[PATCH v3 6/6] bpf: fix BPF validation w/ conditional jump first

Konstantin Ananyev konstantin.ananyev at huawei.com
Thu Jan 8 12:10:32 CET 2026

Previous message (by thread): [PATCH dpdk v2] telemetry: fix adding dicts in container arrays
Next message (by thread): [PATCH 1/3] vhost: fix virtqueue array size for control queue
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]


> When the BPF program was starting with a conditional jump only one
> (true) execution branch of the program was evaluated. Any instructions
> jumped over were not evaluated and could contain invalid operations.
> The root cause was using zero instruction index as a signal for ending
> evaluation when backtracking.
> 
> Switch from using previous instruction index for tracking execution
> history to a previous instruction pointer. First instruction will not
> have it set, and therefore backtracking _from_ it will end evaluation,
> not backtracking _to_ it like before.
> 
> Add two tests demonstrating the problem:
> * test_jump_over_invalid_first: loads BPF program with
>   conditional jump over the invalid operation, should not succeed;
> * test_jump_over_invalid_non_first: same program with one extra
>   instruction at the start to demonstrate that it is indeed invalid
>   (and also guard against another kind of regression);
> 
> Fixes: 6e12ec4c4d6d ("bpf: add more checks")
> 
> Signed-off-by: Marat Khalili <marat.khalili at huawei.com>
> ---

Acked-by: Konstantin Ananyev <konstantin.ananyev at huawei.com>
Tested-by: Konstantin Ananyev <konstantin.ananyev at huawei.com> 

> --
> 2.43.0

Previous message (by thread): [PATCH dpdk v2] telemetry: fix adding dicts in container arrays
Next message (by thread): [PATCH 1/3] vhost: fix virtqueue array size for control queue
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the stable mailing list