Received: by 2002:a05:6358:a55:b0:ec:fcf4:3ecf with SMTP id 21csp2344117rwb;
        Sun, 15 Jan 2023 13:42:43 -0800 (PST)
X-Google-Smtp-Source: AMrXdXu0T6OnwWRBJVPBCR9pTJuz3U0AK/pRvdunyNjGti22lzxUQ1btuwFyjUCBPTc5Zv8/cntO
X-Received: by 2002:a17:903:ca:b0:194:7f25:2336 with SMTP id x10-20020a17090300ca00b001947f252336mr5505688plc.37.1673818963147;
        Sun, 15 Jan 2023 13:42:43 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1673818963; cv=none;
        d=google.com; s=arc-20160816;
        b=NcwPzs4F1DYyeosl486UXr+7vOJCN0wshCUzRrsbAUNu5tTYe/aN2qMwm8DQapCJGD
         28hSmDiDK7WMLfzjieT5K2oo5U/pb6RVSpG5/WjKUyAuEZBJeS36DaDWwrOHPycT7F70
         8Lx1iDW9BYDUS1SazYqjmJNI0WISOkgjVcuKmBrok9H+cw63CpdfZTkxDJw3kWeehYTA
         rYUZ9KPs1KMecvCsVZ9z35KzWXDsYTV3c4FuoWFBdxLPtDRYHCLf1vQ+MfKVpdwtf+os
         GDJVn4BA+9iUUB6rSVScbE9MVXFFVOV+VLWZm4DuyVsE1EKTuTCB6ejb2672NBapTXZ7
         lKnw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version:dkim-signature;
        bh=n8tWmcU0b5fCDaTVTd0CKviDtOIBj5n4E8it6ot+1cI=;
        b=b7be568sLPUcHHRdCDY1eLI9zXWSE640P9XeqbNcCydhbVgEAugtI1E7AMv4NQ0YAB
         YlNItznS7pABd0UB3ZwdqG6NaMo2rDy9VZlB1tKDUH0xXpnU4pTDMtf38PScsa/TVcfv
         xDsJIFLdBDMzjeQ6iHqRlrlmkFHZlv0D207gXy/bVVewwqVP3SHFmaOiA1pVqpMgWpff
         3vq3AUuwq040JeMH3KDhk3Cykjq/M6aWmIyVkP35N1Sh0CZsX0Czf7OCQVaR8dZDbbPC
         P5+jnUO5z9rpug2Pp22bmxozLd9ZdieN7LjAOC2QiL5siQ2kG1bmWJoCODYjBH5YseI6
         wPzw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20210112 header.b=TnPnt5c8;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id j14-20020a170903024e00b001897a0f7025si29436502plh.309.2023.01.15.13.42.37;
        Sun, 15 Jan 2023 13:42:43 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20210112 header.b=TnPnt5c8;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S231489AbjAOVcV (ORCPT <rfc822;abelvesa@gmail.com> + 52 others);
        Sun, 15 Jan 2023 16:32:21 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42956 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231356AbjAOVcS (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 15 Jan 2023 16:32:18 -0500
Received: from mail-ed1-x52d.google.com (mail-ed1-x52d.google.com [IPv6:2a00:1450:4864:20::52d])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 4213616314;
        Sun, 15 Jan 2023 13:32:17 -0800 (PST)
Received: by mail-ed1-x52d.google.com with SMTP id s3so237810edd.4;
        Sun, 15 Jan 2023 13:32:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20210112;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:from:to:cc:subject:date:message-id:reply-to;
        bh=n8tWmcU0b5fCDaTVTd0CKviDtOIBj5n4E8it6ot+1cI=;
        b=TnPnt5c8/Jxn0HmkGujuci8y99eMOvK2OVIftaWvvJuOWqhCg8YjnmsNLbND6/+vrs
         GvzmsgA2ngiwH4jsor1Z9w0Z8nJ4rF7BWGB2MsZ9EhMQs788nssIibehk9I7yTVuPvOK
         R1IU+jgxwrzFQvKsNLUHzst3njireRs7Y8hueO8bpnjM0uT9D66ilYq+y7m37+lI4MBL
         UmBfbN7voygoayetVOYG16v4lGgiPiNM8B1TFLUyLdiGpNMHr5p1LZQJ3IX6dOMJHaMR
         x5RP6eJLTFYAE6nRmVDlFCkXwObdDkhyRePtO150uCZOM3qTrm8PKub0FAlpon6k5Ce6
