linux

mirror of git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-08-05 16:54:27 +00:00

History

John Fastabend e0dc3b93bd bpf: sockmap, strparser, and tls are reusing qdisc_skb_cb and colliding Strparser is reusing the qdisc_skb_cb struct to stash the skb message handling progress, e.g. offset and length of the skb. First this is poorly named and inherits a struct from qdisc that doesn't reflect the actual usage of cb[] at this layer. But, more importantly strparser is using the following to access its metadata. (struct _strp_msg )((void )skb->cb + offsetof(struct qdisc_skb_cb, data)) Where _strp_msg is defined as: struct _strp_msg { struct strp_msg strp; /* 0 8 / int accum_len; / 8 4 / / size: 12, cachelines: 1, members: 2 / / last cacheline: 12 bytes */ }; So we use 12 bytes of ->data[] in struct. However in BPF code running parser and verdict the user has read capabilities into the data[] array as well. Its not too problematic, but we should not be exposing internal state to BPF program. If its really needed then we can use the probe_read() APIs which allow reading kernel memory. And I don't believe cb[] layer poses any API breakage by moving this around because programs can't depend on cb[] across layers. In order to fix another issue with a ctx rewrite we need to stash a temp variable somewhere. To make this work cleanly this patch builds a cb struct for sk_skb types called sk_skb_cb struct. Then we can use this consistently in the strparser, sockmap space. Additionally we can start allowing ->cb[] write access after this. Fixes: `604326b41a` ("bpf, sockmap: convert to generic sk_msg interface") Signed-off-by: John Fastabend <john.fastabend@gmail.com> Signed-off-by: Daniel Borkmann <daniel@iogearbox.net> Tested-by: Jussi Maki <joamaki@gmail.com> Reviewed-by: Jakub Sitnicki <jakub@cloudflare.com> Link: https://lore.kernel.org/bpf/20211103204736.248403-5-john.fastabend@gmail.com		2021-11-09 01:05:28 +01:00
..
bpf_sk_storage.c	net: in_irq() cleanup	2021-08-13 14:09:19 -07:00
datagram.c	net: avoid double accounting for pure zerocopy skbs	2021-11-03 11:19:49 +00:00
datagram.h
dev.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2021-10-28 10:43:58 -07:00
dev_addr_lists.c	net: dev_addr_list: handle first address in __hw_addr_add_ex	2021-09-30 13:29:09 +01:00
dev_ioctl.c	ethtool: push the rtnl_lock into dev_ethtool()	2021-11-01 13:26:07 +00:00
devlink.c	devlink: fix flexible_array.cocci warning	2021-11-04 16:43:55 -07:00
drop_monitor.c	net: Remove redundant if statements	2021-08-05 13:27:50 +01:00
dst.c	net: Remove redundant if statements	2021-08-05 13:27:50 +01:00
dst_cache.c
failover.c
fib_notifier.c
fib_rules.c	memcg: enable accounting for IP address and routing-related objects	2021-07-20 06:00:38 -07:00
filter.c	bpf: sockmap, strparser, and tls are reusing qdisc_skb_cb and colliding	2021-11-09 01:05:28 +01:00
flow_dissector.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2021-11-01 20:05:14 -07:00
flow_offload.c	net: Fix offloading indirect devices dependency on qdisc order creation	2021-08-19 13:19:30 +01:00
gen_estimator.c	net: sched: Remove Qdisc::running sequence counter	2021-10-18 12:54:41 +01:00
gen_stats.c	net: stats: Read the statistics in ___gnet_stats_copy_basic() instead of adding.	2021-10-21 12:47:56 +01:00
gro_cells.c
hwbm.c
link_watch.c	net: linkwatch: fix failure to restore device state across suspend/resume	2021-08-11 14:43:16 -07:00
lwt_bpf.c	lwt_bpf: Replace preempt_disable() with migrate_disable()	2020-12-07 11:53:40 -08:00
lwtunnel.c	netfilter: add netfilter hooks to SRv6 data plane	2021-08-30 01:51:36 +02:00
Makefile	of: net: move of_net under net/	2021-10-07 13:39:51 +01:00
neighbour.c	net, neigh: Reject creating NUD_PERMANENT with NTF_MANAGED entries	2021-10-14 19:16:21 -07:00
net-procfs.c	Revert "net: procfs: add seq_puts() statement for dev_mcast"	2021-10-13 17:24:38 -07:00
net-sysfs.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2021-10-28 10:43:58 -07:00
net-sysfs.h
net-traces.c	tcp: add tracepoint for checksum errors	2021-05-14 15:26:03 -07:00
net_namespace.c	net: net_namespace: Fix undefined member in key_remove_domain()	2021-09-19 12:43:04 +01:00
netclassid_cgroup.c	bpf, cgroups: Fix cgroup v2 fallback on v1/v2 mixed mode	2021-09-13 16:35:58 -07:00
netevent.c	net: core: Correct function name netevent_unregister_notifier() in the kerneldoc	2021-03-28 17:56:56 -07:00
netpoll.c	asm-generic/unaligned: Unify asm/unaligned.h around struct helper	2021-07-02 12:43:40 -07:00
netprio_cgroup.c	bpf, cgroups: Fix cgroup v2 fallback on v1/v2 mixed mode	2021-09-13 16:35:58 -07:00
of_net.c	of: net: add a helper for loading netdev->dev_addr	2021-10-07 13:39:51 +01:00
page_pool.c	page_pool: disable dma mapping support for 32-bit arch with 64-bit DMA	2021-10-15 10:54:20 +01:00
pktgen.c	pktgen: remove unused variable	2021-09-03 11:48:28 +01:00
ptp_classifier.c	bpf: Refactor BPF_PROG_RUN into a function	2021-08-17 00:45:07 +02:00
request_sock.c
rtnetlink.c	net: rtnetlink: use __dev_addr_set()	2021-10-24 13:59:44 +01:00
scm.c	memcg: enable accounting for scm_fp_list objects	2021-07-20 06:00:38 -07:00
secure_seq.c
selftests.c	net: core: constify mac addrs in selftests	2021-10-24 13:59:44 +01:00
skbuff.c	net: avoid double accounting for pure zerocopy skbs	2021-11-03 11:19:49 +00:00
skmsg.c	Merge https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next	2021-11-01 19:59:46 -07:00
sock.c	net: fix possible NULL deref in sock_reserve_memory	2021-11-04 11:28:04 +00:00
sock_destructor.h	skb_expand_head() adjust skb->truesize incorrectly	2021-10-22 12:35:51 -07:00
sock_diag.c
sock_map.c	bpf, sockmap: Use stricter sk state checks in sk_lookup_assign	2021-11-09 00:56:35 +01:00
sock_reuseport.c	tcp: Add stats for socket migration.	2021-06-23 12:56:08 -07:00
stream.c	net: stream: don't purge sk_error_queue in sk_stream_kill_queues()	2021-10-16 09:06:09 +01:00
sysctl_net_core.c	bpf: Prevent increasing bpf_jit_limit above max	2021-10-22 17:23:53 -07:00
timestamping.c
tso.c
utils.c
xdp.c	xdp: Remove redundant warning	2021-10-27 18:13:57 -07:00