1 /* SPDX-License-Identifier: GPL-2.0-only */ 2 /* Copyright (c) 2011-2014 PLUMgrid, http://plumgrid.com 3 */ 4 #ifndef _LINUX_BPF_H 5 #define _LINUX_BPF_H 1 6 7 #include <uapi/linux/bpf.h> 8 9 #include <linux/workqueue.h> 10 #include <linux/file.h> 11 #include <linux/percpu.h> 12 #include <linux/err.h> 13 #include <linux/rbtree_latch.h> 14 #include <linux/numa.h> 15 #include <linux/mm_types.h> 16 #include <linux/wait.h> 17 #include <linux/u64_stats_sync.h> 18 #include <linux/refcount.h> 19 #include <linux/mutex.h> 20 #include <linux/module.h> 21 #include <linux/kallsyms.h> 22 #include <linux/capability.h> 23 24 struct bpf_verifier_env; 25 struct bpf_verifier_log; 26 struct perf_event; 27 struct bpf_prog; 28 struct bpf_prog_aux; 29 struct bpf_map; 30 struct sock; 31 struct seq_file; 32 struct btf; 33 struct btf_type; 34 struct exception_table_entry; 35 struct seq_operations; 36 37 extern struct idr btf_idr; 38 extern spinlock_t btf_idr_lock; 39 40 /* map is generic key/value storage optionally accesible by eBPF programs */ 41 struct bpf_map_ops { 42 /* funcs callable from userspace (via syscall) */ 43 int (*map_alloc_check)(union bpf_attr *attr); 44 struct bpf_map *(*map_alloc)(union bpf_attr *attr); 45 void (*map_release)(struct bpf_map *map, struct file *map_file); 46 void (*map_free)(struct bpf_map *map); 47 int (*map_get_next_key)(struct bpf_map *map, void *key, void *next_key); 48 void (*map_release_uref)(struct bpf_map *map); 49 void *(*map_lookup_elem_sys_only)(struct bpf_map *map, void *key); 50 int (*map_lookup_batch)(struct bpf_map *map, const union bpf_attr *attr, 51 union bpf_attr __user *uattr); 52 int (*map_lookup_and_delete_batch)(struct bpf_map *map, 53 const union bpf_attr *attr, 54 union bpf_attr __user *uattr); 55 int (*map_update_batch)(struct bpf_map *map, const union bpf_attr *attr, 56 union bpf_attr __user *uattr); 57 int (*map_delete_batch)(struct bpf_map *map, const union bpf_attr *attr, 58 union bpf_attr __user *uattr); 59 60 /* funcs callable from userspace and from eBPF programs */ 61 void *(*map_lookup_elem)(struct bpf_map *map, void *key); 62 int (*map_update_elem)(struct bpf_map *map, void *key, void *value, u64 flags); 63 int (*map_delete_elem)(struct bpf_map *map, void *key); 64 int (*map_push_elem)(struct bpf_map *map, void *value, u64 flags); 65 int (*map_pop_elem)(struct bpf_map *map, void *value); 66 int (*map_peek_elem)(struct bpf_map *map, void *value); 67 68 /* funcs called by prog_array and perf_event_array map */ 69 void *(*map_fd_get_ptr)(struct bpf_map *map, struct file *map_file, 70 int fd); 71 void (*map_fd_put_ptr)(void *ptr); 72 u32 (*map_gen_lookup)(struct bpf_map *map, struct bpf_insn *insn_buf); 73 u32 (*map_fd_sys_lookup_elem)(void *ptr); 74 void (*map_seq_show_elem)(struct bpf_map *map, void *key, 75 struct seq_file *m); 76 int (*map_check_btf)(const struct bpf_map *map, 77 const struct btf *btf, 78 const struct btf_type *key_type, 79 const struct btf_type *value_type); 80 81 /* Prog poke tracking helpers. */ 82 int (*map_poke_track)(struct bpf_map *map, struct bpf_prog_aux *aux); 83 void (*map_poke_untrack)(struct bpf_map *map, struct bpf_prog_aux *aux); 84 void (*map_poke_run)(struct bpf_map *map, u32 key, struct bpf_prog *old, 85 struct bpf_prog *new); 86 87 /* Direct value access helpers. */ 88 int (*map_direct_value_addr)(const struct bpf_map *map, 89 u64 *imm, u32 off); 90 int (*map_direct_value_meta)(const struct bpf_map *map, 91 u64 imm, u32 *off); 92 int (*map_mmap)(struct bpf_map *map, struct vm_area_struct *vma); 93 __poll_t (*map_poll)(struct bpf_map *map, struct file *filp, 94 struct poll_table_struct *pts); 95 }; 96 97 struct bpf_map_memory { 98 u32 pages; 99 struct user_struct *user; 100 }; 101 102 struct bpf_map { 103 /* The first two cachelines with read-mostly members of which some 104 * are also accessed in fast-path (e.g. ops, max_entries). 105 */ 106 const struct bpf_map_ops *ops ____cacheline_aligned; 107 struct bpf_map *inner_map_meta; 108 #ifdef CONFIG_SECURITY 109 void *security; 110 #endif 111 enum bpf_map_type map_type; 112 u32 key_size; 113 u32 value_size; 114 u32 max_entries; 115 u32 map_flags; 116 int spin_lock_off; /* >=0 valid offset, <0 error */ 117 u32 id; 118 int numa_node; 119 u32 btf_key_type_id; 120 u32 btf_value_type_id; 121 struct btf *btf; 122 struct bpf_map_memory memory; 123 char name[BPF_OBJ_NAME_LEN]; 124 u32 btf_vmlinux_value_type_id; 125 bool bypass_spec_v1; 126 bool frozen; /* write-once; write-protected by freeze_mutex */ 127 /* 22 bytes hole */ 128 129 /* The 3rd and 4th cacheline with misc members to avoid false sharing 130 * particularly with refcounting. 131 */ 132 atomic64_t refcnt ____cacheline_aligned; 133 atomic64_t usercnt; 134 struct work_struct work; 135 struct mutex freeze_mutex; 136 u64 writecnt; /* writable mmap cnt; protected by freeze_mutex */ 137 }; 138 139 static inline bool map_value_has_spin_lock(const struct bpf_map *map) 140 { 141 return map->spin_lock_off >= 0; 142 } 143 144 static inline void check_and_init_map_lock(struct bpf_map *map, void *dst) 145 { 146 if (likely(!map_value_has_spin_lock(map))) 147 return; 148 *(struct bpf_spin_lock *)(dst + map->spin_lock_off) = 149 (struct bpf_spin_lock){}; 150 } 151 152 /* copy everything but bpf_spin_lock */ 153 static inline void copy_map_value(struct bpf_map *map, void *dst, void *src) 154 { 155 if (unlikely(map_value_has_spin_lock(map))) { 156 u32 off = map->spin_lock_off; 157 158 memcpy(dst, src, off); 159 memcpy(dst + off + sizeof(struct bpf_spin_lock), 160 src + off + sizeof(struct bpf_spin_lock), 161 map->value_size - off - sizeof(struct bpf_spin_lock)); 162 } else { 163 memcpy(dst, src, map->value_size); 164 } 165 } 166 void copy_map_value_locked(struct bpf_map *map, void *dst, void *src, 167 bool lock_src); 168 int bpf_obj_name_cpy(char *dst, const char *src, unsigned int size); 169 170 struct bpf_offload_dev; 171 struct bpf_offloaded_map; 172 173 struct bpf_map_dev_ops { 174 int (*map_get_next_key)(struct bpf_offloaded_map *map, 175 void *key, void *next_key); 176 int (*map_lookup_elem)(struct bpf_offloaded_map *map, 177 void *key, void *value); 178 int (*map_update_elem)(struct bpf_offloaded_map *map, 179 void *key, void *value, u64 flags); 180 int (*map_delete_elem)(struct