Hello: This patch was applied to bpf/bpf-next.git (master) by Daniel Borkmann <daniel@xxxxxxxxxxxxx>: On Tue, 27 Aug 2024 13:37:21 -0700 you wrote: > We do an ugly copying of options in bpf_object__open_skeleton() just to > be able to set object name from skeleton's recorded name (while still > allowing user to override it through opts->object_name). > > This is not just ugly, but it also is broken due to memcpy() that > doesn't take into account potential skel_opts' and user-provided opts' > sizes differences due to backward and forward compatibility. This leads > to copying over extra bytes and then failing to validate options > properly. It could, technically, lead also to SIGSEGV, if we are unlucky. > > [...] Here is the summary with links: - [bpf-next] libbpf: fix bpf_object__open_skeleton()'s mishandling of options https://git.kernel.org/bpf/bpf-next/c/c634d6f4e12d You are awesome, thank you! -- Deet-doot-dot, I am a bot. https://korg.docs.kernel.org/patchwork/pwbot.html