Re: [PATCH v4] bpf: Fix KASAN use-after-free Read in compute_effective_progs

From: Tadeusz Struk
Date: Thu Jun 02 2022 - 10:38:08 EST

Next message: Roberto Sassu: "[PATCH v2 1/9] libbpf: Introduce bpf_map_get_fd_by_id_flags()"
Previous message: Daniel Xu: "Re: [PATCH bpf-next 1/2] bpf, test_run: Add PROG_TEST_RUN support to kprobe"
Next in thread: Andrii Nakryiko: "Re: [PATCH v4] bpf: Fix KASAN use-after-free Read in compute_effective_progs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Andrii,
On 5/23/22 15:47, Andrii Nakryiko wrote:

Hi Andrii,
Do you have any more feedback? Does it look better to you now?

Hi, this is on my TODO list, but I need a bit more focused time to
think all this through and I haven't managed to get it in last week.
I'm worried about the percpu_ref_is_zero(&desc->bpf.refcnt) portion
and whether it can cause some skew in the calculated array index, I
need to look at this a bit more in depth. Sorry for the delay.

Did you get a chance to look at this yet?

--
Thanks,
Tadeusz

Next message: Roberto Sassu: "[PATCH v2 1/9] libbpf: Introduce bpf_map_get_fd_by_id_flags()"
Previous message: Daniel Xu: "Re: [PATCH bpf-next 1/2] bpf, test_run: Add PROG_TEST_RUN support to kprobe"
Next in thread: Andrii Nakryiko: "Re: [PATCH v4] bpf: Fix KASAN use-after-free Read in compute_effective_progs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]