From: Roman Gushchin Date: Fri, 28 Sep 2018 13:33:21 +0000 (+0100) Subject: bpf: harden flags check in cgroup_storage_update_elem() X-Git-Tag: v4.19-rc7~7^2~7^2~2 X-Git-Url: https://www.infradead.org/git/?a=commitdiff_plain;h=4288ea006c73e37c2a4f60dfaef20dd167b8df31;p=users%2Fdwmw2%2Flinux.git bpf: harden flags check in cgroup_storage_update_elem() cgroup_storage_update_elem() shouldn't accept any flags argument values except BPF_ANY and BPF_EXIST to guarantee the backward compatibility, had a new flag value been added. Fixes: de9cbbaadba5 ("bpf: introduce cgroup storage maps") Signed-off-by: Roman Gushchin Reported-by: Daniel Borkmann Cc: Alexei Starovoitov Signed-off-by: Daniel Borkmann --- diff --git a/kernel/bpf/local_storage.c b/kernel/bpf/local_storage.c index 22ad967d1e5f1..94126cbffc880 100644 --- a/kernel/bpf/local_storage.c +++ b/kernel/bpf/local_storage.c @@ -129,7 +129,7 @@ static int cgroup_storage_update_elem(struct bpf_map *map, void *_key, struct bpf_cgroup_storage *storage; struct bpf_storage_buffer *new; - if (flags & BPF_NOEXIST) + if (flags != BPF_ANY && flags != BPF_EXIST) return -EINVAL; storage = cgroup_storage_lookup((struct bpf_cgroup_storage_map *)map,