| Message ID | 20200702200329.83224-4-alexei.starovoitov@gmail.com |
|---|---|
| State | Changes Requested |
| Delegated to: | BPF Maintainers |
| Headers | show |
| Series | bpf: Populate bpffs with map and prog iterators | expand |
Hi Alexei,
I love your patch! Yet something to improve:
[auto build test ERROR on bpf-next/master]
url: https://github.com/0day-ci/linux/commits/Alexei-Starovoitov/bpf-Populate-bpffs-with-map-and-prog-iterators/20200703-040602
base: https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git master
config: alpha-allyesconfig (attached as .config)
compiler: alpha-linux-gcc (GCC) 9.3.0
reproduce (this is a W=1 build):
wget https://raw.githubusercontent.com/intel/lkp-tests/master/sbin/make.cross -O ~/bin/make.cross
chmod +x ~/bin/make.cross
# save the attached .config to linux build tree
COMPILER_INSTALL_PATH=$HOME/0day COMPILER=gcc-9.3.0 make.cross ARCH=alpha
If you fix the issue, kindly add following tag as appropriate
Reported-by: kernel test robot <lkp@intel.com>
All errors (new ones prefixed by >>):
In file included from kernel/bpf/inode.c:23:
>> kernel/bpf/preload/bpf_preload.h:5:10: fatal error: linux/usermode_driver.h: No such file or directory
5 | #include <linux/usermode_driver.h>
| ^~~~~~~~~~~~~~~~~~~~~~~~~
compilation terminated.
vim +5 kernel/bpf/preload/bpf_preload.h
4
> 5 #include <linux/usermode_driver.h>
6
---
0-DAY CI Kernel Test Service, Intel Corporation
https://lists.01.org/hyperkitty/list/kbuild-all@lists.01.org
Hi Alexei,
I love your patch! Yet something to improve:
[auto build test ERROR on bpf-next/master]
url: https://github.com/0day-ci/linux/commits/Alexei-Starovoitov/bpf-Populate-bpffs-with-map-and-prog-iterators/20200703-040602
base: https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git master
config: um-allmodconfig (attached as .config)
compiler: gcc-9 (Debian 9.3.0-13) 9.3.0
reproduce (this is a W=1 build):
# save the attached .config to linux build tree
make W=1 ARCH=um
If you fix the issue, kindly add following tag as appropriate
Reported-by: kernel test robot <lkp@intel.com>
All errors (new ones prefixed by >>):
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/bpf.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/bpf.o'.
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/libbpf.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/libbpf.o'.
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/btf.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/btf.o'.
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/libbpf_errno.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/libbpf_errno.o'.
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/str_error.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/str_error.o'.
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/hashmap.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/hashmap.o'.
>> make[4]: *** No rule to make target 'kernel/bpf/preload/../../tools/lib/bpf/libbpf_probes.c', needed by 'kernel/bpf/preload/../../tools/lib/bpf/libbpf_probes.o'.
make[4]: *** [scripts/Makefile.build:281: kernel/bpf/preload/bpf_preload_kern.o] Error 1
make[4]: Target '__build' not remade because of errors.
