lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <alpine.DEB.2.22.394.2104111952420.11703@hadrien>
Date:   Sun, 11 Apr 2021 19:54:34 +0200 (CEST)
From:   Julia Lawall <julia.lawall@...ia.fr>
To:     Jiri Olsa <jolsa@...nel.org>, Alexei Starovoitov <ast@...nel.org>,
        Daniel Borkmann <daniel@...earbox.net>,
        Andrii Nakryiko <andriin@...com>,
        Toke Høiland-Jørgensen <toke@...hat.com>
cc:     netdev@...r.kernel.org, bpf@...r.kernel.org,
        Martin KaFai Lau <kafai@...com>,
        Song Liu <songliubraving@...com>, Yonghong Song <yhs@...com>,
        John Fastabend <john.fastabend@...il.com>,
        kbuild-all@...ts.01.org
Subject: Re: [PATCHv3 bpf-next 1/5] bpf: Allow trampoline re-attach for
 tracing and lsm programs (fwd)

Please check the goto on line 2663.  Is an unlock needed here?

julia

---------- Forwarded message ----------
Date: Mon, 12 Apr 2021 01:28:54 +0800
From: kernel test robot <lkp@...el.com>
To: kbuild@...ts.01.org
Cc: lkp@...el.com, Julia Lawall <julia.lawall@...6.fr>
Subject: Re: [PATCHv3 bpf-next 1/5] bpf: Allow trampoline re-attach for tracing
    and lsm programs

CC: kbuild-all@...ts.01.org
In-Reply-To: <20210411130010.1337650-2-jolsa@...nel.org>
References: <20210411130010.1337650-2-jolsa@...nel.org>
TO: Jiri Olsa <jolsa@...nel.org>
TO: Alexei Starovoitov <ast@...nel.org>
TO: Daniel Borkmann <daniel@...earbox.net>
TO: Andrii Nakryiko <andriin@...com>
CC: "Toke Høiland-Jørgensen" <toke@...hat.com>
CC: netdev@...r.kernel.org
CC: bpf@...r.kernel.org
CC: Martin KaFai Lau <kafai@...com>
CC: Song Liu <songliubraving@...com>
CC: Yonghong Song <yhs@...com>
CC: John Fastabend <john.fastabend@...il.com>

Hi Jiri,

I love your patch! Perhaps something to improve:

[auto build test WARNING on bpf-next/master]

url:    https://github.com/0day-ci/linux/commits/Jiri-Olsa/bpf-Tracing-and-lsm-programs-re-attach/20210411-210314
base:   https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git master
:::::: branch date: 4 hours ago
:::::: commit date: 4 hours ago
config: x86_64-allyesconfig (attached as .config)
compiler: gcc-9 (Debian 9.3.0-22) 9.3.0

If you fix the issue, kindly add following tag as appropriate
Reported-by: kernel test robot <lkp@...el.com>
Reported-by: Julia Lawall <julia.lawall@...6.fr>


cocci warnings: (new ones prefixed by >>)
>> kernel/bpf/syscall.c:2738:1-7: preceding lock on line 2633

