selftests/bpf: Check freeing sk->sk_local_storage with sk_local_storage->smap is NULL

This patch tweats the socket_bind bpf prog to test the
local_storage->smap == NULL case in the bpf_local_storage_free()
code path. The idea is to create the local_storage with
the sk_storage_map's selem first. Then add the sk_storage_map2's selem
and then delete the earlier sk_storeage_map's selem.

Signed-off-by: Martin KaFai Lau <martin.lau@kernel.org>
Link: https://lore.kernel.org/r/20230308065936.1550103-17-martin.lau@linux.dev
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
This commit is contained in:
Martin KaFai Lau 2023-03-07 22:59:35 -08:00 committed by Alexei Starovoitov
parent 57ef77152b
commit 1f443d0f2b
1 changed files with 20 additions and 9 deletions

View File

@ -108,18 +108,17 @@ int BPF_PROG(socket_bind, struct socket *sock, struct sockaddr *address,
{ {
__u32 pid = bpf_get_current_pid_tgid() >> 32; __u32 pid = bpf_get_current_pid_tgid() >> 32;
struct local_storage *storage; struct local_storage *storage;
int err;
if (pid != monitored_pid) if (pid != monitored_pid)
return 0; return 0;
storage = bpf_sk_storage_get(&sk_storage_map, sock->sk, 0, storage = bpf_sk_storage_get(&sk_storage_map, sock->sk, 0, 0);
BPF_LOCAL_STORAGE_GET_F_CREATE);
if (!storage) if (!storage)
return 0; return 0;
sk_storage_result = -1;
if (storage->value != DUMMY_STORAGE_VALUE) if (storage->value != DUMMY_STORAGE_VALUE)
sk_storage_result = -1; return 0;
/* This tests that we can associate multiple elements /* This tests that we can associate multiple elements
* with the local storage. * with the local storage.
@ -129,14 +128,26 @@ int BPF_PROG(socket_bind, struct socket *sock, struct sockaddr *address,
if (!storage) if (!storage)
return 0; return 0;
err = bpf_sk_storage_delete(&sk_storage_map, sock->sk); if (bpf_sk_storage_delete(&sk_storage_map2, sock->sk))
if (err)
return 0; return 0;
err = bpf_sk_storage_delete(&sk_storage_map2, sock->sk); storage = bpf_sk_storage_get(&sk_storage_map2, sock->sk, 0,
if (!err) BPF_LOCAL_STORAGE_GET_F_CREATE);
sk_storage_result = err; if (!storage)
return 0;
if (bpf_sk_storage_delete(&sk_storage_map, sock->sk))
return 0;
/* Ensure that the sk_storage_map is disconnected from the storage.
* The storage memory should not be freed back to the
* bpf_mem_alloc of the sk_bpf_storage_map because
* sk_bpf_storage_map may have been gone.
*/
if (!sock->sk->sk_bpf_storage || sock->sk->sk_bpf_storage->smap)
return 0;
sk_storage_result = 0;
return 0; return 0;
} }