Received: by 2002:a05:6a10:16a7:0:0:0:0 with SMTP id gp39csp959016pxb;
        Tue, 3 Nov 2020 18:01:54 -0800 (PST)
X-Google-Smtp-Source: ABdhPJyJ+iAUfFP9ITTl3sNf5OdPFaHUPxEsRkWLvHkYj5NkLgenmxVOrcocxD04dVUR+nJPpyiJ
X-Received: by 2002:a50:bf41:: with SMTP id g1mr5178953edk.165.1604455314497;
        Tue, 03 Nov 2020 18:01:54 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1604455314; cv=none;
        d=google.com; s=arc-20160816;
        b=uDbu2lClHHc49S09Hs/EvYUy0EbfxtQgIGOECT3+pZcKru8NOqx3plIAVS001axcHZ
         f8AVKGWRmeYn2ZHeMsLBCEp88nMJvs9W8a64TnJW2XpsB6DlCT7FSQgw9Dum6i/3x9XZ
         vM96q1BZGj36353q3euSO/CpzhJyPpJsFkCaQFs0LANIiHfgkF/YHnzfT/YVEKoYq2Yz
         pOawiFbk95BfPWy46UU/GBR8F1baq7d5OQpC0MvTQ9QbeVZpXqeYUQHyqlyCJNAWg4Hh
         HGWAa08ZTzOcpQn7vOfcf1qHDID1177bOp0EKYDRy9/MHOiRDK7AT3UzJfAdq41m6xnI
         1UkA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version:dkim-signature;
        bh=F5jcjQaGi9sDna2HftC//RF9cUNuvGHsOZ4Yn5JzhrA=;
        b=SJ69BxgFq9XGEOfiaQ/4DSHiJTzKnz2RxJMWcK5e1/pRyqcrTclXVfyzANwGUhZj+4
         nmRf87vuHQgL6UR/VkHVEtCJkBBQVj4nhVsw9LMiXddsxPc8zaCPFWJoTuOfROSKZm2R
         XA7G0ppaiSvNGf855op+/EcCd6xDj9QaRIIm+JV24hNbHdIpouXGp5QgF9gqVqhuNDli
         ESeyvT88vUlijbEQfKMop3ZQMdhkZe0g33u111p2bvpBZ4X68JzSu06xmX2M43Asep+3
         SPWklLFKpVJ3UoqVBsOjkMg3FBc7C3ZtRhky+lk1urEPfdgYGMpaH8P4MM4RJPaH7UEK
         JChQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=msRt8Rv5;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id d20si339156eds.29.2020.11.03.18.01.31;
        Tue, 03 Nov 2020 18:01:54 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b=msRt8Rv5;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1730215AbgKDB5q (ORCPT <rfc822;rajatbajpailinux@gmail.com>
        + 99 others); Tue, 3 Nov 2020 20:57:46 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41870 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1730071AbgKDB5q (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 3 Nov 2020 20:57:46 -0500
Received: from mail-lj1-x242.google.com (mail-lj1-x242.google.com [IPv6:2a00:1450:4864:20::242])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9E6C3C061A4D;
        Tue,  3 Nov 2020 17:57:45 -0800 (PST)
Received: by mail-lj1-x242.google.com with SMTP id l10so238661lji.4;
        Tue, 03 Nov 2020 17:57:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=F5jcjQaGi9sDna2HftC//RF9cUNuvGHsOZ4Yn5JzhrA=;
        b=msRt8Rv5H0OSJElnwji6OYcXPCHNTVrPSY9VG5QXKMFi12NPCEPiIQok9Dcrhd6hnm
         AlZaIQ3DVqqr2T2uODSEJOCv34l6gunGaZSS9PERo7dXR0S1IQvHklIpmhoE4PA5nrjh
         yYKR4dMw1p8cMqlEZxVdmUm4nTUTR2OFvax28Zf9lcbA2YvgvFA8Dx0aR5nbEf8W31r6
         NSeB7QxPHT8GvrOM19utptFiVsLmZZcVhEDr+aeCah3JcUJGrSuwSgH6iQcfCldiSONL
         QYgUMsdzke+FdIWY+uRXxQ+njX3ypWSZgfRku3wHpZUZmNc08NqUxZRqRcnx6G6fFt/Z
         t5Xg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=F5jcjQaGi9sDna2HftC//RF9cUNuvGHsOZ4Yn5JzhrA=;
        b=q+/YJLyq71Hmnl3iQyTle8jKj5yQG8sAarpqkvTZt39Fb5Tax4hfCVyu0d7P1HgQ1c
         nZqgKSksA40IETLfiOKuylP59bg4dM5kllOVKhycfYFO+5p6pQpN/DDiZf6r/FVlfryH
         hQYulPdANyY/xhHWgSOsxaa4WwkPQnTVEb441GzIy8QLxv9dcvIcYodeC/LX+77UltVh
