[bpf-next,0/9] bpf: Constify BPF ops

Message ID	20241127-bpf-const-ops-v1-0-a698b8d58680@weissschuh.net
Headers	show Received: from todd.t-8ch.de (todd.t-8ch.de [159.69.126.157]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 193E1200100; Wed, 27 Nov 2024 19:20:48 +0000 (UTC) From: =?utf-8?q?Thomas_Wei=C3=9Fschuh?= <linux@weissschuh.net> Subject: [PATCH bpf-next 0/9] bpf: Constify BPF ops Date: Wed, 27 Nov 2024 20:15:19 +0100 Message-Id: <20241127-bpf-const-ops-v1-0-a698b8d58680@weissschuh.net> Precedence: bulk MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit To: "David S. Miller" <davem@davemloft.net>, David Ahern <dsahern@kernel.org>, Eric Dumazet <edumazet@google.com>, Jakub Kicinski <kuba@kernel.org>, Paolo Abeni <pabeni@redhat.com>, Simon Horman <horms@kernel.org>, Martin KaFai Lau <martin.lau@kernel.org>, Kui-Feng Lee <thinker.li@gmail.com>, Alexei Starovoitov <ast@kernel.org>, Daniel Borkmann <daniel@iogearbox.net>, John Fastabend <john.fastabend@gmail.com>, Andrii Nakryiko <andrii@kernel.org>, Martin KaFai Lau <martin.lau@linux.dev>, Eduard Zingerman <eddyz87@gmail.com>, Song Liu <song@kernel.org>, Yonghong Song <yonghong.song@linux.dev>, KP Singh <kpsingh@kernel.org>, Stanislav Fomichev <sdf@fomichev.me>, Hao Luo <haoluo@google.com>, Jiri Olsa <jolsa@kernel.org>, Jiri Kosina <jikos@kernel.org>, Benjamin Tissoires <bentiss@kernel.org>, Tejun Heo <tj@kernel.org>, David Vernet <void@manifault.com>, Ingo Molnar <mingo@redhat.com>, Peter Zijlstra <peterz@infradead.org>, Juri Lelli <juri.lelli@redhat.com>, Vincent Guittot <vincent.guittot@linaro.org>, Dietmar Eggemann <dietmar.eggemann@arm.com>, Steven Rostedt <rostedt@goodmis.org>, Ben Segall <bsegall@google.com>, Mel Gorman <mgorman@suse.de>, Valentin Schneider <vschneid@redhat.com> Cc: netdev@vger.kernel.org, linux-kernel@vger.kernel.org, bpf@vger.kernel.org, linux-input@vger.kernel.org, =?utf-8?q?Thomas_Wei?= =?utf-8?q?=C3=9Fschuh?= <linux@weissschuh.net>
Series	bpf: Constify BPF ops \| expand [bpf-next,0/9] bpf: Constify BPF ops [bpf-next,1/9] bpf: tcp: Remove inaccurate comment about extern [bpf-next,2/9] bpf: Move func_models from bpf_struct_ops to bpf_struct_ops_desc [bpf-next,3/9] bpf: Allow registration of const struct bpf_struct_ops [bpf-next,4/9] const_structs.checkpatch: add bpf_struct_ops [bpf-next,5/9] bpf: Allow registration of const cfi_stubs [bpf-next,6/9] bpf, net: tcp: Constify BPF ops [bpf-next,7/9] bpf, net: dummy_ops: Constify BPF ops [bpf-next,8/9] HID: bpf: constify BPF ops [bpf-next,9/9] sched_ext: Constify BPF ops

