1// SPDX-License-Identifier: GPL-2.0-only 2 3#include <test_progs.h> 4 5#include "cap_helpers.h" 6#include "verifier_and.skel.h" 7#include "verifier_arena.skel.h" 8#include "verifier_arena_large.skel.h" 9#include "verifier_array_access.skel.h" 10#include "verifier_basic_stack.skel.h" 11#include "verifier_bitfield_write.skel.h" 12#include "verifier_bounds.skel.h" 13#include "verifier_bounds_deduction.skel.h" 14#include "verifier_bounds_deduction_non_const.skel.h" 15#include "verifier_bounds_mix_sign_unsign.skel.h" 16#include "verifier_bpf_get_stack.skel.h" 17#include "verifier_bswap.skel.h" 18#include "verifier_btf_ctx_access.skel.h" 19#include "verifier_btf_unreliable_prog.skel.h" 20#include "verifier_cfg.skel.h" 21#include "verifier_cgroup_inv_retcode.skel.h" 22#include "verifier_cgroup_skb.skel.h" 23#include "verifier_cgroup_storage.skel.h" 24#include "verifier_const_or.skel.h" 25#include "verifier_ctx.skel.h" 26#include "verifier_ctx_sk_msg.skel.h" 27#include "verifier_d_path.skel.h" 28#include "verifier_direct_packet_access.skel.h" 29#include "verifier_direct_stack_access_wraparound.skel.h" 30#include "verifier_div0.skel.h" 31#include "verifier_div_overflow.skel.h" 32#include "verifier_global_subprogs.skel.h" 33#include "verifier_global_ptr_args.skel.h" 34#include "verifier_gotol.skel.h" 35#include "verifier_helper_access_var_len.skel.h" 36#include "verifier_helper_packet_access.skel.h" 37#include "verifier_helper_restricted.skel.h" 38#include "verifier_helper_value_access.skel.h" 39#include "verifier_int_ptr.skel.h" 40#include "verifier_iterating_callbacks.skel.h" 41#include "verifier_jeq_infer_not_null.skel.h" 42#include "verifier_ld_ind.skel.h" 43#include "verifier_ldsx.skel.h" 44#include "verifier_leak_ptr.skel.h" 45#include "verifier_loops1.skel.h" 46#include "verifier_lwt.skel.h" 47#include "verifier_map_in_map.skel.h" 48#include "verifier_map_ptr.skel.h" 49#include "verifier_map_ptr_mixing.skel.h" 50#include "verifier_map_ret_val.skel.h" 51#include "verifier_masking.skel.h" 52#include "verifier_meta_access.skel.h" 53#include "verifier_movsx.skel.h" 54#include "verifier_netfilter_ctx.skel.h" 55#include "verifier_netfilter_retcode.skel.h" 56#include "verifier_precision.skel.h" 57#include "verifier_prevent_map_lookup.skel.h" 58#include "verifier_raw_stack.skel.h" 59#include "verifier_raw_tp_writable.skel.h" 60#include "verifier_reg_equal.skel.h" 61#include "verifier_ref_tracking.skel.h" 62#include "verifier_regalloc.skel.h" 63#include "verifier_ringbuf.skel.h" 64#include "verifier_runtime_jit.skel.h" 65#include "verifier_scalar_ids.skel.h" 66#include "verifier_sdiv.skel.h" 67#include "verifier_search_pruning.skel.h" 68#include "verifier_sock.skel.h" 69#include "verifier_spill_fill.skel.h" 70#include "verifier_spin_lock.skel.h" 71#include "verifier_stack_ptr.skel.h" 72#include "verifier_subprog_precision.skel.h" 73#include "verifier_subreg.skel.h" 74#include "verifier_typedef.skel.h" 75#include "verifier_uninit.skel.h" 76#include "verifier_unpriv.skel.h" 77#include "verifier_unpriv_perf.skel.h" 78#include "verifier_value_adj_spill.skel.h" 79#include "verifier_value.skel.h" 80#include "verifier_value_illegal_alu.skel.h" 81#include "verifier_value_or_null.skel.h" 82#include "verifier_value_ptr_arith.skel.h" 83#include "verifier_var_off.skel.h" 84#include "verifier_xadd.skel.h" 85#include "verifier_xdp.skel.h" 86#include "verifier_xdp_direct_packet_access.skel.h" 87 88#define MAX_ENTRIES 11 89 90struct test_val { 91 unsigned int index; 92 int foo[MAX_ENTRIES]; 93}; 94 95__maybe_unused 96static void run_tests_aux(const char *skel_name, 97 skel_elf_bytes_fn elf_bytes_factory, 98 pre_execution_cb pre_execution_cb) 99{ 100 struct test_loader tester = {}; 101 __u64 old_caps; 