Received: by 2002:a25:8b91:0:0:0:0:0 with SMTP id j17csp3339841ybl; Fri, 20 Dec 2019 07:43:45 -0800 (PST) X-Google-Smtp-Source: APXvYqxLPsapZ1w5jkprVyoRfNDLATo+KX0bAliBFVHiUK1j7N43CCJeqxZBpFGfAhnPwtZP6mXW X-Received: by 2002:a05:6830:1e16:: with SMTP id s22mr3888611otr.340.1576856625341; Fri, 20 Dec 2019 07:43:45 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1576856625; cv=none; d=google.com; s=arc-20160816; b=oA1MOjyIZOyNayRCRQLU9vGaj6DwSUuztBa7ZHXf5Ufb4Yuc3En0iukAw04TmNAi0v wYrf3kOXV1XCXO4LPM/cqQIxiHuzE2+3gkEBwwLx/71ns6Dqy6p/5xcUy5L7rlDxsqPd lATRwvAScxEk8W8ab7x4wffqeaiKzlYSgHlA8d5IX2x14HLHho04Rt01LkermuyLqnxQ Re12iYGyz9BOFo90aRIAhJdJEs+YlAOVgCOUxfnCvHxl/FojoqCg4eLyma7p+mWMZKQw xg3Cj4zlargDrdy9FUXXR8GT5UyTYAYz8TVToGGXwvxW/R1ri9PUGTAuphrMtu83X72t vjCA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=sAPx/qSpknm81mAjK6n50HYFMwR3Dc07XTjZ/N5q/14=; b=wbE5jDv6D6da5SodY3qssDddoEYbwHHyf2rfWVi8Sc7Z032NLdxlIybIEVGkMsVgFQ nFiLPFXkG1+hpQlvAuJZyKU+lK9+pTUozd4C/JWHGc7EWKPiUcBslxvSvaU56jTEMB+I k4psh0zAfOddqP+Y/hzpbauWcfe98OBiupRFPPBrLYPhF24OEpzVymuSmNIsrEuWHTd2 NVhWZk+FFEp8Li+GJO1ZfNULRMnICbuSGbbwLoo5S3u051MrTVExJPbZjXF19MaOLjem vzbEFC0vnq9VhwFhZ5/uLOY+Mc0vFcJStWUQ5fNuFp6AHf2c2Wn/L4YAKF32CNnS4ULL jcwQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=CG0ZvaL7; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id p25si5269744oto.191.2019.12.20.07.43.32; Fri, 20 Dec 2019 07:43:45 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=CG0ZvaL7; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727626AbfLTPmR (ORCPT + 99 others); Fri, 20 Dec 2019 10:42:17 -0500 Received: from mail-wr1-f67.google.com ([209.85.221.67]:37456 "EHLO mail-wr1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727592AbfLTPmQ (ORCPT ); Fri, 20 Dec 2019 10:42:16 -0500 Received: by mail-wr1-f67.google.com with SMTP id w15so9875304wru.4 for ; Fri, 20 Dec 2019 07:42:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=sAPx/qSpknm81mAjK6n50HYFMwR3Dc07XTjZ/N5q/14=; b=CG0ZvaL7Wd/DINrzFx+GeaXy7K63Erl9nn+5LqdgxsYGqiksVxbrDXCAu0fVki91kB GtQSHKuvsDqmk2cvFiy4Jmigdc02sK/KydIMyIe9ttsFEfpjkI3RPrpYL/hJjPuoA0N7 JYlOP0PBy1DmUbV0WL051NdvQkki4QAFHG480= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=sAPx/qSpknm81mAjK6n50HYFMwR3Dc07XTjZ/N5q/14=; b=uiuQyHAN5WHcKn12s0jT4sz4AnuHLhpR/ybzbICbs202U3wKUBcdS4KeXPA8xcHI+R Oa8YXnsdngAoUoIrpz6LI7EM4TN24tyUCUR7+3qhoAxp86r3aABBXkkKnE4lKxRtUxNa XOohwVp/gTKX4m+SLaLndH7v4z+NkolNWrYR1clQGTXSfq5539RcIAaGi8jsj8qm35Yh C+P1liZI5sk21+LRBRPOpZS8bFNoiq2onUOIor6R6HKUl+xclaFnDC93fd5sISZ6pTpa 5fz2TWaP8/UEGjRykRdlcqLyMcH0YMBn1/vGF3koaF3DMlt2xuhIUWSi/ilI0pWI/K4F tMlQ== X-Gm-Message-State: APjAAAUvSITTClmb8TOu+bXZ21EwekS4/BZ4ceqpxwC+RP48M/rZkvtc 1jjla9L6ZNXY5/f1uIPEXD8k9z7/Jyo= X-Received: by 2002:a5d:4045:: with SMTP id w5mr14951352wrp.59.1576856533909; Fri, 20 Dec 2019 07:42:13 -0800 (PST) Received: from kpsingh-kernel.localdomain ([2a00:79e1:abc:308:c46b:b838:66cf:6204]) by smtp.gmail.com with ESMTPSA id x11sm10118062wmg.46.2019.12.20.07.42.12 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 20 Dec 2019 07:42:13 -0800 (PST) From: KP Singh To: linux-kernel@vger.kernel.org, bpf@vger.kernel.org, linux-security-module@vger.kernel.org Cc: Alexei Starovoitov , Daniel Borkmann , James Morris , Kees Cook , Thomas Garnier , Michael Halcrow , Paul Turner , Brendan Gregg , Jann Horn , Matthew Garrett , Christian Brauner , =?UTF-8?q?Micka=C3=ABl=20Sala=C3=BCn?