Received: by 2002:a05:7412:f589:b0:e2:908c:2ebd with SMTP id eh9csp334796rdb; Tue, 31 Oct 2023 08:46:37 -0700 (PDT) X-Google-Smtp-Source: AGHT+IFINSPuHMv0UmvjL0tk2HffPzWPVdvzKInuyMdkhZFMEhhXZY/WunVUGH2AglXCbrc/kH+2 X-Received: by 2002:a05:6a21:819e:b0:15e:7323:5c0f with SMTP id pd30-20020a056a21819e00b0015e73235c0fmr13736616pzb.16.1698767196774; Tue, 31 Oct 2023 08:46:36 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1698767196; cv=none; d=google.com; s=arc-20160816; b=xY5EQFbVZRczhTek6lpK56GwbC6WlhpComT3kWueEp4lskMqADxsS3s6K2gVArjG47 gatSelsVOFabyd+NU1V0IYqHLoZURD2wrniGbaP4IvWXMeVlzJXo42d1F4V8cQVQIRVk VGcg0n0OPm8VNMCHS7yi1twk+Ja8ev/+xav09xtdSDgpy4P+Ijx343LYBE7bbypL4O8v 7c2i5DI27hs3F0Yw/WrDWgLO8CqtR6wZuoIcMQOoLngVuwxxwN6MuUZdyShuTvBECn3B XKeGfy6cldadDt7BulnKfzve4e0NRmSUaQCautSOzGTO9BDtHgE97RL9GOc9Fjnp9U5P 2KcA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:date:from:dkim-signature; bh=ccJHYm+wH05Xhbv55YH/5LdG52kYTp3AJZuBrlz8ZrU=; fh=TPA24ezALD2u/6+cl3TuhnfRpb8/wFqG/RwgRbbwDuw=; b=TsoKjnKXAt9Ho9rnFLF7qJxJC/db4Un2n8J+EAcG5gpvasIpTg/vUHCAtAB6hR9LIm wEMcp0adXdd3RYno2mqiH0urRfl74JiYuwVmUora8uuDsOv2oBmk3m2lHE1aExSeUn2D 9bVAXKrju9VxI8kiSs3u0hMrWCJ5AxCc1loQ9i1j0fSM0KhLJBtCc8RF+T8r/WWiUcuL yrjMfAsDTj62YOIEWYIdZD+yCtjtKlPRGKeIEbnZar1Irpc0gesxC3pbx9kQlbC/Kidn FyAaBcoWc88Hyz7Ccd949uH/Z1Sg6KCUXzhSIdbWlbcT07Bfh10X7c62S/LxkFIEErkh xiFA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=SAonSy2v; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from lipwig.vger.email (lipwig.vger.email. [23.128.96.33]) by mx.google.com with ESMTPS id e62-20020a636941000000b00585a6bdce46si1175433pgc.308.2023.10.31.08.46.36 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 31 Oct 2023 08:46:36 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) client-ip=23.128.96.33; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=SAonSy2v; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.33 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by lipwig.vger.email (Postfix) with ESMTP id 1AE948097151; Tue, 31 Oct 2023 08:46:31 -0700 (PDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.10 at lipwig.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S232035AbjJaPqb (ORCPT + 99 others); Tue, 31 Oct 2023 11:46:31 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41726 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S231131AbjJaPqa (ORCPT ); Tue, 31 Oct 2023 11:46:30 -0400 Received: from mail-lf1-x135.google.com (mail-lf1-x135.google.com [IPv6:2a00:1450:4864:20::135]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 1702A8F; Tue, 31 Oct 2023 08:46:27 -0700 (PDT) Received: by mail-lf1-x135.google.com with SMTP id 2adb3069b0e04-507a3b8b113so8394699e87.0; Tue, 31 Oct 2023 08:46:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1698767185; x=1699371985; darn=vger.kernel.