102 int err; 103 104 /* test_verifier tests are executed w/o CAP_SYS_ADMIN, do the same here */ 105 err = cap_disable_effective(1ULL << CAP_SYS_ADMIN, &old_caps); 106 if (err) { 107 PRINT_FAIL("failed to drop CAP_SYS_ADMIN: %i, %s\n", err, strerror(err)); 108 return; 109 } 110 111 test_loader__set_pre_execution_cb(&tester, pre_execution_cb); 112 test_loader__run_subtests(&tester, skel_name, elf_bytes_factory); 113 test_loader_fini(&tester); 114 115 err = cap_enable_effective(old_caps, NULL); 116 if (err) 117 PRINT_FAIL("failed to restore CAP_SYS_ADMIN: %i, %s\n", err, strerror(err)); 118} 119 120#define RUN(skel) run_tests_aux(#skel, skel##__elf_bytes, NULL) 121 122void test_verifier_and(void) { RUN(verifier_and); } 123void test_verifier_arena(void) { RUN(verifier_arena); } 124void test_verifier_arena_large(void) { RUN(verifier_arena_large); } 125void test_verifier_basic_stack(void) { RUN(verifier_basic_stack); } 126void test_verifier_bitfield_write(void) { RUN(verifier_bitfield_write); } 127void test_verifier_bounds(void) { RUN(verifier_bounds); } 128void test_verifier_bounds_deduction(void) { RUN(verifier_bounds_deduction); } 129void test_verifier_bounds_deduction_non_const(void) { RUN(verifier_bounds_deduction_non_const); } 130void test_verifier_bounds_mix_sign_unsign(void) { RUN(verifier_bounds_mix_sign_unsign); } 131void test_verifier_bpf_get_stack(void) { RUN(verifier_bpf_get_stack); } 132void test_verifier_bswap(void) { RUN(verifier_bswap); } 133void test_verifier_btf_ctx_access(void) { RUN(verifier_btf_ctx_access); } 134void test_verifier_btf_unreliable_prog(void) { RUN(verifier_btf_unreliable_prog); } 135void test_verifier_cfg(void) { RUN(verifier_cfg); } 136void test_verifier_cgroup_inv_retcode(void) { RUN(verifier_cgroup_inv_retcode); } 137void test_verifier_cgroup_skb(void) { RUN(verifier_cgroup_skb); } 138void test_verifier_cgroup_storage(void) { RUN(verifier_cgroup_storage); } 139void test_verifier_const_or(void) { RUN(verifier_const_or); } 140void test_verifier_ctx(void) { RUN(verifier_ctx); } 141void test_verifier_ctx_sk_msg(void) { RUN(verifier_ctx_sk_msg); } 142void test_verifier_d_path(void) { RUN(verifier_d_path); } 143void test_verifier_direct_packet_access(void) { RUN(verifier_direct_packet_access); } 144void test_verifier_direct_stack_access_wraparound(void) { RUN(verifier_direct_stack_access_wraparound); } 145void test_verifier_div0(void) { RUN(verifier_div0); } 146void test_verifier_div_overflow(void) { RUN(verifier_div_overflow); } 147void test_verifier_global_subprogs(void) { RUN(verifier_global_subprogs); } 148void test_verifier_global_ptr_args(void) { RUN(verifier_global_ptr_args); } 149void test_verifier_gotol(void) { RUN(verifier_gotol); } 150void test_verifier_helper_access_var_len(void) { RUN(verifier_helper_access_var_len); } 151void test_verifier_helper_packet_access(void) { RUN(verifier_helper_packet_access); } 152void test_verifier_helper_restricted(void) { RUN(verifier_helper_restricted); } 153void test_verifier_helper_value_access(void) { RUN(verifier_helper_value_access); } 154void test_verifier_int_ptr(void) { RUN(verifier_int_ptr); } 155void test_verifier_iterating_callbacks(void) { RUN(verifier_iterating_callbacks); } 156void test_verifier_jeq_infer_not_null(void) { RUN(verifier_jeq_infer_not_null); } 157void test_verifier_ld_ind(void) { RUN(verifier_ld_ind); } 158void test_verifier_ldsx(void) { RUN(verifier_ldsx); } 159void test_verifier_leak_ptr(void) { RUN(verifier_leak_ptr); } 160void test_verifier_loops1(void) { RUN(verifier_loops1); } 161void test_verifier_lwt(void) { RUN(verifier_lwt); } 162void test_verifier_map_in_map(void) { RUN(verifier_map_in_map); } 163void test_verifier_map_ptr(void) { RUN(verifier_map_ptr); } 164void