Currently, without rcu attribute info in BTF, the verifier treats rcu tagged pointer as a normal pointer. This might be a problem for sleepable program where rcu_read_lock()/unlock() is not available. For example, for a sleepable fentry program, if rcu protected memory access is interleaved with a sleepable helper/kfunc, it is possible the memory access after the sleepable helper/kfunc might be invalid since the object might have been freed then. Even without a sleepable helper/kfunc, without rcu_read_lock() protection, it is possible that the rcu protected object might be release in the middle of bpf program execution which may cause incorrect result. To prevent above cases, enable btf_type_tag("rcu") attributes, introduce new bpf_rcu_read_lock/unlock() kfuncs and add verifier support. In the rest of patch set, Patch 1 enabled btf_type_tag for __rcu attribute. Patche 2 is a refactoring patch. Patch 3 added new bpf_rcu_read_lock/unlock() kfuncs. Patch 4 added verifier support and Patch 5 enabled sleepable program support for cgrp local storage. Patch 6 added some tests for new helpers and verifier support and Patch 7 added new test to the deny list for s390x arch. Changelogs: v5 -> v6: . fix selftest prog miss_unlock which tested nested locking. . add comments in selftest prog cgrp_succ to explain how to handle nested memory access after rcu memory load. v4 -> v5: . add new test to aarch64 deny list. v3 -> v4: . fix selftest failures when built with gcc. gcc doesn't support btf_type_tag yet and some tests relies on that. skip these tests if vmlinux BTF does not have btf_type_tag("rcu"). v2 -> v3: . went back to MEM_RCU approach with invalidate rcu ptr registers at bpf_rcu_read_unlock() place. . remove KF_RCU_LOCK/UNLOCK flag and compare btf_id at verification time instead. v1 -> v2: . use kfunc instead of helper for bpf_rcu_read_lock/unlock. . not use MEM_RCU bpf_type_flag, instead use active_rcu_lock in reg state to identify rcu ptr's. . Add more self tests. . add new test to s390x deny list. Yonghong Song (7): compiler_types: Define __rcu as __attribute__((btf_type_tag("rcu"))) bpf: Abstract out functions to check sleepable helpers bpf: Add kfunc bpf_rcu_read_lock/unlock() bpf: Add bpf_rcu_read_lock() verifier support bpf: Enable sleeptable support for cgrp local storage selftests/bpf: Add tests for bpf_rcu_read_lock() selftests/bpf: Add rcu_read_lock test to s390x/aarch64 deny lists include/linux/bpf.h | 6 + include/linux/bpf_lsm.h | 6 + include/linux/bpf_verifier.h | 4 + include/linux/compiler_types.h | 3 +- include/linux/trace_events.h | 8 + kernel/bpf/bpf_lsm.c | 20 +- kernel/bpf/btf.c | 39 +- kernel/bpf/helpers.c | 25 +- kernel/bpf/verifier.c | 125 +++++- kernel/trace/bpf_trace.c | 22 +- tools/testing/selftests/bpf/DENYLIST.aarch64 | 1 + tools/testing/selftests/bpf/DENYLIST.s390x | 1 + .../selftests/bpf/prog_tests/rcu_read_lock.c | 166 ++++++++ .../selftests/bpf/progs/rcu_read_lock.c | 366 ++++++++++++++++++ 14 files changed, 770 insertions(+), 22 deletions(-) create mode 100644 tools/testing/selftests/bpf/prog_tests/rcu_read_lock.c create mode 100644 tools/testing/selftests/bpf/progs/rcu_read_lock.c -- 2.30.2