BPF signature hash chains #6059
Closed
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Author
|
Upstream branch: 0cc114d |
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
bpf-next_base
branch
from
1f0b79a to
7abc661
Compare
Author
|
Upstream branch: 0cc114d |
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
series/1006678=>bpf-next
branch
from
c91222f to
680f2c6
Compare
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
bpf-next_base
branch
from
7abc661 to
31fc1e2
Compare
Author
|
Upstream branch: 4b21134 |
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
series/1006678=>bpf-next
branch
from
680f2c6 to
2a36c3b
Compare
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
bpf-next_base
branch
from
31fc1e2 to
25b0220
Compare
Author
|
Upstream branch: 0e8e60e |
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
series/1006678=>bpf-next
branch
from
2a36c3b to
e1d62c8
Compare
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
bpf-next_base
branch
from
25b0220 to
191fc27
Compare
Author
|
Upstream branch: 15cf392 |
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
series/1006678=>bpf-next
branch
from
e1d62c8 to
34c75b6
Compare
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
bpf-next_base
branch
from
191fc27 to
3561924
Compare
Author
|
Upstream branch: 4ef77dd |
added 2 commits
September 28, 2025 04:40
This patch introduces hash chain support for signature verification of arbitrary bpf map objects which was described here: https://lore.kernel.org/linux-security-module/[email protected]/ The UAPI is extended to allow for in-kernel checking of maps passed in via the fd_array. A hash chain is constructed from the maps, in order specified by the signature_maps field. The hash chain is terminated with the hash of the program itself. Signed-off-by: Blaise Boscaccy <[email protected]>
Convert an existing signed lskel test to use the newly introduced map signature hash-chain support added to libbpf. Signed-off-by: Blaise Boscaccy <[email protected]>
kernel-patches-daemon-bpf-rc
bot
force-pushed
the
series/1006678=>bpf-next
branch
from
34c75b6 to
5e50652
Compare
Author
|
At least one diff in series https://patchwork.kernel.org/project/netdevbpf/list/?series=1006678 expired. Closing PR. |
kernel-patches-daemon-bpf-rc
bot
deleted the
series/1006678=>bpf-next
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull request for series with
subject: BPF signature hash chains
version: 1
url: https://patchwork.kernel.org/project/netdevbpf/list/?series=1006678