Skip to content

bpf: Disallow tail call to programs that use cgroup storage #6450

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 2 commits into from
Closed

bpf: Disallow tail call to programs that use cgroup storage #6450

wants to merge 2 commits into from
+132 −1

Conversation

@kernel-patches-daemon-bpf-rc
Copy link

@kernel-patches-daemon-bpf-rc kernel-patches-daemon-bpf-rc bot commented Dec 2, 2025

Pull request for series with
subject: bpf: Disallow tail call to programs that use cgroup storage
version: 2
url: https://patchwork.kernel.org/project/netdevbpf/list/?series=1029796

@ameryhung
bpf: Disallow tail call to programs that use cgroup storage
4568af1 
Mitigate a possible NULL pointer dereference in bpf_get_local_storage()
by disallowing tail call to programs that use cgroup storage. Cgroup
storage is allocated lazily when attaching a cgroup bpf program. With
tail call, it is possible for a callee BPF program to see a NULL
storage pointer if the caller prorgam does not use cgroup storage.

Reported-by: Yinhao Hu <[email protected]>
Reported-by: Kaiyan Mei <[email protected]>
Reported-by: Dongliang Mu <[email protected]>
Closes: https://lore.kernel.org/bpf/[email protected]/
Signed-off-by: Amery Hung <[email protected]>
@ameryhung
selftests/bpf: Test using cgroup storage in a tail call callee program
2e8eabe 
Check that a BPF program that uses cgroup storage cannot be added to
a program array map.

Signed-off-by: Amery Hung <[email protected]>
@kernel-patches-daemon-bpf-rc
Copy link
Author

kernel-patches-daemon-bpf-rc bot commented Dec 2, 2025

Upstream branch: 30f0920
series: https://patchwork.kernel.org/project/netdevbpf/list/?series=1029796
version: 2

@kernel-patches-daemon-bpf-rc
Copy link
Author

kernel-patches-daemon-bpf-rc bot commented Dec 3, 2025

At least one diff in series https://patchwork.kernel.org/project/netdevbpf/list/?series=1029796 expired. Closing PR.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

bpf changes-requested V2-ci-fail V2

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ameryhung