From: Alexei Starovoitov Date: Tue, 16 Jun 2015 03:49:24 +0000 (-0700) Subject: bpf: disallow bpf tc programs access current->pid,uid X-Git-Tag: Ubuntu-5.2.0-15.16~11161^2~55 X-Git-Url: https://git.proxmox.com/?a=commitdiff_plain;h=89d256bb69f2596c3a31ac51466eac9e1791c388;p=mirror_ubuntu-eoan-kernel.git bpf: disallow bpf tc programs access current->pid,uid Accessing current->pid/uid from cls_bpf may lead to misleading results and should not be used when TC classifiers need accurate information about pid/uid. Signed-off-by: Alexei Starovoitov Signed-off-by: David S. Miller --- diff --git a/net/core/filter.c b/net/core/filter.c index 65ff107d3d29..be3098fb65e4 100644 --- a/net/core/filter.c +++ b/net/core/filter.c @@ -1461,12 +1461,6 @@ tc_cls_act_func_proto(enum bpf_func_id func_id) return &bpf_l4_csum_replace_proto; case BPF_FUNC_clone_redirect: return &bpf_clone_redirect_proto; - case BPF_FUNC_get_current_pid_tgid: - return &bpf_get_current_pid_tgid_proto; - case BPF_FUNC_get_current_uid_gid: - return &bpf_get_current_uid_gid_proto; - case BPF_FUNC_get_current_comm: - return &bpf_get_current_comm_proto; default: return sk_filter_func_proto(func_id); }