Received: by 2002:a05:6a10:413:0:0:0:0 with SMTP id 19csp348452pxp; Sat, 5 Mar 2022 05:42:59 -0800 (PST) X-Google-Smtp-Source: ABdhPJxCTtzSoqGw9Qlo9sDxT5xCBUfMcZ0u30eNn8ggqzUv8pIRozCASdfbq0PJ17E76idBavir X-Received: by 2002:a63:5051:0:b0:374:5fd0:f131 with SMTP id q17-20020a635051000000b003745fd0f131mr2794211pgl.431.1646487779283; Sat, 05 Mar 2022 05:42:59 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1646487779; cv=none; d=google.com; s=arc-20160816; b=rCNxy7iwXlck714XUUCPFnmsARqiiXA8ZlPFPXmOA4ms6cYGH+T72QthRX6W+PDEoW PagH3zu2WI4ZEKcosMPlMM1glB9aKQ3PxzISDXvBP/2o70BKRu2daEr4OXYvv4oqFzX7 vR5pMhFF7VUkeTYwS+1cjahjXoR82wsKEN++6dPuu2qJIB0MRwjca0srQyHXIgN5kirP J084Ff00lTiPPLrYK1ARyRCvZXJAOeuzHT8bVVZ4ITy5eXrS9psOfbwl8Z1XPqsBunvK TyV5GwRCV+rt7LxsU8C+BaKZUVSiShmbHLdq0h44kJ5pG8iI1s21VgaIcl7b+5DwWT2r FunA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=6gIuLhLYl97mC2C+NltxLwK9sZuX7gAH7OjbAeO/yK0=; b=yHCeVHIhD2cXtlg4YlCu/8QXDyLfEXxOW+3z+8B+wAYDRVZGdzQ2Zha5Rkg0k9ILaZ Ml8c+m+EIZcskbXx22wqJ+/wL8JyHl0Pt+hbFHxv8ln4hMofADxS0b2CtEqugOyLpN66 vDaEB7dVyUjGxnOanYiHeMk8OILvbIYnZj6EJPcCdMACSrPwBNztoWy/qvCXOa/tZv0w Bm53pBfwJ57rxWyQ2MilUIRbUrC1tkitJIcGBxf9+21FtbPhDexjpQwTaqhSj3a8RKq5 y1J6ibDb6QyB7hHlhmdyh429dZVL3hhx+893fTBTVB1bdaI12RGxCHSPm2c0oxkVaVBI u62w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=z3cPZkm8; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id j14-20020a63230e000000b00374109af490si7358111pgj.169.2022.03.05.05.42.06; Sat, 05 Mar 2022 05:42:59 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=z3cPZkm8; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S231517AbiCEKsO (ORCPT + 99 others); Sat, 5 Mar 2022 05:48:14 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:49164 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229488AbiCEKsN (ORCPT ); Sat, 5 Mar 2022 05:48:13 -0500 Received: from ams.source.kernel.org (ams.source.kernel.org [145.40.68.75]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7DC0C239698; Sat, 5 Mar 2022 02:47:23 -0800 (PST) Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ams.source.kernel.org (Postfix) with ESMTPS id 27B15B80954; Sat, 5 Mar 2022 10:47:22 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 59833C004E1; Sat, 5 Mar 2022 10:47:20 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1646477240; bh=8uMCSfZUrz+ebC90sqKQ9bZPdZjBoqwQIf3kRyxg6aA=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=z3cPZkm8ZigWMMjxNUWxleDVr430ZYB/C2X3RkLGaOlMGsg4c+S2xdOw7SmuFpTNB L+vNfszXDjZFA615c4GPQaTjgNzjJ0W/UDVVJmlJ8sQbMKHp3dDSEbgv1p2c/WNb1h zfK82FmwkvkyvrshXEI6ZrQPqG0aFD8jRqBh+kpA= Date: Sat, 5 Mar 2022 11:47:17 +0100 From: Greg KH To: Benjamin Tissoires Cc: Jiri Kosina , Alexei Starovoitov , Daniel Borkmann , Andrii Nakryiko , Martin KaFai Lau , Song Liu , Yonghong Song , John Fastabend , KP Singh , Shuah Khan , Dave Marchevsky , Joe Stringer , Tero Kristo , lkml , "open list:HID CORE LAYER" , Networking , bpf , linux-kselftest@vger.kernel.org Subject: Re: [PATCH bpf-next v2 12/28] bpf/hid: add hid_{get|set}_data helpers Message-ID: References: <20220304172852.274126-1-benjamin.tissoires@redhat.com> <20220304172852.274126-13-benjamin.tissoires@redhat.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-Spam-Status: No, score=-7.5 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_HI, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sat, Mar 05, 2022 at 11:33:07AM +0100, Benjamin Tissoires wrote: > On Fri, Mar 4, 2022 at 7:41 PM Greg KH wrote: > > > > On Fri, Mar 04, 2022 at 06:28:36PM +0100, Benjamin Tissoires wrote: > > > When we process an incoming HID report, it is common to have to account > > > for fields that are not aligned in the report. HID is using 2 helpers > > > hid_field_extract() and implement() to pick up any data at any offset > > > within the report. > > > > > > Export those 2 helpers in BPF programs so users can also rely on them. > > > The second net worth advantage of those helpers is that now we can > > > fetch data anywhere in the report without knowing at compile time the > > > location of it. The boundary checks are done in hid-bpf.c, to prevent > > > a memory leak. > > > > > > Signed-off-by: Benjamin Tissoires > > > > > > --- > > > > > > changes in v2: > > > - split the patch with libbpf and HID left outside. > > > --- > > > include/linux/bpf-hid.h | 4 +++ > > > include/uapi/linux/bpf.h | 32 ++++++++++++++++++++ > > > kernel/bpf/hid.c | 53 ++++++++++++++++++++++++++++++++++ > > > tools/include/uapi/linux/bpf.h | 32 ++++++++++++++++++++ > > > 4 files changed, 121 insertions(+) > > > > > > diff --git a/include/linux/bpf-hid.h b/include/linux/bpf-hid.h > > > index 0c5000b28b20..69bb28523ceb 100644 > > > --- a/include/linux/bpf-hid.h > > > +++ b/include/linux/bpf-hid.h > > > @@ -93,6 +93,10 @@ struct bpf_hid_hooks { > > > int (*link_attach)(struct hid_device *hdev, enum bpf_hid_attach_type type); > > > void (*link_attached)(struct hid_device *hdev, enum bpf_hid_attach_type type); > > > void (*array_detached)(struct hid_device *hdev, enum bpf_hid_attach_type type); > > > + int (*hid_get_data)(struct hid_device *hdev, u8 *buf, size_t buf_size, > > > + u64 offset, u32 n, u8 *data, u64 data_size); > > > + int (*hid_set_data)(struct hid_device *hdev, u8 *buf, size_t buf_size, > > > + u64 offset, u32 n, u8 *data, u64 data_size); > > > }; > > > > > > #ifdef CONFIG_BPF > > > diff --git a/include/uapi/linux/bpf.h b/include/uapi/linux/bpf.h > > > index a7a8d9cfcf24..4845a20e6f96 100644 > > > --- a/include/uapi/linux/bpf.h > > > +++ b/include/uapi/linux/bpf.h > > > @@ -5090,6 +5090,36 @@ union bpf_attr { > > > * Return > > > * 0 on success, or a negative error in case of failure. On error > > > * *dst* buffer is zeroed out. > > > + * > > > + * int bpf_hid_get_data(void *ctx, u64 offset, u32 n, u8 *data, u64 size) > > > + * Description > > > + * Get the data of size n (in bits) at the given offset (bits) in the > > > + * ctx->event.data field and store it into data. > > > + * > > > + * if n is less or equal than 32, we can address with bit precision, > > > + * the value in the buffer. However, data must be a pointer to a u32 > > > + * and size must be 4. > > > + * > > > + * if n is greater than 32, offset and n must be a multiple of 8 > > > + * and the result is working with a memcpy internally. > > > + * Return > > > + * The length of data copied into data. On error, a negative value > > > + * is returned. > > > + * > > > + * int bpf_hid_set_data(void *ctx, u64 offset, u32 n, u8 *data, u64 size) > > > + * Description > > > + * Set the data of size n (in bits) at the given offset (bits) in the > > > + * ctx->event.data field. > > > + * > > > + * if n is less or equal than 32, we can address with bit precision, > > > + * the value in the buffer. However, data must be a pointer to a u32 > > > + * and size must be 4. > > > + * > > > + * if n is greater than 32, offset and n must be a multiple of 8 > > > + * and the result is working with a memcpy internally. > > > + * Return > > > + * The length of data copied into ctx->event.data. On error, a negative > > > + * value is returned. > > > > Quick answer on this one (before going deeper with the other remarks next week): > > > Wait, nevermind my reviewed-by previously, see my comment about how this > > might be split into 4: > > bpf_hid_set_bytes() > > bpf_hid_get_bytes() > > bpf_hid_set_bits() > > bpf_hid_get_bits() > > > > Should be easier to understand and maintain over time, right? > > Yes, definitively. I thought about adding a `bytes` suffix to the > function name for n > 32, but not the `bits` one, meaning the API was > still bunkers in my head. > > And as I mentioned in the commit notes, I knew the API proposed in > this patch was not correct, simply because while working on the > selftests it was completely wrong :) > > In terms of API usage, does it feel wrong for you to have only a > subset of the array available "for free" and enforce the rest to be > used through these helpers? It does feel "odd" but: > That's the point I am not sure but I feel like 1024 (or slightly more) > would be enough for most use cases, and when we are dealing with > bigger data sets the helpers can be justified. How often are hid reports that big? If providing access to the first 1024 or so bytes for free would handle the huge majority of fixup cases, and only if you have crazy devices with large reports would you have to use the functions, it might be fine. The problem is, only time will tell, and then, it's too late to change the api :) So I agree with this for now, stick with what you have (if you split this into 4 functions), and let's see what happens. thanks, greg k-h