= , Florent Revest , Brendan Jackman , Martin KaFai Lau , Song Liu , Yonghong Song , "Serge E. Hallyn" , Mauro Carvalho Chehab , "David S. Miller" , Greg Kroah-Hartman , Nicolas Ferre , Stanislav Fomichev , Quentin Monnet , Andrey Ignatov , Joe Stringer Subject: [PATCH bpf-next v1 08/13] bpf: lsm: Show attached program names in hook read handler. Date: Fri, 20 Dec 2019 16:42:03 +0100 Message-Id: <20191220154208.15895-9-kpsingh@chromium.org> X-Mailer: git-send-email 2.20.1 In-Reply-To: <20191220154208.15895-1-kpsingh@chromium.org> References: <20191220154208.15895-1-kpsingh@chromium.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: KP Singh For inspectability the system administrator should be able to view the list of active KRSI programs: bash # cat /sys/kernel/security/bpf/bprm_check_security bpf_prog1 Signed-off-by: KP Singh --- security/bpf/lsm_fs.c | 81 ++++++++++++++++++++++++++++++++++++++++++- 1 file changed, 80 insertions(+), 1 deletion(-) diff --git a/security/bpf/lsm_fs.c b/security/bpf/lsm_fs.c index b271e9582d0f..01a89bce1347 100644 --- a/security/bpf/lsm_fs.c +++ b/security/bpf/lsm_fs.c @@ -10,6 +10,7 @@ #include #include #include +#include #include #include #include @@ -19,7 +20,85 @@ static struct dentry *bpf_lsm_dir; -static const struct file_operations hook_ops = {}; +static void *seq_start(struct seq_file *m, loff_t *pos) + __acquires(RCU) +{ + struct bpf_prog_array_item *item; + struct bpf_prog_array *progs; + struct bpf_lsm_hook *h; + struct dentry *dentry; + + /* + * rcu_read_lock() must be held before any return statement because the + * stop() will always be called and thus call rcu_read_unlock() + */ + rcu_read_lock(); + + dentry = file_dentry(m->file); + h = dentry->d_fsdata; + if (WARN_ON(!h)) + return ERR_PTR(-EFAULT); + + progs = rcu_dereference(h->progs); + if (!progs) + return NULL; + + /* Assumes that no &dummy_bpf_prog entries exist */ + if ((*pos) >= bpf_prog_array_length(progs)) + return NULL; + + item = progs->items + *pos; + if (!item->prog) + return NULL; + + return item; +} + +static void *seq_next(struct seq_file *m, void *v, loff_t *pos) +{ + struct bpf_prog_array_item *item = v; + + item++; + ++*pos; + + if (!item->prog) + return NULL; + + return item; +} + +static void seq_stop(struct seq_file *m, void *v) + __releases(RCU) +{ + rcu_read_unlock(); +} + +static int show_prog(struct seq_file *m, void *v) +{ + struct bpf_prog_array_item *item = v; + + seq_printf(m, "%s\n", item->prog->aux->name); + return 0; +} + +static const struct seq_operations hook_seq_ops = { + .show = show_prog, + .start = seq_start, + .next = seq_next, + .stop = seq_stop, +}; + +static int hook_open(struct inode *inode, struct file *file) +{ + return seq_open(file, &hook_seq_ops); +} + +static const struct file_operations hook_ops = { + .open = hook_open, + .read = seq_read, + .llseek = seq_lseek, + .release = seq_release, +}; int bpf_lsm_fs_initialized; -- 2.20.1