[PATCH v2 bpf-next 0/2] bpf: Fix Null-Pointer Dereference in kernel_clone() via BPF fmod_ret on security_task_alloc

Next message: Feng Yang: "[PATCH v2 bpf-next 1/2] bpf: Fix Null-Pointer Dereference in kernel_clone() via BPF fmod_ret on security_task_alloc"
Previous message: wit_yuan: "[PATCH next-next v2] net:mctp: fix setting mctp hdr ver reserved field cause data dropped"
Next in thread: Feng Yang: "[PATCH v2 bpf-next 1/2] bpf: Fix Null-Pointer Dereference in kernel_clone() via BPF fmod_ret on security_task_alloc"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Feng Yang

Date: Fri Apr 10 2026 - 02:11:54 EST

From: Feng Yang <yangfeng@xxxxxxxxxx>

This patch set adds return value validation for fmod_ret
to prevent system crashes caused by incorrect return values.

Changes in v2:
- Add validation for fault injection and include selftests. Thanks, Jiri
Olsa, Jiayuan Chen.
- Link to v1: https://lore.kernel.org/all/20260408094816.228322-1-yangfeng59949@xxxxxxx/

Feng Yang (2):
bpf: Fix Null-Pointer Dereference in kernel_clone() via BPF fmod_ret
on security_task_alloc
selftests/bpf: Add selftests for verifying return values of fmod_ret.

kernel/bpf/verifier.c | 261 +++++++++++-------
.../selftests/bpf/prog_tests/verifier.c | 2 +
.../bpf/progs/verifier_fmod_ret_return.c | 60 ++++
3 files changed, 229 insertions(+), 94 deletions(-)
create mode 100644 tools/testing/selftests/bpf/progs/verifier_fmod_ret_return.c

--
2.43.0