1#![allow(non_upper_case_globals)]
7
8use crate::bpf::syscalls::BpfTypeFormat;
9use crate::bpf::{BpfMapHandle, ProgramHandle};
10use crate::mm::memory::MemoryObject;
11use crate::mm::{DesiredAddress, MappingOptions, PAGE_SIZE, ProtectionFlags};
12use crate::security::{self, PermissionFlags};
13use crate::task::{
14 CurrentTask, EventHandler, SignalHandler, SignalHandlerInner, Task, WaitCanceler, Waiter,
15};
16use crate::vfs::buffers::{InputBuffer, OutputBuffer};
17use crate::vfs::{
18 CacheMode, CheckAccessReason, FdNumber, FileObject, FileOps, FileSystem, FileSystemHandle,
19 FileSystemOps, FileSystemOptions, FsNode, FsNodeHandle, FsNodeInfo, FsNodeOps, FsStr,
20 MemoryDirectoryFile, MemoryXattrStorage, NamespaceNode, RenameContext, XattrStorage as _,
21 default_mmap, fileops_impl_nonseekable, fileops_impl_noop_sync, fs_node_impl_not_dir,
22 fs_node_impl_xattr_delegate,
23};
24use bstr::BStr;
25use ebpf::{MapFlags, MapSchema};
26use ebpf_api::{RINGBUF_SIGNAL, compute_map_storage_size};
27use starnix_logging::track_stub;
28use starnix_sync::{FileOpsCore, LockEqualOrBefore, Locked, Unlocked};
29use starnix_types::vfs::default_statfs;
30use starnix_uapi::auth::FsCred;
31use starnix_uapi::device_id::DeviceId;
32use starnix_uapi::errors::Errno;
33use starnix_uapi::file_mode::{FileMode, mode};
34use starnix_uapi::math::round_up_to_increment;
35use starnix_uapi::open_flags::OpenFlags;
36use starnix_uapi::user_address::UserAddress;
37use starnix_uapi::vfs::FdEvents;
38use starnix_uapi::{
39 BPF_FS_MAGIC, bpf_map_type_BPF_MAP_TYPE_ARRAY, bpf_map_type_BPF_MAP_TYPE_RINGBUF, errno, error,
40 statfs,
41};
42use std::sync::Arc;
43
44#[derive(Debug, Clone)]
47pub enum BpfHandle {
48 Program(ProgramHandle),
49
50 ProgramStub(u32),
52
53 Map(BpfMapHandle),
54 BpfTypeFormat(Arc<BpfTypeFormat>),
55}
56
57impl BpfHandle {
58 pub fn as_map(&self) -> Result<&BpfMapHandle, Errno> {
59 match self {
60 Self::Map(map) => Ok(map),
61 _ => error!(EINVAL),
62 }
63 }
64 pub fn as_program(&self) -> Result<&ProgramHandle, Errno> {
65 match self {
66 Self::Program(program) => Ok(program),
67 _ => error!(EINVAL),
68 }
69 }
70
71 pub fn into_program(self) -> Result<ProgramHandle, Errno> {
72 match self {
73 Self::Program(program) => Ok(program),
74 _ => error!(EINVAL),
75 }
76 }
77
78 fn get_map_vmo(&self) -> Result<(&Arc<zx::Vmo>, MapSchema), Errno> {
80 match self {
81 Self::Map(map) => Ok((map.vmo(), map.schema)),
82 _ => error!(ENODEV),
83 }
84 }
85
86 pub fn type_name(&self) -> &'static str {
87 match self {
88 Self::Map(_) => "bpf-map",
89 Self::Program(_) | Self::ProgramStub(_) => "bpf-prog",
90 Self::BpfTypeFormat(_) => "bpf-type",
91 }
92 }
93
94 pub(super) fn security_check_open_fd(
98 &self,
99 current_task: &CurrentTask,
100 permission_flags: Option<PermissionFlags>,
101 ) -> Result<(), Errno> {
102 match self {
103 Self::Map(bpf_map) => security::check_bpf_map_access(
104 current_task,
105 &bpf_map.security_state,