vim +2738 kernel/bpf/syscall.c

70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2564
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2565  static int bpf_tracing_prog_attach(struct bpf_prog *prog,
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2566  				   int tgt_prog_fd,
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2567  				   u32 btf_id)
fec56f5890d93f Alexei Starovoitov     2019-11-14  2568  {
a3b80e1078943d Andrii Nakryiko        2020-04-28  2569  	struct bpf_link_primer link_primer;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2570  	struct bpf_prog *tgt_prog = NULL;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2571  	struct bpf_trampoline *tr = NULL;
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2572  	struct bpf_tracing_link *link;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2573  	u64 key = 0;
a3b80e1078943d Andrii Nakryiko        2020-04-28  2574  	int err;
fec56f5890d93f Alexei Starovoitov     2019-11-14  2575
9e4e01dfd3254c KP Singh               2020-03-29  2576  	switch (prog->type) {
9e4e01dfd3254c KP Singh               2020-03-29  2577  	case BPF_PROG_TYPE_TRACING:
fec56f5890d93f Alexei Starovoitov     2019-11-14  2578  		if (prog->expected_attach_type != BPF_TRACE_FENTRY &&
be8704ff07d237 Alexei Starovoitov     2020-01-20  2579  		    prog->expected_attach_type != BPF_TRACE_FEXIT &&
9e4e01dfd3254c KP Singh               2020-03-29  2580  		    prog->expected_attach_type != BPF_MODIFY_RETURN) {
9e4e01dfd3254c KP Singh               2020-03-29  2581  			err = -EINVAL;
9e4e01dfd3254c KP Singh               2020-03-29  2582  			goto out_put_prog;
9e4e01dfd3254c KP Singh               2020-03-29  2583  		}
9e4e01dfd3254c KP Singh               2020-03-29  2584  		break;
9e4e01dfd3254c KP Singh               2020-03-29  2585  	case BPF_PROG_TYPE_EXT:
9e4e01dfd3254c KP Singh               2020-03-29  2586  		if (prog->expected_attach_type != 0) {
9e4e01dfd3254c KP Singh               2020-03-29  2587  			err = -EINVAL;
9e4e01dfd3254c KP Singh               2020-03-29  2588  			goto out_put_prog;
9e4e01dfd3254c KP Singh               2020-03-29  2589  		}
9e4e01dfd3254c KP Singh               2020-03-29  2590  		break;
9e4e01dfd3254c KP Singh               2020-03-29  2591  	case BPF_PROG_TYPE_LSM:
9e4e01dfd3254c KP Singh               2020-03-29  2592  		if (prog->expected_attach_type != BPF_LSM_MAC) {
9e4e01dfd3254c KP Singh               2020-03-29  2593  			err = -EINVAL;
9e4e01dfd3254c KP Singh               2020-03-29  2594  			goto out_put_prog;
9e4e01dfd3254c KP Singh               2020-03-29  2595  		}
9e4e01dfd3254c KP Singh               2020-03-29  2596  		break;
9e4e01dfd3254c KP Singh               2020-03-29  2597  	default:
fec56f5890d93f Alexei Starovoitov     2019-11-14  2598  		err = -EINVAL;
fec56f5890d93f Alexei Starovoitov     2019-11-14  2599  		goto out_put_prog;
fec56f5890d93f Alexei Starovoitov     2019-11-14  2600  	}
fec56f5890d93f Alexei Starovoitov     2019-11-14  2601
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2602  	if (!!tgt_prog_fd != !!btf_id) {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2603  		err = -EINVAL;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2604  		goto out_put_prog;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2605  	}
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2606
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2607  	if (tgt_prog_fd) {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2608  		/* For now we only allow new targets for BPF_PROG_TYPE_EXT */
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2609  		if (prog->type != BPF_PROG_TYPE_EXT) {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2610  			err = -EINVAL;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2611  			goto out_put_prog;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2612  		}
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2613
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2614  		tgt_prog = bpf_prog_get(tgt_prog_fd);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2615  		if (IS_ERR(tgt_prog)) {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2616  			err = PTR_ERR(tgt_prog);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2617  			tgt_prog = NULL;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2618  			goto out_put_prog;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2619  		}
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2620
22dc4a0f5ed11b Andrii Nakryiko        2020-12-03  2621  		key = bpf_trampoline_compute_key(tgt_prog, NULL, btf_id);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2622  	}
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2623
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2624  	link = kzalloc(sizeof(*link), GFP_USER);
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2625  	if (!link) {
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2626  		err = -ENOMEM;
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2627  		goto out_put_prog;
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2628  	}
f2e10bff16a0fd Andrii Nakryiko        2020-04-28  2629  	bpf_link_init(&link->link, BPF_LINK_TYPE_TRACING,
f2e10bff16a0fd Andrii Nakryiko        2020-04-28  2630  		      &bpf_tracing_link_lops, prog);
f2e10bff16a0fd Andrii Nakryiko        2020-04-28  2631  	link->attach_type = prog->expected_attach_type;
70ed506c3bbcfa Andrii Nakryiko        2020-03-02  2632
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29 @2633  	mutex_lock(&prog->aux->dst_mutex);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2634
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2635  	/* There are a few possible cases here:
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2636  	 *
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2637  	 * - if prog->aux->dst_trampoline is set, the program was just loaded
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2638  	 *   and not yet attached to anything, so we can use the values stored
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2639  	 *   in prog->aux
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2640  	 *
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2641  	 * - if prog->aux->dst_trampoline is NULL, the program has already been
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2642           *   attached to a target and its initial target was cleared (below)
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2643  	 *
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2644  	 * - if tgt_prog != NULL, the caller specified tgt_prog_fd +
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2645  	 *   target_btf_id using the link_create API.
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2646  	 *
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2647  	 * - if tgt_prog == NULL when this function was called using the old
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2648  	 *   raw_tracepoint_open API, and we need a target from prog->aux
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2649  	 *
fc909cd5516914 Jiri Olsa              2021-04-11  2650  	 * - if prog->aux->dst_trampoline and tgt_prog is NULL, the program
fc909cd5516914 Jiri Olsa              2021-04-11  2651  	 *   was detached and is going for re-attachment.
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2652  	 */
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2653  	if (!prog->aux->dst_trampoline && !tgt_prog) {
fc909cd5516914 Jiri Olsa              2021-04-11  2654  		/*
fc909cd5516914 Jiri Olsa              2021-04-11  2655  		 * Allow re-attach for TRACING and LSM programs. If it's
