lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20201105045140.2589346-1-andrii@kernel.org>
Date:   Wed, 4 Nov 2020 20:51:35 -0800
From:   Andrii Nakryiko <andrii@...nel.org>
To:     <bpf@...r.kernel.org>, <netdev@...r.kernel.org>, <ast@...com>,
        <daniel@...earbox.net>
CC:     <andrii@...nel.org>, <kernel-team@...com>,
        Arnaldo Carvalho de Melo <acme@...hat.com>
Subject: [RFC PATCH bpf-next 0/5] Integrate kernel module BTF support

This patch set adds BTF generation for kernel modules using a compact split BTF
approach. Respective patches have all the details.

New Kconfig CONFIG_DEBUG_INTO_BTF_MODULES is added, which is defaulted to y,
but is conditional on pahole v1.19 version, which is going to have a support
for --btf_base flag, providing ability to generate deduplicated split BTF.

This patch set implements in-kernel support for split BTF loading and
validation. It also extends GET_OBJ_INFO API for BTFs to return BTF's module
name and a flag whether BTF itself is in-kernel or user-provided. vmlinux BTF
is also exposed to user-space through the same BTF object iteration APIs.

Follow up patch set will utilize the fact that vmlinux and module BTFs now
have ID associated with them to provide ability to attach BPF fentry/fexit/etc
programs to functions defined in kernel modules.

bpftool is also extended to show module/vmlinux BTF's name.

This patch set is posted as an RFC because it depends on two not yet landed
set of patches:
  - libbpf split BTF support ([0]);
  - pahole's support for split BTF generation and deduplication ([1]).

  [0] https://patchwork.kernel.org/project/netdevbpf/list/?series=377859&state=*
  [1] https://lore.kernel.org/dwarves/20201105043936.2555804-1-andrii@kernel.org/T/#u

Cc: Arnaldo Carvalho de Melo <acme@...hat.com>

Andrii Nakryiko (5):
  bpf: add in-kernel split BTF support
  bpf: assign ID to vmlinux BTF and return extra info for BTF in
    GET_OBJ_INFO
  kbuild: Add CONFIG_DEBUG_INFO_BTF_MODULES option or module BTFs
  bpf: load and verify kernel module BTFs
  tools/bpftool: add support for in-kernel and named BTF in `btf show`

 include/linux/bpf.h            |   2 +
 include/linux/module.h         |   4 +
 include/uapi/linux/bpf.h       |   3 +
 kernel/bpf/btf.c               | 411 ++++++++++++++++++++++++++++-----
 kernel/bpf/sysfs_btf.c         |   2 +-
 kernel/module.c                |  32 +++
 lib/Kconfig.debug              |  10 +
 scripts/Makefile.modfinal      |  20 +-
 tools/bpf/bpftool/btf.c        |  30 ++-
 tools/include/uapi/linux/bpf.h |   3 +
 10 files changed, 460 insertions(+), 57 deletions(-)

-- 
2.24.1

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