106 permission_flags.unwrap_or_else(|| bpf_map.schema.flags.into()),
107 ),
108 Self::Program(program) => {
109 security::check_bpf_prog_access(current_task, &program.security_state)
110 }
111 _ => Ok(()),
112 }
113 }
114}
115
116impl From<ProgramHandle> for BpfHandle {
117 fn from(program: ProgramHandle) -> Self {
118 Self::Program(program)
119 }
120}
121
122impl From<BpfMapHandle> for BpfHandle {
123 fn from(map: BpfMapHandle) -> Self {
124 Self::Map(map)
125 }
126}
127
128impl From<BpfTypeFormat> for BpfHandle {
129 fn from(format: BpfTypeFormat) -> Self {
130 Self::BpfTypeFormat(Arc::new(format))
131 }
132}
133
134impl FileOps for BpfHandle {
135 fileops_impl_nonseekable!();
136 fileops_impl_noop_sync!();
137 fn read(
138 &self,
139 _locked: &mut Locked<FileOpsCore>,
140 _file: &FileObject,
141 _current_task: &crate::task::CurrentTask,
142 _offset: usize,
143 _data: &mut dyn OutputBuffer,
144 ) -> Result<usize, Errno> {
145 track_stub!(TODO("https://fxbug.dev/322874229"), "bpf handle read");
146 error!(EINVAL)
147 }
148 fn write(
149 &self,
150 _locked: &mut Locked<FileOpsCore>,
151 _file: &FileObject,
152 _current_task: &crate::task::CurrentTask,
153 _offset: usize,
154 _data: &mut dyn InputBuffer,
155 ) -> Result<usize, Errno> {
156 track_stub!(TODO("https://fxbug.dev/322873841"), "bpf handle write");
157 error!(EINVAL)
158 }
159
160 fn get_memory(
161 &self,
162 locked: &mut Locked<FileOpsCore>,
163 _file: &FileObject,
164 _current_task: &CurrentTask,
165 length: Option<usize>,
166 prot: ProtectionFlags,
167 ) -> Result<Arc<MemoryObject>, Errno> {
168 let (vmo, schema) = self.get_map_vmo()?;
169
170 let length = length.ok_or_else(|| errno!(EINVAL))?;
172
173 if prot.contains(ProtectionFlags::EXEC) {
175 return error!(EPERM);
176 }
177
178 match schema.map_type {
179 bpf_map_type_BPF_MAP_TYPE_RINGBUF => {
180 let page_size = *PAGE_SIZE as usize;
181 if length > page_size {
183 if prot.contains(ProtectionFlags::WRITE) {
184 return error!(EPERM);
185 }
186 if length > 2 * page_size + 2 * schema.max_entries as usize {
188 return error!(EINVAL);
189 }
190 }
191
192 self.as_map()?.get_memory(locked, || {
193 let clone_size = 2 * page_size + schema.max_entries as usize;
197 let vmo_dup = vmo
198 .create_child(
199 zx::VmoChildOptions::SLICE,
200 page_size as u64,
201 clone_size as u64,
202 )
203 .map_err(|_| errno!(EIO))?
204 .into();
205 Ok(Arc::new(MemoryObject::RingBuf(vmo_dup)))
206 })
207 }
208
209 bpf_map_type_BPF_MAP_TYPE_ARRAY => {
210 if !schema.flags.contains(MapFlags::Mmapable) {
211 return error!(EPERM);
212 }
213
214 let array_size = round_up_to_increment(
215 compute_map_storage_size(&schema).map_err(|_| errno!(EINVAL))?,
216 *PAGE_SIZE as usize,
217 )?;
218 if length > array_size {
219 return error!(EINVAL);
220 }
221
222 self.as_map()?.get_memory(locked, || {
223 let vmo_dup: zx::Vmo = vmo
224 .as_handle_ref()
225 .duplicate_handle(zx::Rights::SAME_RIGHTS)
226 .map_err(|_| errno!(EIO))?
