[PATCH net-next v10 08/14] xsk: Extend xsk_rcv_check validation

[PATCH net-next v10 00/14] netkit: Support for io_uring zero-copy and AF_XDP · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 04/14] net, ethtool: Disallow leased real rxqs to be resized · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 04/14] net, ethtool: Disallow leased real rxqs to be resized · Nikolay Aleksandrov <razor@blackwall.org> · 2026-03-28
[PATCH net-next v10 02/14] net: Implement netdev_nl_queue_create_doit · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 02/14] net: Implement netdev_nl_queue_create_doit · Nikolay Aleksandrov <razor@blackwall.org> · 2026-03-28
[PATCH net-next v10 07/14] net: Proxy netdev_queue_get_dma_dev for leased queues · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 07/14] net: Proxy netdev_queue_get_dma_dev for leased queues · Nikolay Aleksandrov <razor@blackwall.org> · 2026-03-28
[PATCH net-next v10 09/14] xsk: Proxy pool management for leased queues · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 11/14] netkit: Implement rtnl_link_ops->alloc and ndo_queue_create · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 06/14] net: Proxy netif_mp_{open,close}_rxq for leased queues · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 06/14] net: Proxy netif_mp_{open,close}_rxq for leased queues · Nikolay Aleksandrov <razor@blackwall.org> · 2026-03-28
[PATCH net-next v10 01/14] net: Add queue-create operation · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 08/14] xsk: Extend xsk_rcv_check validation · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 05/14] net: Slightly simplify net_mp_{open,close}_rxq · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 05/14] net: Slightly simplify net_mp_{open,close}_rxq · Nikolay Aleksandrov <razor@blackwall.org> · 2026-03-28
[PATCH net-next v10 12/14] netkit: Add netkit notifier to check for unregistering devices · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 13/14] netkit: Add xsk support for af_xdp applications · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 10/14] netkit: Add single device mode for netkit · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
[PATCH net-next v10 03/14] net: Add lease info to queue-get response · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 03/14] net: Add lease info to queue-get response · Nikolay Aleksandrov <razor@blackwall.org> · 2026-03-28
[PATCH net-next v10 14/14] selftests/net: Add queue leasing tests with netkit · Daniel Borkmann <daniel@iogearbox.net> · 2026-03-27
Re: [PATCH net-next v10 00/14] netkit: Support for io_uring zero-copy and AF_XDP · Daniel Borkmann <daniel@iogearbox.net> · 2026-04-01

STALE80d REVIEWED: 5 (5M)

Revisions (11)

2025-09-19 v1 [diff vs current]
2025-10-15 v2 [diff vs current]
2025-10-20 v3 [diff vs current]
2025-10-31 v4 [diff vs current]
2026-01-09 v5 [diff vs current]
2026-01-13 v6 [diff vs current]
2026-01-15 v7 [diff vs current]
2026-01-29 v8 [diff vs current]
2026-03-20 v9 [diff vs current]
2026-03-27 v10 current
2026-04-02 v11 [diff vs current]

From: Daniel Borkmann <daniel@iogearbox.net>
Date: 2026-03-27 12:11:20
Also in: bpf
Subsystem: networking [general], the rest, xdp sockets (af_xdp) · Maintainers: "David S. Miller", Eric Dumazet, Jakub Kicinski, Paolo Abeni, Linus Torvalds, Magnus Karlsson, Maciej Fijalkowski

xsk_rcv_check tests for inbound packets to see whether they match
the bound AF_XDP socket. Refactor the test into a small helper
xsk_dev_queue_valid and move the validation against xs->dev and
xs->queue_id there.

The fast-path case stays in place and allows for quick return in
xsk_dev_queue_valid. If it fails, the validation is extended to
check whether the AF_XDP socket is bound against a leased queue,
and if so, the test is redone.

Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
Co-developed-by: David Wei <redacted>
Signed-off-by: David Wei <redacted>
Acked-by: Stanislav Fomichev <sdf@fomichev.me>
Reviewed-by: Nikolay Aleksandrov <razor@blackwall.org>
---
 net/xdp/xsk.c | 29 ++++++++++++++++++++++++++---
 1 file changed, 26 insertions(+), 3 deletions(-)

diff --git a/net/xdp/xsk.c b/net/xdp/xsk.c
index 79f31705276f..3fab551eeaf7 100644
--- a/net/xdp/xsk.c
+++ b/net/xdp/xsk.c

@@ -330,14 +330,37 @@ static bool xsk_is_bound(struct xdp_sock *xs)
 	return false;
 }
 
+static bool xsk_dev_queue_valid(const struct xdp_sock *xs,
+				const struct xdp_rxq_info *info)
+{
+	struct net_device *dev = xs->dev;
+	u32 queue_index = xs->queue_id;
+	struct netdev_rx_queue *rxq;
+
+	if (info->dev == dev &&
+	    info->queue_index == queue_index)
+		return true;
+
+	if (queue_index < dev->real_num_rx_queues) {
+		rxq = READ_ONCE(__netif_get_rx_queue(dev, queue_index)->lease);
+		if (!rxq)
+			return false;
+
+		dev = rxq->dev;
+		queue_index = get_netdev_rx_queue_index(rxq);
+
+		return info->dev == dev &&
+		       info->queue_index == queue_index;
+	}
+	return false;
+}
+
 static int xsk_rcv_check(struct xdp_sock *xs, struct xdp_buff *xdp, u32 len)
 {
 	if (!xsk_is_bound(xs))
 		return -ENXIO;
-
-	if (xs->dev != xdp->rxq->dev || xs->queue_id != xdp->rxq->queue_index)
+	if (!xsk_dev_queue_valid(xs, xdp->rxq))
 		return -EINVAL;
-
 	if (len > xsk_pool_get_rx_frame_size(xs->pool) && !xs->sg) {
 		xs->rx_dropped++;
 		return -ENOSPC;

-- 
2.43.0

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help