bpf_offloaded_map *map, void *key); 181 }; 182 183 struct bpf_offloaded_map { 184 struct bpf_map map; 185 struct net_device *netdev; 186 const struct bpf_map_dev_ops *dev_ops; 187 void *dev_priv; 188 struct list_head offloads; 189 }; 190 191 static inline struct bpf_offloaded_map *map_to_offmap(struct bpf_map *map) 192 { 193 return container_of(map, struct bpf_offloaded_map, map); 194 } 195 196 static inline bool bpf_map_offload_neutral(const struct bpf_map *map) 197 { 198 return map->map_type == BPF_MAP_TYPE_PERF_EVENT_ARRAY; 199 } 200 201 static inline bool bpf_map_support_seq_show(const struct bpf_map *map) 202 { 203 return (map->btf_value_type_id || map->btf_vmlinux_value_type_id) && 204 map->ops->map_seq_show_elem; 205 } 206 207 int map_check_no_btf(const struct bpf_map *map, 208 const struct btf *btf, 209 const struct btf_type *key_type, 210 const struct btf_type *value_type); 211 212 extern const struct bpf_map_ops bpf_map_offload_ops; 213 214 /* function argument constraints */ 215 enum bpf_arg_type { 216 ARG_DONTCARE = 0, /* unused argument in helper function */ 217 218 /* the following constraints used to prototype 219 * bpf_map_lookup/update/delete_elem() functions 220 */ 221 ARG_CONST_MAP_PTR, /* const argument used as pointer to bpf_map */ 222 ARG_PTR_TO_MAP_KEY, /* pointer to stack used as map key */ 223 ARG_PTR_TO_MAP_VALUE, /* pointer to stack used as map value */ 224 ARG_PTR_TO_UNINIT_MAP_VALUE, /* pointer to valid memory used to store a map value */ 225 ARG_PTR_TO_MAP_VALUE_OR_NULL, /* pointer to stack used as map value or NULL */ 226 227 /* the following constraints used to prototype bpf_memcmp() and other 228 * functions that access data on eBPF program stack 229 */ 230 ARG_PTR_TO_MEM, /* pointer to valid memory (stack, packet, map value) */ 231 ARG_PTR_TO_MEM_OR_NULL, /* pointer to valid memory or NULL */ 232 ARG_PTR_TO_UNINIT_MEM, /* pointer to memory does not need to be initialized, 233 * helper function must fill all bytes or clear 234 * them in error case. 235 */ 236 237 ARG_CONST_SIZE, /* number of bytes accessed from memory */ 238 ARG_CONST_SIZE_OR_ZERO, /* number of bytes accessed from memory or 0 */ 239 240 ARG_PTR_TO_CTX, /* pointer to context */ 241 ARG_PTR_TO_CTX_OR_NULL, /* pointer to context or NULL */ 242 ARG_ANYTHING, /* any (initialized) argument is ok */ 243 ARG_PTR_TO_SPIN_LOCK, /* pointer to bpf_spin_lock */ 244 ARG_PTR_TO_SOCK_COMMON, /* pointer to sock_common */ 245 ARG_PTR_TO_INT, /* pointer to int */ 246 ARG_PTR_TO_LONG, /* pointer to long */ 247 ARG_PTR_TO_SOCKET, /* pointer to bpf_sock (fullsock) */ 248 ARG_PTR_TO_BTF_ID, /* pointer to in-kernel struct */ 249 ARG_PTR_TO_ALLOC_MEM, /* pointer to dynamically allocated memory */ 250 ARG_PTR_TO_ALLOC_MEM_OR_NULL, /* pointer to dynamically allocated memory or NULL */ 251 ARG_CONST_ALLOC_SIZE_OR_ZERO, /* number of allocated bytes requested */ 252 }; 253 254 /* type of values returned from helper functions */ 255 enum bpf_return_type { 256 RET_INTEGER, /* function returns integer */ 257 RET_VOID, /* function doesn't return anything */ 258 RET_PTR_TO_MAP_VALUE, /* returns a pointer