bpf: sanitize bpf tracepoint access during bpf program loading remember the last byte of ctx access and at the time of attaching the program to tracepoint check that the program doesn't access bytes beyond defined in tracepoint fields This also disallows access to __dynamic_array fields, but can be relaxed in the future. Signed-off-by: Alexei Starovoitov <ast@kernel.org> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: 32bbe0078afe86a8bf4c67c6b3477781b15e94dc [log] [tgz]
author: Alexei Starovoitov <ast@fb.com> Wed Apr 06 18:43:28 2016 -0700
committer: David S. Miller <davem@davemloft.net> Thu Apr 07 21:04:26 2016 -0400
tree: 8c5290f51108de3a2c98cb7171942fb9d5e36ab2
parent: 9940d67c93b5bb7ddcf862b41b1847cb728186c4 [diff]
diff --git a/include/linux/bpf.h b/include/linux/bpf.h
index 198f6ac..b2365a6e 100644
--- a/include/linux/bpf.h
+++ b/include/linux/bpf.h

@@ -131,6 +131,7 @@
 struct bpf_prog_aux {
 	atomic_t refcnt;
 	u32 used_map_cnt;
+	u32 max_ctx_offset;
 	const struct bpf_verifier_ops *ops;
 	struct bpf_map **used_maps;
 	struct bpf_prog *prog;

diff --git a/include/linux/trace_events.h b/include/linux/trace_events.h
index 56f795e..fe64412 100644
--- a/include/linux/trace_events.h
+++ b/include/linux/trace_events.h

@@ -569,6 +569,7 @@
 			      int is_signed, int filter_type);
 extern int trace_add_event_call(struct trace_event_call *call);
 extern int trace_remove_event_call(struct trace_event_call *call);
+extern int trace_event_get_offsets(struct trace_event_call *call);
 
 #define is_signed_type(type)	(((type)(-1)) < (type)1)
commit	32bbe0078afe86a8bf4c67c6b3477781b15e94dc	[log] [tgz]
author	Alexei Starovoitov <ast@fb.com>	Wed Apr 06 18:43:28 2016 -0700
committer	David S. Miller <davem@davemloft.net>	Thu Apr 07 21:04:26 2016 -0400
tree	8c5290f51108de3a2c98cb7171942fb9d5e36ab2
parent	9940d67c93b5bb7ddcf862b41b1847cb728186c4 [diff]