1. 11 Oct, 2020 2 commits
  2. 09 Oct, 2020 7 commits
  3. 08 Oct, 2020 5 commits
    • Alexei Starovoitov's avatar
      Merge branch 'libbpf: auto-resize relocatable LOAD/STORE instructions' · 1e9259ec
      Alexei Starovoitov authored
      Andrii Nakryiko says:
      
      ====================
      Patch set implements logic in libbpf to auto-adjust memory size (1-, 2-, 4-,
      8-bytes) of load/store (LD/ST/STX) instructions which have BPF CO-RE field
      offset relocation associated with it. In practice this means transparent
      handling of 32-bit kernels, both pointer and unsigned integers. Signed
      integers are not relocatable with zero-extending loads/stores, so libbpf
      poisons them and generates a warning. If/when BPF gets support for
      sign-extending loads/stores, it would be possible to automatically relocate
      them as well.
      
      All the details are contained in patch #2 comments and commit message.
      Patch #3 is a simple change in libbpf to make advanced testing with custom BTF
      easier. Patch #4 validates correct uses of auto-resizable loads, as well as
      check that libbpf fails invalid uses. Patch #1 skips CO-RE relocation for
      programs that had bpf_program__set_autoload(prog, false) set on them, reducing
      warnings and noise.
      
      v2->v3:
        - fix copyright (Alexei);
      v1->v2:
        - more consistent names for instruction mem size convertion routines (Alexei);
        - extended selftests to use relocatable STX instructions (Alexei);
        - added a fix for skipping CO-RE relocation for non-loadable programs.
      
      Cc: Luka Perkov <luka.perkov@sartura.hr>
      Cc: Tony Ambardar <tony.ambardar@gmail.com>
      ====================
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      1e9259ec
    • Andrii Nakryiko's avatar
      selftests/bpf: Validate libbpf's auto-sizing of LD/ST/STX instructions · 888d83b9
      Andrii Nakryiko authored
      Add selftests validating libbpf's auto-resizing of load/store instructions
      when used with CO-RE relocations. An explicit and manual approach with using
      bpf_core_read() is also demonstrated and tested. Separate BPF program is
      supposed to fail due to using signed integers of sizes that differ from
      kernel's sizes.
      
      To reliably simulate 32-bit BTF (i.e., the one with sizeof(long) ==
      sizeof(void *) == 4), selftest generates its own custom BTF and passes it as
      a replacement for real kernel BTF. This allows to test 32/64-bitness mix on
      all architectures.
      Signed-off-by: default avatarAndrii Nakryiko <andrii@kernel.org>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Link: https://lore.kernel.org/bpf/20201008001025.292064-5-andrii@kernel.org
      888d83b9
    • Andrii Nakryiko's avatar
      libbpf: Allow specifying both ELF and raw BTF for CO-RE BTF override · 2b7d88c2
      Andrii Nakryiko authored
      Use generalized BTF parsing logic, making it possible to parse BTF both from
      ELF file, as well as a raw BTF dump. This makes it easier to write custom
      tests with manually generated BTFs.
      Signed-off-by: default avatarAndrii Nakryiko <andrii@kernel.org>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Link: https://lore.kernel.org/bpf/20201008001025.292064-4-andrii@kernel.org
      2b7d88c2
    • Andrii Nakryiko's avatar
      libbpf: Support safe subset of load/store instruction resizing with CO-RE · a66345bc
      Andrii Nakryiko authored
      Add support for patching instructions of the following form:
        - rX = *(T *)(rY + <off>);
        - *(T *)(rX + <off>) = rY;
        - *(T *)(rX + <off>) = <imm>, where T is one of {u8, u16, u32, u64}.
      
      For such instructions, if the actual kernel field recorded in CO-RE relocation
      has a different size than the one recorded locally (e.g., from vmlinux.h),
      then libbpf will adjust T to an appropriate 1-, 2-, 4-, or 8-byte loads.
      
      In general, such transformation is not always correct and could lead to
      invalid final value being loaded or stored. But two classes of cases are
      always safe:
        - if both local and target (kernel) types are unsigned integers, but of
        different sizes, then it's OK to adjust load/store instruction according to
        the necessary memory size. Zero-extending nature of such instructions and
        unsignedness make sure that the final value is always correct;
        - pointer size mismatch between BPF target architecture (which is always
        64-bit) and 32-bit host kernel architecture can be similarly resolved
        automatically, because pointer is essentially an unsigned integer. Loading
        32-bit pointer into 64-bit BPF register with zero extension will leave
        correct pointer in the register.
      
      Both cases are necessary to support CO-RE on 32-bit kernels, as `unsigned
      long` in vmlinux.h generated from 32-bit kernel is 32-bit, but when compiled
      with BPF program for BPF target it will be treated by compiler as 64-bit
      integer. Similarly, pointers in vmlinux.h are 32-bit for kernel, but treated
      as 64-bit values by compiler for BPF target. Both problems are now resolved by
      libbpf for direct memory reads.
      
