mirror of
https://github.com/torvalds/linux.git
synced 2026-04-30 20:42:33 -04:00
7484e7cd8a
The vma->vm_mm might be NULL and it can be accessed outside of RCU. Thus,
we can mark it as trusted_or_null. With this change, BPF helpers can safely
access vma->vm_mm to retrieve the associated mm_struct from the VMA.
Then we can make policy decision from the VMA.
The "trusted" annotation enables direct access to vma->vm_mm within kfuncs
marked with KF_TRUSTED_ARGS or KF_RCU, such as bpf_task_get_cgroup1() and
bpf_task_under_cgroup(). Conversely, "null" enforcement requires all
callsites using vma->vm_mm to perform NULL checks.
The lsm selftest must be modified because it directly accesses vma->vm_mm
without a NULL pointer check; otherwise it will break due to this
change.
For the VMA based THP policy, the use case is as follows,
@mm = @vma->vm_mm; // vm_area_struct::vm_mm is trusted or null
if (!@mm)
return;
bpf_rcu_read_lock(); // rcu lock must be held to dereference the owner
@owner = @mm->owner; // mm_struct::owner is rcu trusted or null
if (!@owner)
goto out;
@cgroup1 = bpf_task_get_cgroup1(@owner, MEMCG_HIERARCHY_ID);
/* make the decision based on the @cgroup1 attribute */
bpf_cgroup_release(@cgroup1); // release the associated cgroup
out:
bpf_rcu_read_unlock();
PSI memory information can be obtained from the associated cgroup to inform
policy decisions. Since upstream PSI support is currently limited to cgroup
v2, the following example demonstrates cgroup v2 implementation:
@owner = @mm->owner;
if (@owner) {
// @ancestor_cgid is user-configured
@ancestor = bpf_cgroup_from_id(@ancestor_cgid);
if (bpf_task_under_cgroup(@owner, @ancestor)) {
@psi_group = @ancestor->psi;
/* Extract PSI metrics from @psi_group and
* implement policy logic based on the values
*/
}
}
The vma::vm_file can also be marked with __safe_trusted_or_null.
No additional selftests are required since vma->vm_file and vma->vm_mm are
already validated in the existing selftest suite.
Signed-off-by: Yafang Shao <laoar.shao@gmail.com>
Acked-by: Lorenzo Stoakes <lorenzo.stoakes@oracle.com>
Cc: "Liam R. Howlett" <Liam.Howlett@oracle.com>
Link: https://lore.kernel.org/r/20251016063929.13830-3-laoar.shao@gmail.com
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
184 lines
4.0 KiB
C
184 lines
4.0 KiB
C
// SPDX-License-Identifier: GPL-2.0
|
|
|
|
/*
|
|
* Copyright 2020 Google LLC.
|
|
*/
|
|
|
|
#include "vmlinux.h"
|
|
#include <errno.h>
|
|
#include <bpf/bpf_core_read.h>
|
|
#include <bpf/bpf_helpers.h>
|
|
#include <bpf/bpf_tracing.h>
|
|
#include "bpf_misc.h"
|
|
|
|
struct {
|
|
__uint(type, BPF_MAP_TYPE_ARRAY);
|
|
__uint(max_entries, 1);
|
|
__type(key, __u32);
|
|
__type(value, __u64);
|
|
} array SEC(".maps");
|
|
|
|
struct {
|
|
__uint(type, BPF_MAP_TYPE_HASH);
|
|
__uint(max_entries, 1);
|
|
__type(key, __u32);
|
|
__type(value, __u64);
|
|
} hash SEC(".maps");
|
|
|
|
struct {
|
|
__uint(type, BPF_MAP_TYPE_LRU_HASH);
|
|
__uint(max_entries, 1);
|
|
__type(key, __u32);
|
|
__type(value, __u64);
|
|
} lru_hash SEC(".maps");
|
|
|
|
struct {
|
|
__uint(type, BPF_MAP_TYPE_PERCPU_ARRAY);
|
|
__uint(max_entries, 1);
|
|
__type(key, __u32);
|
|
__type(value, __u64);
|
|
} percpu_array SEC(".maps");
|
|
|
|
struct {
|
|
__uint(type, BPF_MAP_TYPE_PERCPU_HASH);
|
|
__uint(max_entries, 1);
|
|
__type(key, __u32);
|
|
__type(value, __u64);
|
|
} percpu_hash SEC(".maps");
|
|
|
|
struct {
|
|
__uint(type, BPF_MAP_TYPE_LRU_PERCPU_HASH);
|
|
