Uprobe regs ci #9612

olsajiri · 2025-08-29T12:29:54Z

test

Currently uprobe (BPF_PROG_TYPE_KPROBE) program can't write to the context registers data. While this makes sense for kprobe attachments, for uprobe attachment it might make sense to be able to change user space registers to alter application execution. Since uprobe and kprobe programs share the same type (BPF_PROG_TYPE_KPROBE), we can't deny write access to context during the program load. We need to check on it during program attachment to see if it's going to be kprobe or uprobe. Storing the program's write attempt to context and checking on it during the attachment. Signed-off-by: Jiri Olsa <[email protected]>

Adding test to check we can change common register values through uprobe program. It's x86_64 specific test. Signed-off-by: Jiri Olsa <[email protected]>

Adding test to check we can change the application execution through instruction pointer change through uprobe program. It's x86_64 specific test. Signed-off-by: Jiri Olsa <[email protected]>

olsajiri added 3 commits August 29, 2025 14:28

selftests/bpf: Add uprobe context registers changes test

3a805ae

Adding test to check we can change common register values through uprobe program. It's x86_64 specific test. Signed-off-by: Jiri Olsa <[email protected]>

selftests/bpf: Add uprobe context ip register change test

c8b6b56

Adding test to check we can change the application execution through instruction pointer change through uprobe program. It's x86_64 specific test. Signed-off-by: Jiri Olsa <[email protected]>

olsajiri force-pushed the uprobe_regs_ci branch from 77afdde to c8b6b56 Compare August 29, 2025 13:09

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uprobe regs ci #9612

Uprobe regs ci #9612

Uh oh!

olsajiri commented Aug 29, 2025

Uh oh!

Uh oh!

Uprobe regs ci #9612

Are you sure you want to change the base?

Uprobe regs ci #9612

Uh oh!

Conversation

olsajiri commented Aug 29, 2025

Uh oh!

Uh oh!