review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Jakub Sitnicki <jakub@cloudflare.com>
	Sun, 30 Jan 2022 11:55:17 +0000 (12:55 +0100)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Wed, 13 Apr 2022 18:59:02 +0000 (20:59 +0200)
commit	1c6ffdf4cc45525e5736a1cb3e46cd232c121837
tree	aff41228cbd8e1b8798d3a1d09a3d612202b8287	tree \| snapshot
parent	ff13c90d7f7ab606b37be6d15140d19013d6736c	commit \| diff

bpf: Make dst_port field in struct bpf_sock 16-bit wide

[ Upstream commit 4421a582718ab81608d8486734c18083b822390d ]

Menglong Dong reports that the documentation for the dst_port field in
struct bpf_sock is inaccurate and confusing. From the BPF program PoV, the
field is a zero-padded 16-bit integer in network byte order. The value
appears to the BPF user as if laid out in memory as so:

  offsetof(struct bpf_sock, dst_port) + 0  <port MSB>
                                      + 8  <port LSB>
                                      +16  0x00
                                      +24  0x00

32-, 16-, and 8-bit wide loads from the field are all allowed, but only if
the offset into the field is 0.

32-bit wide loads from dst_port are especially confusing. The loaded value,
after converting to host byte order with bpf_ntohl(dst_port), contains the
port number in the upper 16-bits.

Remove the confusion by splitting the field into two 16-bit fields. For
backward compatibility, allow 32-bit wide loads from offsetof(struct
bpf_sock, dst_port).

While at it, allow loads 8-bit loads at offset [0] and [1] from dst_port.

Reported-by: Menglong Dong <imagedong@tencent.com>
Signed-off-by: Jakub Sitnicki <jakub@cloudflare.com>
Link: https://lore.kernel.org/r/20220130115518.213259-2-jakub@cloudflare.com
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>

include/uapi/linux/bpf.h		diff \| blob \| history
net/core/filter.c		diff \| blob \| history