test_verifier_map_ptr_mixing(void) { RUN(verifier_map_ptr_mixing); } 165void test_verifier_map_ret_val(void) { RUN(verifier_map_ret_val); } 166void test_verifier_masking(void) { RUN(verifier_masking); } 167void test_verifier_meta_access(void) { RUN(verifier_meta_access); } 168void test_verifier_movsx(void) { RUN(verifier_movsx); } 169void test_verifier_netfilter_ctx(void) { RUN(verifier_netfilter_ctx); } 170void test_verifier_netfilter_retcode(void) { RUN(verifier_netfilter_retcode); } 171void test_verifier_precision(void) { RUN(verifier_precision); } 172void test_verifier_prevent_map_lookup(void) { RUN(verifier_prevent_map_lookup); } 173void test_verifier_raw_stack(void) { RUN(verifier_raw_stack); } 174void test_verifier_raw_tp_writable(void) { RUN(verifier_raw_tp_writable); } 175void test_verifier_reg_equal(void) { RUN(verifier_reg_equal); } 176void test_verifier_ref_tracking(void) { RUN(verifier_ref_tracking); } 177void test_verifier_regalloc(void) { RUN(verifier_regalloc); } 178void test_verifier_ringbuf(void) { RUN(verifier_ringbuf); } 179void test_verifier_runtime_jit(void) { RUN(verifier_runtime_jit); } 180void test_verifier_scalar_ids(void) { RUN(verifier_scalar_ids); } 181void test_verifier_sdiv(void) { RUN(verifier_sdiv); } 182void test_verifier_search_pruning(void) { RUN(verifier_search_pruning); } 183void test_verifier_sock(void) { RUN(verifier_sock); } 184void test_verifier_spill_fill(void) { RUN(verifier_spill_fill); } 185void test_verifier_spin_lock(void) { RUN(verifier_spin_lock); } 186void test_verifier_stack_ptr(void) { RUN(verifier_stack_ptr); } 187void test_verifier_subprog_precision(void) { RUN(verifier_subprog_precision); } 188void test_verifier_subreg(void) { RUN(verifier_subreg); } 189void test_verifier_typedef(void) { RUN(verifier_typedef); } 190void test_verifier_uninit(void) { RUN(verifier_uninit); } 191void test_verifier_unpriv(void) { RUN(verifier_unpriv); } 192void test_verifier_unpriv_perf(void) { RUN(verifier_unpriv_perf); } 193void test_verifier_value_adj_spill(void) { RUN(verifier_value_adj_spill); } 194void test_verifier_value(void) { RUN(verifier_value); } 195void test_verifier_value_illegal_alu(void) { RUN(verifier_value_illegal_alu); } 196void test_verifier_value_or_null(void) { RUN(verifier_value_or_null); } 197void test_verifier_var_off(void) { RUN(verifier_var_off); } 198void test_verifier_xadd(void) { RUN(verifier_xadd); } 199void test_verifier_xdp(void) { RUN(verifier_xdp); } 200void test_verifier_xdp_direct_packet_access(void) { RUN(verifier_xdp_direct_packet_access); } 201 202static int init_test_val_map(struct bpf_object *obj, char *map_name) 203{ 204 struct test_val value = { 205 .index = (6 + 1) * sizeof(int), 206 .foo[6] = 0xabcdef12, 207 }; 208 struct bpf_map *map; 209 int err, key = 0; 210 211 map = bpf_object__find_map_by_name(obj, map_name); 212 if (!map) { 213 PRINT_FAIL("Can't find map '%s'\n", map_name); 214 return -EINVAL; 215 } 216 217 err = bpf_map_update_elem(bpf_map__fd(map), &key, &value, 0); 218 if (err) { 219 PRINT_FAIL("Error while updating map '%s': %d\n", map_name, err); 220 return err; 221 } 222 223 return 0; 224} 225 226static int init_array_access_maps(struct bpf_object *obj) 227{ 228 return init_test_val_map(obj, "map_array_ro"); 229} 230 231void test_verifier_array_access(void) 232{ 233 run_tests_aux("verifier_array_access", 234 verifier_array_access__elf_bytes, 235 init_array_access_maps); 236} 237 238static int init_value_ptr_arith_maps(struct bpf_object *obj) 239{ 240 return init_test_val_map(obj, "map_array_48b"); 241} 242 243void test_verifier_value_ptr_arith(void) 244{ 245 run_tests_aux("verifier_value_ptr_arith", 246 verifier_value_ptr_arith__elf_bytes, 247 init_value_ptr_arith_maps); 248} 249