Re: [PATCH bpf-next v11 00/11] bpf: cgroup_sock lsm flavor

patchwork-bot+netdevbpf@xxxxxxxxxx · Wed, 29 Jun 2022 20:30:15 +0000

Hello:

This series was applied to bpf/bpf-next.git (master)
by Alexei Starovoitov <ast@xxxxxxxxxx>:

On Tue, 28 Jun 2022 10:43:03 -0700 you wrote:
> This series implements new lsm flavor for attaching per-cgroup programs to
> existing lsm hooks. The cgroup is taken out of 'current', unless
> the first argument of the hook is 'struct socket'. In this case,
> the cgroup association is taken out of socket. The attachment
> looks like a regular per-cgroup attachment: we add new BPF_LSM_CGROUP
> attach type which, together with attach_btf_id, signals per-cgroup lsm.
> Behind the scenes, we allocate trampoline shim program and
> attach to lsm. This program looks up cgroup from current/socket
> and runs cgroup's effective prog array. The rest of the per-cgroup BPF
> stays the same: hierarchy, local storage, retval conventions
> (return 1 == success).
> 
> [...]

Here is the summary with links:
  - [bpf-next,v11,01/11] bpf: add bpf_func_t and trampoline helpers
    https://git.kernel.org/bpf/bpf-next/c/af3f4134006b
  - [bpf-next,v11,02/11] bpf: convert cgroup_bpf.progs to hlist
    https://git.kernel.org/bpf/bpf-next/c/00442143a2ab
  - [bpf-next,v11,03/11] bpf: per-cgroup lsm flavor
    https://git.kernel.org/bpf/bpf-next/c/69fd337a975c
  - [bpf-next,v11,04/11] bpf: minimize number of allocated lsm slots per program
    https://git.kernel.org/bpf/bpf-next/c/c0e19f2c9a3e
  - [bpf-next,v11,05/11] bpf: implement BPF_PROG_QUERY for BPF_LSM_CGROUP
    https://git.kernel.org/bpf/bpf-next/c/b79c9fc9551b
  - [bpf-next,v11,06/11] bpf: expose bpf_{g,s}etsockopt to lsm cgroup
    https://git.kernel.org/bpf/bpf-next/c/9113d7e48e91
  - [bpf-next,v11,07/11] tools/bpf: Sync btf_ids.h to tools
    https://git.kernel.org/bpf/bpf-next/c/3b34bcb946c2
  - [bpf-next,v11,08/11] libbpf: add lsm_cgoup_sock type
    https://git.kernel.org/bpf/bpf-next/c/bffcf34878b1
  - [bpf-next,v11,09/11] libbpf: implement bpf_prog_query_opts
    https://git.kernel.org/bpf/bpf-next/c/a4b2f3cf699f
  - [bpf-next,v11,10/11] bpftool: implement cgroup tree for BPF_LSM_CGROUP
    https://git.kernel.org/bpf/bpf-next/c/596f5fb2ea2a
  - [bpf-next,v11,11/11] selftests/bpf: lsm_cgroup functional test
    https://git.kernel.org/bpf/bpf-next/c/dca85aac8895

You are awesome, thank you!
-- 
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html