On Fri, Nov 5, 2021 at 6:40 PM Martin KaFai Lau <kafai@xxxxxx> wrote: > > This set fixes an out-of-bound access issue when jit-ing the > bpf_pseudo_func insn (i.e. ld_imm64 with src_reg == BPF_PSEUDO_FUNC) > > Martin KaFai Lau (2): > bpf: Stop caching subprog index in the bpf_pseudo_func insn > bpf: selftest: Trigger a DCE on the whole subprog > > include/linux/bpf.h | 6 +++ > kernel/bpf/core.c | 7 ++++ > kernel/bpf/verifier.c | 37 +++++++------------ > .../bpf/progs/for_each_array_map_elem.c | 12 ++++++ > 4 files changed, 39 insertions(+), 23 deletions(-) Thanks! Applied to bpf tree with Reported-by: Yonatan Komornik <yoniko@xxxxxxxxx>
