bpf: flow_dissector: Check value of unused flags to BPF_PROG_DETACH

Using BPF_PROG_DETACH on a flow dissector program supports neither attach_flags nor attach_bpf_fd. Yet no value is enforced for them. Enforce that attach_flags are zero, and require the current program to be passed via attach_bpf_fd. This allows us to remove the check for CAP_SYS_ADMIN, since userspace can now no longer remove arbitrary flow dissector programs. Fixes: b27f7bb590ba ("flow_dissector: Move out netns_bpf prog callbacks") Signed-off-by: Lorenz Bauer <lmb@cloudflare.com> Signed-off-by: Alexei Starovoitov <ast@kernel.org> Link: https://lore.kernel.org/bpf/20200629095630.7933-3-lmb@cloudflare.com
author: Lorenz Bauer <lmb@cloudflare.com> 2020-06-29 10:56:26 +0100
committer: Alexei Starovoitov <ast@kernel.org> 2020-06-30 10:46:38 -0700
commit: 4ac2add65974e4efafb8d4ccd8fc5660417ea312 (patch)
tree: 5d10bfc9e7d53253556506bdbc0d02ca30386354 /kernel/bpf/syscall.c
parent: 1b514239e85965cc4df085180a73dd91733135f7 (diff)
1 files changed, 1 insertions, 3 deletions
diff --git a/kernel/bpf/syscall.c b/kernel/bpf/syscall.c
index 7d946435587d..28c6ef759037 100644
--- a/kernel/bpf/syscall.c
+++ b/kernel/bpf/syscall.c
@@ -2897,9 +2897,7 @@ static int bpf_prog_detach(const union bpf_attr *attr)
 	case BPF_PROG_TYPE_LIRC_MODE2:
 		return lirc_prog_detach(attr);
 	case BPF_PROG_TYPE_FLOW_DISSECTOR:
-		if (!capable(CAP_NET_ADMIN))
-			return -EPERM;
-		return netns_bpf_prog_detach(attr);
+		return netns_bpf_prog_detach(attr, ptype);
 	case BPF_PROG_TYPE_CGROUP_DEVICE:
 	case BPF_PROG_TYPE_CGROUP_SKB:
 	case BPF_PROG_TYPE_CGROUP_SOCK:
author	Lorenz Bauer <lmb@cloudflare.com>	2020-06-29 10:56:26 +0100
committer	Alexei Starovoitov <ast@kernel.org>	2020-06-30 10:46:38 -0700
commit	4ac2add65974e4efafb8d4ccd8fc5660417ea312 (patch)
tree	5d10bfc9e7d53253556506bdbc0d02ca30386354 /kernel/bpf/syscall.c
parent	1b514239e85965cc4df085180a73dd91733135f7 (diff)