      But similar transformations are useful in general when kernel fields are
      "resized" from, e.g., unsigned int to unsigned long (or vice versa).
      
      Now, similar transformations for signed integers are not safe to perform as
      they will result in incorrect sign extension of the value. If such situation
      is detected, libbpf will emit helpful message and will poison the instruction.
      Not failing immediately means that it's possible to guard the instruction
      based on kernel version (or other conditions) and make sure it's not
      reachable.
      
      If there is a need to read signed integers that change sizes between different
      kernels, it's possible to use BPF_CORE_READ_BITFIELD() macro, which works both
      with bitfields and non-bitfield integers of any signedness and handles
      sign-extension properly. Also, bpf_core_read() with proper size and/or use of
      bpf_core_field_size() relocation could allow to deal with such complicated
      situations explicitly, if not so conventiently as direct memory reads.
      
      Selftests added in a separate patch in progs/test_core_autosize.c demonstrate
      both direct memory and probed use cases.
      
      BPF_CORE_READ() is not changed and it won't deal with such situations as
      automatically as direct memory reads due to the signedness integer
      limitations, which are much harder to detect and control with compiler macro
      magic. So it's encouraged to utilize direct memory reads as much as possible.
      Signed-off-by: default avatarAndrii Nakryiko <andrii@kernel.org>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Link: https://lore.kernel.org/bpf/20201008001025.292064-3-andrii@kernel.org
      a66345bc
    • Andrii Nakryiko's avatar
      libbpf: Skip CO-RE relocations for not loaded BPF programs · 47f7cf63
      Andrii Nakryiko authored
      Bypass CO-RE relocations step for BPF programs that are not going to be
      loaded. This allows to have BPF programs compiled in and disabled dynamically
      if kernel is not supposed to provide enough relocation information. In such
      case, there won't be unnecessary warnings about failed relocations.
      
      Fixes: d9297581 ("libbpf: Support disabling auto-loading BPF programs")
      Signed-off-by: default avatarAndrii Nakryiko <andrii@kernel.org>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Link: https://lore.kernel.org/bpf/20201008001025.292064-2-andrii@kernel.org
      47f7cf63
  4. 07 Oct, 2020 5 commits
  5. 06 Oct, 2020 10 commits
  6. 05 Oct, 2020 4 commits
  7. 03 Oct, 2020 1 commit
  8. 02 Oct, 2020 6 commits
    • Alexei Starovoitov's avatar
      Merge branch 'Add skb_adjust_room() for SK_SKB' · fb91db01
      Alexei Starovoitov authored
      John Fastabend says:
      
      ====================
      This implements the helper skb_adjust_room() for BPF_SKS_SK_STREAM_VERDICT
      programs so we can push/pop headers from the data on recieve. One use
      case is to pop TLS headers off kTLS packets.
      
      The first patch implements the helper and the second updates test_sockmap
      to use it removing some case handling we had to do earlier to account for
      the TLS headers in the kTLS tests.
      
      v1->v2:
       Fix error path for TLS case (Daniel)
       check mode input is 0 because we don't use it now (Daniel)
       Remove incorrect/misleading comment (Lorenz)
      
      Thanks,
      John
      Acked-by: default avatarMartin KaFai Lau <kafai@fb.com>
      ---
      ====================
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      fb91db01
    • John Fastabend's avatar
      bpf, sockmap: Update selftests to use skb_adjust_room · 91274ca5
      John Fastabend authored
      Instead of working around TLS headers in sockmap selftests use the
      new skb_adjust_room helper. This allows us to avoid special casing
      the receive side to skip headers.
      Signed-off-by: default avatarJohn Fastabend <john.fastabend@gmail.com>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Link: https://lore.kernel.org/bpf/160160100932.7052.3646935243867660528.stgit@john-Precision-5820-Tower
      91274ca5
    • John Fastabend's avatar
      bpf, sockmap: Add skb_adjust_room to pop bytes off ingress payload · 18ebe16d
      John Fastabend authored
      This implements a new helper skb_adjust_room() so users can push/pop
      extra bytes from a BPF_SK_SKB_STREAM_VERDICT program.
      
      Some protocols may include headers and other information that we may
      not want to include when doing a redirect from a BPF_SK_SKB_STREAM_VERDICT
      program. One use case is to redirect TLS packets into a receive socket
      that doesn't expect TLS data. In TLS case the first 13B or so contain the
      protocol header. With KTLS the payload is decrypted so we should be able
      to redirect this to a receiving socket, but the receiving socket may not
      be expecting to receive a TLS header and discard the data. Using the
      above helper we can pop the header off and put an appropriate header on
      the payload. This allows for creating a proxy between protocols without
      extra hops through the stack or userspace.
      
