Skip to content

Follow-up fix for potential error pointer dereference in propagate_to_outer_instance() #6157

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Follow-up fix for potential error pointer dereference in propagate_to_outer_instance() #6157

wants to merge 1 commit into from

Conversation

@kernel-patches-daemon-bpf-rc
Copy link

@kernel-patches-daemon-bpf-rc kernel-patches-daemon-bpf-rc bot commented Oct 16, 2025

Pull request for series with
subject: Follow-up fix for potential error pointer dereference in propagate_to_outer_instance()
version: 1
url: https://patchwork.kernel.org/project/netdevbpf/list/?series=1012274

@kernel-patches-daemon-bpf-rc
Copy link
Author

kernel-patches-daemon-bpf-rc bot commented Oct 16, 2025

Upstream branch: 5fb750e
series: https://patchwork.kernel.org/project/netdevbpf/list/?series=1012274
version: 1

@kernel-patches-daemon-bpf-rc
Copy link
Author

kernel-patches-daemon-bpf-rc bot commented Oct 16, 2025

Upstream branch: 0c1999e
series: https://patchwork.kernel.org/project/netdevbpf/list/?series=1012274
version: 1

@kernel-patches-daemon-bpf-rc
Copy link
Author

kernel-patches-daemon-bpf-rc bot commented Oct 16, 2025

Upstream branch: 8adc470
series: https://patchwork.kernel.org/project/netdevbpf/list/?series=1012274
version: 1

@shardulsb08
bpf: liveness: Handle ERR_PTR from get_outer_instance() in propagate_…
2218c01 
…to_outer_instance()

propagate_to_outer_instance() calls get_outer_instance() and then uses the
returned pointer to reset/commit stack write marks. When get_outer_instance()
fails (e.g., __lookup_instance() returns -ENOMEM), it may return an ERR_PTR.
Without a check, the code dereferences this error pointer.

Protect the call with IS_ERR() and propagate the error.

Fixes: b3698c3 ("bpf: callchain sensitive stack liveness tracking
using CFG")
Reported-by: kernel-patches-review-bot (kernel-patches/bpf#10006 (comment))
Signed-off-by: Shardul Bankar <[email protected]>
@kernel-patches-daemon-bpf-rc
Copy link
Author

kernel-patches-daemon-bpf-rc bot commented Oct 16, 2025

At least one diff in series https://patchwork.kernel.org/project/netdevbpf/list/?series=1012274 expired. Closing PR.

@kernel-patches-daemon-bpf-rc kernel-patches-daemon-bpf-rc bot deleted the series/1012274=>bpf branch October 19, 2025 00:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

bpf changes-requested V1-ci-pass V1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@shardulsb08