Received: by 2002:a05:6358:11c7:b0:104:8066:f915 with SMTP id i7csp2698265rwl; Thu, 13 Apr 2023 09:39:03 -0700 (PDT) X-Google-Smtp-Source: AKy350YX30WjW15VbQhOeFj7+ib9kRzUBJ9AB4k+PRnuRPkYIUhbpc7CaN5fUvtmbRpjzY29vKDj X-Received: by 2002:a17:902:da8d:b0:1a5:150f:8553 with SMTP id j13-20020a170902da8d00b001a5150f8553mr3678951plx.0.1681403943545; Thu, 13 Apr 2023 09:39:03 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1681403943; cv=none; d=google.com; s=arc-20160816; b=fYaKjI2zh3TJ22TWHmBlZLqG2LspMmwz7cJsZ400Lej/ZAGlTH2mcz8ihNmi0wj+g5 xSaO+YDNfCE/N6dYTqQ05KlOx9ERCUn2o1CpZyzJMmM/zztc5Tz+OWEUAMM39gRVl5zJ xcn23WZX38S5XUd/SQMGlGDFx195ioNV3TzErLGtFF1DWGP48QvJO3SCeq3EP9cj75KL k+uSBANRpG6s6mnXdX1jm2TbQtPdhUZ6/QThFokDn0t4hi2qKxkJoP2hU1oN05SIYPL9 AkYXIsmkhmd/TX3tXesMghkBrKmvBMphVo2ZwyL5ZzfOjOSdEUuOPe9sIZuAoUskdZIW 7g+A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=6CA8xH6xpzGSTaAfB+7bPIElYhjC21sBnWRkmsqdd9Y=; b=E07BgcM3pG44sbQUbx8+Z1MbA5KuKnOGb7tHWdjn8kIFi3WQuIvQmzQP0nbZqvWFj/ e4jrM0eiWizu1g8AVktB+RdPR8fyXKzct8nUOvEl4GA20MTXYS94eM8Zd/8eiNVQPs/j jCpV5GPqSZmsQRTmJu3n6ziowFz369Ufd54hi3bWoWErNByxUxTAxrp7a9o3X6O2yXkx djP5SXl4tgB6Zbqvm32wtWR9knP2k289lxlxSH21vxKwcDIJPZ3yqDMlba7I8Vy/uC6+ x5vu03XXKSxW9mX2pKKlBISkmIThbsFbBqanSugrGbeTsJyJx6kTUbersV3cFmQvrB/e qj0A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20221208 header.b=dBm+oZhf; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id jj11-20020a170903048b00b001a1b152a275si2485482plb.32.2023.04.13.09.38.49; Thu, 13 Apr 2023 09:39:03 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20221208 header.b=dBm+oZhf; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229611AbjDMQhZ (ORCPT + 99 others); Thu, 13 Apr 2023 12:37:25 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:43758 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229888AbjDMQhY (ORCPT ); Thu, 13 Apr 2023 12:37:24 -0400 Received: from mail-pj1-x1029.google.com (mail-pj1-x1029.google.com [IPv6:2607:f8b0:4864:20::1029]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A39A38A78 for ; Thu, 13 Apr 2023 09:37:21 -0700 (PDT) Received: by mail-pj1-x1029.google.com with SMTP id cm18-20020a17090afa1200b0024713adf69dso3276822pjb.3 for ; Thu, 13 Apr 2023 09:37:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20221208; t=1681403841; x=1683995841; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=6CA8xH6xpzGSTaAfB+7bPIElYhjC21sBnWRkmsqdd9Y=; b=dBm+oZhfqAnUccrZfkosPyJnN/qdA3MUvkXrUieofb/LvXfMtMtS6IVplgPDmvPatm s8BNUY4XKCnJVsDRsR8WgjUs+mnI6nMpM2vTNxFSFoIktE+WZGEJzYhGepK9VZwx89Z2 rQOQ64NJgSLV4JYPWWm9Kqeza4sAjwCh38oHRKpgY/vwygh3KTEZ9JjzmymnTQd5xBvL l1UyEtRhXd+N7cnLTobfakrRu6ZAhI5szGVEntiVOLihqTZjTyivFJuhPibP5a7rpg0p Xmv+T6bcuc/Kl/gNWz0I++y5Nrkxeqb5i4HM4bDieEQUBJGv6iYlq+MlkIJ4EymTplrF 1ewg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1681403841; x=1683995841; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=6CA8xH6xpzGSTaAfB+7bPIElYhjC21sBnWRkmsqdd9Y=; b=fSbI6ZtQxJ/wDz2z+5yvmenorZh0Lkz8pcUiS+msuu0ARUtuPmWIMu3taFleAl09lz