__uint(max_entries, 1);
|
|
__type(key, __u32);
|
|
__type(value, __u64);
|
|
} lru_percpu_hash SEC(".maps");
|
|
|
|
struct inner_map {
|
|
__uint(type, BPF_MAP_TYPE_ARRAY);
|
|
__uint(max_entries, 1);
|
|
__type(key, int);
|
|
__type(value, __u64);
|
|
} inner_map SEC(".maps");
|
|
|
|
struct outer_arr {
|
|
__uint(type, BPF_MAP_TYPE_ARRAY_OF_MAPS);
|
|
__uint(max_entries, 1);
|
|
__uint(key_size, sizeof(int));
|
|
__uint(value_size, sizeof(int));
|
|
__array(values, struct inner_map);
|
|
} outer_arr SEC(".maps") = {
|
|
.values = { [0] = &inner_map },
|
|
};
|
|
|
|
struct outer_hash {
|
|
__uint(type, BPF_MAP_TYPE_HASH_OF_MAPS);
|
|
__uint(max_entries, 1);
|
|
__uint(key_size, sizeof(int));
|
|
__array(values, struct inner_map);
|
|
} outer_hash SEC(".maps") = {
|
|
.values = { [0] = &inner_map },
|
|
};
|
|
|
|
char _license[] SEC("license") = "GPL";
|
|
|
|
int monitored_pid = 0;
|
|
int mprotect_count = 0;
|
|
int bprm_count = 0;
|
|
|
|
SEC("lsm/file_mprotect")
|
|
int BPF_PROG(test_int_hook, struct vm_area_struct *vma,
|
|
unsigned long reqprot, unsigned long prot, int ret)
|
|
{
|
|
struct mm_struct *mm = vma->vm_mm;
|
|
|
|
if (ret != 0 || !mm)
|
|
return ret;
|
|
|
|
__s32 pid = bpf_get_current_pid_tgid() >> 32;
|
|
int is_stack = 0;
|
|
|
|
is_stack = (vma->vm_start <= mm->start_stack &&
|
|
vma->vm_end >= mm->start_stack);
|
|
|
|
if (is_stack && monitored_pid == pid) {
|
|
mprotect_count++;
|
|
ret = -EPERM;
|
|
}
|
|
|
|
return ret;
|
|
}
|
|
|
|
SEC("lsm.s/bprm_committed_creds")
|
|
int BPF_PROG(test_void_hook, struct linux_binprm *bprm)
|
|
{
|
|
__u32 pid = bpf_get_current_pid_tgid() >> 32;
|
|
struct inner_map *inner_map;
|
|
char args[64];
|
|
__u32 key = 0;
|
|
__u64 *value;
|
|
|
|
if (monitored_pid == pid)
|
|
bprm_count++;
|
|
|
|
bpf_copy_from_user(args, sizeof(args), (void *)bprm->vma->vm_mm->arg_start);
|
|
bpf_copy_from_user(args, sizeof(args), (void *)bprm->mm->arg_start);
|
|
|
|
value = bpf_map_lookup_elem(&array, &key);
|
|
if (value)
|
|
*value = 0;
|
|
value = bpf_map_lookup_elem(&hash, &key);
|
|
if (value)
|
|
*value = 0;
|
|
value = bpf_map_lookup_elem(&lru_hash, &key);
|
|
if (value)
|
|
*value = 0;
|
|
value = bpf_map_lookup_elem(&percpu_array, &key);
|
|
if (value)
|
|
*value = 0;
|
|
value = bpf_map_lookup_elem(&percpu_hash, &key);
|
|
if (value)
|
|
*value = 0;
|
|
value = bpf_map_lookup_elem(&lru_percpu_hash, &key);
|
|
if (value)
|
|
*value = 0;
|
|
inner_map = bpf_map_lookup_elem(&outer_arr, &key);
|
|
if (inner_map) {
|
|
value = bpf_map_lookup_elem(inner_map, &key);
|
|
if (value)
|
|
*value = 0;
|
|
}
|
|
inner_map = bpf_map_lookup_elem(&outer_hash, &key);
|
|
if (inner_map) {
|
|
value = bpf_map_lookup_elem(inner_map, &key);
|
|
if (value)
|
|
*value = 0;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
SEC("lsm/task_free") /* lsm/ is ok, lsm.s/ fails */
|
|
int BPF_PROG(test_task_free, struct task_struct *task)
|
|
{
|
|
return 0;
|
|
}
|
|
|
|
int copy_test = 0;
|
|
|
|
SEC("fentry.s/" SYS_PREFIX "sys_setdomainname")
|
|
int BPF_PROG(test_sys_setdomainname, struct pt_regs *regs)
|
|
{
|
|
void *ptr = (void *)PT_REGS_PARM1_SYSCALL(regs);
|
|
int len = PT_REGS_PARM2_SYSCALL(regs);
|
|
int buf = 0;
|
|
long ret;
|
|
|
|
ret = bpf_copy_from_user(&buf, sizeof(buf), ptr);
|
|
if (len == -2 && ret == 0 && buf == 1234)
|
|
copy_test++;
|
|
if (len == -3 && ret == -EFAULT)
|
|
copy_test++;
|
|
if (len == -4 && ret == -EFAULT)
|
|
copy_test++;
|
|
return 0;
|
|
}
|