lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:   Thu, 17 Jan 2019 02:01:09 +0100
From:   Maciej Fijalkowski <maciejromanfijalkowski@...il.com>
To:     daniel@...earbox.net, ast@...nel.org
Cc:     netdev@...r.kernel.org, jakub.kicinski@...ronome.com,
        brouer@...hat.com
Subject: [PATCH bpf-next 0/6] xdp: Avoid unloading xdp prog not attached by sample

Hi!
This patchset tries to address the situation where:
* user loads a particular xdp sample application that does stats polling
* user loads another sample application on the same interface
* then, user sends SIGINT/SIGTERM to the app that was attached as a first one
* second application ends up with an unloaded xdp program

1st patch contains a helper libbpf function for getting the map fd by a
given map name.
2nd patch updates a bunch of xdp samples to make the use of libbpf.
Patch 3 adjusts RLIMIT_MEMLOCK for two samples touched in this patchset.
Patch 4 makes the samples behavior similar to what iproute2 does when loading
xdp prog - the "force" flag is introduced.
Patch 5 introduces the libbpf function that will query the driver from
userspace about the currently attached xdp prog id.

Use it in samples that do polling by checking the prog id in signal handler
and comparing it with previously stored one which is the scope of 6th patch.

Thanks!

Maciej Fijalkowski (6):
  libbpf: Add a helper for retrieving a map fd for a given name
  samples: bpf: Convert XDP samples to libbpf usage
  samples: bpf: Extend RLIMIT_MEMLOCK for xdp_{sample_pkts, router_ipv4}
  samples: bpf: Add a "force" flag to XDP samples
  libbpf: Add a support for getting xdp prog id on ifindex
  samples: bpf: Check the prog id before exiting

 samples/bpf/Makefile                |   8 +-
 samples/bpf/xdp1_user.c             |  29 +++++-
 samples/bpf/xdp_adjust_tail_user.c  |  33 +++++--
 samples/bpf/xdp_redirect_map_user.c |  94 ++++++++++++++++----
 samples/bpf/xdp_redirect_user.c     |  92 +++++++++++++++----
 samples/bpf/xdp_router_ipv4_user.c  | 171 +++++++++++++++++++++++++-----------
 samples/bpf/xdp_rxq_info_user.c     |  36 ++++++--
 samples/bpf/xdp_sample_pkts_user.c  |  76 +++++++++++++---
 samples/bpf/xdp_tx_iptunnel_user.c  |  66 ++++++++++----
 samples/bpf/xdpsock_user.c          |  25 +++++-
 tools/lib/bpf/libbpf.c              |  12 +++
 tools/lib/bpf/libbpf.h              |   4 +
 tools/lib/bpf/libbpf.map            |   5 ++
 tools/lib/bpf/netlink.c             |  84 ++++++++++++++++++
 14 files changed, 598 insertions(+), 137 deletions(-)

-- 
2.16.1

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