Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Connectivity / 48e476bdfafca35e10e8590fa0cdafe478f84ae5^! / . / netbpfload / NetBpfLoad.cpp
commit48e476bdfafca35e10e8590fa0cdafe478f84ae5[log] [tgz]
authorMaciej Żenczykowski <maze@google.com>Thu Jun 13 14:06:49 2024 -0700
committerMaciej Żenczykowski <maze@google.com>Thu Jun 13 15:26:55 2024 -0700
tree6ebeb2772fbceba2bb8fa8b0e5ca6e22c08e22ba
parent08c82c3b6581fa163400e11ce9a1e5f322fcbddd [diff] [blame]
NetBpfLoad: change condition for writing 'unprivileged_bpf_disabled' sysctl

(and add a few more comments for what access is needed in general)

Test: TreeHugger
Signed-off-by: Maciej Żenczykowski <maze@google.com>
Change-Id: I2aa596f4f2d34179bb36360ad1c9a795fbb97d0d

diff --git a/netbpfload/NetBpfLoad.cpp b/netbpfload/NetBpfLoad.cpp
index ef817b0..8416455 100644
--- a/netbpfload/NetBpfLoad.cpp
+++ b/netbpfload/NetBpfLoad.cpp

@@ -254,6 +254,7 @@
 }
 
 static int doLoad(char** argv, char * const envp[]) {
+    const bool runningAsRoot = !getuid();
     const int device_api_level = android_get_device_api_level();
     const bool isAtLeastT = (device_api_level >= __ANDROID_API_T__);
     const bool isAtLeastU = (device_api_level >= __ANDROID_API_U__);
@@ -264,8 +265,8 @@
     // first in U QPR2 beta~2
     const bool has_platform_netbpfload_rc = exists("/system/etc/init/netbpfload.rc");
 
-    ALOGI("NetBpfLoad (%s) api:%d kver:%07x (%s) rc:%d%d",
-          argv[0], device_api_level, kernelVersion(), describeArch(),
+    ALOGI("NetBpfLoad (%s) api:%d kver:%07x (%s) uid:%d rc:%d%d",
+          argv[0], device_api_level, kernelVersion(), describeArch(), getuid(),
           has_platform_bpfloader_rc, has_platform_netbpfload_rc);
 
     if (!has_platform_bpfloader_rc && !has_platform_netbpfload_rc) {
@@ -380,7 +381,9 @@
         return 1;
     }
 
-    if (isAtLeastV) {
+    if (runningAsRoot) {
+        // Note: writing this proc file requires being root (always the case on V+)
+
         // Linux 5.16-rc1 changed the default to 2 (disabled but changeable),
         // but we need 0 (enabled)
         // (this writeFile is known to fail on at least 4.19, but always defaults to 0 on
@@ -390,6 +393,11 @@
     }
 
     if (isAtLeastU) {
+        // Note: writing these proc files requires CAP_NET_ADMIN
+        // and sepolicy which is only present on U+,
+        // on Android T and earlier versions they're written from the 'load_bpf_programs'
+        // trigger (ie. by init itself) instead.
+
         // Enable the eBPF JIT -- but do note that on 64-bit kernels it is likely
         // already force enabled by the kernel config option BPF_JIT_ALWAYS_ON.
         // (Note: this (open) will fail with ENOENT 'No such file or directory' if