// SPDX-License-Identifier: GPL-2.0 /* Copyright (c) 2020 Carlos Neira cneirabustos@gmail.com */ #define _GNU_SOURCE #include #include #include #include #include #include #include #include "test_progs.h" #define CHECK_NEWNS(condition, tag, format...) ({ \ int __ret = !!(condition); \ if (__ret) { \ printf("%s:FAIL:%s ", __func__, tag); \ printf(format); \ } else { \ printf("%s:PASS:%s\n", __func__, tag); \ } \ __ret; \ }) struct bss { __u64 dev; __u64 ino; __u64 pid_tgid; __u64 user_pid_tgid; }; int main(int argc, char **argv) { pid_t pid; int exit_code = 1; struct stat st; printf("Testing bpf_get_ns_current_pid_tgid helper in new ns\n"); if (stat("/proc/self/ns/pid", &st)) { perror("stat failed on /proc/self/ns/pid ns\n"); printf("%s:FAILED\n", argv[0]); return exit_code; } if (CHECK_NEWNS(unshare(CLONE_NEWPID | CLONE_NEWNS), "unshare CLONE_NEWPID | CLONE_NEWNS", "error errno=%d\n", errno)) return exit_code; pid = fork(); if (pid == -1) { perror("Fork() failed\n"); printf("%s:FAILED\n", argv[0]); return exit_code; } if (pid > 0) { int status; usleep(5); waitpid(pid, &status, 0); return 0; } else { pid = fork(); if (pid == -1) { perror("Fork() failed\n"); printf("%s:FAILED\n", argv[0]); return exit_code; } if (pid > 0) { int status; waitpid(pid, &status, 0); return 0; } else { if (CHECK_NEWNS(mount("none", "/proc", NULL, MS_PRIVATE|MS_REC, NULL), "Unmounting proc", "Cannot umount proc! errno=%d\n", errno)) return exit_code; if (CHECK_NEWNS(mount("proc", "/proc", "proc", MS_NOSUID|MS_NOEXEC|MS_NODEV, NULL), "Mounting proc", "Cannot mount proc! errno=%d\n", errno)) return exit_code; const char *probe_name = "raw_tracepoint/sys_enter"; const char *file = "test_ns_current_pid_tgid.o"; struct bpf_link *link = NULL; struct bpf_program *prog; struct bpf_map *bss_map; struct bpf_object *obj; int exit_code = 1; int err, key = 0; struct bss bss; struct stat st; __u64 id; obj = bpf_object__open_file(file, NULL); if (CHECK_NEWNS(IS_ERR(obj), "obj_open", "err %ld\n", PTR_ERR(obj))) return exit_code; err = bpf_object__load(obj); if (CHECK_NEWNS(err, "obj_load", "err %d errno %d\n", err, errno)) goto cleanup; bss_map = bpf_object__find_map_by_name(obj, "test_ns_.bss"); if (CHECK_NEWNS(!bss_map, "find_bss_map", "failed\n")) goto cleanup; prog = bpf_object__find_program_by_title(obj, probe_name); if (CHECK_NEWNS(!prog, "find_prog", "prog '%s' not found\n", probe_name)) goto cleanup; memset(&bss, 0, sizeof(bss)); pid_t tid = syscall(SYS_gettid); pid_t pid = getpid(); id = (__u64) tid << 32 | pid; bss.user_pid_tgid = id; if (CHECK_NEWNS(stat("/proc/self/ns/pid", &st), "stat new ns", "Failed to stat /proc/self/ns/pid errno=%d\n", errno)) goto cleanup; bss.dev = st.st_dev; bss.ino = st.st_ino; err = bpf_map_update_elem(bpf_map__fd(bss_map), &key, &bss, 0); if (CHECK_NEWNS(err, "setting_bss", "failed to set bss : %d\n", err)) goto cleanup; link = bpf_program__attach_raw_tracepoint(prog, "sys_enter"); if (CHECK_NEWNS(IS_ERR(link), "attach_raw_tp", "err %ld\n", PTR_ERR(link))) { link = NULL; goto cleanup; } /* trigger some syscalls */ usleep(1); err = bpf_map_lookup_elem(bpf_map__fd(bss_map), &key, &bss); if (CHECK_NEWNS(err, "set_bss", "failed to get bss : %d\n", err)) goto cleanup; if (CHECK_NEWNS(id != bss.pid_tgid, "Compare user pid/tgid vs. bpf pid/tgid", "User pid/tgid %llu BPF pid/tgid %llu\n", id, bss.pid_tgid)) goto cleanup; exit_code = 0; printf("%s:PASS\n", argv[0]); cleanup: if (!link) { bpf_link__destroy(link); link = NULL; } bpf_object__close(obj); } } }