IcRNvKQiigYL4enq2694gbXDIdKC00JMpOO7unuUt+RkLq3Xb2ILQAP3/ZLyJs2PYbDq XTojO/24rukbzpQ0hwTMUrVy9uDE9NhHBpWIRjndqDiPNwOyuPBUNKa8hnDJl9N9AxMt y+YdqgCmX4O6lF77ithS01Lxm7PyKedfgQPox4gwc8vBciGVTA9rNxLjuy0j6tPCY/dO rl08pqBrPpPEpNO8vXqLhxXTmkCJ54bJckQdHR9fkPXMaYRGjKowx84Pdb9WyM1Mx4tf IfZg== X-Gm-Message-State: AAQBX9fYglcDXYjQI6ELUEol+Y4rsZ3tpaHKZ312ZVX1a1Kj/TlUAzLq Y3YqmorsDOSD5IDgz9IG5EqqxWcfN/SnDbV3//If5gPU17vwr6fRa9XmhkROorI= X-Received: by 2002:a17:90a:55cb:b0:246:6065:d2b5 with SMTP id o11-20020a17090a55cb00b002466065d2b5mr722784pjm.9.1681403840901; Thu, 13 Apr 2023 09:37:20 -0700 (PDT) MIME-Version: 1.0 References: <20230413133355.350571-1-aleksandr.mikhalitsyn@canonical.com> <20230413133355.350571-3-aleksandr.mikhalitsyn@canonical.com> In-Reply-To: From: Stanislav Fomichev Date: Thu, 13 Apr 2023 09:37:09 -0700 Message-ID: Subject: Re: [PATCH net-next v4 2/4] net: socket: add sockopts blacklist for BPF cgroup hook To: Aleksandr Mikhalitsyn Cc: Eric Dumazet , davem@davemloft.net, linux-kernel@vger.kernel.org, netdev@vger.kernel.org, daniel@iogearbox.net, Jakub Kicinski , Paolo Abeni , Leon Romanovsky , David Ahern , Arnd Bergmann , Kees Cook , Christian Brauner , Kuniyuki Iwashima , Lennart Poettering , linux-arch@vger.kernel.org Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Apr 13, 2023 at 7:38=E2=80=AFAM Aleksandr Mikhalitsyn wrote: > > On Thu, Apr 13, 2023 at 4:22=E2=80=AFPM Eric Dumazet wrote: > > > > On Thu, Apr 13, 2023 at 3:35=E2=80=AFPM Alexander Mikhalitsyn > > wrote: > > > > > > During work on SO_PEERPIDFD, it was discovered (thanks to Christian), > > > that bpf cgroup hook can cause FD leaks when used with sockopts which > > > install FDs into the process fdtable. > > > > > > After some offlist discussion it was proposed to add a blacklist of > > > > We try to replace this word by either denylist or blocklist, even in ch= angelogs. > > Hi Eric, > > Oh, I'm sorry about that. :( Sure. > > > > > > socket options those can cause troubles when BPF cgroup hook is enabl= ed. > > > > > > > Can we find the appropriate Fixes: tag to help stable teams ? > > Sure, I will add next time. > > Fixes: 0d01da6afc54 ("bpf: implement getsockopt and setsockopt hooks") > > I think it's better to add Stanislav Fomichev to CC. Can we use 'struct proto' bpf_bypass_getsockopt instead? We already use it for tcp zerocopy, I'm assuming it should work in this case as well? > Kind regards, > Alex > > > > > > Cc: "David S. Miller" > > > Cc: Eric Dumazet > > > Cc: Jakub Kicinski > > > Cc: Paolo Abeni > > > Cc: Leon Romanovsky > > > Cc: David Ahern > > > Cc: Arnd Bergmann > > > Cc: Kees Cook > > > Cc: Christian Brauner > > > Cc: Kuniyuki Iwashima > > > Cc: Lennart Poettering > > > Cc: linux-kernel@vger.kernel.org > > > Cc: netdev@vger.kernel.org > > > Cc: linux-arch@vger.kernel.org > > > Suggested-by: Daniel Borkmann > > > Suggested-by: Christian Brauner > > > Signed-off-by: Alexander Mikhalitsyn > > > > Thanks.