227 .into();
228 Ok(Arc::new(MemoryObject::from(vmo_dup)))
229 })
230 }
231
232 _ => error!(ENODEV),
234 }
235 }
236
237 fn mmap(
238 &self,
239 locked: &mut Locked<FileOpsCore>,
240 file: &FileObject,
241 current_task: &CurrentTask,
242 addr: DesiredAddress,
243 memory_offset: u64,
244 length: usize,
245 prot_flags: ProtectionFlags,
246 options: MappingOptions,
247 filename: NamespaceNode,
248 ) -> Result<UserAddress, Errno> {
249 let BpfHandle::Map(bpf_map) = &self else {
250 return error!(EINVAL);
251 };
252 security::check_bpf_map_access(
253 current_task,
254 &bpf_map.security_state,
255 PermissionFlags::READ | PermissionFlags::WRITE,
256 )?;
257 default_mmap(
258 locked,
259 file,
260 current_task,
261 addr,
262 memory_offset,
263 length,
264 prot_flags,
265 options,
266 filename,
267 )
268 }
269
270 fn wait_async(
271 &self,
272 _locked: &mut Locked<FileOpsCore>,
273 _file: &FileObject,
274 _current_task: &CurrentTask,
275 waiter: &Waiter,
276 events: FdEvents,
277 handler: EventHandler,
278 ) -> Option<WaitCanceler> {
279 let (vmo, schema) = self.get_map_vmo().ok()?;
280
281 if schema.map_type != bpf_map_type_BPF_MAP_TYPE_RINGBUF
283 || !events.contains(FdEvents::POLLIN)
284 {
285 return Some(WaitCanceler::new_noop());
286 }
287
288 let handler = SignalHandler {
289 inner: SignalHandlerInner::ZxHandle(|signals| {
290 if signals.contains(RINGBUF_SIGNAL) { FdEvents::POLLIN } else { FdEvents::empty() }
291 }),
292 event_handler: handler,
293 err_code: None,
294 };
295
296 vmo.as_handle_ref()
299 .signal(RINGBUF_SIGNAL, zx::Signals::empty())
300 .expect("Failed to set signal or a ring buffer VMO");
301
302 let canceler = waiter
303 .wake_on_zircon_signals(&vmo.as_handle_ref(), RINGBUF_SIGNAL, handler)
304 .expect("Failed to wait for signals on ringbuf VMO");
305 Some(WaitCanceler::new_port(canceler))
306 }
307
308 fn query_events(
309 &self,
310 _locked: &mut Locked<FileOpsCore>,
311 _file: &FileObject,
312 _current_task: &CurrentTask,
313 ) -> Result<FdEvents, Errno> {
314 match self {
315 Self::Map(map) => {
316 let events = match map.can_read() {
317 Some(true) => FdEvents::POLLIN,
318 Some(false) => FdEvents::empty(),
319 None => FdEvents::POLLERR,
320 };
321 Ok(events)
322 }
323 _ => error!(EPERM),
324 }
325 }
326}
327
328pub fn get_bpf_object(task: &Task, fd: FdNumber) -> Result<BpfHandle, Errno> {
329 Ok((*task.files()?.get(fd)?.downcast_file::<BpfHandle>().ok_or_else(|| errno!(EBADF))?).clone())
330}
331pub struct BpfFs;
332impl BpfFs {
333 pub fn new_fs(
334 locked: &mut Locked<Unlocked>,
335 current_task: &CurrentTask,
336 options: FileSystemOptions,
337 ) -> Result<FileSystemHandle, Errno> {
338 let kernel = current_task.kernel();
339 let fs = FileSystem::new(locked, kernel, CacheMode::Permanent, BpfFs, options)?;
340 let root_ino = fs.allocate_ino();
341 fs.create_root_with_info(
342 root_ino,
343 BpfFsDir::new(),
344 FsNodeInfo::new(mode!(IFDIR, 0o777) | FileMode::ISVTX, FsCred::root()),
345 );
346 Ok(fs)
347 }
348}
349
350impl FileSystemOps for BpfFs {
351 fn statfs(
352 &self,
353 _locked: &mut Locked<FileOpsCore>,
354 _fs: &FileSystem,
355 _current_task: &CurrentTask,
356 ) -> Result<statfs, Errno> {
357 Ok(default_statfs(BPF_FS_MAGIC))
358 }
359 fn name(&self) -> &'static FsStr {
360 "bpf".into()
361 }
362
363 fn rename(
364 &self,
365 _locked: &mut Locked<FileOpsCore>,
366 _fs: &FileSystem,
367 _current_task: &CurrentTask,
368 _context: &mut RenameContext<'_>,
369 _old_name: &FsStr,
370 _new_name: &FsStr,
371 ) -> Result<(), Errno> {
372 Ok(())
373 }
374}
375
376pub struct BpfFsDir {
377 xattrs: MemoryXattrStorage,
378}
379
380impl BpfFsDir {
381 fn new() -> Self {
382 Self { xattrs: MemoryXattrStorage::default() }
383 }
384
385 pub fn register_pin<L>(
386 &self,
387 locked: &mut Locked<L>,
388 current_task: &CurrentTask,
389 node: &NamespaceNode,
390 name: &FsStr,
391 object: BpfHandle,
392 ) -> Result<(), Errno>
393 where
394 L: LockEqualOrBefore<FileOpsCore>,
395 {
396 node.entry.create_entry(
397 locked,
398 current_task,
399 &node.mount,
400 name,
401 |_locked, dir, _mount, _name| {
402 Ok(dir.fs().create_node_and_allocate_node_id(
403 BpfFsObject::new(object),
404 FsNodeInfo::new(mode!(IFREG, 0o600), current_task.current_fscred()),
405 ))
406 },
407 )?;
408 Ok(())
409 }
410}
411
412impl FsNodeOps for BpfFsDir {
413 fs_node_impl_xattr_delegate!(self, self.xattrs);
414
415 fn create_file_ops(
416 &self,
417 _locked: &mut Locked<FileOpsCore>,
418 _node: &FsNode,
419 _current_task: &CurrentTask,
420 _flags: OpenFlags,
421 ) -> Result<Box<dyn FileOps>, Errno> {
422 Ok(Box::new(MemoryDirectoryFile::new()))
423 }
424
425 fn mkdir(
426 &self,
427 _locked: &mut Locked<FileOpsCore>,
428 node: &FsNode,
429 _current_task: &CurrentTask,
430 _name: &FsStr,
431 mode: FileMode,
432 owner: FsCred,
433 ) -> Result<FsNodeHandle, Errno> {
434 Ok(node.fs().create_node_and_allocate_node_id(
435 BpfFsDir::new(),
436 FsNodeInfo::new(mode | FileMode::ISVTX, owner),
437 ))
438 }
439
440 fn mknod(
441 &self,
442 _locked: &mut Locked<FileOpsCore>,
443 _node: &FsNode,
444 _current_task: &CurrentTask,
445 _name: &FsStr,
446 _mode: FileMode,
447 _dev: DeviceId,
448 _owner: FsCred,
449 ) -> Result<FsNodeHandle, Errno> {
450 error!(EPERM)
451 }
452
453 fn create_symlink(
454 &self,
455 _locked: &mut Locked<FileOpsCore>,
456 _node: &FsNode,
457 _current_task: &CurrentTask,
458 _name: &FsStr,
459 _target: &FsStr,
460 _owner: FsCred,
461 ) -> Result<FsNodeHandle, Errno> {
462 error!(EPERM)
463 }
464
465 fn link(
466 &self,
467 _locked: &mut Locked<FileOpsCore>,
468 _node: &FsNode,
469 _current_task: &CurrentTask,
470 _name: &FsStr,
471 _child: &FsNodeHandle,
472 ) -> Result<(), Errno> {
473 Ok(())
474 }
475
476 fn unlink(
477 &self,
478 _locked: &mut Locked<FileOpsCore>,
479 _node: &FsNode,
480 _current_task: &CurrentTask,
481 _name: &FsStr,
482 _child: &FsNodeHandle,
483 ) -> Result<(), Errno> {
484 Ok(())
485 }
486}
487
488pub struct BpfFsObject {
489 pub handle: BpfHandle,
490 xattrs: MemoryXattrStorage,
491}
492
493impl BpfFsObject {
494 fn new(handle: BpfHandle) -> Self {
495 Self { handle, xattrs: MemoryXattrStorage::default() }
496 }
497}
498
499impl FsNodeOps for BpfFsObject {
500 fs_node_impl_not_dir!();
501 fs_node_impl_xattr_delegate!(self, self.xattrs);
502
503 fn create_file_ops(
504 &self,
505 _locked: &mut Locked<FileOpsCore>,
506 _node: &FsNode,
507 _current_task: &CurrentTask,
508 _flags: OpenFlags,
509 ) -> Result<Box<dyn FileOps>, Errno> {
510 error!(EIO)
511 }
512}
513
514pub fn resolve_pinned_bpf_object(
518 locked: &mut Locked<Unlocked>,
519 current_task: &CurrentTask,
520 path: &BStr,
521 open_flags: OpenFlags,
522) -> Result<BpfHandle, Errno> {
523 let node = current_task.lookup_path_from_root(locked, path.as_ref())?;
524
525 let permission_flags = PermissionFlags::from(open_flags);
526 node.check_access(locked, current_task, permission_flags, CheckAccessReason::Access)?;
527
528 let object = node.entry.node.downcast_ops::<BpfFsObject>().ok_or_else(|| errno!(EPERM))?;
529 object.handle.security_check_open_fd(current_task, Some(permission_flags))?;
530
531 if !open_flags.contains(OpenFlags::NOATIME) {
532 node.update_atime();
533 }
534
535 Ok(object.handle.clone())
536}