Re: [PATCH v13 05/10] bpf: Add bpf_lookup_*_key() and bpf_key_put() kfuncs

[PATCH v13 00/10] bpf: Add kfuncs for PKCS#7 signature verification · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 03/10] bpf: Export bpf_dynptr_get_size() · Roberto Sassu <hidden> · 2022-08-23
Re: [PATCH v13 03/10] bpf: Export bpf_dynptr_get_size() · KP Singh <kpsingh@kernel.org> · 2022-08-27
[PATCH v13 04/10] KEYS: Move KEY_LOOKUP_ to include/linux/key.h · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 05/10] bpf: Add bpf_lookup_*_key() and bpf_key_put() kfuncs · Roberto Sassu <hidden> · 2022-08-23
Re: [PATCH v13 05/10] bpf: Add bpf_lookup_*_key() and bpf_key_put() kfuncs · Song Liu <song@kernel.org> · 2022-08-26
Re: [PATCH v13 05/10] bpf: Add bpf_lookup_*_key() and bpf_key_put() kfuncs · Roberto Sassu <hidden> · 2022-08-26
Re: [PATCH v13 05/10] bpf: Add bpf_lookup_*_key() and bpf_key_put() kfuncs · Song Liu <song@kernel.org> · 2022-08-26
Re: [PATCH v13 05/10] bpf: Add bpf_lookup_*_key() and bpf_key_put() kfuncs · Roberto Sassu <hidden> · 2022-08-26
[PATCH v13 01/10] bpf: Allow kfuncs to be used in LSM programs · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 02/10] btf: Handle dynamic pointer parameter in kfuncs · Roberto Sassu <hidden> · 2022-08-23
Re: [PATCH v13 02/10] btf: Handle dynamic pointer parameter in kfuncs · Kumar Kartikeya Dwivedi <memxor@gmail.com> · 2022-08-26
[PATCH v13 06/10] bpf: Add bpf_verify_pkcs7_signature() kfunc · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 07/10] selftests/bpf: Compile kernel with everything as built-in · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 08/10] selftests/bpf: Add verifier tests for bpf_lookup_*_key() and bpf_key_put() · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 09/10] selftests/bpf: Add additional tests for bpf_lookup_*_key() · Roberto Sassu <hidden> · 2022-08-23
[PATCH v13 10/10] selftests/bpf: Add test for bpf_verify_pkcs7_signature() kfunc · Roberto Sassu <hidden> · 2022-08-23
Re: [PATCH v13 00/10] bpf: Add kfuncs for PKCS#7 signature verification · Roberto Sassu <hidden> · 2022-08-25

From: Song Liu <song@kernel.org>
Date: 2022-08-26 05:57:06
Also in: bpf, keyrings, linux-kselftest, linux-security-module, lkml

On Tue, Aug 23, 2022 at 8:02 AM Roberto Sassu
[off-list ref] wrote:

quoted hunk ↗ jump to hunk

From: Roberto Sassu <roberto.sassu@huawei.com>

Add the bpf_lookup_user_key(), bpf_lookup_system_key() and bpf_key_put()
kfuncs, to respectively search a key with a given key handle serial number
and flags, obtain a key from a pre-determined ID defined in
include/linux/verification.h, and cleanup.

Introduce system_keyring_id_check() to validate the keyring ID parameter of
bpf_lookup_system_key().

Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com>
---
 include/linux/bpf.h          |   6 ++
 include/linux/verification.h |   8 +++
 kernel/trace/bpf_trace.c     | 135 +++++++++++++++++++++++++++++++++++
 3 files changed, 149 insertions(+)

diff --git a/include/linux/bpf.h b/include/linux/bpf.h
index 6041304b402e..991da09a5858 100644
--- a/include/linux/bpf.h
+++ b/include/linux/bpf.h

@@ -2586,4 +2586,10 @@ static inline void bpf_cgroup_atype_get(u32 attach_btf_id, int cgroup_atype) {}
 static inline void bpf_cgroup_atype_put(int cgroup_atype) {}
 #endif /* CONFIG_BPF_LSM */

+#ifdef CONFIG_KEYS

Do we need to declare struct key here?

+struct bpf_key {
+       struct key *key;
+       bool has_ref;
+};
+#endif /* CONFIG_KEYS */
 #endif /* _LINUX_BPF_H */

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help