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:date:from:from:to:cc:subject:date:message-id:reply-to; bh=ccJHYm+wH05Xhbv55YH/5LdG52kYTp3AJZuBrlz8ZrU=; b=SAonSy2vWn7VLjUA/1NsMcH2ZMbXOIGaCUIIsgZ5RxusZrM0HsviDV9CBKyUO4JE+H 87DKnsdaFBovBdjOKtWzTfznX2bb2kKgVswLVppCi9EgsybSPzr7+xhzVqefOyFm3ioG E51NN81aDoBBjWt6iP/SDV9yETszduCboqYfVABZjxQlY3SUZyykIPSh9HW8uHRDUKG5 jUbBjUxVvgogkRDvT913P1Tk/Z9yndvczpSLMRK/ktzF5DwtdYXhIHwKTGncxouydSms xHL8gPxIVuqNOwrOpEUnpHIIGFTGWZBDFDBnT6YPPdocrIIAzKhmahiRCG24Uy7L1QlP wOmw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1698767185; x=1699371985; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:date:from:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=ccJHYm+wH05Xhbv55YH/5LdG52kYTp3AJZuBrlz8ZrU=; b=i6ePmmttewrDHU2enNcgqc7wgbCpN2LfDyOG3VofRukgMYZ0pX6hy+HNJDQBf7c0Qb /Il+bMblg0Oh4zeDq4ri7PWASzMz/kS9v4tGy7pDDfIwJzgvcOF3CWWzmAdFTt9TaTZZ cdW0SNduy0//ldA3AkYv3axX3MnKtp8yiM7NV35zYO5WGcFKxLmndtiTMcoRyI2RZGV9 wQhTC7APMXSKo6CWlHuQGg2g8/MgHlUYYVw8ELdx1gqLmoU+42iiTt9CfU9phFwxSz/j OydD8LPN4q+l2CeeeTItSoYPwV3+C+W/JpdOEmKGGqE0ORvp7h1TzEnNp2JV7qMTLr5l Kmig== X-Gm-Message-State: AOJu0YwhONDZVk/nWz/SP+ZBYguDeuJrLFqZvWDd+MM7mdFFTg5ni+Ve TllIlVPm+T3Z0FRJ1b97/HI= X-Received: by 2002:a05:6512:b05:b0:500:7c51:4684 with SMTP id w5-20020a0565120b0500b005007c514684mr5332608lfu.56.1698767184866; Tue, 31 Oct 2023 08:46:24 -0700 (PDT) Received: from krava (2001-1ae9-1c2-4c00-726e-c10f-8833-ff22.ip6.tmcz.cz. [2001:1ae9:1c2:4c00:726e:c10f:8833:ff22]) by smtp.gmail.com with ESMTPSA id h29-20020a50cddd000000b00542db304680sm1342718edj.63.2023.10.31.08.46.24 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 31 Oct 2023 08:46:24 -0700 (PDT) From: Jiri Olsa X-Google-Original-From: Jiri Olsa Date: Tue, 31 Oct 2023 16:46:23 +0100 To: Vadim Fedorenko Cc: Vadim Fedorenko , Jakub Kicinski , Martin KaFai Lau , Andrii Nakryiko , Alexei Starovoitov , Mykola Lysenko , bpf@vger.kernel.org, netdev@vger.kernel.org, linux-crypto@vger.kernel.org Subject: Re: [PATCH bpf-next v3 1/2] bpf: add skcipher API support to TC/XDP programs Message-ID: References: <20231031134900.1432945-1-vadfed@meta.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20231031134900.1432945-1-vadfed@meta.com> X-Spam-Status: No, score=-0.6 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,FREEMAIL_FORGED_FROMDOMAIN,FREEMAIL_FROM, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_NONE, SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lipwig.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (lipwig.vger.email [0.0.0.0]); Tue, 31 Oct 2023 08:46:31 -0700 (PDT) On Tue, Oct 31, 2023 at 06:48:59AM -0700, Vadim Fedorenko wrote: SNIP > diff --git a/kernel/bpf/crypto.c b/kernel/bpf/crypto.c > new file mode 100644 > index 000000000000..c2a0703934fc > --- /dev/null > +++ b/kernel/bpf/crypto.c > @@ -0,0 +1,280 @@ > +// SPDX-License-Identifier: GPL-2.0-only > +/* Copyright (c) 2023 Meta, Inc */ > +#include > +#include > +#include > +#include > +#include > +#include > +#include > +#include > + > +/** > + * struct bpf_crypto_skcipher_ctx - refcounted BPF sync skcipher context structure > + * @tfm: The pointer to crypto_sync_skcipher struct. > + * @rcu: The RCU head used to free the crypto context with RCU safety. > + * @usage: Object reference counter. When the refcount goes to 0, the > + * memory is released back to the BPF allocator, which provides > + * RCU safety. > + */ > +struct bpf_crypto_skcipher_ctx { > + struct crypto_sync_skcipher *tfm; > + struct rcu_head rcu; > + refcount_t usage; > +}; > + > +__diag_push(); > +__diag_ignore_all("-Wmissing-prototypes", > + "Global kfuncs as their definitions will be in BTF"); > + hi, just a heads up.. there's [1] change adding macro for this, it's not merged yet, but will probably get in soon jirka [1] https://lore.kernel.org/bpf/20231030210638.2415306-1-davemarchevsky@fb.com/ > +static void *__bpf_dynptr_data_ptr(const struct bpf_dynptr_kern *ptr) > +{ > + enum bpf_dynptr_type type; > + > + if (!ptr->data) > + return NULL; > + > + type = bpf_dynptr_get_type(ptr); > + > + switch (type) { > + case BPF_DYNPTR_TYPE_LOCAL: > + case BPF_DYNPTR_TYPE_RINGBUF: > + return ptr->data + ptr->offset; > + case BPF_DYNPTR_TYPE_SKB: > + return skb_pointer_if_linear(ptr->data, ptr->offset, __bpf_dynptr_size(ptr)); > + case BPF_DYNPTR_TYPE_XDP: > + { > + void *xdp_ptr = bpf_xdp_pointer(ptr->data, ptr->offset, __bpf_dynptr_size(ptr)); > + if (!IS_ERR_OR_NULL(xdp_ptr)) > + return xdp_ptr; > + > + return NULL; > + } > + default: > + WARN_ONCE(true, "unknown dynptr type %d\n", type); > + return NULL; > + } > +} > + > +/** > + * bpf_crypto_skcipher_ctx_create() - Create a mutable BPF crypto context. > + * > + * Allocates a crypto context that can be used, acquired, and released by > + * a BPF program. The crypto context returned by this function must either > + * be embedded in a map as a kptr, or freed with bpf_crypto_skcipher_ctx_release(). > + * > + * bpf_crypto_skcipher_ctx_create() allocates memory using the BPF memory > + * allocator, and will not block. It may return NULL if no memory is available. > + * @algo: bpf_dynptr which holds string representation of algorithm. > + * @key: bpf_dynptr which holds cipher key to do crypto. > + */ > +__bpf_kfunc struct bpf_crypto_skcipher_ctx * > +bpf_crypto_skcipher_ctx_create(const struct bpf_dynptr_kern *palgo, > + const struct bpf_dynptr_kern *pkey, int *err) > +{ > + struct bpf_crypto_skcipher_ctx *ctx; > + char *algo; > + > + if (__bpf_dynptr_size(palgo) > CRYPTO_MAX_ALG_NAME) { > + *err = -EINVAL; > + return NULL; > + } > + > + algo = __bpf_dynptr_data_ptr(palgo); > + > + if (!crypto_has_skcipher(algo, CRYPTO_ALG_TYPE_SKCIPHER, CRYPTO_ALG_TYPE_MASK)) { > + *err = -EOPNOTSUPP; > + return NULL; > + } > + > + ctx = kmalloc(sizeof(*ctx), GFP_KERNEL); > + if (!ctx) { > + *err = -ENOMEM; > + return NULL; > + } > + > + memset(ctx, 0, sizeof(*ctx)); > + > + ctx->tfm = crypto_alloc_sync_skcipher(algo, 0, 0); > + if (IS_ERR(ctx->tfm)) { > + *err = PTR_ERR(ctx->tfm); > + ctx->tfm = NULL; > + goto err; > + } > + > + *err = crypto_sync_skcipher_setkey(ctx->tfm, __bpf_dynptr_data_ptr(pkey), > + __bpf_dynptr_size(pkey)); > + if (*err) > + goto err; > + > + refcount_set(&ctx->usage, 1); > + > + return ctx; > +err: > + if (ctx->tfm) > + crypto_free_sync_skcipher(ctx->tfm); > + kfree(ctx); > + > + return NULL; > +} > + > +static void crypto_free_sync_skcipher_cb(struct rcu_head *head) > +{ > + struct bpf_crypto_skcipher_ctx *ctx; > + > + ctx = container_of(head, struct bpf_crypto_skcipher_ctx, rcu); > + crypto_free_sync_skcipher(ctx->tfm); > + kfree(ctx); > +} > + > +/** > + * bpf_crypto_skcipher_ctx_acquire() - Acquire a reference to a BPF crypto context. > + * @ctx: The BPF crypto context being acquired. The ctx must be a trusted > + * pointer. > + * > + * Acquires a reference to a BPF crypto context. The context returned by this function > + * must either be embedded in a map as a kptr, or freed with > + * bpf_crypto_skcipher_ctx_release(). > + */ > +__bpf_kfunc struct bpf_crypto_skcipher_ctx * > +bpf_crypto_skcipher_ctx_acquire(struct