[PATCH bpf-next] bpf: clear user buf when bpf_d_path failed

From: Tao Chen
Date: Wed Jun 11 2025 - 11:54:16 EST

Next message: Jakub Kicinski: "Re: [PATCH v6 0/5] Allow dyn MSI-X vector allocation of MANA"
Previous message: Geert Uytterhoeven: "[PATCH v2 net-next] net: hns3: Demote load and progress messages to debug level"
Next in thread: Song Liu: "Re: [PATCH bpf-next] bpf: clear user buf when bpf_d_path failed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The bpf_d_path() function may fail. If it does,
clear the user buf, like bpf_probe_read etc.

Signed-off-by: Tao Chen <chen.dylane@xxxxxxxxx>
---
kernel/trace/bpf_trace.c | 5 ++++-
1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/kernel/trace/bpf_trace.c b/kernel/trace/bpf_trace.c
index 0998cbbb963..bb1003cb271 100644
--- a/kernel/trace/bpf_trace.c
+++ b/kernel/trace/bpf_trace.c
@@ -916,11 +916,14 @@ BPF_CALL_3(bpf_d_path, struct path *, path, char *, buf, u32, sz)
* potentially broken verifier.
*/
len = copy_from_kernel_nofault(&copy, path, sizeof(*path));
- if (len < 0)
+ if (len < 0) {
+ memset(buf, 0, sz);
return len;
+ }

p = d_path(&copy, buf, sz);
if (IS_ERR(p)) {
+ memset(buf, 0, sz);
len = PTR_ERR(p);
} else {
len = buf + sz - p;
--
2.48.1

Next message: Jakub Kicinski: "Re: [PATCH v6 0/5] Allow dyn MSI-X vector allocation of MANA"
Previous message: Geert Uytterhoeven: "[PATCH v2 net-next] net: hns3: Demote load and progress messages to debug level"
Next in thread: Song Liu: "Re: [PATCH bpf-next] bpf: clear user buf when bpf_d_path failed"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]