* [PATCH bpf-next v4 1/2] bpf/helpers: bpf_strnstr: Exact match length
[not found] <cover.1756433400.git.rongtao@cestc.cn>
@ 2025-08-29 2:12 ` Rong Tao
2025-08-29 10:56 ` Viktor Malik
2025-08-29 2:13 ` [PATCH bpf-next v4 2/2] selftests/bpf: Add tests for bpf_strnstr Rong Tao
1 sibling, 1 reply; 3+ messages in thread
From: Rong Tao @ 2025-08-29 2:12 UTC (permalink / raw)
To: andrii.nakryiko, ast, daniel, vmalik
Cc: Rong Tao, Andrii Nakryiko, Martin KaFai Lau, Eduard Zingerman,
Song Liu, Yonghong Song, John Fastabend, KP Singh,
Stanislav Fomichev, Hao Luo, Jiri Olsa, Mykola Lysenko,
Shuah Khan,
open list:BPF [GENERAL] (Safe Dynamic Programs and Tools),
open list, open list:KERNEL SELFTEST FRAMEWORK
From: Rong Tao <rongtao@cestc.cn>
strnstr should not treat the ending '\0' of s2 as a matching character
if the parameter 'len' equal to s2 string length, for example:
1. bpf_strnstr("openat", "open", 4) = -ENOENT
2. bpf_strnstr("openat", "open", 5) = 0
This patch makes (1) return 0, indicating a successful match.
Fixes: e91370550f1f ("bpf: Add kfuncs for read-only string operations")
Signed-off-by: Rong Tao <rongtao@cestc.cn>
---
kernel/bpf/helpers.c | 10 +++++++++-
1 file changed, 9 insertions(+), 1 deletion(-)
diff --git a/kernel/bpf/helpers.c b/kernel/bpf/helpers.c
index 401b4932cc49..bf04881f96ec 100644
--- a/kernel/bpf/helpers.c
+++ b/kernel/bpf/helpers.c
@@ -3672,10 +3672,18 @@ __bpf_kfunc int bpf_strnstr(const char *s1__ign, const char *s2__ign, size_t len
guard(pagefault)();
for (i = 0; i < XATTR_SIZE_MAX; i++) {
- for (j = 0; i + j < len && j < XATTR_SIZE_MAX; j++) {
+ for (j = 0; i + j <= len && j < XATTR_SIZE_MAX; j++) {
__get_kernel_nofault(&c2, s2__ign + j, char, err_out);
if (c2 == '\0')
return i;
+ /**
+ * corner case i+j==len to ensure that we matched
+ * entire s2. for example, param len=3:
+ * s1: A B C D E F -> i==1
+ * s2: B C D -> j==2
+ */
+ if (i + j == len)
+ break;
__get_kernel_nofault(&c1, s1__ign + j, char, err_out);
if (c1 == '\0')
return -ENOENT;
--
2.51.0
^ permalink raw reply related [flat|nested] 3+ messages in thread
* [PATCH bpf-next v4 2/2] selftests/bpf: Add tests for bpf_strnstr
[not found] <cover.1756433400.git.rongtao@cestc.cn>
2025-08-29 2:12 ` [PATCH bpf-next v4 1/2] bpf/helpers: bpf_strnstr: Exact match length Rong Tao
@ 2025-08-29 2:13 ` Rong Tao
1 sibling, 0 replies; 3+ messages in thread
From: Rong Tao @ 2025-08-29 2:13 UTC (permalink / raw)
To: andrii.nakryiko, ast, daniel, vmalik
Cc: Rong Tao, Andrii Nakryiko, Martin KaFai Lau, Eduard Zingerman,
Song Liu, Yonghong Song, John Fastabend, KP Singh,
Stanislav Fomichev, Hao Luo, Jiri Olsa, Mykola Lysenko,
Shuah Khan,
open list:BPF [GENERAL] (Safe Dynamic Programs and Tools),
open list, open list:KERNEL SELFTEST FRAMEWORK
From: Rong Tao <rongtao@cestc.cn>
Add tests for bpf_strnstr():
bpf_strnstr("", "", 0) = 0
bpf_strnstr("hello world", "hello", 5) = 0
bpf_strnstr(str, "hello", 4) = -ENOENT
bpf_strnstr("", "a", 0) = -ENOENT
Signed-off-by: Rong Tao <rongtao@cestc.cn>
---
tools/testing/selftests/bpf/progs/string_kfuncs_success.c | 8 ++++++--
1 file changed, 6 insertions(+), 2 deletions(-)
diff --git a/tools/testing/selftests/bpf/progs/string_kfuncs_success.c b/tools/testing/selftests/bpf/progs/string_kfuncs_success.c
index 46697f381878..a47690174e0e 100644
--- a/tools/testing/selftests/bpf/progs/string_kfuncs_success.c
+++ b/tools/testing/selftests/bpf/progs/string_kfuncs_success.c
@@ -30,8 +30,12 @@ __test(2) int test_strcspn(void *ctx) { return bpf_strcspn(str, "lo"); }
__test(6) int test_strstr_found(void *ctx) { return bpf_strstr(str, "world"); }
__test(-ENOENT) int test_strstr_notfound(void *ctx) { return bpf_strstr(str, "hi"); }
__test(0) int test_strstr_empty(void *ctx) { return bpf_strstr(str, ""); }
-__test(0) int test_strnstr_found(void *ctx) { return bpf_strnstr(str, "hello", 6); }