---
0-DAY CI Kernel Test Service, Intel Corporation
https://lists.01.org/hyperkitty/list/kbuild-all@lists.01.org
On Thu, Jul 2, 2020 at 1:03 PM Alexei Starovoitov <alexei.starovoitov@gmail.com> wrote: > > The BPF program dump_bpf_prog() in iterators.bpf.c is printing this data about > all BPF programs currently loaded in the system. This information is unstable > and will change from kernel to kernel. If so, it should probably be in debugfs, not in /sys/fs/ Linus
On Thu, Jul 02, 2020 at 06:05:29PM -0700, Linus Torvalds wrote: > On Thu, Jul 2, 2020 at 1:03 PM Alexei Starovoitov > <alexei.starovoitov@gmail.com> wrote: > > > > The BPF program dump_bpf_prog() in iterators.bpf.c is printing this data about > > all BPF programs currently loaded in the system. This information is unstable > > and will change from kernel to kernel. > > If so, it should probably be in debugfs, not in /sys/fs/ /sys/fs/bpf/ is just a historic location where we chose to mount bpffs. iirc iproute2 picked that location and systemd followed. bpffs itself is not a single mount and not sharing anything with sysfs or debugfs. By default it's not mounted anywhere. Every instance is independent and can contain only pinned BPF objects: progs, maps, links. Folks are using bpffs to store BPF objects that need to survive the life time of the process that created those objects. Another use is to share that BPF object with another process. Like firewall service can load bpf prog attach to netdev and pin bpf map with firewall rules in some /var/my_firewall/bpf/my_fw_rules. Then another process can do map lookup/delete on that map if it can access the path. I've seen such use case in production. As far as preloading "progs" and "maps" iterators into bpffs the following works just as well: $ mkdir /aa $ mount bpffs /aa -t bpf $ ll /aa total 4 drwxrwxrwt 2 root root 0 Jul 2 00:27 . drwxr-xr-x 19 root root 4096 Jul 2 00:09 .. -rw------- 1 root root 0 Jul 2 00:27 maps -rw------- 1 root root 0 Jul 2 00:27 progs $ cat /aa/progs id name pages attached 17 dump_bpf_map 1 bpf_iter_bpf_map 18 dump_bpf_prog 1 bpf_iter_bpf_prog May be I misunderstood what you meant?
On Thu, Jul 2, 2020 at 7:35 PM Alexei Starovoitov <alexei.starovoitov@gmail.com> wrote: > > On Thu, Jul 02, 2020 at 06:05:29PM -0700, Linus Torvalds wrote: > > On Thu, Jul 2, 2020 at 1:03 PM Alexei Starovoitov > > <alexei.starovoitov@gmail.com> wrote: > > > > > > The BPF program dump_bpf_prog() in iterators.bpf.c is printing this data about > > > all BPF programs currently loaded in the system. This information is unstable > > > and will change from kernel to kernel. > > > > If so, it should probably be in debugfs, not in /sys/fs/ > > /sys/fs/bpf/ is just a historic location where we chose to mount bpffs. It's more the "information is unstable and will change from kernel to kernel" No such interfaces exist. If people start parsing it and depending it, it's suddenly an ABI, whether you want to or not (and whether you documented it or not). At least if it's in /sys/kernel/debug/bpf/ or something, it's less likely that anybody will do that. Linus
On Thu, Jul 02, 2020 at 08:34:17PM -0700, Linus Torvalds wrote: > On Thu, Jul 2, 2020 at 7:35 PM Alexei Starovoitov > <alexei.starovoitov@gmail.com> wrote: > > > > On Thu, Jul 02, 2020 at 06:05:29PM -0700, Linus Torvalds wrote: > > > On Thu, Jul 2, 2020 at 1:03 PM Alexei Starovoitov > > > <alexei.starovoitov@gmail.com> wrote: > > > > > > > > The BPF program dump_bpf_prog() in iterators.bpf.c is printing this data about > > > > all BPF programs currently loaded in the system. This information is unstable > > > > and will change from kernel to kernel. > > > > > > If so, it should probably be in debugfs, not in /sys/fs/ > > > > /sys/fs/bpf/ is just a historic location where we chose to mount bpffs. > > It's more the "information is unstable and will change from kernel to kernel" > > No such interfaces exist. If people start parsing it and depending it, > it's suddenly an ABI, whether you want to or not (and whether you > documented it or not). > > At least if it's in /sys/kernel/debug/bpf/ or something, it's less > likely that anybody will do that. I think I will go with "debug" mount option then. By default nothing will be preloaded, so de-facto /sys/fs/bpf/ will stay empty.