to map elem value */ 259 RET_PTR_TO_MAP_VALUE_OR_NULL, /* returns a pointer to map elem value or NULL */ 260 RET_PTR_TO_SOCKET_OR_NULL, /* returns a pointer to a socket or NULL */ 261 RET_PTR_TO_TCP_SOCK_OR_NULL, /* returns a pointer to a tcp_sock or NULL */ 262 RET_PTR_TO_SOCK_COMMON_OR_NULL, /* returns a pointer to a sock_common or NULL */ 263 RET_PTR_TO_ALLOC_MEM_OR_NULL, /* returns a pointer to dynamically allocated memory or NULL */ 264 }; 265 266 /* eBPF function prototype used by verifier to allow BPF_CALLs from eBPF programs 267 * to in-kernel helper functions and for adjusting imm32 field in BPF_CALL 268 * instructions after verifying 269 */ 270 struct bpf_func_proto { 271 u64 (*func)(u64 r1, u64 r2, u64 r3, u64 r4, u64 r5); 272 bool gpl_only; 273 bool pkt_access; 274 enum bpf_return_type ret_type; 275 union { 276 struct { 277 enum bpf_arg_type arg1_type; 278 enum bpf_arg_type arg2_type; 279 enum bpf_arg_type arg3_type; 280 enum bpf_arg_type arg4_type; 281 enum bpf_arg_type arg5_type; 282 }; 283 enum bpf_arg_type arg_type[5]; 284 }; 285 int *btf_id; /* BTF ids of arguments */ 286 }; 287 288 /* bpf_context is intentionally undefined structure. Pointer to bpf_context is 289 * the first argument to eBPF programs. 290 * For socket filters: 'struct bpf_context *' == 'struct sk_buff *' 291 */ 292 struct bpf_context; 293 294 enum bpf_access_type { 295 BPF_READ = 1, 296 BPF_WRITE = 2 297 }; 298 299 /* types of values stored in eBPF registers */ 300 /* Pointer types represent: 301 * pointer 302 * pointer + imm 303 * pointer + (u16) var 304 * pointer + (u16) var + imm 305 * if (range > 0) then [ptr, ptr + range - off) is safe to access 306 * if (id > 0) means that some 'var' was added 307 * if (off > 0) means that 'imm' was added 308 */ 309 enum bpf_reg_type { 310 NOT_INIT = 0, /* nothing was written into register */ 311 SCALAR_VALUE, /* reg doesn't contain a valid pointer */ 312 PTR_TO_CTX, /* reg points to bpf_context */ 313 CONST_PTR_TO_MAP, /* reg points to struct bpf_map */ 314 PTR_TO_MAP_VALUE, /* reg points to map element value */ 315 PTR_TO_MAP_VALUE_OR_NULL,/* points to map elem value or NULL */ 316 PTR_TO_STACK, /* reg == frame_pointer + offset */ 317 PTR_TO_PACKET_META, /* skb->data - meta_len */ 318 PTR_TO_PACKET, /* reg points to skb->data */ 319 PTR_TO_PACKET_END, /* skb->data + headlen */ 320 PTR_TO_FLOW_KEYS, /* reg points to bpf_flow_keys */ 321 PTR_TO_SOCKET, /* reg points to struct bpf_sock */ 322 PTR_TO_SOCKET_OR_NULL, /* reg points to struct bpf_sock or NULL */ 323 PTR_TO_SOCK_COMMON, /* reg points to sock_common */ 324 PTR_TO_SOCK_COMMON_OR_NULL, /* reg points to sock_common or NULL */ 325 PTR_TO_TCP_SOCK, /* reg points to struct tcp_sock */ 326 PTR_TO_TCP_SOCK_OR_NULL, /* reg points to struct tcp_sock or NULL */ 327 PTR_TO_TP_BUFFER, /* reg points to a writable raw tp's buffer */ 328 PTR_TO_XDP_SOCK, /* reg points to struct xdp_sock */ 329 PTR_TO_BTF_ID, /* reg points to kernel struct */ 330 PTR_TO_BTF_ID_OR_NULL, /* reg points to kernel struct or NULL */ 331 PTR_TO_MEM, /* reg points to valid memory region */ 332 PTR_TO_MEM_OR_NULL, /* reg points to valid memory region or NULL */ 333 }; 334 335 /* The information passed from prog-specific *_is_valid_access 336 * back to the verifier. 