Re: [PATCH 1/2] bpf: add a bpf_override_function helper

From: Daniel Borkmann
Date: Wed Nov 01 2017 - 21:08:28 EST

Next message: Florian Fainelli: "Re: [PATCH 1/7] dt-bindings: Add Cavium Octeon Common Ethernet Interface."
Previous message: Florian Fainelli: "[PATCH 02/12] hwrng: bcm2835-rng: Define a driver private context"
In reply to: Alexei Starovoitov: "Re: [PATCH 1/2] bpf: add a bpf_override_function helper"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/01/2017 06:00 PM, Josef Bacik wrote:

From: Josef Bacik <jbacik@xxxxxx>

Error injection is sloppy and very ad-hoc. BPF could fill this niche
perfectly with it's kprobe functionality. We could make sure errors are
only triggered in specific call chains that we care about with very
specific situations. Accomplish this with the bpf_override_funciton
helper. This will modify the probe'd callers return value to the
specified value and set the PC to an override function that simply
returns, bypassing the originally probed function. This gives us a nice
clean way to implement systematic error injection for all of our code
paths.

Signed-off-by: Josef Bacik <jbacik@xxxxxx>

Looks useful (seccomp/BPF has something similar but on syscall level).
I think given we change kernel behavior, it would be good if we emit
similar warning like in case of bpf_get_probe_write_proto(), such that
from staring at the log (e.g. in case of subsequent crash), it could
help identifying that cause to trigger the bug could have been due to
bpf_override_function().

Next message: Florian Fainelli: "Re: [PATCH 1/7] dt-bindings: Add Cavium Octeon Common Ethernet Interface."
Previous message: Florian Fainelli: "[PATCH 02/12] hwrng: bcm2835-rng: Define a driver private context"
In reply to: Alexei Starovoitov: "Re: [PATCH 1/2] bpf: add a bpf_override_function helper"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]