| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20240905075622.66819-1-lulie@linux.alibaba.com> Date: Thu, 5 Sep 2024 15:56:17 +0800 From: Philo Lu <lulie@...ux.alibaba.com> To: bpf@...r.kernel.org Cc: edumazet@...gle.com, rostedt@...dmis.org, mhiramat@...nel.org, mathieu.desnoyers@...icios.com, martin.lau@...ux.dev, ast@...nel.org, daniel@...earbox.net, andrii@...nel.org, eddyz87@...il.com, song@...nel.org, yonghong.song@...ux.dev, john.fastabend@...il.com, kpsingh@...nel.org, sdf@...ichev.me, haoluo@...gle.com, jolsa@...nel.org, davem@...emloft.net, kuba@...nel.org, pabeni@...hat.com, mykolal@...com, shuah@...nel.org, mcoquelin.stm32@...il.com, alexandre.torgue@...s.st.com, thinker.li@...il.com, juntong.deng@...look.com, jrife@...gle.com, alan.maguire@...cle.com, davemarchevsky@...com, dxu@...uu.xyz, vmalik@...hat.com, cupertino.miranda@...cle.com, mattbobrowski@...gle.com, xuanzhuo@...ux.alibaba.com, netdev@...r.kernel.org, linux-trace-kernel@...r.kernel.org Subject: [PATCH bpf-next v2 0/5] bpf: Allow skb dynptr for tp_btf This makes bpf_dynptr_from_skb usable for tp_btf, so that we can easily parse skb in tracepoints. This has been discussed in [0], and Martin suggested to use dynptr (instead of helpers like bpf_skb_load_bytes). For safety, skb dynptr shouldn't be used in fentry/fexit. This is achieved by add KF_TRUSTED_ARGS flag in bpf_dynptr_from_skb defination, because pointers passed by tracepoint are trusted (PTR_TRUSTED) while those of fentry/fexit are not. Another problem raises that NULL pointers could be passed to tracepoint, such as trace_tcp_send_reset, and we need to recognize them. This is done by add a "__nullable" suffix in the func_proto of the tracepoint, discussed in [1]. 2 Test cases are added, one for "__nullable" suffix, and the other for using skb dynptr in tp_btf. changelog v1 -> v2: - Add "__nullable" suffix support (Alexei Starovoitov) - Replace "struct __sk_buff*" with "void*" in test (Martin KaFai Lau) [0] https://lore.kernel.org/all/20240205121038.41344-1-lulie@linux.alibaba.com/T/ [1] https://lore.kernel.org/all/20240430121805.104618-1-lulie@linux.alibaba.com/T/ Philo Lu (5): bpf: Support __nullable argument suffix for tp_btf selftests/bpf: Add test for __nullable suffix in tp_btf tcp: Use skb__nullable in trace_tcp_send_reset bpf: Allow bpf_dynptr_from_skb() for tp_btf selftests/bpf: Expand skb dynptr selftests for tp_btf include/trace/events/tcp.h | 12 +++---- kernel/bpf/btf.c | 13 +++++++ kernel/bpf/verifier.c | 36 +++++++++++++++++-- net/core/filter.c | 3 +- .../bpf/bpf_testmod/bpf_testmod-events.h | 6 ++++ .../selftests/bpf/bpf_testmod/bpf_testmod.c | 2 ++ .../testing/selftests/bpf/prog_tests/dynptr.c | 36 +++++++++++++++++-- .../selftests/bpf/prog_tests/module_attach.c | 14 +++++++- .../testing/selftests/bpf/progs/dynptr_fail.c | 25 +++++++++++++ .../selftests/bpf/progs/dynptr_success.c | 23 ++++++++++++ .../bpf/progs/test_module_attach_fail.c | 16 +++++++++ 11 files changed, 173 insertions(+), 13 deletions(-) create mode 100644 tools/testing/selftests/bpf/progs/test_module_attach_fail.c -- 2.32.0.3.g01195cf9f
Powered by blists - more mailing lists