On Thu, Jul 2, 2020 at 1:04 PM Alexei Starovoitov <alexei.starovoitov@gmail.com> wrote: > > From: Alexei Starovoitov <ast@kernel.org> > > Add kernel module with user mode driver that populates bpffs with > BPF iterators. > > $ mount bpffs /sys/fs/bpf/ -t bpf > $ ls -la /sys/fs/bpf/ > total 4 > drwxrwxrwt 2 root root 0 Jul 2 00:27 . > drwxr-xr-x 19 root root 4096 Jul 2 00:09 .. > -rw------- 1 root root 0 Jul 2 00:27 maps > -rw------- 1 root root 0 Jul 2 00:27 progs > > The user mode driver will load BPF Type Formats, create BPF maps, populate BPF > maps, load two BPF programs, attach them to BPF iterators, and finally send two > bpf_link IDs back to the kernel. > The kernel will pin two bpf_links into newly mounted bpffs instance under > names "progs" and "maps". These two files become human readable. > > $ cat /sys/fs/bpf/progs > id name pages attached > 11 dump_bpf_map 1 bpf_iter_bpf_map > 12 dump_bpf_prog 1 bpf_iter_bpf_prog > 27 test_pkt_access 1 > 32 test_main 1 test_pkt_access test_pkt_access > 33 test_subprog1 1 test_pkt_access_subprog1 test_pkt_access > 34 test_subprog2 1 test_pkt_access_subprog2 test_pkt_access > 35 test_subprog3 1 test_pkt_access_subprog3 test_pkt_access > 36 new_get_skb_len 1 get_skb_len test_pkt_access > 37 new_get_skb_ifi 1 get_skb_ifindex test_pkt_access > 38 new_get_constan 1 get_constant test_pkt_access > > The BPF program dump_bpf_prog() in iterators.bpf.c is printing this data about > all BPF programs currently loaded in the system. This information is unstable > and will change from kernel to kernel. > > Signed-off-by: Alexei Starovoitov <ast@kernel.org> > --- [...] > +static int bpf_link_pin_kernel(struct dentry *parent, > + const char *name, struct bpf_link *link) > +{ > + umode_t mode = S_IFREG | S_IRUSR | S_IWUSR; > + struct dentry *dentry; > + int ret; > + > + inode_lock(parent->d_inode); > + dentry = lookup_one_len(name, parent, strlen(name)); > + if (IS_ERR(dentry)) { > + inode_unlock(parent->d_inode); > + return PTR_ERR(dentry); > + } > + ret = bpf_mkobj_ops(dentry, mode, link, &bpf_link_iops, > + &bpf_iter_fops); bpf_iter_fops only applies to bpf_iter links, while bpf_link_pin_kernel allows any link type. See bpf_mklink(), it checks bpf_link_is_iter() to decide between bpf_iter_fops and bpffs_obj_fops. > + dput(dentry); > + inode_unlock(parent->d_inode); > + return ret; > +} > + > static int bpf_obj_do_pin(const char __user *pathname, void *raw, > enum bpf_type type) > { > @@ -638,6 +659,57 @@ static int bpf_parse_param(struct fs_context *fc, struct fs_parameter *param) > return 0; > } > > +struct bpf_preload_ops bpf_preload_ops = { .info.driver_name = "bpf_preload" }; > +EXPORT_SYMBOL_GPL(bpf_preload_ops); > + > +static int populate_bpffs(struct dentry *parent) So all the pinning has to happen from the kernel side because at the time that bpf_fill_super is called, user-space can't yet see the mounted BPFFS, do I understand the problem correctly? Would it be possible to add callback to fs_context_operations that would be called after FS is mounted and visible to user-space? At that point the kernel can spawn the user-mode blob and just instruct it to do both BPF object loading and pinning? Or are there some other complications with such approach? > +{ > + struct bpf_link *links[BPF_PRELOAD_LINKS] = {}; > + u32 link_id[BPF_PRELOAD_LINKS] = {}; > + int err = 0, i; > + > + mutex_lock(&bpf_preload_ops.lock); > + if (!bpf_preload_ops.do_preload) { > + mutex_unlock(&bpf_preload_ops.lock); > + request_module("bpf_preload"); > + mutex_lock(&bpf_preload_ops.lock); > + > + if (!bpf_preload_ops.do_preload) { > + pr_err("bpf_preload module is missing.\n" > + "bpffs will not have iterators.\n"); > + goto out; > + } > + } > + > + if (!bpf_preload_ops.info.tgid) { > + err = bpf_preload_ops.do_preload(link_id); > + if (err) > + goto out; > + for (i = 0; i < BPF_PRELOAD_LINKS; i++) { > + links[i] = bpf_link_by_id(link_id[i]); > + if (IS_ERR(links[i])) { > + err = PTR_ERR(links[i]); > + goto out; > + } > + } > + err = bpf_link_pin_kernel(parent, "maps", links[0]); > + if (err) > + goto out; > + err = bpf_link_pin_kernel(parent, "progs", links[1]); > + if (err) > + goto out; This hard coded "maps" -> link #0, "progs" -> link #1 mapping is what motivated the question above about letting user-space do all pinning. It would significantly simplify the kernel part, right? > + err = bpf_preload_ops.do_finish(); > + if (err) > + goto out; > + } [...]