      So in order to fix this case add skb_adjust_room() so users can strip the
      header. After this the user can strip the header and an unmodified receiver
      thread will work correctly when data is redirected into the ingress path
      of a sock.
      Signed-off-by: default avatarJohn Fastabend <john.fastabend@gmail.com>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Link: https://lore.kernel.org/bpf/160160099197.7052.8443193973242831692.stgit@john-Precision-5820-Tower
      18ebe16d
    • Alexei Starovoitov's avatar
      Merge branch 'bpf: BTF support for ksyms' · 60a128b5
      Alexei Starovoitov authored
      Hao Luo says:
      
      ====================
      v3 -> v4:
       - Rebasing
       - Cast bpf_[per|this]_cpu_ptr's parameter to void __percpu * before
         passing into per_cpu_ptr.
      
      v2 -> v3:
       - Rename functions and variables in verifier for better readability.
       - Stick to logging message convention in libbpf.
       - Move bpf_per_cpu_ptr and bpf_this_cpu_ptr from trace-specific
         helper set to base helper set.
       - More specific test in ksyms_btf.
       - Fix return type cast in bpf_*_cpu_ptr.
       - Fix btf leak in ksyms_btf selftest.
       - Fix return error code for kallsyms_find().
      
      v1 -> v2:
       - Move check_pseudo_btf_id from check_ld_imm() to
         replace_map_fd_with_map_ptr() and rename the latter.
       - Add bpf_this_cpu_ptr().
       - Use bpf_core_types_are_compat() in libbpf.c for checking type
         compatibility.
       - Rewrite typed ksym extern type in BTF with int to save space.
       - Minor revision of bpf_per_cpu_ptr()'s comments.
       - Avoid using long in tests that use skeleton.
       - Refactored test_ksyms.c by moving kallsyms_find() to trace_helpers.c
       - Fold the patches that sync include/linux/uapi and
         tools/include/linux/uapi.
      
      rfc -> v1:
       - Encode VAR's btf_id for PSEUDO_BTF_ID.
       - More checks in verifier. Checking the btf_id passed as
         PSEUDO_BTF_ID is valid VAR, its name and type.
       - Checks in libbpf on type compatibility of ksyms.
       - Add bpf_per_cpu_ptr() to access kernel percpu vars. Introduced
         new ARG and RET types for this helper.
      
      This patch series extends the previously added __ksym externs with
      btf support.
      
      Right now the __ksym externs are treated as pure 64-bit scalar value.
      Libbpf replaces ld_imm64 insn of __ksym by its kernel address at load
      time. This patch series extend those externs with their btf info. Note
      that btf support for __ksym must come with the kernel btf that has
      VARs encoded to work properly. The corresponding chagnes in pahole
      is available at [1] (with a fix at [2] for gcc 4.9+).
      
      The first 3 patches in this series add support for general kernel
      global variables, which include verifier checking (01/06), libpf
      support (02/06) and selftests for getting typed ksym extern's kernel
      address (03/06).
      
      The next 3 patches extends that capability further by introducing
      helpers bpf_per_cpu_ptr() and bpf_this_cpu_ptr(), which allows accessing
      kernel percpu variables correctly (04/06 and 05/06).
      
      The tests of this feature were performed against pahole that is extended
      with [1] and [2]. For kernel BTF that does not have VARs encoded, the
      selftests will be skipped.
      
      [1] https://git.kernel.org/pub/scm/devel/pahole/pahole.git/commit/?id=f3d9054ba8ff1df0fc44e507e3a01c0964cabd42
      [2] https://www.spinics.net/lists/dwarves/msg00451.html
      ====================
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      60a128b5
    • Hao Luo's avatar
      bpf/selftests: Test for bpf_per_cpu_ptr() and bpf_this_cpu_ptr() · 00dc73e4
      Hao Luo authored
      Test bpf_per_cpu_ptr() and bpf_this_cpu_ptr(). Test two paths in the
      kernel. If the base pointer points to a struct, the returned reg is
      of type PTR_TO_BTF_ID. Direct pointer dereference can be applied on
      the returned variable. If the base pointer isn't a struct, the
      returned reg is of type PTR_TO_MEM, which also supports direct pointer
      dereference.
      Signed-off-by: default avatarHao Luo <haoluo@google.com>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Acked-by: default avatarAndrii Nakryiko <andriin@fb.com>
      Link: https://lore.kernel.org/bpf/20200929235049.2533242-7-haoluo@google.com
      00dc73e4
    • Hao Luo's avatar
      bpf: Introducte bpf_this_cpu_ptr() · 63d9b80d
      Hao Luo authored
      Add bpf_this_cpu_ptr() to help access percpu var on this cpu. This
      helper always returns a valid pointer, therefore no need to check
      returned value for NULL. Also note that all programs run with
      preemption disabled, which means that the returned pointer is stable
      during all the execution of the program.
      Signed-off-by: default avatarHao Luo <haoluo@google.com>
      Signed-off-by: default avatarAlexei Starovoitov <ast@kernel.org>
      Acked-by: default avatarAndrii Nakryiko <andriin@fb.com>
      Link: https://lore.kernel.org/bpf/20200929235049.2533242-6-haoluo@google.com
      63d9b80d