         0Jjw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=n8tWmcU0b5fCDaTVTd0CKviDtOIBj5n4E8it6ot+1cI=;
        b=yV8DMNI9bn9Hm9/MuyJxwDDoEOtHiJfUljO5QWWCy/qHymylgDqbURnOaXrp5UntbP
         ODY3NuhoKOrY/yE+kQdJaOThHIxLZtahW8fSpZlF8CsYVkQ22IjnunhDLkm8fmI/xKCC
         H8uvVt0yLOoQhDCemaV3znpzgvMjmNNLQjX0FrVAHXxHfb8O3Qj1TiGHbBXRQE3vMxNq
         hEj9NwtFZcioN/znIJl4XYOiiPrSiQ65shjiEj6GYFFEySP71MKzBUKQ84IIgvKvvUQB
         +jrgT56/V1dWc057yD+2PVwimlmMPw2VeAlPqwsadTrUdq68eQrcZYZWU6PSYPisssQG
         C7PQ==
X-Gm-Message-State: AFqh2krZxPTDBXkxnLqiJYWaGKLzOUhDQB1JtiG6HbJra2I+3ue0TmN+
        k5JyRkQXzTc0eaonfmlwX80E/e+NgfTorx5tZJo=
X-Received: by 2002:a05:6402:500f:b0:46a:e6e3:b3cf with SMTP id
 p15-20020a056402500f00b0046ae6e3b3cfmr8470722eda.333.1673818335737; Sun, 15
 Jan 2023 13:32:15 -0800 (PST)
MIME-Version: 1.0
References: <SJ0PR04MB7248C599DE6F006F94997CF180C39@SJ0PR04MB7248.namprd04.prod.outlook.com>
In-Reply-To: <SJ0PR04MB7248C599DE6F006F94997CF180C39@SJ0PR04MB7248.namprd04.prod.outlook.com>
From:   Alexei Starovoitov <alexei.starovoitov@gmail.com>
Date:   Sun, 15 Jan 2023 13:32:04 -0800
Message-ID: <CAADnVQK4ucv=LugqZ3He9ubwdxDu6ohaBKr2E=TX0UT65+7WpQ@mail.gmail.com>
Subject: Re: [PATCH] bpf: Add CONFIG_BPF_HELPER_STRICT
To:     Roland <kernel.pwn@outlook.com>
Cc:     Ingo Molnar <mingo@redhat.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Juri Lelli <juri.lelli@redhat.com>,
        Vincent Guittot <vincent.guittot@linaro.org>,
        Dietmar Eggemann <dietmar.eggemann@arm.com>,
        Steven Rostedt <rostedt@goodmis.org>, bsegall@google.com,
        Mel Gorman <mgorman@suse.de>, bristot <bristot@redhat.com>,
        vschneid@redhat.com, Alexei Starovoitov <ast@kernel.org>,
        Daniel Borkmann <daniel@iogearbox.net>,
        Andrii Nakryiko <andrii@kernel.org>,
        Martin KaFai Lau <martin.lau@linux.dev>,
        Song Liu <song@kernel.org>, Yonghong Song <yhs@fb.com>,
        John Fastabend <john.fastabend@gmail.com>,
        KP Singh <kpsingh@kernel.org>,
        Stanislav Fomichev <sdf@google.com>,
        Hao Luo <haoluo@google.com>, Jiri Olsa <jolsa@kernel.org>,
        Masami Hiramatsu <mhiramat@kernel.org>,
        LKML <linux-kernel@vger.kernel.org>, bpf <bpf@vger.kernel.org>
Content-Type: text/plain; charset="UTF-8"
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM,
        RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Jan 13, 2023 at 11:53 PM Roland <kernel.pwn@outlook.com> wrote:
>
> In container environment, ebpf helpers could be used maliciously to
>    leak information, DOS, even escape from containers.
>    CONFIG_BPF_HELPER_STRICT is as a mitigation of it.
>    Related Link: https://rolandorange.zone/report.html

The link is arguing that a process with CAP_SYS_ADMIN permissions
can read memory of user processes, leak kernel addresses, etc.
And this is somehow an issue with bpf helpers?
and your suggested "temporary mitigation" is to CONFIG_BPF=n ?
While this patch is a "proper fix" ?
Sorry, but please stay with your "temporary mitigation" forever.