On 7/8/20 8:15 PM, Andrii Nakryiko wrote: > On Thu, Jul 2, 2020 at 1:04 PM Alexei Starovoitov > <alexei.starovoitov@gmail.com> wrote: >> >> From: Alexei Starovoitov <ast@kernel.org> >> >> Add kernel module with user mode driver that populates bpffs with >> BPF iterators. >> >> $ mount bpffs /sys/fs/bpf/ -t bpf >> $ ls -la /sys/fs/bpf/ >> total 4 >> drwxrwxrwt 2 root root 0 Jul 2 00:27 . >> drwxr-xr-x 19 root root 4096 Jul 2 00:09 .. >> -rw------- 1 root root 0 Jul 2 00:27 maps >> -rw------- 1 root root 0 Jul 2 00:27 progs >> >> The user mode driver will load BPF Type Formats, create BPF maps, populate BPF >> maps, load two BPF programs, attach them to BPF iterators, and finally send two >> bpf_link IDs back to the kernel. >> The kernel will pin two bpf_links into newly mounted bpffs instance under >> names "progs" and "maps". These two files become human readable. >> >> $ cat /sys/fs/bpf/progs >> id name pages attached >> 11 dump_bpf_map 1 bpf_iter_bpf_map >> 12 dump_bpf_prog 1 bpf_iter_bpf_prog >> 27 test_pkt_access 1 >> 32 test_main 1 test_pkt_access test_pkt_access >> 33 test_subprog1 1 test_pkt_access_subprog1 test_pkt_access >> 34 test_subprog2 1 test_pkt_access_subprog2 test_pkt_access >> 35 test_subprog3 1 test_pkt_access_subprog3 test_pkt_access >> 36 new_get_skb_len 1 get_skb_len test_pkt_access >> 37 new_get_skb_ifi 1 get_skb_ifindex test_pkt_access >> 38 new_get_constan 1 get_constant test_pkt_access >> >> The BPF program dump_bpf_prog() in iterators.bpf.c is printing this data about >> all BPF programs currently loaded in the system. This information is unstable >> and will change from kernel to kernel. >> >> Signed-off-by: Alexei Starovoitov <ast@kernel.org> >> --- > > [...] > >> +static int bpf_link_pin_kernel(struct dentry *parent, >> + const char *name, struct bpf_link *link) >> +{ >> + umode_t mode = S_IFREG | S_IRUSR | S_IWUSR; >> + struct dentry *dentry; >> + int ret; >> + >> + inode_lock(parent->d_inode); >> + dentry = lookup_one_len(name, parent, strlen(name)); >> + if (IS_ERR(dentry)) { >> + inode_unlock(parent->d_inode); >> + return PTR_ERR(dentry); >> + } >> + ret = bpf_mkobj_ops(dentry, mode, link, &bpf_link_iops, >> + &bpf_iter_fops); > > bpf_iter_fops only applies to bpf_iter links, while > bpf_link_pin_kernel allows any link type. See bpf_mklink(), it checks > bpf_link_is_iter() to decide between bpf_iter_fops and bpffs_obj_fops. > > >> + dput(dentry); >> + inode_unlock(parent->d_inode); >> + return ret; >> +} >> + >> static int bpf_obj_do_pin(const char __user *pathname, void *raw, >> enum bpf_type type) >> { >> @@ -638,6 +659,57 @@ static int bpf_parse_param(struct fs_context *fc, struct fs_parameter *param) >> return 0; >> } >> >> +struct bpf_preload_ops bpf_preload_ops = { .info.driver_name = "bpf_preload" }; >> +EXPORT_SYMBOL_GPL(bpf_preload_ops); >> + >> +static int populate_bpffs(struct dentry *parent) > > So all the pinning has to happen from the kernel side because at the > time that bpf_fill_super is called, user-space can't yet see the > mounted BPFFS, do I understand the problem correctly? Would it be > possible to add callback to fs_context_operations that would be called > after FS is mounted and visible to user-space? At that point the > kernel