bpf_crypto_skcipher_ctx *ctx) > +{ > + refcount_inc(&ctx->usage); > + return ctx; > +} > + > +/** > + * bpf_crypto_skcipher_ctx_release() - Release a previously acquired BPF crypto context. > + * @ctx: The crypto context being released. > + * > + * Releases a previously acquired reference to a BPF cpumask. When the final > + * reference of the BPF cpumask has been released, it is subsequently freed in > + * an RCU callback in the BPF memory allocator. > + */ > +__bpf_kfunc void bpf_crypto_skcipher_ctx_release(struct bpf_crypto_skcipher_ctx *ctx) > +{ > + if (refcount_dec_and_test(&ctx->usage)) > + call_rcu(&ctx->rcu, crypto_free_sync_skcipher_cb); > +} > + > +static int bpf_crypto_skcipher_crypt(struct crypto_sync_skcipher *tfm, > + const struct bpf_dynptr_kern *src, > + struct bpf_dynptr_kern *dst, > + const struct bpf_dynptr_kern *iv, > + bool decrypt) > +{ > + struct skcipher_request *req = NULL; > + struct scatterlist sgin, sgout; > + int err; > + > + if (crypto_sync_skcipher_get_flags(tfm) & CRYPTO_TFM_NEED_KEY) > + return -EINVAL; > + > + if (__bpf_dynptr_is_rdonly(dst)) > + return -EINVAL; > + > + if (!__bpf_dynptr_size(dst) || !__bpf_dynptr_size(src)) > + return -EINVAL; > + > + if (__bpf_dynptr_size(iv) != crypto_sync_skcipher_ivsize(tfm)) > + return -EINVAL; > + > + req = skcipher_request_alloc(&tfm->base, GFP_ATOMIC); > + if (!req) > + return -ENOMEM; > + > + sg_init_one(&sgin, __bpf_dynptr_data_ptr(src), __bpf_dynptr_size(src)); > + sg_init_one(&sgout, __bpf_dynptr_data_ptr(dst), __bpf_dynptr_size(dst)); > + > + skcipher_request_set_crypt(req, &sgin, &sgout, __bpf_dynptr_size(src), > + __bpf_dynptr_data_ptr(iv)); > + > + err = decrypt ? crypto_skcipher_decrypt(req) : crypto_skcipher_encrypt(req); > + > + skcipher_request_free(req); > + > + return err; > +} > + > +/** > + * bpf_crypto_skcipher_decrypt() - Decrypt buffer using configured context and IV provided. > + * @ctx: The crypto context being used. The ctx must be a trusted pointer. > + * @src: bpf_dynptr to the encrypted data. Must be a trusted pointer. > + * @dst: bpf_dynptr to the buffer where to store the result. Must be a trusted pointer. > + * @iv: bpf_dynptr to IV data to be used by decryptor. > + * > + * Decrypts provided buffer using IV data and the crypto context. Crypto context must be configured. > + */ > +__bpf_kfunc int bpf_crypto_skcipher_decrypt(struct bpf_crypto_skcipher_ctx *ctx, > + const struct bpf_dynptr_kern *src, > + struct bpf_dynptr_kern *dst, > + const struct bpf_dynptr_kern *iv) > +{ > + return bpf_crypto_skcipher_crypt(ctx->tfm, src, dst, iv, true); > +} > + > +/** > + * bpf_crypto_skcipher_encrypt() - Encrypt buffer using configured context and IV provided. > + * @ctx: The crypto context being used. The ctx must be a trusted pointer. > + * @src: bpf_dynptr to the plain data. Must be a trusted pointer. > + * @dst: bpf_dynptr to buffer where to store the result. Must be a trusted pointer. > + * @iv: bpf_dynptr to IV data to be used by decryptor. > + * > + * Encrypts provided buffer using IV data and the crypto context. Crypto context must be configured. > + */ > +__bpf_kfunc int bpf_crypto_skcipher_encrypt(struct bpf_crypto_skcipher_ctx *ctx, > + const struct bpf_dynptr_kern *src, > + struct bpf_dynptr_kern *dst, > + const struct bpf_dynptr_kern *iv) > +{ > + return bpf_crypto_skcipher_crypt(ctx->tfm, src, dst, iv, false); > +} > + > +__diag_pop(); > + > +BTF_SET8_START(crypt_skcipher_init_kfunc_btf_ids) > +BTF_ID_FLAGS(func, bpf_crypto_skcipher_ctx_create, KF_ACQUIRE | KF_RET_NULL | KF_SLEEPABLE) > +BTF_ID_FLAGS(func, bpf_crypto_skcipher_ctx_release, KF_RELEASE) > +BTF_ID_FLAGS(func, bpf_crypto_skcipher_ctx_acquire, KF_ACQUIRE | KF_TRUSTED_ARGS) > +BTF_SET8_END(crypt_skcipher_init_kfunc_btf_ids) > + > +static const struct btf_kfunc_id_set crypt_skcipher_init_kfunc_set = { > + .owner = THIS_MODULE, > + .set = &crypt_skcipher_init_kfunc_btf_ids, > +}; > + > +BTF_SET8_START(crypt_skcipher_kfunc_btf_ids) > +BTF_ID_FLAGS(func, bpf_crypto_skcipher_decrypt, KF_RCU) > +BTF_ID_FLAGS(func, bpf_crypto_skcipher_encrypt, KF_RCU) > +BTF_SET8_END(crypt_skcipher_kfunc_btf_ids) > + > +static const struct btf_kfunc_id_set crypt_skcipher_kfunc_set = { > + .owner = THIS_MODULE, > + .set = &crypt_skcipher_kfunc_btf_ids, > +}; > + > +BTF_ID_LIST(crypto_skcipher_dtor_ids) > +BTF_ID(struct, bpf_crypto_skcipher_ctx) > +BTF_ID(func, bpf_crypto_skcipher_ctx_release) > + > +static int __init crypto_skcipher_kfunc_init(void) > +{ > + int ret; > + const struct btf_id_dtor_kfunc crypto_skcipher_dtors[] = { > + { > + .btf_id = crypto_skcipher_dtor_ids[0], > + .kfunc_btf_id = crypto_skcipher_dtor_ids[1] > + }, > + }; > + > + ret = register_btf_kfunc_id_set(BPF_PROG_TYPE_SCHED_CLS, &crypt_skcipher_kfunc_set); > + ret = ret ?: register_btf_kfunc_id_set(BPF_PROG_TYPE_SCHED_ACT, &crypt_skcipher_kfunc_set); > + ret = ret ?: register_btf_kfunc_id_set(BPF_PROG_TYPE_XDP, &crypt_skcipher_kfunc_set); > + ret = ret ?: register_btf_kfunc_id_set(BPF_PROG_TYPE_UNSPEC, > + &crypt_skcipher_init_kfunc_set); > + return ret ?: register_btf_id_dtor_kfuncs(crypto_skcipher_dtors, > + ARRAY_SIZE(crypto_skcipher_dtors), > + THIS_MODULE); > +} > + > +late_initcall(crypto_skcipher_kfunc_init); > diff --git a/kernel/bpf/helpers.c b/kernel/bpf/helpers.c > index 62a53ebfedf9..2020884fca3d 100644 > --- a/kernel/bpf/helpers.c > +++ b/kernel/bpf/helpers.c > @@ -1429,7 +1429,7 @@ static const struct bpf_func_proto bpf_kptr_xchg_proto = { > #define DYNPTR_SIZE_MASK 0xFFFFFF > #define DYNPTR_RDONLY_BIT BIT(31) > > -static bool __bpf_dynptr_is_rdonly(const struct bpf_dynptr_kern *ptr) > +bool __bpf_dynptr_is_rdonly(const struct bpf_dynptr_kern *ptr) > { > return ptr->size & DYNPTR_RDONLY_BIT; > } > @@ -1444,7 +1444,7 @@ static void bpf_dynptr_set_type(struct bpf_dynptr_kern *ptr, enum bpf_dynptr_typ > ptr->size |= type << DYNPTR_TYPE_SHIFT; > } > > -static enum bpf_dynptr_type bpf_dynptr_get_type(const struct bpf_dynptr_kern *ptr) > +enum bpf_dynptr_type bpf_dynptr_get_type(const struct bpf_dynptr_kern *ptr) > { > return (ptr->size & ~(DYNPTR_RDONLY_BIT)) >> DYNPTR_TYPE_SHIFT; > } > diff --git a/kernel/bpf/verifier.c b/kernel/bpf/verifier.c > index bb58987e4844..75d2f47ca3cb 100644 > --- a/kernel/bpf/verifier.c > +++ b/kernel/bpf/verifier.c > @@ -5184,6 +5184,7 @@ BTF_ID(struct, prog_test_ref_kfunc) > BTF_ID(struct, cgroup) > BTF_ID(struct, bpf_cpumask) > BTF_ID(struct, task_struct) > +BTF_ID(struct, bpf_crypto_skcipher_ctx) > BTF_SET_END(rcu_protected_types) > > static bool rcu_protected_object(const struct btf *btf, u32 btf_id) > -- > 2.39.3 > >