337 */ 338 struct bpf_insn_access_aux { 339 enum bpf_reg_type reg_type; 340 union { 341 int ctx_field_size; 342 u32 btf_id; 343 }; 344 struct bpf_verifier_log *log; /* for verbose logs */ 345 }; 346 347 static inline void 348 bpf_ctx_record_field_size(struct bpf_insn_access_aux *aux, u32 size) 349 { 350 aux->ctx_field_size = size; 351 } 352 353 struct bpf_prog_ops { 354 int (*test_run)(struct bpf_prog *prog, const union bpf_attr *kattr, 355 union bpf_attr __user *uattr); 356 }; 357 358 struct bpf_verifier_ops { 359 /* return eBPF function prototype for verification */ 360 const struct bpf_func_proto * 361 (*get_func_proto)(enum bpf_func_id func_id, 362 const struct bpf_prog *prog); 363 364 /* return true if 'size' wide access at offset 'off' within bpf_context 365 * with 'type' (read or write) is allowed 366 */ 367 bool (*is_valid_access)(int off, int size, enum bpf_access_type type, 368 const struct bpf_prog *prog, 369 struct bpf_insn_access_aux *info); 370 int (*gen_prologue)(struct bpf_insn *insn, bool direct_write, 371 const struct bpf_prog *prog); 372 int (*gen_ld_abs)(const struct bpf_insn *orig, 373 struct bpf_insn *insn_buf); 374 u32 (*convert_ctx_access)(enum bpf_access_type type, 375 const struct bpf_insn *src, 376 struct bpf_insn *dst, 377 struct bpf_prog *prog, u32 *target_size); 378 int (*btf_struct_access)(struct bpf_verifier_log *log, 379 const struct btf_type *t, int off, int size, 380 enum bpf_access_type atype, 381 u32 *next_btf_id); 382 }; 383 384 struct bpf_prog_offload_ops { 385 /* verifier basic callbacks */ 386 int (*insn_hook)(struct bpf_verifier_env *env, 387 int insn_idx, int prev_insn_idx); 388 int (*finalize)(struct bpf_verifier_env *env); 389 /* verifier optimization callbacks (called after .finalize) */ 390 int (*replace_insn)(struct bpf_verifier_env *env, u32 off, 391 struct bpf_insn *insn); 392 int (*remove_insns)(struct bpf_verifier_env *env, u32 off, u32 cnt); 393 /* program management callbacks */ 394 int (*prepare)(struct bpf_prog *prog); 395 int (*translate)(struct bpf_prog *prog); 396 void (*destroy)(struct bpf_prog *prog); 397 }; 398 399 struct bpf_prog_offload { 400 struct bpf_prog *prog; 401 struct net_device *netdev; 402 struct bpf_offload_dev *offdev; 403 void *dev_priv; 404 struct list_head offloads; 405 bool dev_state; 406 bool opt_failed; 407 void *jited_image; 408 u32 jited_len; 409 }; 410 411 enum bpf_cgroup_storage_type { 412 BPF_CGROUP_STORAGE_SHARED, 413 BPF_CGROUP_STORAGE_PERCPU, 414 __BPF_CGROUP_STORAGE_MAX 415 }; 416 417 #define MAX_BPF_CGROUP_STORAGE_TYPE __BPF_CGROUP_STORAGE_MAX 418 419 /* The longest tracepoint has 12 args. 420 * See include/trace/bpf_probe.h 421 */ 422 #define MAX_BPF_FUNC_ARGS 12 423 424 struct bpf_prog_stats { 425 u64 cnt; 426 u64 nsecs; 427 struct u64_stats_sync syncp; 428 } __aligned(2 * sizeof(u64)); 429 430 struct btf_func_model { 431 u8 ret_size; 432 u8 nr_args; 433 u8 arg_size[MAX_BPF_FUNC_ARGS]; 434 }; 435 436 /* Restore arguments before returning from trampoline to let original function 437 * continue executing. This flag is used for fentry progs when there are no 438 * fexit progs. 