         VXPU/01kNRPCdBv+88kIeEitv7J9SijzYnQJY1pERQB6wgw3RJu/EHMCiZm39DKRZyav
         kM6jQs7PL7JDX3WC2ZJV5udMBgnsbH4oneTyiYjAQoUMU7MZ07VG9G1DiBiOjOuH8AWM
         b1xQ==
X-Gm-Message-State: AOAM532XEfg4KbyuFc3ps3odLsFke8mdAAmddjJiUte8Syuy0aKkes0U
        nMoIngWgD2Y7pEgnMNR6NKbcKJs7Y+h6f1XSICw=
X-Received: by 2002:a2e:b4ba:: with SMTP id q26mr10389163ljm.121.1604455064122;
 Tue, 03 Nov 2020 17:57:44 -0800 (PST)
MIME-Version: 1.0
References: <20201103153132.2717326-1-kpsingh@chromium.org>
 <20201103153132.2717326-8-kpsingh@chromium.org> <20201103184714.iukuqfw2byls3s4k@ast-mbp.dhcp.thefacebook.com>
 <CACYkzJ6A5GrQhBhv7GC8aeeLpoc7bnN=6Rn2UoM1P90odLZZ=g@mail.gmail.com>
 <CACYkzJ6D=vwaEhgaB2vevOo0186m=yfxeKBQ8eWWck8xjtczNA@mail.gmail.com>
 <CAADnVQ+DBHXkf8SFwnTKmSKi7mdAx56dWbpp5++Cc02CQjz+Ng@mail.gmail.com> <CACYkzJ6uc4fbRMNmj3kFeSu=V2JqWruJLFjMnPet_HXW-EdRng@mail.gmail.com>
In-Reply-To: <CACYkzJ6uc4fbRMNmj3kFeSu=V2JqWruJLFjMnPet_HXW-EdRng@mail.gmail.com>
From:   Alexei Starovoitov <alexei.starovoitov@gmail.com>
Date:   Tue, 3 Nov 2020 17:57:32 -0800
Message-ID: <CAADnVQLKhmA49RGH=SSCg3qHxZOzU5bHp+sw+Yw7M_7KB0zD4g@mail.gmail.com>
Subject: Re: [PATCH bpf-next v2 7/8] bpf: Add tests for task_local_storage
To:     KP Singh <kpsingh@chromium.org>
Cc:     open list <linux-kernel@vger.kernel.org>,
        bpf <bpf@vger.kernel.org>, Alexei Starovoitov <ast@kernel.org>,
        Daniel Borkmann <daniel@iogearbox.net>,
        Martin KaFai Lau <kafai@fb.com>,
        Song Liu <songliubraving@fb.com>, Paul Turner <pjt@google.com>,
        Jann Horn <jannh@google.com>, Hao Luo <haoluo@google.com>
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Tue, Nov 3, 2020 at 5:55 PM KP Singh <kpsingh@chromium.org> wrote:
>
> [...]
>
> > >
> > > I saw the docs mention that these are not exposed to tracing programs due to
> > > insufficient preemption checks. Do you think it would be okay to allow them
> > > for LSM programs?
> >
> > hmm. Isn't it allowed already?
> > The verifier does:
> >         if ((is_tracing_prog_type(prog_type) ||
> >              prog_type == BPF_PROG_TYPE_SOCKET_FILTER) &&
> >             map_value_has_spin_lock(map)) {
> >                 verbose(env, "tracing progs cannot use bpf_spin_lock yet\n");
> >                 return -EINVAL;
> >         }
> >
> > BPF_PROG_TYPE_LSM is not in this list.
>
> The verifier does not have any problem, it's just that the helpers are not
> exposed to LSM programs via bpf_lsm_func_proto.
>
> So all we need is:
>
> diff --git a/kernel/bpf/bpf_lsm.c b/kernel/bpf/bpf_lsm.c
> index 61f8cc52fd5b..93383df2140b 100644
> --- a/kernel/bpf/bpf_lsm.c
> +++ b/kernel/bpf/bpf_lsm.c
> @@ -63,6 +63,10 @@ bpf_lsm_func_proto(enum bpf_func_id func_id, const
> struct bpf_prog *prog)
>                 return &bpf_task_storage_get_proto;
>         case BPF_FUNC_task_storage_delete:
>                 return &bpf_task_storage_delete_proto;
> +       case BPF_FUNC_spin_lock:
> +               return &bpf_spin_lock_proto;
> +       case BPF_FUNC_spin_unlock:
> +               return &bpf_spin_unlock_proto;

Ahh. Yes. That should do it. Right now I don't see concerns with safety
of the bpf_spin_lock in bpf_lsm progs.