fc909cd5516914 Jiri Olsa              2021-04-11  2656  		 * currently linked, bpf_trampoline_link_prog will fail.
fc909cd5516914 Jiri Olsa              2021-04-11  2657  		 * EXT programs need to specify tgt_prog_fd, so they
fc909cd5516914 Jiri Olsa              2021-04-11  2658  		 * re-attach in separate code path.
fc909cd5516914 Jiri Olsa              2021-04-11  2659  		 */
fc909cd5516914 Jiri Olsa              2021-04-11  2660  		if (prog->type != BPF_PROG_TYPE_TRACING &&
fc909cd5516914 Jiri Olsa              2021-04-11  2661  		    prog->type != BPF_PROG_TYPE_LSM) {
fc909cd5516914 Jiri Olsa              2021-04-11  2662  			err = -EINVAL;
fc909cd5516914 Jiri Olsa              2021-04-11  2663  			goto out_put_prog;
fc909cd5516914 Jiri Olsa              2021-04-11  2664  		}
fc909cd5516914 Jiri Olsa              2021-04-11  2665  		btf_id = prog->aux->attach_btf_id;
fc909cd5516914 Jiri Olsa              2021-04-11  2666  		key = bpf_trampoline_compute_key(NULL, prog->aux->attach_btf, btf_id);
babf3164095b06 Andrii Nakryiko        2020-03-09  2667  	}
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2668
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2669  	if (!prog->aux->dst_trampoline ||
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2670  	    (key && key != prog->aux->dst_trampoline->key)) {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2671  		/* If there is no saved target, or the specified target is
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2672  		 * different from the destination specified at load time, we
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2673  		 * need a new trampoline and a check for compatibility
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2674  		 */
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2675  		struct bpf_attach_target_info tgt_info = {};
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2676
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2677  		err = bpf_check_attach_target(NULL, prog, tgt_prog, btf_id,
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2678  					      &tgt_info);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2679  		if (err)
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2680  			goto out_unlock;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2681
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2682  		tr = bpf_trampoline_get(key, &tgt_info);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2683  		if (!tr) {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2684  			err = -ENOMEM;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2685  			goto out_unlock;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2686  		}
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2687  	} else {
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2688  		/* The caller didn't specify a target, or the target was the
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2689  		 * same as the destination supplied during program load. This
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2690  		 * means we can reuse the trampoline and reference from program
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2691  		 * load time, and there is no need to allocate a new one. This
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2692  		 * can only happen once for any program, as the saved values in
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2693  		 * prog->aux are cleared below.
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2694  		 */
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2695  		tr = prog->aux->dst_trampoline;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2696  		tgt_prog = prog->aux->dst_prog;
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2697  	}
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2698
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2699  	err = bpf_link_prime(&link->link, &link_primer);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2700  	if (err)
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2701  		goto out_unlock;
fec56f5890d93f Alexei Starovoitov     2019-11-14  2702
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2703  	err = bpf_trampoline_link_prog(prog, tr);
babf3164095b06 Andrii Nakryiko        2020-03-09  2704  	if (err) {
a3b80e1078943d Andrii Nakryiko        2020-04-28  2705  		bpf_link_cleanup(&link_primer);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2706  		link = NULL;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2707  		goto out_unlock;
fec56f5890d93f Alexei Starovoitov     2019-11-14  2708  	}
babf3164095b06 Andrii Nakryiko        2020-03-09  2709
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2710  	link->tgt_prog = tgt_prog;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2711  	link->trampoline = tr;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2712
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2713  	/* Always clear the trampoline and target prog from prog->aux to make
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2714  	 * sure the original attach destination is not kept alive after a
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2715  	 * program is (re-)attached to another target.
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2716  	 */
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2717  	if (prog->aux->dst_prog &&
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2718  	    (tgt_prog_fd || tr != prog->aux->dst_trampoline))
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2719  		/* got extra prog ref from syscall, or attaching to different prog */
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2720  		bpf_prog_put(prog->aux->dst_prog);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2721  	if (prog->aux->dst_trampoline && tr != prog->aux->dst_trampoline)
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2722  		/* we allocated a new trampoline, so free the old one */
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2723  		bpf_trampoline_put(prog->aux->dst_trampoline);
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2724
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2725  	prog->aux->dst_prog = NULL;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2726  	prog->aux->dst_trampoline = NULL;
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2727  	mutex_unlock(&prog->aux->dst_mutex);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2728
a3b80e1078943d Andrii Nakryiko        2020-04-28  2729  	return bpf_link_settle(&link_primer);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2730  out_unlock:
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2731  	if (tr && tr != prog->aux->dst_trampoline)
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2732  		bpf_trampoline_put(tr);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2733  	mutex_unlock(&prog->aux->dst_mutex);
3aac1ead5eb6b7 Toke Høiland-Jørgensen 2020-09-29  2734  	kfree(link);
fec56f5890d93f Alexei Starovoitov     2019-11-14  2735  out_put_prog:
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2736  	if (tgt_prog_fd && tgt_prog)
4a1e7c0c63e02d Toke Høiland-Jørgensen 2020-09-29  2737  		bpf_prog_put(tgt_prog);
fec56f5890d93f Alexei Starovoitov     2019-11-14 @2738  	return err;
fec56f5890d93f Alexei Starovoitov     2019-11-14  2739  }
fec56f5890d93f Alexei Starovoitov     2019-11-14  2740

---
0-DAY CI Kernel Test Service, Intel Corporation
https://lists.01.org/hyperkitty/list/kbuild-all@lists.01.org
Download attachment ".config.gz" of type "application/gzip" (65465 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