On 12/19/2017 05:15 AM, Alexei Starovoitov wrote:
> Do not allow root to convert valid pointers into unknown scalars.
> In particular disallow:
> ptr &= reg
> ptr <<= reg
> ptr += ptr
> and explicitly allow:
> ptr -= ptr
> since pkt_end - pkt == length
>
> 1.
> This minimizes amount of address
Do not allow root to convert valid pointers into unknown scalars.
In particular disallow:
ptr &= reg
ptr <<= reg
ptr += ptr
and explicitly allow:
ptr -= ptr
since pkt_end - pkt == length
1.
This minimizes amount of address leaks root can do.
In the future may need to further tighten the leaks