-__test(-ENOENT) int test_strnstr_notfound(void *ctx) { return bpf_strnstr(str, "hi", 10); }
+__test(0) int test_strnstr_found1(void *ctx) { return bpf_strnstr("", "", 0); }
+__test(0) int test_strnstr_found2(void *ctx) { return bpf_strnstr(str, "hello", 5); }
+__test(0) int test_strnstr_found3(void *ctx) { return bpf_strnstr(str, "hello", 6); }
+__test(-ENOENT) int test_strnstr_notfound1(void *ctx) { return bpf_strnstr(str, "hi", 10); }
+__test(-ENOENT) int test_strnstr_notfound2(void *ctx) { return bpf_strnstr(str, "hello", 4); }
+__test(-ENOENT) int test_strnstr_notfound3(void *ctx) { return bpf_strnstr("", "a", 0); }
__test(0) int test_strnstr_empty(void *ctx) { return bpf_strnstr(str, "", 1); }
char _license[] SEC("license") = "GPL";
--
2.51.0
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [PATCH bpf-next v4 1/2] bpf/helpers: bpf_strnstr: Exact match length
2025-08-29 2:12 ` [PATCH bpf-next v4 1/2] bpf/helpers: bpf_strnstr: Exact match length Rong Tao
@ 2025-08-29 10:56 ` Viktor Malik
0 siblings, 0 replies; 3+ messages in thread
From: Viktor Malik @ 2025-08-29 10:56 UTC (permalink / raw)
To: Rong Tao, andrii.nakryiko, ast, daniel
Cc: Rong Tao, Andrii Nakryiko, Martin KaFai Lau, Eduard Zingerman,
Song Liu, Yonghong Song, John Fastabend, KP Singh,
Stanislav Fomichev, Hao Luo, Jiri Olsa, Mykola Lysenko,
Shuah Khan,
open list:BPF [GENERAL] (Safe Dynamic Programs and Tools),
open list, open list:KERNEL SELFTEST FRAMEWORK
On 8/29/25 04:12, Rong Tao wrote:
> From: Rong Tao <rongtao@cestc.cn>
>
> strnstr should not treat the ending '\0' of s2 as a matching character
> if the parameter 'len' equal to s2 string length, for example:
A good catch, thanks!
But this doesn't fix just the `len == strlen(s2)` case but a more
general case when s2 is a suffix of the first len characters of s1,
right? The commit message should reflect that.
>
> 1. bpf_strnstr("openat", "open", 4) = -ENOENT
> 2. bpf_strnstr("openat", "open", 5) = 0
>
> This patch makes (1) return 0, indicating a successful match.
>
> Fixes: e91370550f1f ("bpf: Add kfuncs for read-only string operations")
> Signed-off-by: Rong Tao <rongtao@cestc.cn>
> ---
> kernel/bpf/helpers.c | 10 +++++++++-
> 1 file changed, 9 insertions(+), 1 deletion(-)
>
> diff --git a/kernel/bpf/helpers.c b/kernel/bpf/helpers.c
> index 401b4932cc49..bf04881f96ec 100644
> --- a/kernel/bpf/helpers.c
> +++ b/kernel/bpf/helpers.c
> @@ -3672,10 +3672,18 @@ __bpf_kfunc int bpf_strnstr(const char *s1__ign, const char *s2__ign, size_t len
>
> guard(pagefault)();
> for (i = 0; i < XATTR_SIZE_MAX; i++) {
> - for (j = 0; i + j < len && j < XATTR_SIZE_MAX; j++) {
> + for (j = 0; i + j <= len && j < XATTR_SIZE_MAX; j++) {
> __get_kernel_nofault(&c2, s2__ign + j, char, err_out);
> if (c2 == '\0')
> return i;
> + /**
> + * corner case i+j==len to ensure that we matched
> + * entire s2. for example, param len=3:
> + * s1: A B C D E F -> i==1
> + * s2: B C D -> j==2
> + */
This is not really a good example as it's not clear whether D is a null
byte or not. How about something like:
/**
* We allow reading an extra byte from s2 (note the
* `i + j <= len` above) to cover the case when s2 is
* a suffix of the first len chars of s1.
*/
> + if (i + j == len)
> + break;
Viktor
> __get_kernel_nofault(&c1, s1__ign + j, char, err_out);
> if (c1 == '\0')
> return -ENOENT;
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2025-08-29 10:56 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <cover.1756433400.git.rongtao@cestc.cn>
2025-08-29 2:12 ` [PATCH bpf-next v4 1/2] bpf/helpers: bpf_strnstr: Exact match length Rong Tao
2025-08-29 10:56 ` Viktor Malik
2025-08-29 2:13 ` [PATCH bpf-next v4 2/2] selftests/bpf: Add tests for bpf_strnstr Rong Tao
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).