git.baikalelectronics.ru Git - kernel.git/commit

author	KP Singh <kpsingh@google.com>
	Fri, 13 Nov 2020 00:59:29 +0000 (00:59 +0000)
committer	Daniel Borkmann <daniel@iogearbox.net>
	Fri, 13 Nov 2020 14:45:54 +0000 (15:45 +0100)
commit	9661d8371c76426c8acd1a4747b516f191a05540
tree	16ffedcef30b76f5c4b93636106581cbcad4b452	tree \| snapshot
parent	a617a17c02d47dddd947414a5fb2052bfe574410	commit \| diff

bpf: Augment the set of sleepable LSM hooks

Update the set of sleepable hooks with the ones that do not trigger
a warning with might_fault() when exercised with the correct kernel
config options enabled, i.e.

DEBUG_ATOMIC_SLEEP=y
LOCKDEP=y
PROVE_LOCKING=y

This means that a sleepable LSM eBPF program can be attached to these
LSM hooks. A new helper method bpf_lsm_is_sleepable_hook is added and
the set is maintained locally in bpf_lsm.c

Signed-off-by: KP Singh <kpsingh@google.com>
Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
Link: https://lore.kernel.org/bpf/20201113005930.541956-2-kpsingh@chromium.org

include/linux/bpf_lsm.h		diff \| blob \| history
kernel/bpf/bpf_lsm.c		diff \| blob \| history
kernel/bpf/verifier.c		diff \| blob \| history