[PATCH v8 bpf-next 10/18] bpf,lsm: refactor bpf_map_alloc/bpf_map_free LSM hooks
kernel test robot
lkp at intel.com
Tue Oct 17 14:59:04 UTC 2023
Hi Andrii,
kernel test robot noticed the following build warnings:
[auto build test WARNING on bpf-next/master]
url: https://github.com/intel-lab-lkp/linux/commits/Andrii-Nakryiko/bpf-align-CAP_NET_ADMIN-checks-with-bpf_capable-approach/20231017-152928
base: https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next.git master
patch link: https://lore.kernel.org/r/20231016180220.3866105-11-andrii%40kernel.org
patch subject: [PATCH v8 bpf-next 10/18] bpf,lsm: refactor bpf_map_alloc/bpf_map_free LSM hooks
config: m68k-allyesconfig (https://download.01.org/0day-ci/archive/20231017/202310172256.50cuKWYB-lkp@intel.com/config)
compiler: m68k-linux-gcc (GCC) 13.2.0
reproduce (this is a W=1 build): (https://download.01.org/0day-ci/archive/20231017/202310172256.50cuKWYB-lkp@intel.com/reproduce)
If you fix the issue in a separate patch/commit (i.e. not just a new version of
the same patch/commit), kindly add following tags
| Reported-by: kernel test robot <lkp at intel.com>
| Closes: https://lore.kernel.org/oe-kbuild-all/202310172256.50cuKWYB-lkp@intel.com/
All warnings (new ones prefixed by >>):
>> security/security.c:5182: warning: Function parameter or member 'map' not described in 'security_bpf_map_create'
security/security.c:5200: warning: Function parameter or member 'prog' not described in 'security_bpf_prog_load'
vim +5182 security/security.c
55e853201a9e038 Paul Moore 2023-02-16 5168
55e853201a9e038 Paul Moore 2023-02-16 5169 /**
c44deabc68b203d Andrii Nakryiko 2023-10-16 5170 * security_bpf_map_create() - Check if BPF map creation is allowed
c44deabc68b203d Andrii Nakryiko 2023-10-16 5171 * @map BPF map object
c44deabc68b203d Andrii Nakryiko 2023-10-16 5172 * @attr: BPF syscall attributes used to create BPF map
c44deabc68b203d Andrii Nakryiko 2023-10-16 5173 * @token: BPF token used to grant user access
55e853201a9e038 Paul Moore 2023-02-16 5174 *
c44deabc68b203d Andrii Nakryiko 2023-10-16 5175 * Do a check when the kernel creates a new BPF map. This is also the
c44deabc68b203d Andrii Nakryiko 2023-10-16 5176 * point where LSM blob is allocated for LSMs that need them.
55e853201a9e038 Paul Moore 2023-02-16 5177 *
55e853201a9e038 Paul Moore 2023-02-16 5178 * Return: Returns 0 on success, error on failure.
55e853201a9e038 Paul Moore 2023-02-16 5179 */
c44deabc68b203d Andrii Nakryiko 2023-10-16 5180 int security_bpf_map_create(struct bpf_map *map, union bpf_attr *attr,
c44deabc68b203d Andrii Nakryiko 2023-10-16 5181 struct bpf_token *token)
afdb09c720b62b8 Chenbo Feng 2017-10-18 @5182 {
c44deabc68b203d Andrii Nakryiko 2023-10-16 5183 return call_int_hook(bpf_map_create, 0, map, attr, token);
afdb09c720b62b8 Chenbo Feng 2017-10-18 5184 }
55e853201a9e038 Paul Moore 2023-02-16 5185
--
0-DAY CI Kernel Test Service
https://github.com/intel/lkp-tests/wiki
More information about the Linux-security-module-archive
mailing list