can spawn the user-mode blob and just instruct it to do both > BPF object loading and pinning? This is possible during bpf_fill_super() which is called when a `mount` syscall is called. I experimented it a little bit when in my early bpf_iter experiment with bpffs to re-populate every existing iterators in a new bpffs mount. In this case, we probably do not want to repopulate it in every new bpffs mount. I think we just want to put them in a fixed location. Since this is a fixed location, the system can go ahead to do the mount, I think. But could just set up all necessary data structures and do eventual mount after file system is up in user space. Just my 2 cents. > > Or are there some other complications with such approach? > >> +{ >> + struct bpf_link *links[BPF_PRELOAD_LINKS] = {}; >> + u32 link_id[BPF_PRELOAD_LINKS] = {}; >> + int err = 0, i; >> + >> + mutex_lock(&bpf_preload_ops.lock); >> + if (!bpf_preload_ops.do_preload) { >> + mutex_unlock(&bpf_preload_ops.lock); >> + request_module("bpf_preload"); >> + mutex_lock(&bpf_preload_ops.lock); >> + >> + if (!bpf_preload_ops.do_preload) { >> + pr_err("bpf_preload module is missing.\n" >> + "bpffs will not have iterators.\n"); >> + goto out; >> + } >> + } >> + >> + if (!bpf_preload_ops.info.tgid) { >> + err = bpf_preload_ops.do_preload(link_id); >> + if (err) >> + goto out; >> + for (i = 0; i < BPF_PRELOAD_LINKS; i++) { >> + links[i] = bpf_link_by_id(link_id[i]); >> + if (IS_ERR(links[i])) { >> + err = PTR_ERR(links[i]); >> + goto out; >> + } >> + } >> + err = bpf_link_pin_kernel(parent, "maps", links[0]); >> + if (err) >> + goto out; >> + err = bpf_link_pin_kernel(parent, "progs", links[1]); >> + if (err) >> + goto out; > > This hard coded "maps" -> link #0, "progs" -> link #1 mapping is what > motivated the question above about letting user-space do all pinning. > It would significantly simplify the kernel part, right? > >> + err = bpf_preload_ops.do_finish(); >> + if (err) >> + goto out; >> + } > > [...] >
diff --git a/init/Kconfig b/init/Kconfig index a46aa8f3174d..278975a5daf2 100644 --- a/init/Kconfig +++ b/init/Kconfig @@ -2313,3 +2313,5 @@ config ARCH_HAS_SYNC_CORE_BEFORE_USERMODE # <asm/syscall_wrapper.h>. config ARCH_HAS_SYSCALL_WRAPPER def_bool n + +source "kernel/bpf/preload/Kconfig" diff --git a/kernel/bpf/Makefile b/kernel/bpf/Makefile index e6eb9c0402da..19e137aae40e 100644 --- a/kernel/bpf/Makefile +++ b/kernel/bpf/Makefile @@ -29,3 +29,4 @@ ifeq ($(CONFIG_BPF_JIT),y) obj-$(CONFIG_BPF_SYSCALL) += bpf_struct_ops.o obj-${CONFIG_BPF_LSM} += bpf_lsm.o endif +obj-$(CONFIG_BPF_PRELOAD) += preload/ diff --git a/kernel/bpf/inode.c b/kernel/bpf/inode.c index fb878ba3f22f..8d33edd5c69c 100644 --- a/kernel/bpf/inode.c +++ b/kernel/bpf/inode.c @@ -20,6 +20,7 @@ #include <linux/filter.h> #include <linux/bpf.h> #include <linux/bpf_trace.h> +#include "preload/bpf_preload.h" enum bpf_type { BPF_TYPE_UNSPEC = 0, @@ -409,6 +410,26 @@ static const struct inode_operations bpf_dir_iops = { .unlink = simple_unlink, }; +static int bpf_link_pin_kernel(struct dentry *parent, + const char *name, struct bpf_link *link) +{ + umode_t mode = S_IFREG | S_IRUSR | S_IWUSR; + struct dentry *dentry; + int ret; + + inode_lock(parent->d_inode); + dentry = lookup_one_len(name, parent, strlen(name)); + if (IS_ERR(dentry)) { + inode_unlock(parent->d_inode); + return PTR_ERR(dentry); + } + ret = bpf_mkobj_ops(dentry, mode, link, &bpf_link_iops, + &bpf_iter_fops); + dput(dentry); + inode_unlock(parent->d_inode); + return ret; +} + static int bpf_obj_do_pin(const char __user *pathname, void *raw, enum bpf_type type) { @@ -638,6 +659,57 @@ static int bpf_parse_param(struct fs_context *fc, struct fs_parameter *param) return 0; } +struct bpf_preload_ops bpf_preload_ops = { .info.driver_name = "bpf_preload" }; +EXPORT_SYMBOL_GPL(bpf_preload_ops); + +static int populate_bpffs(struct dentry *parent) +{ + struct bpf_link *links[BPF_PRELOAD_LINKS] = {}; + u32 link_id[BPF_PRELOAD_LINKS] = {}; + int err = 0, i; + + mutex_lock(&bpf_preload_ops.lock); + if (!bpf_preload_ops.do_preload) { + mutex_unlock(&bpf_preload_ops.lock); + request_module("bpf_preload"); + mutex_lock(&bpf_preload_ops.lock); + + if (!bpf_preload_ops.do_preload) { + pr_err("bpf_preload module is missing.\n" + "bpffs will not have iterators.\n"); + goto out; + } + } + + if (!bpf_preload_ops.info.tgid) { + err = bpf_preload_ops.do_preload(link_id); + if (err) + goto out; + for (i = 0; i < BPF_PRELOAD_LINKS; i++) { + links[i] = bpf_link_by_id(link_id[i]); + if (IS_ERR(links[i])) { + err = PTR_ERR(links[i]); + goto out; + } + } + err = bpf_link_pin_kernel(parent, "maps", links[0]); + if (err) + goto out; + err = bpf_link_pin_kernel(parent, "progs", links[1]); + if (err) + goto out; + err = bpf_preload_ops.do_finish(); + if (err) + goto out; + } +out: + mutex_unlock(&bpf_preload_ops.lock); + for (i = 0; i < BPF_PRELOAD_LINKS && err; i++) + if (!IS_ERR_OR_NULL(links[i])) + bpf_link_put(links[i]); + return err; +} + static int bpf_fill_super(struct super_block *sb, struct fs_context *fc) { static const struct tree_descr bpf_rfiles[] = { { "" } }; @@ -656,6 +728,7 @@ static int bpf_fill_super(struct super_block *sb, struct fs_context *fc) inode->i_mode &= ~S_IALLUGO; inode->i_mode |= S_ISVTX | opts->mode; + populate_bpffs(sb->s_root); return 0; } @@ -705,6 +778,8 @@ static int __init bpf_init(void) { int ret; + mutex_init(&bpf_preload_ops.lock); + ret = sysfs_create_mount_point(fs_kobj, "bpf"); if (ret) return ret; diff --git a/kernel/bpf/preload/Kconfig b/kernel/bpf/preload/Kconfig new file mode 100644 index 000000000000..b737ce4c2bab --- /dev/null +++ b/kernel/bpf/preload/Kconfig @@ -0,0 +1,15 @@ +# SPDX-License-Identifier: GPL-2.0-only +menuconfig BPF_PRELOAD + bool "Load kernel specific BPF programs at kernel boot time (BPF_PRELOAD)" + depends on BPF + help + tbd + +if BPF_PRELOAD +config BPF_PRELOAD_UMD + tristate "bpf_preload kernel module with user mode driver" + depends on CC_CAN_LINK_STATIC + default m + help + This builds bpf_preload kernel module with embedded user mode driver +endif diff --git a/kernel/bpf/preload/Makefile b/kernel/bpf/preload/Makefile new file mode 100644 index 000000000000..191d82209842 --- /dev/null +++ b/kernel/bpf/preload/Makefile @@ -0,0 +1,21 @@ +# SPDX-License-Identifier: GPL-2.0 + +LIBBPF := $(srctree)/../../tools/lib/bpf +userccflags += -I $(srctree)/tools/include/ -I $(srctree)/tools/include/uapi -I $(LIBBPF) \ + -I $(srctree)/tools/lib/ \ + -I $(srctree)/kernel/bpf/preload/iterators/ -Wno-int-conversion \ + -DCOMPAT_NEED_REALLOCARRAY + +userprogs := bpf_preload_umd + +LIBBPF_O := $(LIBBPF)/bpf.o $(LIBBPF)/libbpf.o $(LIBBPF)/btf.o $(LIBBPF)/libbpf_errno.o \ + $(LIBBPF)/str_error.o $(LIBBPF)/hashmap.o $(LIBBPF)/libbpf_probes.o + +bpf_preload_umd-objs := iterators/iterators.o $(LIBBPF_O) + +userldflags += -lelf -lz + +$(obj)/bpf_preload_umd_blob.o: $(obj)/bpf_preload_umd + +obj-$(CONFIG_BPF_PRELOAD_UMD) += bpf_preload.o +bpf_preload-objs += bpf_preload_kern.o bpf_preload_umd_blob.o diff --git a/kernel/bpf/preload/bpf_preload.h b/kernel/bpf/preload/bpf_preload.h new file mode 100644 index 000000000000..0d852574c02a --- /dev/null +++ b/kernel/bpf/preload/bpf_preload.h @@ -0,0 +1,15 @@ +/* SPDX-License-Identifier: GPL-2.0 */ +#ifndef _BPF_PRELOAD_H +#define _BPF_PRELOAD_H + +#include <linux/usermode_driver.h> + +struct bpf_preload_ops { + struct umd_info info; + struct mutex lock; + int (*do_preload)(u32 *); + int (*do_finish)(void); +}; +extern struct bpf_preload_ops bpf_preload_ops; +#define BPF_PRELOAD_LINKS 2 +#endif diff --git a/kernel/bpf/preload/bpf_preload_kern.c b/kernel/bpf/preload/bpf_preload_kern.c new file mode 100644 index 000000000000..bfcd1fb3891c --- /dev/null +++ b/kernel/bpf/preload/bpf_preload_kern.c @@ -0,0 +1,87 @@ +// SPDX-License-Identifier: GPL-2.0 +#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt +#include <linux/init.h> +#include <linux/module.h> +#include <linux/pid.h> +#include <linux/fs.h> +#include <linux/sched/signal.h> +#include "bpf_preload.h" +#include "iterators/bpf_preload_common.h" + +extern char bpf_preload_umd_start; +extern char bpf_preload_umd_end; + +static int do_preload(u32 *link_id) +{ + int magic = BPF_PRELOAD_START; + struct pid *tgid; + int id, i, err; + loff_t pos; + ssize_t n; + + err = fork_usermode_driver(&bpf_preload_ops.info); + if (err) + return err; + tgid = bpf_preload_ops.info.tgid; + + /* send the start magic to let UMD proceed with loading BPF progs */ + n = __kernel_write(bpf_preload_ops.info.pipe_to_umh, + &magic, sizeof(magic), &pos); + if (n != sizeof(magic)) + return -EPIPE; + + /* receive bpf_link IDs from UMD */ + pos = 0; + for (i = 0; i < BPF_PRELOAD_LINKS; i++) { + n = kernel_read(bpf_preload_ops.info.pipe_from_umh, + &id, sizeof(id), &pos); + if (n != sizeof(id)) + return -EPIPE; + link_id[i] = id; + } + return 0; +} + +static int do_finish(void) +{ + int magic = BPF_PRELOAD_END; + struct pid *tgid; + loff_t pos; + ssize_t n; + + /* send the last magic to UMD. It will do a normal exit. */ + n = __kernel_write(bpf_preload_ops.info.pipe_to_umh, + &magic, sizeof(magic), &pos); + if (n != sizeof(magic)) + return -EPIPE; + tgid = bpf_preload_ops.info.tgid; + wait_event(tgid->wait_pidfd, thread_group_exited(tgid)); + bpf_preload_ops.info.tgid = NULL; + return 0; +} + +static int __init load_umd(void) +{ + int err; + + err = umd_load_blob(&bpf_preload_ops.info, &bpf_preload_umd_start, + &bpf_preload_umd_end - &bpf_preload_umd_start); + if (err) + return err; + bpf_preload_ops.do_preload = do_preload; + bpf_preload_ops.do_finish = do_finish; + return err; +} + +static void __exit fini_umd(void) +{ + bpf_preload_ops.do_preload = NULL; + bpf_preload_ops.do_finish = NULL; + /* kill UMD in case it's still there due to earlier error */ + kill_pid(bpf_preload_ops.info.tgid, SIGKILL, 1); + bpf_preload_ops.info.tgid = NULL; + umd_unload_blob(&bpf_preload_ops.info); +} +late_initcall(load_umd); +module_exit(fini_umd); +MODULE_LICENSE("GPL"); diff --git a/kernel/bpf/preload/bpf_preload_umd_blob.S b/kernel/bpf/preload/bpf_preload_umd_blob.S new file mode 100644 index 000000000000..d0fe58c0734a --- /dev/null +++ b/kernel/bpf/preload/bpf_preload_umd_blob.S @@ -0,0 +1,7 @@ +/* SPDX-License-Identifier: GPL-2.0 */ + .section .init.rodata, "a" + .global bpf_preload_umd_start +bpf_preload_umd_start: + .incbin "bpf_preload_umd" + .global bpf_preload_umd_end +bpf_preload_umd_end: diff --git a/kernel/bpf/preload/iterators/bpf_preload_common.h b/kernel/bpf/preload/iterators/bpf_preload_common.h new file mode 100644 index 000000000000..f2e77711cd95 --- /dev/null +++ b/kernel/bpf/preload/iterators/bpf_preload_common.h @@ -0,0 +1,8 @@ +/* SPDX-License-Identifier: GPL-2.0 */ +#ifndef _BPF_PRELOAD_COMMON_H +#define _BPF_PRELOAD_COMMON_H + +#define BPF_PRELOAD_START 0x5555 +#define BPF_PRELOAD_END 0xAAAA + +#endif diff --git a/kernel/bpf/preload/iterators/iterators.c b/kernel/bpf/preload/iterators/iterators.c new file mode 100644 index 000000000000..74f23580b25f --- /dev/null +++ b/kernel/bpf/preload/iterators/iterators.c @@ -0,0 +1,81 @@ +// SPDX-License-Identifier: GPL-2.0 +/* Copyright (c) 2020 Facebook */ +#include <argp.h> +#include <stdio.h> +#include <stdlib.h> +#include <string.h> +#include <unistd.h> +#include <fcntl.h> +#include <bpf/libbpf.h> +#include <bpf/bpf.h> +#include <sys/mount.h> +#include "iterators.skel.h" +#include "bpf_preload_common.h" + +int to_kernel = -1; +int from_kernel = 0; + +static int send_id_to_kernel(struct bpf_link *link) +{ + struct bpf_link_info info = {}; + __u32 info_len = sizeof(info); + int err; + + err = bpf_obj_get_info_by_fd(bpf_link__fd(link), &info, &info_len); + if (err) + return err; + if (write(to_kernel, &info.id, sizeof(info.id)) != sizeof(info.id)) + return -EPIPE; + return 0; +} + +int main(int argc, char **argv) +{ + struct iterators_bpf *skel; + int err, magic; + int debug_fd; + + debug_fd = open("/dev/console", O_WRONLY | O_NOCTTY | O_CLOEXEC); + if (debug_fd < 0) + return -1; + to_kernel = dup(1); + close(1); + dup(debug_fd); + /* now stdin and stderr point to /dev/console */ + + read(from_kernel, &magic, sizeof(magic)); + if (magic != BPF_PRELOAD_START) { + printf("bad start magic %d\n", magic); + return -1; + } + + /* libbpf opens BPF object and loads it into the kernel */ + skel = iterators_bpf__open_and_load(); + if (!skel) + return -1; + + err = iterators_bpf__attach(skel); + if (err) + goto cleanup; + + /* send two bpf_link IDs to the kernel */ + err = send_id_to_kernel(skel->links.dump_bpf_map); + if (err) + goto cleanup; + err = send_id_to_kernel(skel->links.dump_bpf_prog); + if (err) + goto cleanup; + + /* The kernel will proceed with pinnging the links in bpffs. + * UMD will wait on read from pipe. + */ + read(from_kernel, &magic, sizeof(magic)); + if (magic != BPF_PRELOAD_END) { + printf("bad final magic %d\n", magic); + err = -EINVAL; + } +cleanup: + iterators_bpf__destroy(skel); + + return err != 0; +}