Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Connectivity / 399c9f296ed737c17de66e5800c7fe294d292318^! / . / bpf_progs / netd.c
commit399c9f296ed737c17de66e5800c7fe294d292318[log] [tgz]
authorMaciej Żenczykowski <maze@google.com>Sat May 20 17:11:27 2023 +0000
committerMaciej Żenczykowski <maze@google.com>Sat May 20 17:16:06 2023 +0000
treedaabeb20ca8999a8cebe952a93daaf419e238f89
parentadc6ab5c452b5c68b2cb79f4c3d0824a8adcf324 [diff] [blame]
netd.c: simplify impossible code path

Test: TreeHugger
Signed-off-by: Maciej Żenczykowski <maze@google.com>
Change-Id: I04f3f1b6ba1093f6543f6e80f62d978ebfee707d

diff --git a/bpf_progs/netd.c b/bpf_progs/netd.c
index 839ca40..9608929 100644
--- a/bpf_progs/netd.c
+++ b/bpf_progs/netd.c

@@ -441,17 +441,17 @@
     uint32_t mapSettingKey = CURRENT_STATS_MAP_CONFIGURATION_KEY;
     uint32_t* selectedMap = bpf_configuration_map_lookup_elem(&mapSettingKey);
 
-    // Use asm("%0 &= 1" : "+r"(match)) before return match,
-    // to help kernel's bpf verifier, so that it can be 100% certain
-    // that the returned value is always BPF_NOMATCH(0) or BPF_MATCH(1).
-    if (!selectedMap) {
-        asm("%0 &= 1" : "+r"(match));
-        return match;
-    }
+    if (!selectedMap) return PASS;  // cannot happen, needed to keep bpf verifier happy
 
     do_packet_tracing(skb, egress, uid, tag, enable_tracing, kver);
     update_stats_with_config(*selectedMap, skb, &key, egress, kver);
     update_app_uid_stats_map(skb, &uid, egress, kver);
+
+    // We've already handled DROP_UNLESS_DNS up above, thus when we reach here the only
+    // possible values of match are DROP(0) or PASS(1), however we need to use
+    // "match &= 1" before 'return match' to help the kernel's bpf verifier,
+    // so that it can be 100% certain that the returned value is always 0 or 1.
+    // We use assembly so that it cannot be optimized out by a too smart compiler.
     asm("%0 &= 1" : "+r"(match));
     return match;
 }