bpf: Remove superfluous aux sanitation on subprog rejection
stable inclusion from stable-5.10.56 commit a11ca29c65c147c9d52896304e9761e2c4ed70dc bugzilla: 176004 https://gitee.com/openeuler/kernel/issues/I4DYZ4 Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=a11ca29c65c147c9d52896304e9761e2c4ed70dc -------------------------------- commit 59089a18 upstream. Follow-up to fe9a5ca7 ("bpf: Do not mark insn as seen under speculative path verification"). The sanitize_insn_aux_data() helper does not serve a particular purpose in today's code. The original intention for the helper was that if function-by-function verification fails, a given program would be cleared from temporary insn_aux_data[], and then its verification would be re-attempted in the context of the main program a second time. However, a failure in do_check_subprogs() will skip do_check_main() and propagate the error to the user instead, thus such situation can never occur. Given its interaction is not compatible to the Spectre v1 mitigation (due to comparing aux->seen with env->pass_cnt), just remove sanitize_insn_aux_data() to avoid future bugs in this area. Signed-off-by:Daniel Borkmann <daniel@iogearbox.net> Acked-by:
Loading
Please sign in to comment