Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm... | linux-rdma

[PATCH v6 00/12] extend task comm from 16 to 24 · Yafang Shao <hidden> · 2021-10-25
[PATCH v6 01/12] fs/exec: make __set_task_comm always set a nul ternimated string · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 01/12] fs/exec: make __set_task_comm always set a nul ternimated string · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 01/12] fs/exec: make __set_task_comm always set a nul ternimated string · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 02/12] fs/exec: make __get_task_comm always get a nul terminated string · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 02/12] fs/exec: make __get_task_comm always get a nul terminated string · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 02/12] fs/exec: make __get_task_comm always get a nul terminated string · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 03/12] drivers/connector: make connector comm always nul ternimated · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 03/12] drivers/connector: make connector comm always nul ternimated · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 03/12] drivers/connector: make connector comm always nul ternimated · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 04/12] drivers/infiniband: make setup_ctxt always get a nul terminated task comm · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 04/12] drivers/infiniband: make setup_ctxt always get a nul terminated task comm · Dennis Dalessandro <dennis.dalessandro@cornelisnetworks.com> · 2021-10-25
Re: [PATCH v6 04/12] drivers/infiniband: make setup_ctxt always get a nul terminated task comm · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 04/12] drivers/infiniband: make setup_ctxt always get a nul terminated task comm · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 05/12] elfcore: make prpsinfo always get a nul terminated task comm · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 05/12] elfcore: make prpsinfo always get a nul terminated task comm · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 05/12] elfcore: make prpsinfo always get a nul terminated task comm · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 06/12] samples/bpf/test_overhead_kprobe_kern: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 06/12] samples/bpf/test_overhead_kprobe_kern: make it adopt to task comm size change · Kees Cook <hidden> · 2021-10-25
[PATCH v6 07/12] samples/bpf/offwaketime_kern: make sched_switch tracepoint args adopt to comm size change · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 07/12] samples/bpf/offwaketime_kern: make sched_switch tracepoint args adopt to comm size change · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 07/12] samples/bpf/offwaketime_kern: make sched_switch tracepoint args adopt to comm size change · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 09/12] tools/perf/test: make perf test adopt to task comm size change · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 09/12] tools/perf/test: make perf test adopt to task comm size change · Kees Cook <hidden> · 2021-10-25
[PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-26
Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Steven Rostedt <rostedt@goodmis.org> · 2021-10-26
Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-26
Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-26
Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 10/12] tools/testing/selftests/bpf: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 10/12] tools/testing/selftests/bpf: make it adopt to task comm size change · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 10/12] tools/testing/selftests/bpf: make it adopt to task comm size change · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 11/12] sched.h: extend task comm from 16 to 24 · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 11/12] sched.h: extend task comm from 16 to 24 · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 11/12] sched.h: extend task comm from 16 to 24 · Yafang Shao <hidden> · 2021-10-26
[PATCH v6 12/12] kernel/kthread: show a warning if kthread's comm is truncated · Yafang Shao <hidden> · 2021-10-25
Re: [PATCH v6 12/12] kernel/kthread: show a warning if kthread's comm is truncated · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 12/12] kernel/kthread: show a warning if kthread's comm is truncated · Yafang Shao <hidden> · 2021-10-26
Re: [PATCH v6 12/12] kernel/kthread: show a warning if kthread's comm is truncated · Petr Mladek <pmladek@suse.com> · 2021-10-27
Re: [PATCH v6 12/12] kernel/kthread: show a warning if kthread's comm is truncated · Yafang Shao <hidden> · 2021-10-28
Re: [PATCH v6 12/12] kernel/kthread: show a warning if kthread's comm is truncated · Yafang Shao <hidden> · 2021-10-29
Re: [PATCH v6 00/12] extend task comm from 16 to 24 · Alexei Starovoitov <hidden> · 2021-10-25
Re: [PATCH v6 00/12] extend task comm from 16 to 24 · Steven Rostedt <rostedt@goodmis.org> · 2021-10-25
Re: [PATCH v6 00/12] extend task comm from 16 to 24 · Kees Cook <hidden> · 2021-10-25
Re: [PATCH v6 00/12] extend task comm from 16 to 24 · Petr Mladek <pmladek@suse.com> · 2021-10-26

Re: [PATCH v6 08/12] tools/bpf/bpftool/skeleton: make it adopt to task comm size change

From: Yafang Shao <hidden>
Date: 2021-10-26 02:19:34
Also in: bpf, linux-fsdevel, linux-mm, linux-perf-users, lkml, netdev

On Tue, Oct 26, 2021 at 5:24 AM Kees Cook [off-list ref] wrote:

On Mon, Oct 25, 2021 at 08:33:11AM +0000, Yafang Shao wrote:

quoted

bpf_probe_read_kernel_str() will add a nul terminator to the dst, then
we don't care about if the dst size is big enough.

Signed-off-by: Yafang Shao <redacted>
Cc: Mathieu Desnoyers <mathieu.desnoyers@efficios.com>
Cc: Arnaldo Carvalho de Melo <redacted>
Cc: Andrii Nakryiko <redacted>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Steven Rostedt <rostedt@goodmis.org>
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: Kees Cook <redacted>
Cc: Petr Mladek <pmladek@suse.com>

So, if we're ever going to copying these buffers out of the kernel (I
don't know what the object lifetime here in bpf is for "e", etc), we
should be zero-padding (as get_task_comm() does).

Should this, instead, be using a bounce buffer?

The comment in bpf_probe_read_kernel_str_common() says

  :      /*
  :       * The strncpy_from_kernel_nofault() call will likely not fill the
  :       * entire buffer, but that's okay in this circumstance as we're probing
  :       * arbitrary memory anyway similar to bpf_probe_read_*() and might
  :       * as well probe the stack. Thus, memory is explicitly cleared
  :       * only in error case, so that improper users ignoring return
  :       * code altogether don't copy garbage; otherwise length of string
  :       * is returned that can be used for bpf_perf_event_output() et al.
  :       */

It seems that it doesn't matter if the buffer is filled as that is
probing arbitrary memory.

get_task_comm(comm, task->group_leader);

This helper can't be used by the BPF programs, as it is not exported to BPF.

bpf_probe_read_kernel_str(&e.comm, sizeof(e.comm), comm);

-Kees

quoted

---
 tools/bpf/bpftool/skeleton/pid_iter.bpf.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/tools/bpf/bpftool/skeleton/pid_iter.bpf.c b/tools/bpf/bpftool/skeleton/pid_iter.bpf.c
index d9b420972934..f70702fcb224 100644
--- a/tools/bpf/bpftool/skeleton/pid_iter.bpf.c
+++ b/tools/bpf/bpftool/skeleton/pid_iter.bpf.c

@@ -71,8 +71,8 @@ int iter(struct bpf_iter__task_file *ctx)

      e.pid = task->tgid;
      e.id = get_obj_id(file->private_data, obj_type);
-     bpf_probe_read_kernel(&e.comm, sizeof(e.comm),
-                           task->group_leader->comm);
+     bpf_probe_read_kernel_str(&e.comm, sizeof(e.comm),
+                               task->group_leader->comm);
      bpf_seq_write(ctx->meta->seq, &e, sizeof(e));

      return 0;
--

2.17.1

--
Kees Cook



-- 
Thanks
Yafang

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help