[PATCH openEuler-1.0-LTS 11/16] bpf: Always return target ifindex in bpf_fib_lookup

8 Mar 2023

From: Toke Høiland-Jørgensen toke@redhat.com
stable inclusion
from stable-v4.19.273
commit 96d9b11d688ced4c9e16312b1b95570e86b73260
category: bugfix
bugzilla: https://gitee.com/openeuler/kernel/issues/I6KOHU
CVE: NA
--------------------------------
commit d1c362e1dd68a421cf9033404cf141a4ab734a5d upstream.
The bpf_fib_lookup() helper performs a neighbour lookup for the destination
IP and returns BPF_FIB_LKUP_NO_NEIGH if this fails, with the expectation
that the BPF program will pass the packet up the stack in this case.
However, with the addition of bpf_redirect_neigh() that can be used instead
to perform the neighbour lookup, at the cost of a bit of duplicated work.
For that we still need the target ifindex, and since bpf_fib_lookup()
already has that at the time it performs the neighbour lookup, there is
really no reason why it can't just return it in any case. So let's just
always return the ifindex if the FIB lookup itself succeeds.
Signed-off-by: Toke Høiland-Jørgensen toke@redhat.com
Signed-off-by: Daniel Borkmann daniel@iogearbox.net
Cc: David Ahern dsahern@gmail.com
Link: https://lore.kernel.org/bpf/20201009184234.134214-1-toke@redhat.com
Signed-off-by: Greg Kroah-Hartman gregkh@linuxfoundation.org
Signed-off-by: Yongqiang Liu liuyongqiang13@huawei.com
---
 net/core/filter.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/net/core/filter.c b/net/core/filter.c
index c24c7cddeb8e..cd9fba7fe78e 100644
--- a/net/core/filter.c
+++ b/net/core/filter.c
@@ -4240,7 +4240,6 @@ static int bpf_fib_set_fwd_params(struct bpf_fib_lookup *params,
    memcpy(params->smac, dev->dev_addr, ETH_ALEN);
    params->h_vlan_TCI = 0;
    params->h_vlan_proto = 0;
-	params->ifindex = dev->ifindex;
return 0;
 }
@@ -4338,6 +4337,7 @@ static int bpf_ipv4_fib_lookup(struct net *net, struct bpf_fib_lookup *params,
    	params->ipv4_dst = nh->nh_gw;
params->rt_metric = res.fi->fib_priority;
+	params->ifindex = dev->ifindex;
/* xdp and cls_bpf programs are run in RCU-bh so
     * rcu_read_lock_bh is not needed here
@@ -4452,6 +4452,7 @@ static int bpf_ipv6_fib_lookup(struct net *net, struct bpf_fib_lookup *params,
dev = f6i->fib6_nh.nh_dev;
    params->rt_metric = f6i->fib6_metric;
+	params->ifindex = dev->ifindex;
/* xdp and cls_bpf programs are run in RCU-bh so rcu_read_lock_bh is
     * not needed here. Can not use __ipv6_neigh_lookup_noref here
-- 
2.25.1


    

2024

2023

2022

2021

2020

2019

[PATCH openEuler-1.0-LTS 11/16] bpf: Always return target ifindex in bpf_fib_lookup