bpf: don't allow create maps of cgroup local storages
authorRoman Gushchin <guro@fb.com>
Thu, 2 Aug 2018 21:27:23 +0000 (14:27 -0700)
committerDaniel Borkmann <daniel@iogearbox.net>
Thu, 2 Aug 2018 22:47:32 +0000 (00:47 +0200)
commit7b5dd2bde72cd33313b63cf3ba1de6a9e443a65d
tree06a6c42736847c306dbb7e89d72933501b197e45
parent3e6a4b3e0289dc9540a2c1d8a20657f4707fbabb
bpf: don't allow create maps of cgroup local storages

As there is one-to-one relation between a bpf program
and cgroup local storage map, there is no sense in
creating a map of cgroup local storage maps.

Forbid it explicitly to avoid possible side effects.

Signed-off-by: Roman Gushchin <guro@fb.com>
Cc: Alexei Starovoitov <ast@kernel.org>
Cc: Daniel Borkmann <daniel@iogearbox.net>
Acked-by: Martin KaFai Lau <kafai@fb.com>
Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
kernel/bpf/map_in_map.c