524

    Default

    Quote Originally Posted by Kemosabe View Post
    Let me summarize:
    1) Most likely you are Linux user.
    2) You considered buying a AMD GPU but not nVidia

    This implies:
    1) You do not need high end GPU performance
    2) You do not need bugfree OpenCL implementation (if you use it at all)

    Well, why the hell should you use catalyst then? I use radeon open source drivers every day (r600) and i am completely happy with it. Cities in Motions 2 runs great. :-P
    As an Nvidia owner moving to AMD Radeon they want a modern OpenCL stack that when fully matured will of course never be supported by NVidia, never mind a better combined LLVM/Clang experience working with the upcoming options in their OpenCL stack support of the R600 and new targets.

  7. #37
    Join Date
    Dec 2013
    Posts
    37

    Default

    Another backdoor funded by US tax money?

  8. #38
    Join Date
    Jan 2011
    Posts
    472

    Default

    Quote Originally Posted by chuckula View Post
    Jigga what?

    Go look at the top contributors list to the Linux kernel sometime, you'll note that Intel consistently the largest contributing company that isn't a 100% Linux based organization like Redhat. You won't see AMD anywhere near the top of that list. I think that the fact that Intel is the first company to bring Android into the 64-bit world and that there are excellent Chromebooks running on Haswell parts speaks volumes about how important they think Linux is and where they are going with Linux.

    Just remember that back in the 90's when Microsoft was on trial for anti-trust violations it was Jerry Sanders, CEO of AMD, who got up on the witness stand and testified in favor of Microsoft. I always remember that when their PR department starts up with the usual self-serving whining about how Intel is a "monopoly" or something.

    Just remember that AMD branded its own CPUs as "Athlon XP" right around 2001 when Microsoft launched "Windows XP". You think that was a coincidence?

    When thinking about Intel vs. AMD here's the easiest way to frame the question: "Would my machine even boot if I stripped out all the Linux code contributed by company X". If you strip out AMD's contributions, then even on an AMD box your machine would still boot fine (you might lose GPU drivers if you use open-source AMD drivers). If you strip out all the Intel-contributed code, your AMD box wouldn't even come close to completing a boot sequence.
    Very good points.

  9. #39
    Join Date
    Jul 2009
    Posts
    261

    Default

    maybe it is a cry for help and they wanted it to be found!!! XD
    on the other hand i recently stumbled upon a case of pure ignorance in PR: #hasjustinelandedyet
    maybe AMD is simply suffering from the same.. at least when it comes to linux...

  10. #40
    Join Date
    Aug 2011
    Posts
    571

    Default

    https://twitter.com/grahamsellers/st...24033998995456 :

    Quote Originally Posted by Graham Sellers
    osTestBackdoorATI is a hook used by our automated tests to access memory usage statistics from the driver.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •