From owner-soc-status@freebsd.org Thu Jul 16 18:10:29 2020 Return-Path: Delivered-To: soc-status@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5481E36936C for ; Thu, 16 Jul 2020 18:10:29 +0000 (UTC) (envelope-from shivankg@iitk.ac.in) Received: from mail2.iitk.ac.in (mail2.iitk.ac.in [202.3.77.186]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4B72Nd0xcDz3cmj; Thu, 16 Jul 2020 18:10:24 +0000 (UTC) (envelope-from shivankg@iitk.ac.in) Received: from mmtp.iitk.ac.in (mmtp.iitk.ac.in [172.31.1.23]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail2.iitk.ac.in (Postfix) with ESMTPS id 5B6621801A38; Thu, 16 Jul 2020 23:40:16 +0530 (IST) Received: from mail-ej1-f54.google.com (mail-ej1-f54.google.com [209.85.218.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: shivankg) by mmtp.iitk.ac.in (Postfix) with ESMTPSA id 8634A3000547; Thu, 16 Jul 2020 23:41:48 +0530 (IST) Received: by mail-ej1-f54.google.com with SMTP id rk21so7590834ejb.2; Thu, 16 Jul 2020 11:10:15 -0700 (PDT) X-Gm-Message-State: AOAM531VGEyjfo6lRm+AntMG/lp2kZrE4zzYJx5F2rC3fMTCHgqYTpne SOq14CvroyqB2qqYxDmcu5AcyRxsz36Muyyl/rA= X-Google-Smtp-Source: ABdhPJzOU6iiVjkMeaWF/Hc4cLDaYFrqwS7NvNdRrZqGjCZc+2IHYQ6jjGrGeW12Ajx7PQIG5OxneIsmQOUNRcTf5WY= X-Received: by 2002:a17:906:3c42:: with SMTP id i2mr5298822ejg.14.1594923010782; Thu, 16 Jul 2020 11:10:10 -0700 (PDT) MIME-Version: 1.0 From: Shivank Garg Date: Thu, 16 Jul 2020 23:39:52 +0530 X-Gmail-Original-Message-ID: Message-ID: Subject: [GSoC'20 Weekly Update] Adding audit(4) support to NFS To: soc-status@freebsd.org Cc: Alan Somers X-Rspamd-Queue-Id: 4B72Nd0xcDz3cmj X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of shivankg@iitk.ac.in designates 202.3.77.186 as permitted sender) smtp.mailfrom=shivankg@iitk.ac.in X-Spamd-Result: default: False [-2.13 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.92)[-0.923]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+a:mail2.iitk.ac.in]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; DMARC_NA(0.00)[iitk.ac.in]; NEURAL_HAM_LONG(-0.87)[-0.873]; RWL_MAILSPIKE_GOOD(0.00)[202.3.77.186:from]; NEURAL_SPAM_SHORT(0.16)[0.164]; RCVD_COUNT_THREE(0.00)[4]; RCVD_IN_DNSWL_MED(-0.20)[202.3.77.186:from]; RCPT_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:55479, ipnet:202.3.77.0/24, country:IN]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: soc-status@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: Summer of Code Status Reports and Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Jul 2020 18:10:29 -0000 Hi, This project aims to add audit(4) support to NFS, which will allow auditd(8) to just run on the NFS server and audit all activities within the NFS network. Audit works mostly on the syscall level and NFS is implemented within the kernel, which means the NFS RPCs don't generate any audit records on the server. Note that audit(4) can still be used on the NFS network but auditd(8) must run on every NFS client. This week I made the following progress: * Wrote a skeleton code for NFSAuditTestSuite. * Wrote tests for mkdir and create NFS RPCs. Currently, I'm: * Improving NFSAuditTestSuite code * Writing Tests for remaining RPCs. Github repo link for NFSAuditTestSuite: https://github.com/shivankgarg98/NFSAuditTestSuite Please, do Check this project on Github: https://github.com/shivankgarg98/freebsd/tree/user/shivank/nfs_audit Project wiki: https://wiki.freebsd.org/SummerOfCode2020Projects/AddAuditSupportToNFS Please feel free to share your ideas and feedback on this project. Best Regards, Shivank Garg From owner-soc-status@freebsd.org Thu Jul 16 18:25:46 2020 Return-Path: Delivered-To: soc-status@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8FCFF3698E1 for ; Thu, 16 Jul 2020 18:25:46 +0000 (UTC) (envelope-from ankur.kothiwal99@gmail.com) Received: from mail-qv1-f41.google.com (mail-qv1-f41.google.com [209.85.219.41]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4B72kK65wKz3dNM; Thu, 16 Jul 2020 18:25:45 +0000 (UTC) (envelope-from ankur.kothiwal99@gmail.com) Received: by mail-qv1-f41.google.com with SMTP id m8so3152670qvk.7; Thu, 16 Jul 2020 11:25:45 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=bU4NmYoP/0uyTZY7D14sRlPskvkgrMk9+qPWap/f7Qk=; b=nmVEXJ+U1czbLHRDgDZyOsSyU7aO+h7iDWbNUCYe9Mhtd6T/8HU0/QilQAaM50YuPM gFbRG3zgfFIPnekL/89n8oV7NdxHZQSHinj+CidBoClH5S09Iiaw54T1R6LumAifTE37 z7TCZhKWQiueviJGyhchNT0n6Mg5pDUyAZdiyWabel7CzP9jZrHmS6KsXyqsj9F+Relb x/zcM0EUT4RkRiWvn//HTjDWuC64sUyhC1XtoM0arub9KQ3dc5J6PlNCOy4JhhwmOW4w 4ro0LJn5h+WWUXVfWyS4n++zOdSDW8CAtQFGZAd+X72fXFMAfJKEYuVdN1sPIwz0HExS wCVw== X-Gm-Message-State: AOAM531Z9RMW1jwPeEbeJZhbkKiiEwY6HOH9lGkmpAIx6F65hS/rew64 lt6ojGd+mttuhUThZseqOcjv7MDPH9M= X-Google-Smtp-Source: ABdhPJws1R95PqYEFRbJgt06Hlvp0MXnSMERrJbzKwQAId/GG7h6q84HV+s4PByJAw17eJoaYH0GRw== X-Received: by 2002:ad4:4d06:: with SMTP id l6mr5468223qvl.93.1594923944752; Thu, 16 Jul 2020 11:25:44 -0700 (PDT) Received: from mail-qk1-f170.google.com (mail-qk1-f170.google.com. [209.85.222.170]) by smtp.gmail.com with ESMTPSA id p63sm7643135qkc.80.2020.07.16.11.25.43 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 16 Jul 2020 11:25:44 -0700 (PDT) Received: by mail-qk1-f170.google.com with SMTP id 80so6455392qko.7; Thu, 16 Jul 2020 11:25:43 -0700 (PDT) X-Received: by 2002:a37:a542:: with SMTP id o63mr5090476qke.316.1594923943742; Thu, 16 Jul 2020 11:25:43 -0700 (PDT) MIME-Version: 1.0 From: Ankur Kothiwal Date: Thu, 16 Jul 2020 23:54:48 +0530 X-Gmail-Original-Message-ID: Message-ID: Subject: [GSoC'20 Weekly Update - Week 6] eBPF XDP Hook To: soc-status@freebsd.org, rstone@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4B72kK65wKz3dNM X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of ankurkothiwal99@gmail.com designates 209.85.219.41 as permitted sender) smtp.mailfrom=ankurkothiwal99@gmail.com X-Spamd-Result: default: False [-2.09 / 15.00]; ARC_NA(0.00)[]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:209.85.128.0/17:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; DMARC_NA(0.00)[freebsd.org]; NEURAL_HAM_LONG(-0.89)[-0.888]; RCVD_COUNT_THREE(0.00)[4]; NEURAL_HAM_MEDIUM(-0.99)[-0.987]; NEURAL_HAM_SHORT(-0.22)[-0.216]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[209.85.219.41:from]; FORGED_SENDER(0.30)[ankur@freebsd.org,ankurkothiwal99@gmail.com]; RWL_MAILSPIKE_POSSIBLE(0.00)[209.85.219.41:from]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:15169, ipnet:209.85.128.0/17, country:US]; TAGGED_FROM(0.00)[]; FROM_NEQ_ENVFROM(0.00)[ankur@freebsd.org,ankurkothiwal99@gmail.com] X-BeenThere: soc-status@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: Summer of Code Status Reports and Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Jul 2020 18:25:46 -0000 Hi all, Project: Implement eBPF XDP for FreeBSD by extending VirtIO ethernet driver if_vtnet The goal of this project is to extend an existing FreeBSD network driver,VirtIO if_vtnet to be able to call into an eBPF program when processing a newly received packet. The driver will perform the basic actions of XDP like PASS and DROP the packet as specified by the program. The project will also implement new map type and other eBPF helper functions.The aim of this project is to add new probe sites into the kernel that will call eBPF functions. Mentor: Ryan Stone and Hiroki Sato Progress made this week: - create hooks and link them to the pfil head when the eBPF XDP probe is activated - manage to list the XDP probes Currently: - This week's goal is to create a xdp_rx function which will pass the received packets to the ebpf program where the packets can be further processed. Project GSoC Wiki: https://wiki.freebsd.org/SummerOfCodeIdeas#eBPF_XDP_Hooks Github Repo for the code: https://github.com/rysto32/freebsd/tree/ebpf-import Github repo including the changes made so far: https://github.com/Ankurk99/freebsd/tree/ebpf-import Thank you for reading. Please feel free to share your feedback and suggestions. Thanks and Regards Ankur Kothiwal