[PATCH v6 bpf-next 04/11] bpf: Protect probed address based on kptr_restrict setting

[PATCH v6 bpf-next 00/11] bpf: Support ->fill_link_info for kprobe_multi and perf_event links · Yafang Shao <hidden> · 2023-06-28
[PATCH v6 bpf-next 01/11] bpf: Support ->fill_link_info for kprobe_multi · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 01/11] bpf: Support ->fill_link_info for kprobe_multi · Andrii Nakryiko <hidden> · 2023-07-06
Re: [PATCH v6 bpf-next 01/11] bpf: Support ->fill_link_info for kprobe_multi · Yafang Shao <hidden> · 2023-07-07
[PATCH v6 bpf-next 02/11] bpftool: Dump the kernel symbol's module name · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 02/11] bpftool: Dump the kernel symbol's module name · Quentin Monnet <hidden> · 2023-06-29
Re: [PATCH v6 bpf-next 02/11] bpftool: Dump the kernel symbol's module name · Yafang Shao <hidden> · 2023-06-30
[PATCH v6 bpf-next 03/11] bpftool: Show kprobe_multi link info · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 03/11] bpftool: Show kprobe_multi link info · Daniel Borkmann <daniel@iogearbox.net> · 2023-07-05
Re: [PATCH v6 bpf-next 03/11] bpftool: Show kprobe_multi link info · Yafang Shao <hidden> · 2023-07-05
[PATCH v6 bpf-next 04/11] bpf: Protect probed address based on kptr_restrict setting · Yafang Shao <hidden> · 2023-06-28
[PATCH v6 bpf-next 05/11] bpf: Clear the probe_addr for uprobe · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 05/11] bpf: Clear the probe_addr for uprobe · Daniel Borkmann <daniel@iogearbox.net> · 2023-07-05
Re: [PATCH v6 bpf-next 05/11] bpf: Clear the probe_addr for uprobe · Yafang Shao <hidden> · 2023-07-05
Re: [PATCH v6 bpf-next 05/11] bpf: Clear the probe_addr for uprobe · Yafang Shao <hidden> · 2023-07-05
[PATCH v6 bpf-next 06/11] bpf: Expose symbol's respective address · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 06/11] bpf: Expose symbol's respective address · Daniel Borkmann <daniel@iogearbox.net> · 2023-07-05
Re: [PATCH v6 bpf-next 06/11] bpf: Expose symbol's respective address · Yafang Shao <hidden> · 2023-07-05
[PATCH v6 bpf-next 07/11] bpf: Add a common helper bpf_copy_to_user() · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 07/11] bpf: Add a common helper bpf_copy_to_user() · Andrii Nakryiko <hidden> · 2023-07-06
[PATCH v6 bpf-next 08/11] bpf: Add bpf_perf_link_fill_common() · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 08/11] bpf: Add bpf_perf_link_fill_common() · Andrii Nakryiko <hidden> · 2023-07-06
Re: [PATCH v6 bpf-next 08/11] bpf: Add bpf_perf_link_fill_common() · Yafang Shao <hidden> · 2023-07-07
[PATCH v6 bpf-next 09/11] bpf: Support ->fill_link_info for perf_event · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 09/11] bpf: Support ->fill_link_info for perf_event · Daniel Borkmann <daniel@iogearbox.net> · 2023-07-05
Re: [PATCH v6 bpf-next 09/11] bpf: Support ->fill_link_info for perf_event · Yafang Shao <hidden> · 2023-07-05
Re: [PATCH v6 bpf-next 09/11] bpf: Support ->fill_link_info for perf_event · Daniel Borkmann <daniel@iogearbox.net> · 2023-07-05
[PATCH v6 bpf-next 10/11] bpftool: Add perf event names · Yafang Shao <hidden> · 2023-06-28
[PATCH v6 bpf-next 11/11] bpftool: Show perf link info · Yafang Shao <hidden> · 2023-06-28
Re: [PATCH v6 bpf-next 11/11] bpftool: Show perf link info · Quentin Monnet <hidden> · 2023-06-29
Re: [PATCH v6 bpf-next 11/11] bpftool: Show perf link info · Daniel Borkmann <daniel@iogearbox.net> · 2023-07-05
Re: [PATCH v6 bpf-next 11/11] bpftool: Show perf link info · Yafang Shao <hidden> · 2023-07-05
Re: [PATCH v6 bpf-next 00/11] bpf: Support ->fill_link_info for kprobe_multi and perf_event links · Jiri Olsa <hidden> · 2023-06-29

STALE1059d

Revisions (6)

2023-06-08 v2 [diff vs current]
2023-06-12 v3 [diff vs current]
2023-06-20 v4 [diff vs current]
2023-06-23 v5 [diff vs current]
2023-06-28 v6 current
2023-07-09 v7 [diff vs current]

From: Yafang Shao <hidden>
Date: 2023-06-28 11:53:43
Also in: bpf
Subsystem: the rest, tracing · Maintainers: Linus Torvalds, Steven Rostedt, Masami Hiramatsu

The probed address can be accessed by userspace through querying the task
file descriptor (fd). However, it is crucial to adhere to the kptr_restrict
setting and refrain from exposing the address if it is not permitted.

Signed-off-by: Yafang Shao <redacted>
---
 kernel/trace/trace_kprobe.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/kernel/trace/trace_kprobe.c b/kernel/trace/trace_kprobe.c
index 59cda19a9033..e4554dbfd113 100644
--- a/kernel/trace/trace_kprobe.c
+++ b/kernel/trace/trace_kprobe.c

@@ -1551,7 +1551,10 @@ int bpf_get_kprobe_info(const struct perf_event *event, u32 *fd_type,
 	} else {
 		*symbol = NULL;
 		*probe_offset = 0;
-		*probe_addr = (unsigned long)tk->rp.kp.addr;
+		if (kallsyms_show_value(current_cred()))
+			*probe_addr = (unsigned long)tk->rp.kp.addr;
+		else
+			*probe_addr = 0;
 	}
 	return 0;
 }

-- 
2.39.3

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help