From: John Fastabend <john.fastabend@gmail.com>
To: Justin Iurman <justin.iurman@uliege.be>, bpf@vger.kernel.org
Cc: justin.iurman@uliege.be
Subject: RE: [QUESTION] bpf/tc verifier error: invalid access to map value, min value is outside of the allowed memory range
Date: Fri, 25 Aug 2023 17:49:12 -0700 [thread overview]
Message-ID: <64e94c084c7a7_1b2e6208d@john.notmuch> (raw)
In-Reply-To: <e3783201-3b28-3661-eee3-3b5fecad0964@uliege.be>
Justin Iurman wrote:
> Hello,
>
> I'm facing a verifier error and don't know how to make it happy (already
> tried lots of checks). First, here is my env:
> - OS: Ubuntu 22.04.3 LTS
> - kernel: 5.15.0-79-generic x86_64 (CONFIG_DEBUG_INFO_BTF=y)
> - clang version: 14.0.0-1ubuntu1.1
> - iproute2-5.15.0 with libbpf 0.5.0
>
> And here is a simplified example of my program (basically, it will
> insert in packets some bytes defined inside a map):
>
> #include "vmlinux.h"
> #include <bpf/bpf_endian.h>
> #include <bpf/bpf_helpers.h>
>
> #define MAX_BYTES 2048
>
> struct xxx_t {
> __u32 bytes_len;
> __u8 bytes[MAX_BYTES];
> };
>
> struct {
> __uint(type, BPF_MAP_TYPE_ARRAY);
> __uint(max_entries, 1);
> __type(key, __u32);
> __type(value, struct xxx_t);
> __uint(pinning, LIBBPF_PIN_BY_NAME);
> } my_map SEC(".maps");
>
> char _license[] SEC("license") = "GPL";
>
> SEC("egress")
> int egress_handler(struct __sk_buff *skb)
> {
> void *data_end = (void *)(long)skb->data_end;
> void *data = (void *)(long)skb->data;
> struct ethhdr *eth = data;
> struct ipv6hdr *ip6;
> struct xxx_t *x;
> __u32 offset;
> __u32 idx = 0;
>
> offset = sizeof(*eth) + sizeof(*ip6);
> if (data + offset > data_end)
> return TC_ACT_OK;
>
> if (bpf_ntohs(eth->h_proto) != ETH_P_IPV6)
> return TC_ACT_OK;
>
> x = bpf_map_lookup_elem(&my_map, &idx);
> if (!x)
> return TC_ACT_OK;
>
> if (x->bytes_len == 0 || x->bytes_len > MAX_BYTES)
> return TC_ACT_OK;
>
> if (bpf_skb_adjust_room(skb, x->bytes_len, BPF_ADJ_ROOM_NET, 0))
> return TC_ACT_OK;
>
> if (bpf_skb_store_bytes(skb, offset, x->bytes, 8/*x->bytes_len*/,
You will see lots of folks & that value with something to
ensure compiler/verifier get a solid upper/lower bounds.
This is slightly kernel dependent the newer kernels are
better at tracking bounds.
This should do what you want more or less,
x->bytes_len &= 0x7ff
next prev parent reply other threads:[~2023-08-26 0:49 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-08-24 20:32 [QUESTION] bpf/tc verifier error: invalid access to map value, min value is outside of the allowed memory range Justin Iurman
2023-08-26 0:49 ` John Fastabend [this message]
2023-08-26 12:54 ` Justin Iurman
2023-08-26 23:13 ` Justin Iurman
2023-08-27 16:56 ` Justin Iurman
2023-08-28 12:46 ` Eduard Zingerman
2023-08-28 13:25 ` Eduard Zingerman
2023-08-29 0:40 ` Yonghong Song
2023-09-01 11:58 ` Justin Iurman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=64e94c084c7a7_1b2e6208d@john.notmuch \
--to=john.fastabend@gmail.com \
--cc=bpf@vger.kernel.org \
--cc=justin.iurman@uliege.be \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.