Message ID

20241127-bpf-const-ops-v1-0-a698b8d58680@weissschuh.net

Headers

From: =?utf-8?q?Thomas_Wei=C3=9Fschuh?= <linux@weissschuh.net>
Subject: [PATCH bpf-next 0/9] bpf: Constify BPF ops
Date: Wed, 27 Nov 2024 20:15:19 +0100
Message-Id: <20241127-bpf-const-ops-v1-0-a698b8d58680@weissschuh.net>
Precedence: bulk
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
To: "David S. Miller" <davem@davemloft.net>,
 David Ahern <dsahern@kernel.org>, Eric Dumazet <edumazet@google.com>,
 Jakub Kicinski <kuba@kernel.org>, Paolo Abeni <pabeni@redhat.com>,
 Simon Horman <horms@kernel.org>, Martin KaFai Lau <martin.lau@kernel.org>,
 Kui-Feng Lee <thinker.li@gmail.com>, Alexei Starovoitov <ast@kernel.org>,
 Daniel Borkmann <daniel@iogearbox.net>,
 John Fastabend <john.fastabend@gmail.com>,
 Andrii Nakryiko <andrii@kernel.org>,
 Martin KaFai Lau <martin.lau@linux.dev>,
 Eduard Zingerman <eddyz87@gmail.com>, Song Liu <song@kernel.org>,
 Yonghong Song <yonghong.song@linux.dev>, KP Singh <kpsingh@kernel.org>,
 Stanislav Fomichev <sdf@fomichev.me>, Hao Luo <haoluo@google.com>,
 Jiri Olsa <jolsa@kernel.org>, Jiri Kosina <jikos@kernel.org>,
 Benjamin Tissoires <bentiss@kernel.org>, Tejun Heo <tj@kernel.org>,
 David Vernet <void@manifault.com>, Ingo Molnar <mingo@redhat.com>,
 Peter Zijlstra <peterz@infradead.org>, Juri Lelli <juri.lelli@redhat.com>,
 Vincent Guittot <vincent.guittot@linaro.org>,
 Dietmar Eggemann <dietmar.eggemann@arm.com>,
 Steven Rostedt <rostedt@goodmis.org>, Ben Segall <bsegall@google.com>,
 Mel Gorman <mgorman@suse.de>, Valentin Schneider <vschneid@redhat.com>
Cc: netdev@vger.kernel.org, linux-kernel@vger.kernel.org,
  bpf@vger.kernel.org, linux-input@vger.kernel.org, =?utf-8?q?Thomas_Wei?=
	=?utf-8?q?=C3=9Fschuh?= <linux@weissschuh.net>

Series

bpf: Constify BPF ops | expand

Message

Thomas Weißschuh Nov. 27, 2024, 7:15 p.m. UTC

Move struct bpf_struct_ops into read-only memory to protect against
accidental and malicious modifications.

Signed-off-by: Thomas Weißschuh <linux@weissschuh.net>
---
Thomas Weißschuh (9):
      bpf: tcp: Remove inaccurate comment about extern
      bpf: Move func_models from bpf_struct_ops to bpf_struct_ops_desc
      bpf: Allow registration of const struct bpf_struct_ops
      const_structs.checkpatch: add bpf_struct_ops
      bpf: Allow registration of const cfi_stubs
      bpf, net: tcp: Constify BPF ops
      bpf, net: dummy_ops: Constify BPF ops
      HID: bpf: constify BPF ops
      sched_ext: Constify BPF ops

 drivers/hid/bpf/hid_bpf_struct_ops.c |  4 ++--
 include/linux/bpf.h                  |  8 ++++----
 include/linux/btf.h                  |  2 +-
 kernel/bpf/bpf_struct_ops.c          |  8 ++++----
 kernel/bpf/btf.c                     |  4 ++--
 kernel/sched/ext.c                   |  4 ++--
 net/bpf/bpf_dummy_struct_ops.c       | 10 +++++-----
 net/ipv4/bpf_tcp_ca.c                |  7 +++----
 scripts/const_structs.checkpatch     |  1 +
 9 files changed, 24 insertions(+), 24 deletions(-)
---
base-commit: fc39fb56917bb3cb53e99560ca3612a84456ada2
change-id: 20241127-bpf-const-ops-add2866b3157

Best regards,

Comments

Alexei Starovoitov Nov. 28, 2024, 2:43 a.m. UTC | #1

On Wed, Nov 27, 2024 at 11:20 AM Thomas Weißschuh <linux@weissschuh.net> wrote:
>
> --- a/net/bpf/bpf_dummy_struct_ops.c
> +++ b/net/bpf/bpf_dummy_struct_ops.c
> @@ -129,7 +129,7 @@ extern const struct bpf_link_ops bpf_struct_ops_link_lops;
>  int bpf_struct_ops_test_run(struct bpf_prog *prog, const union bpf_attr *kattr,
>                             union bpf_attr __user *uattr)
>  {
> -       const struct bpf_struct_ops *st_ops = &bpf_bpf_dummy_ops;
> +       static typeof_member(struct bpf_struct_ops_desc, func_models) func_models;
>         const struct btf_type *func_proto;
>         struct bpf_dummy_ops_test_args *args;
>         struct bpf_tramp_links *tlinks = NULL;
> @@ -175,7 +175,7 @@ int bpf_struct_ops_test_run(struct bpf_prog *prog, const union bpf_attr *kattr,
>
>         op_idx = prog->expected_attach_type;
>         err = bpf_struct_ops_prepare_trampoline(tlinks, link,
> -                                               &st_ops->func_models[op_idx],
> +                                               &func_models[op_idx],

This is sad. You didn't bother running the tests.
Above is producing garbage.
That's why so many BPF CI tests are failing.

Overall I think it's a minimal positive value to constify struct_ops.
Unless other bpf developers see a huge value
I'd prefer to keep the code as-is.

pw-bot: cr