From: Jiri Olsa <olsajiri@gmail.com>
To: Andrii Nakryiko <andrii.nakryiko@gmail.com>
Cc: Alexei Starovoitov <ast@kernel.org>,
Daniel Borkmann <daniel@iogearbox.net>,
Andrii Nakryiko <andrii@kernel.org>, bpf <bpf@vger.kernel.org>,
Martin KaFai Lau <kafai@fb.com>, Song Liu <songliubraving@fb.com>,
Yonghong Song <yhs@fb.com>,
John Fastabend <john.fastabend@gmail.com>,
KP Singh <kpsingh@chromium.org>,
Stanislav Fomichev <sdf@google.com>, Hao Luo <haoluo@google.com>,
Peter Zijlstra <peterz@infradead.org>
Subject: Re: [PATCH bpf-next 0/5] bpf: Fixes for CONFIG_X86_KERNEL_IBT
Date: Sun, 31 Jul 2022 23:08:13 +0200 [thread overview]
Message-ID: <YubvPcHwPrcc1CD0@krava> (raw)
In-Reply-To: <CAEf4Bzbrqrg-wuNNWNJ1GSQQzLOF7azzM8B17ti1TBz_D7irKg@mail.gmail.com>
On Fri, Jul 29, 2022 at 03:18:54PM -0700, Andrii Nakryiko wrote:
> On Sun, Jul 24, 2022 at 2:21 PM Jiri Olsa <jolsa@kernel.org> wrote:
> >
> > hi,
> > Martynas reported bpf_get_func_ip returning +4 address when
> > CONFIG_X86_KERNEL_IBT option is enabled and I found there are
> > some failing bpf tests when this option is enabled.
> >
> > The CONFIG_X86_KERNEL_IBT option adds endbr instruction at the
> > function entry, so the idea is to 'fix' entry ip for kprobe_multi
> > and trampoline probes, because they are placed on the function
> > entry.
> >
> > For kprobes I only fixed the bpf test program to adjust ip based
> > on CONFIG_X86_KERNEL_IBT option. I'm not sure what the right fix
> > should be in here, because I think user should be aware where the
>
> user can't be aware of this when using multi-kprobe attach by symbolic
> name of the function. So I think bpf_get_func_ip() at least in that
> case should be compensating for KERNEL_IBT.
sorry I said kprobes, but that does not include kprobe multi link,
I meant what you call general kprobe below
I do the adjustment for kprobe multi version of bpf_get_func_ip,
so that should be fine
>
> BTW, given in general kprobe can be placed in them middle of the
> function, should bpf_get_func_ip() return zero or something for such
> cases instead of wrong value somewhere in the middle of kprobe? If
> user cares about current IP, they can get it with PT_REGS_IP(ctx),
> right?
true.. we could add flag to 'struct kprobe' to indicate it's placed
on function's entry and check on endbr instruction for IBT config,
and return 0 for anything else
jirka
> > kprobe is placed, on the other hand we move the kprobe address if
> > its placed on top of endbr instruction.
> >
> > v1 changes:
> > - read previous instruction in kprobe_multi link handler
> > and adjust entry_ip for CONFIG_X86_KERNEL_IBT option
> > - split first patch into 2 separate changes
> > - update changelogs
> >
> > thanks,
> > jirka
> >
> >
> > ---
> > Jiri Olsa (5):
> > ftrace: Keep the resolved addr in kallsyms_callback
> > bpf: Adjust kprobe_multi entry_ip for CONFIG_X86_KERNEL_IBT
> > bpf: Use given function address for trampoline ip arg
> > selftests/bpf: Disable kprobe attach test with offset for CONFIG_X86_KERNEL_IBT
> > selftests/bpf: Fix kprobe get_func_ip tests for CONFIG_X86_KERNEL_IBT
> >
> > arch/x86/net/bpf_jit_comp.c | 9 ++++-----
> > kernel/trace/bpf_trace.c | 4 ++++
> > kernel/trace/ftrace.c | 3 +--
> > tools/testing/selftests/bpf/prog_tests/get_func_ip_test.c | 25 ++++++++++++++++++++-----
> > tools/testing/selftests/bpf/progs/get_func_ip_test.c | 7 +++++--
> > tools/testing/selftests/bpf/progs/kprobe_multi.c | 2 +-
> > 6 files changed, 35 insertions(+), 15 deletions(-)
next prev parent reply other threads:[~2022-07-31 21:08 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-07-24 21:21 [PATCH bpf-next 0/5] bpf: Fixes for CONFIG_X86_KERNEL_IBT Jiri Olsa
2022-07-24 21:21 ` [PATCH bpf-next 1/5] ftrace: Keep the resolved addr in kallsyms_callback Jiri Olsa
2022-07-24 21:21 ` [PATCH bpf-next 2/5] bpf: Adjust kprobe_multi entry_ip for CONFIG_X86_KERNEL_IBT Jiri Olsa
2022-07-24 21:21 ` [PATCH bpf-next 3/5] bpf: Use given function address for trampoline ip arg Jiri Olsa
2022-07-24 21:21 ` [PATCH bpf-next 4/5] selftests/bpf: Disable kprobe attach test with offset for CONFIG_X86_KERNEL_IBT Jiri Olsa
2022-07-29 22:15 ` Andrii Nakryiko
2022-07-31 21:14 ` Jiri Olsa
2022-07-24 21:21 ` [PATCH bpf-next 5/5] selftests/bpf: Fix kprobe get_func_ip tests " Jiri Olsa
2022-07-29 22:18 ` [PATCH bpf-next 0/5] bpf: Fixes " Andrii Nakryiko
2022-07-31 21:08 ` Jiri Olsa [this message]
2022-08-01 14:14 ` Jiri Olsa
2022-08-01 22:02 ` Andrii Nakryiko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YubvPcHwPrcc1CD0@krava \
--to=olsajiri@gmail.com \
--cc=andrii.nakryiko@gmail.com \
--cc=andrii@kernel.org \
--cc=ast@kernel.org \
--cc=bpf@vger.kernel.org \
--cc=daniel@iogearbox.net \
--cc=haoluo@google.com \
--cc=john.fastabend@gmail.com \
--cc=kafai@fb.com \
--cc=kpsingh@chromium.org \
--cc=peterz@infradead.org \
--cc=sdf@google.com \
--cc=songliubraving@fb.com \
--cc=yhs@fb.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox