Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Connectivity / a08846c6d30599db5756f9a8a3537e3c7497d7ea
commita08846c6d30599db5756f9a8a3537e3c7497d7ea[log] [tgz]
authorMaciej Żenczykowski <maze@google.com>Wed Feb 07 01:30:01 2024 +0000
committerMaciej Żenczykowski <maze@google.com>Wed Feb 07 04:58:20 2024 +0000
treedc16d49a536230c689812d70fd9a605586486dd8
parentb8ad2428d0e435d923e4c70163b4a31cae106fca [diff]
netd.c: handle overflowuid in bpf_owner_match()

Linux kernel implementation is:

sock* sk_to_full_sk(sk):
  return (sk && sk->sk_state == TCP_NEW_SYN_RECV) ? inet_reqsk(sk)->rsk_listener : sk;

bool sk_fullsock(sk):
  return (1 << sk->sk_state) & ~(TCPF_TIME_WAIT | TCPF_NEW_SYN_RECV)

u32 bpf_get_socket_uid(skb):
  sk = sk_to_full_sk(skb->sk);
  if (!sk || !sk_fullsock(sk)) return overflowuid;
  kuid = sock_net_uid(sock_net(sk), sk);
  return from_kuid_munged(sock_net(sk)->user_ns, kuid);

u64 bpf_get_socket_cookie(skb):
  return skb->sk ? __sock_gen_cookie(skb->sk) : 0

Test: TreeHugger
Signed-off-by: Maciej Żenczykowski <maze@google.com>
Change-Id: I0f9c2ffc24821068ebd2e5712789ff68aa196c48
1 file changed
tree: dc16d49a536230c689812d70fd9a605586486dd8
  1. bpf_progs/
  2. clatd/
  3. common/
  4. Cronet/
  5. DnsResolver/
  6. framework/
  7. framework-t/
  8. nearby/
  9. netbpfload/
  10. netd/
  11. remoteauth/
  12. service/
  13. service-t/
  14. staticlibs/
  15. tests/
  16. Tethering/
  17. thread/
  18. tools/
  19. .gitignore
  20. OWNERS
  21. OWNERS_core_networking
  22. OWNERS_core_networking_xts
  23. PREUPLOAD.cfg
  24. TEST_MAPPING