[PATCH bpf v3 0/2] gen_loader fixes
KP Singh
kpsingh at kernel.org
Fri May 22 21:53:35 UTC 2026
# v2 -> v3
defer fixing 32 bit.
Fix off-by-one in the signed loader's cleanup jump and reject
non-exclusive metadata maps.
Patch 1 fixes a pre-existing bug: the cleanup-label offset in
emit_signature_match() does not account for the MOV insn emitted
before the JMP.
Patch 2 adds an exclusivity check so the loader bails if the
metadata map lacks excl_prog_hash, preventing stale-hash attacks
from concurrent map writers.
KP Singh (2):
libbpf: fix off-by-one in emit_signature_match jump offset
bpf, libbpf: reject non-exclusive metadata maps in the signed loader
include/linux/bpf.h | 2 +-
tools/lib/bpf/gen_loader.c | 20 +++++++++++++++++--
.../selftests/bpf/progs/verifier_map_ptr.c | 8 +++++---
3 files changed, 24 insertions(+), 6 deletions(-)
--
2.53.0
More information about the Linux-security-module-archive
mailing list