diff options
Diffstat (limited to 'kernel/bpf/syscall.c')
| -rw-r--r-- | kernel/bpf/syscall.c | 64 | 
1 files changed, 55 insertions, 9 deletions
| diff --git a/kernel/bpf/syscall.c b/kernel/bpf/syscall.c index a616b63f23b4..97d5c6fb63cd 100644 --- a/kernel/bpf/syscall.c +++ b/kernel/bpf/syscall.c @@ -2175,13 +2175,6 @@ static int bpf_obj_get(const union bpf_attr *attr)  				attr->file_flags);  } -struct bpf_link { -	atomic64_t refcnt; -	const struct bpf_link_ops *ops; -	struct bpf_prog *prog; -	struct work_struct work; -}; -  void bpf_link_init(struct bpf_link *link, const struct bpf_link_ops *ops,  		   struct bpf_prog *prog)  { @@ -2195,8 +2188,8 @@ void bpf_link_init(struct bpf_link *link, const struct bpf_link_ops *ops,   * anon_inode's release() call. This helper manages marking bpf_link as   * defunct, releases anon_inode file and puts reserved FD.   */ -static void bpf_link_cleanup(struct bpf_link *link, struct file *link_file, -			     int link_fd) +void bpf_link_cleanup(struct bpf_link *link, struct file *link_file, +		      int link_fd)  {  	link->prog = NULL;  	fput(link_file); @@ -2266,6 +2259,10 @@ static void bpf_link_show_fdinfo(struct seq_file *m, struct file *filp)  		link_type = "raw_tracepoint";  	else if (link->ops == &bpf_tracing_link_lops)  		link_type = "tracing"; +#ifdef CONFIG_CGROUP_BPF +	else if (link->ops == &bpf_cgroup_link_lops) +		link_type = "cgroup"; +#endif  	else  		link_type = "unknown"; @@ -3553,6 +3550,52 @@ err_put:  	return err;  } +#define BPF_LINK_CREATE_LAST_FIELD link_create.flags +static int link_create(union bpf_attr *attr) +{ +	enum bpf_prog_type ptype; +	struct bpf_prog *prog; +	int ret; + +	if (!capable(CAP_NET_ADMIN)) +		return -EPERM; + +	if (CHECK_ATTR(BPF_LINK_CREATE)) +		return -EINVAL; + +	ptype = attach_type_to_prog_type(attr->link_create.attach_type); +	if (ptype == BPF_PROG_TYPE_UNSPEC) +		return -EINVAL; + +	prog = bpf_prog_get_type(attr->link_create.prog_fd, ptype); +	if (IS_ERR(prog)) +		return PTR_ERR(prog); + +	ret = bpf_prog_attach_check_attach_type(prog, +						attr->link_create.attach_type); +	if (ret) +		goto err_out; + +	switch (ptype) { +	case BPF_PROG_TYPE_CGROUP_SKB: +	case BPF_PROG_TYPE_CGROUP_SOCK: +	case BPF_PROG_TYPE_CGROUP_SOCK_ADDR: +	case BPF_PROG_TYPE_SOCK_OPS: +	case BPF_PROG_TYPE_CGROUP_DEVICE: +	case BPF_PROG_TYPE_CGROUP_SYSCTL: +	case BPF_PROG_TYPE_CGROUP_SOCKOPT: +		ret = cgroup_bpf_link_attach(attr, prog); +		break; +	default: +		ret = -EINVAL; +	} + +err_out: +	if (ret < 0) +		bpf_prog_put(prog); +	return ret; +} +  SYSCALL_DEFINE3(bpf, int, cmd, union bpf_attr __user *, uattr, unsigned int, size)  {  	union bpf_attr attr = {}; @@ -3663,6 +3706,9 @@ SYSCALL_DEFINE3(bpf, int, cmd, union bpf_attr __user *, uattr, unsigned int, siz  	case BPF_MAP_DELETE_BATCH:  		err = bpf_map_do_batch(&attr, uattr, BPF_MAP_DELETE_BATCH);  		break; +	case BPF_LINK_CREATE: +		err = link_create(&attr); +		break;  	default:  		err = -EINVAL;  		break; | 
