Frustrated users crowdfund a $2,000 fix for Lenovo Legion ‘speakers not working properly’ error — bug bounty posted, coder wins the cash by fixing complex audio annoyance in just a month

(Image credit: Lenovo)

A motivated Lenovo Legion Pro 7 (16IAX10H) owner has successfully gotten their system’s speaker issues fixed after setting up a bug bounty program on GitHub. Nadim Kobeissi, a Linux user, was fed up with the gaming laptop’s “tinny and muffled” speaker output and suspected an issue with the Realtek codec on the open-source OS. Kobeissi posted the project in October with $500 of their own money, and five others pledged their own funds, bringing the total to $2,000. Now the issue has been solved, and the fixer is getting $2,000 from the community that developed around this rallying call.

Bug bounties have proved to be a worthwhile avenue for even the biggest developers to explore – Apple, Google, and Microsoft are among the big-dollar program organizers. In this instance, it is interesting to see this level pulled on a much smaller scale, but for a quick and successful fix.

Kobeissi fired up support for this GitHub-based bug bounty program, which kicked off in October. “We are a bunch of Linux users with the Lenovo Legion Pro 7 (16IAX10H) and we are sick and tired of our speakers not working properly,” the frustrated Legion user wrote. They added that they “also suck at writing Linux kernel audio drivers,” before promising “we will send you a lot of money,” for a fix.

You can see, above, that the Kobeissi ended up being the second-biggest contributor (money wise) to this bug bounty program. It ended up raising a nice, neat $2,000 for the solution finder.

Kobeissi also did their best to help any potential fixer, with a few educated guesses about the source of the Legion Pro 7’s speaker audio annoyances. Chief suspect was the incorrect detection of the Realtek ALC3306 codec. But there was also an issue with “no integration between the codec and the amplifiers in the audio pipeline,” in this laptop, which sports both Tweeters and Woofers.

The bounty-fix is for everyone!

The fix for this audio issue was posted on GitHub just a couple of days ago, indicating the time from the beginning of the bug bounty program to a solution was approximately a month. Kobeissi provides a step-by-step guide here, which affected users can follow.

This guide works for Linux kernel version 6.17.8. Moreover, the guide will get updates for future kernel versions “until the fix is fully integrated into the kernel,” notes the bug bounty organizer. If when you follow the fix process, “Your audio should now work correctly and permanently. This fix will persist across reboots with no additional steps required,” says Kobeissi.

Developer Yakov Till, AKA Lepsus, is largely credited with the fix (for “95% of the engineering work”). They get the monetary reward and heartfelt thanks of those who pledged to support the bug bounty.

We conclude by pondering whether this kind of private bug bounty, organized to eliminate computing annoyances, could set a trend.

Follow Tom's Hardware on Google News, or add us as a preferred source, to get our latest news, analysis, & reviews in your feeds.

TOPICS

Mark Tyson is a news editor at Tom's Hardware. He enjoys covering the full breadth of PC tech; from business and semiconductor design to products approaching the edge of reason.

9 Comments Comment from the forums

ezst036

Crowdfunding a bug fix. This is genuinely cool.

Some might say that's not a lot of money and not worth the dev time. That so completely misses the point.
Reply
Joomsy

Interesting to see Alderon contributing to this. They're one of the only Unreal game devs that I know of that ship out native Linux builds of their games, so it's nice to see that they're legitimately interested in seeing issues fixed on Linux.

Some might say that's not a lot of money and not worth the dev time. That so completely misses the point.

Especially when you consider that most Linux dev work is done by volunteers. $2k is rather substantial for these starving artists.
Reply
The Beav

Should check out the Rimworld mod market discord; you pay people to make the mods you want... And it's busy as hell. It's the only comparative thing I can think of.

Admin said:

Reply
Shiznizzle

ezst036 said:
Crowdfunding a bug fix. This is genuinely cool.

Some might say that's not a lot of money and not worth the dev time. That so completely misses the point.
Yakov Till is the dev . If this guy is russian then that 2000 dollars will be a small jackpot considering the state of the ruble or is it spelled rubble?
Reply
das_stig

No class action case again Lenovo for supplying faulty software? regardless that it's Linux and open source, they supply a product with a known fault, they should repair or in this case, demand Realtek fix their driver.

Lenovo show some class, refund the money and get Realtek to update the driver going forward.
Reply
wakuwaku

das_stig said:
No class action case again Lenovo for supplying faulty software? regardless that it's Linux and open source, they supply a product with a known fault, they should repair or in this case, demand Realtek fix their driver.

Lenovo show some class, refund the money and get Realtek to update the driver going forward.
No maybe you should show some class. Lenovo markets those laptops as Windows laptops. They have no obligation to release drivers or contribute any other code for Linux or any other operating system. It would be nice if they did, but that's the point. IT WOULD BE NICE, but they don't have to.

Realtek also has no obligation to release/update their drivers for every single custom combination of hardware, firmware and software for every company that uses their codecs. They only have responsibility for their own products. If oems decide to use Realtek codecs with their own implementations of speaker/amplifier/firmware combination, thats on the oem and/or the manufcaturer/developer of the other parts of that said implementation. There are so many different combination possibilities in the world from so many different manufacturers and developers, and you want one company to take responsibility for all of them? For FREE? Please be realistic. Even devs working on bug bounties work on them for money.
Reply
snemarch

wakuwaku said:
No maybe you should show some class. Lenovo markets those laptops as Windows laptops. They have no obligation to release drivers or contribute any other code for Linux or any other operating system. It would be nice if they did, but that's the point. IT WOULD BE NICE, but they don't have to.
No company should be forced to dedicate development time for Linux support, but they should be **forced to** release enough information publicly, without NDAs, that any competent kernel developer could implement drivers for **any** operating system to unlock **full** capabilities of the hardware.
Reply
Fomdoo

Not surprising it's Realtek. I don't know how this company became the defacto audio hardware company, their drivers are terrible.

On a separate note can we create a similar project to get someone to continuously make Nvidia drivers for Linux? I would totally switch to SteamOS of Nvidia worked well with Linux.
Reply
das_stig

wakuwaku said:
No maybe you should show some class. Lenovo markets those laptops as Windows laptops. They have no obligation to release drivers or contribute any other code for Linux or any other operating system. It would be nice if they did, but that's the point. IT WOULD BE NICE, but they don't have to.

Realtek also has no obligation to release/update their drivers for every single custom combination of hardware, firmware and software for every company that uses their codecs. They only have responsibility for their own products. If oems decide to use Realtek codecs with their own implementations of speaker/amplifier/firmware combination, thats on the oem and/or the manufcaturer/developer of the other parts of that said implementation. There are so many different combination possibilities in the world from so many different manufacturers and developers, and you want one company to take responsibility for all of them? For FREE? Please be realistic. Even devs working on bug bounties work on them for money.
"No maybe you should show some class."
Since when was a personal attack justified ?
"Please be realistic"
Adjust your tone mate, your being aggressive and not welcome here at TH.

Realtek supply the base driver and Lenovo customize to their hardware, they have responsibility to ensure they work or simply do not provide Linux drivers and stick to Windows and point users who want Linux to Realtek to fix their mess
Reply

Show more comments