review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Andrii Nakryiko <andriin@fb.com>
	Mon, 30 Mar 2020 02:59:59 +0000 (19:59 -0700)
committer	Alexei Starovoitov <ast@kernel.org>
	Tue, 31 Mar 2020 00:36:33 +0000 (17:36 -0700)
commit	0c991ebc8c69d29b7fc44db17075c5aa5253e2ab
tree	e61172384e68887343d57f1e40d47c2e5ecc98cc	tree \| snapshot
parent	af6eea57437a830293eab56246b6025cc7d46ee7	commit \| diff

bpf: Implement bpf_prog replacement for an active bpf_cgroup_link

Add new operation (LINK_UPDATE), which allows to replace active bpf_prog from
under given bpf_link. Currently this is only supported for bpf_cgroup_link,
but will be extended to other kinds of bpf_links in follow-up patches.

For bpf_cgroup_link, implemented functionality matches existing semantics for
direct bpf_prog attachment (including BPF_F_REPLACE flag). User can either
unconditionally set new bpf_prog regardless of which bpf_prog is currently
active under given bpf_link, or, optionally, can specify expected active
bpf_prog. If active bpf_prog doesn't match expected one, no changes are
performed, old bpf_link stays intact and attached, operation returns
a failure.

cgroup_bpf_replace() operation is resolving race between auto-detachment and
bpf_prog update in the same fashion as it's done for bpf_link detachment,
except in this case update has no way of succeeding because of target cgroup
marked as dying. So in this case error is returned.

Signed-off-by: Andrii Nakryiko <andriin@fb.com>
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
Link: https://lore.kernel.org/bpf/20200330030001.2312810-3-andriin@fb.com

include/linux/bpf-cgroup.h		diff \| blob \| history
include/uapi/linux/bpf.h		diff \| blob \| history
kernel/bpf/cgroup.c		diff \| blob \| history
kernel/bpf/syscall.c		diff \| blob \| history
kernel/cgroup/cgroup.c		diff \| blob \| history