Andrii Nakryiko 1a80dbcb2d bpf: support deferring bpf_link dealloc to after RCU grace period ... BPF link for some program types is passed as a "context" which can be used by those BPF programs to look up additional information. E.g., for multi-kprobes and multi-uprobes, link is used to fetch BPF cookie values. Because of this runtime dependency, when bpf_link refcnt drops to zero there could still be active BPF programs running accessing link data. This patch adds generic support to defer bpf_link dealloc callback to after RCU GP, if requested. This is done by exposing two different deallocation callbacks, one synchronous and one deferred. If deferred one is provided, bpf_link_free() will schedule dealloc_deferred() callback to happen after RCU GP. BPF is using two flavors of RCU: "classic" non-sleepable one and RCU tasks trace one. The latter is used when sleepable BPF programs are used. bpf_link_free() accommodates that by checking underlying BPF program's sleepable flag, and goes either through normal RCU GP only for non-sleepable, or through RCU tasks trace GP *and* then normal RCU GP (taking into account rcu_trace_implies_rcu_gp() optimization), if BPF program is sleepable. We use this for multi-kprobe and multi-uprobe links, which dereference link during program run. We also preventively switch raw_tp link to use deferred dealloc callback, as upcoming changes in bpf-next tree expose raw_tp link data (specifically, cookie value) to BPF program at runtime as well. Fixes: 0dcac27254 ("bpf: Add multi kprobe link") Fixes: 89ae89f53d ("bpf: Add multi uprobe link") Reported-by: syzbot+981935d9485a560bfbcb@syzkaller.appspotmail.com Reported-by: syzbot+2cb5a6c573e98db598cc@syzkaller.appspotmail.com Reported-by: syzbot+62d8b26793e8a2bd0516@syzkaller.appspotmail.com Signed-off-by: Andrii Nakryiko <andrii@kernel.org> Acked-by: Jiri Olsa <jolsa@kernel.org> Link: https://lore.kernel.org/r/20240328052426.3042617-2-andrii@kernel.org Signed-off-by: Alexei Starovoitov <ast@kernel.org>		2024-03-28 18:47:45 -07:00
..
preload	bpf: make preloaded map iterators to display map elements count	2023-07-06 12:42:25 -07:00
arena.c	bpf: Clarify bpf_arena comments.	2024-03-15 14:23:45 -07:00
arraymap.c	bpf: Consistently use BPF token throughout BPF verifier logic	2024-01-24 16:21:01 -08:00
bloom_filter.c	bpf: Check bloom filter map value size	2024-03-27 09:56:17 -07:00
bpf_cgrp_storage.c	bpf: Enable bpf_cgrp_storage for cgroup1 non-attach case	2023-12-08 17:08:18 -08:00
bpf_inode_storage.c
bpf_iter.c	bpf: move sleepable flag from bpf_prog_aux to bpf_prog	2024-03-11 16:41:25 -07:00
bpf_local_storage.c	bpf: Allow compiler to inline most of bpf_local_storage_lookup()	2024-02-11 14:06:24 -08:00
bpf_lru_list.c
bpf_lru_list.h	bpf: lru: Remove unused declaration bpf_lru_promote()	2023-08-08 17:21:42 -07:00
bpf_lsm.c	bpf: Minor clean-up to sleepable_lsm_hooks BTF set	2024-02-01 18:37:45 +01:00
bpf_struct_ops.c	bpf: struct_ops supports more than one page for trampolines.	2024-03-04 14:09:20 -08:00
bpf_task_storage.c
btf.c	bpf: Recognize btf_decl_tag("arg: Arena") as PTR_TO_ARENA.	2024-03-11 15:37:24 -07:00
cgroup.c	net: adopt skb_network_offset() and similar helpers	2024-03-04 08:47:06 +00:00
cgroup_iter.c	bpf: Let verifier consider {task,cgroup} is trusted in bpf_iter_reg	2023-11-07 15:24:25 -08:00
core.c	bpf: move sleepable flag from bpf_prog_aux to bpf_prog	2024-03-11 16:41:25 -07:00
cpumap.c	bpf: report RCU QS in cpumap kthread	2024-03-20 21:05:43 -07:00
cpumask.c	bpf: treewide: Annotate BPF kfuncs in BTF	2024-01-31 20:40:56 -08:00
devmap.c	bpf: Fix DEVMAP_HASH overflow check on 32-bit arches	2024-03-07 20:02:38 -08:00
disasm.c	bpf: Disasm support for addr_space_cast instruction.	2024-03-11 15:37:24 -07:00
disasm.h
dispatcher.c	bpf: Use arch_bpf_trampoline_size	2023-12-06 17:17:20 -08:00
hashtab.c	bpf: Fix hashtab overflow check on 32-bit arches	2024-03-07 20:05:56 -08:00
helpers.c	bpf: fix warning for crash_kexec	2024-03-27 08:52:24 -07:00
inode.c	bpf: Support symbolic BPF FS delegation mount options	2024-01-24 16:21:02 -08:00
Kconfig	bpf: Merge two CONFIG_BPF entries	2024-02-07 16:38:20 -08:00
link_iter.c
local_storage.c
log.c	bpf: Recognize addr_space_cast instruction in the verifier.	2024-03-11 15:37:24 -07:00
lpm_trie.c	bpf: Replace bpf_lpm_trie_key 0-length array with flexible array	2024-02-29 22:52:43 +01:00
Makefile	bpf: Introduce bpf_arena.	2024-03-11 15:37:23 -07:00
map_in_map.c	bpf: Optimize the free of inner map	2023-12-04 17:50:26 -08:00
map_in_map.h	bpf: Add map and need_defer parameters to .map_fd_put_ptr()	2023-12-04 17:50:26 -08:00
map_iter.c	bpf: treewide: Annotate BPF kfuncs in BTF	2024-01-31 20:40:56 -08:00
memalloc.c	bpf: Remove unnecessary cpu == 0 check in memalloc	2024-01-04 10:18:14 -08:00
mmap_unlock_work.h
mprog.c	bpf: Handle bpf_mprog_query with NULL entry	2023-10-06 17:11:20 -07:00
net_namespace.c
offload.c	Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net	2023-09-21 21:49:45 +02:00
percpu_freelist.c
percpu_freelist.h
prog_iter.c
queue_stack_maps.c	bpf: Avoid deadlock when using queue and stack maps from NMI	2023-09-11 19:04:49 -07:00
reuseport_array.c
ringbuf.c	bpf: Fold smp_mb__before_atomic() into atomic_set_release()	2023-10-24 14:26:07 +02:00
stackmap.c	bpf: Fix stackmap overflow check on 32-bit arches	2024-03-07 20:06:25 -08:00
syscall.c	bpf: support deferring bpf_link dealloc to after RCU grace period	2024-03-28 18:47:45 -07:00
sysfs_btf.c
task_iter.c	bpf: Fix an issue due to uninitialized bpf_iter_task	2024-02-19 12:28:15 +01:00
tcx.c	bpf, tcx: Get rid of tcx_link_const	2023-10-23 15:01:53 -07:00
tnum.c	bpf: simplify tnum output if a fully known constant	2023-12-02 11:36:51 -08:00
token.c	bpf,token: Use BIT_ULL() to convert the bit mask	2024-01-29 20:04:55 -08:00
trampoline.c	bpf: move sleepable flag from bpf_prog_aux to bpf_prog	2024-03-11 16:41:25 -07:00
verifier.c	bpf: Protect against int overflow for stack access size	2024-03-27 09:56:36 -07:00