[PATCH v2 0/2] gen_loader fixes
KP Singh
kpsingh at kernel.org
Thu May 21 15:22:15 UTC 2026
Fix off-by-one in the signed loader's cleanup jump and reject
non-exclusive metadata maps.
Patch 1 fixes a pre-existing bug: the cleanup-label offset in
emit_signature_match() does not account for the MOV insn emitted
before the JMP.
Patch 2 adds an exclusivity check so the loader bails if the
metadata map lacks excl_prog_hash, preventing stale-hash attacks
from concurrent map writers.
KP Singh (2):
libbpf: fix off-by-one in emit_signature_match jump offset
bpf, libbpf: reject non-exclusive metadata maps in the signed loader
include/linux/bpf.h | 2 +-
tools/lib/bpf/gen_loader.c | 19 +++++++++++++++++--
.../selftests/bpf/progs/verifier_map_ptr.c | 10 ++++++----
3 files changed, 24 insertions(+), 7 deletions(-)
--
2.53.0
More information about the Linux-security-module-archive
mailing list