Re: [PATCH net] bpf: fix allocation warnings in bpf maps and integer overflow

From: Alexei Starovoitov
Date: Mon Nov 30 2015 - 18:30:44 EST

Next message: Anton Bondarenko: "Re: [PATCH v4 1/7] spi: imx: Fix DMA transfer"
Previous message: Nicolai Stange: "[PATCH 2/2] debugfs: prevent access to removed files' private data"
In reply to: Daniel Borkmann: "Re: [PATCH net] bpf: fix allocation warnings in bpf maps and integer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Nov 30, 2015 at 11:16:46PM +0100, Daniel Borkmann wrote:
>
> So, when creating a sufficiently large map where map->key_size + map->value_size
> would be > MAX_BPF_STACK (but map->key_size still <= MAX_BPF_STACK), we can only
> read the map from an eBPF program, but not update it. In such cases, updates could
> only happen from user space application.

yes and no.
If both key_size + value_size > MAX_BPF_STACK, the program cannot technically
call bpf_map_update_elem() helper, but the user space can still populate large map
elements and the program can update it, since it can have a pointer via
bpf_map_lookup_elem(). So depends on definition of 'update'.

btw, the large-ish key support is actually needed too, since on tracing side
we need to be able to do map[kernel_stack_and_user_stack]++ and key is multipage long.
On userspace side it will be consumed by flamegraphs.

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Anton Bondarenko: "Re: [PATCH v4 1/7] spi: imx: Fix DMA transfer"
Previous message: Nicolai Stange: "[PATCH 2/2] debugfs: prevent access to removed files' private data"
In reply to: Daniel Borkmann: "Re: [PATCH net] bpf: fix allocation warnings in bpf maps and integer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]