439 */ 440 #define BPF_TRAMP_F_RESTORE_REGS BIT(0) 441 /* Call original function after fentry progs, but before fexit progs. 442 * Makes sense for fentry/fexit, normal calls and indirect calls. 443 */ 444 #define BPF_TRAMP_F_CALL_ORIG BIT(1) 445 /* Skip current frame and return to parent. Makes sense for fentry/fexit 446 * programs only. Should not be used with normal calls and indirect calls. 447 */ 448 #define BPF_TRAMP_F_SKIP_FRAME BIT(2) 449 450 /* Each call __bpf_prog_enter + call bpf_func + call __bpf_prog_exit is ~50 451 * bytes on x86. Pick a number to fit into BPF_IMAGE_SIZE / 2 452 */ 453 #define BPF_MAX_TRAMP_PROGS 40 454 455 struct bpf_tramp_progs { 456 struct bpf_prog *progs[BPF_MAX_TRAMP_PROGS]; 457 int nr_progs; 458 }; 459 460 /* Different use cases for BPF trampoline: 461 * 1. replace nop at the function entry (kprobe equivalent) 462 * flags = BPF_TRAMP_F_RESTORE_REGS 463 * fentry = a set of programs to run before returning from trampoline 464 * 465 * 2. replace nop at the function entry (kprobe + kretprobe equivalent) 466 * flags = BPF_TRAMP_F_CALL_ORIG | BPF_TRAMP_F_SKIP_FRAME 467 * orig_call = fentry_ip + MCOUNT_INSN_SIZE 468 * fentry = a set of program to run before calling original function 469 * fexit = a set of program to run after original function 470 * 471 * 3. replace direct call instruction anywhere in the function body 472 * or assign a function pointer for indirect call (like tcp_congestion_ops->cong_avoid) 473 * With flags = 0 474 * fentry = a set of programs to run before returning from trampoline 475 * With flags = BPF_TRAMP_F_CALL_ORIG 476 * orig_call = original callback addr or direct function addr 477 * fentry = a set of program to run before calling original function 478 * fexit = a set of program to run after original function 479 */ 480 int arch_prepare_bpf_trampoline(void *image, void *image_end, 481 const struct btf_func_model *m, u32 flags, 482 struct bpf_tramp_progs *tprogs, 483 void *orig_call); 484 /* these two functions are called from generated trampoline */ 485 u64 notrace __bpf_prog_enter(void); 486 void notrace __bpf_prog_exit(struct bpf_prog *prog, u64 start); 487 488 struct bpf_ksym { 489 unsigned long start; 490 unsigned long end; 491 char name[KSYM_NAME_LEN]; 492 struct list_head lnode; 493 struct latch_tree_node tnode; 494 bool prog; 495 }; 496 497 enum bpf_tramp_prog_type { 498 BPF_TRAMP_FENTRY, 499 BPF_TRAMP_FEXIT, 500 BPF_TRAMP_MODIFY_RETURN, 501 BPF_TRAMP_MAX, 502 BPF_TRAMP_REPLACE, /* more than MAX */ 503 }; 504 505 struct bpf_trampoline { 506 /* hlist for trampoline_table */ 507 struct hlist_node hlist; 508 /* serializes access to fields of this trampoline */ 509 struct mutex mutex; 510 refcount_t refcnt; 511 u64 key; 512 struct { 513 struct btf_func_model model; 514 void *addr; 515 bool ftrace_managed; 516 } func; 517 /* if !NULL this is BPF_PROG_TYPE_EXT program that extends another BPF 518 * program by replacing one of its functions. func.addr is the address 519 * of the function it replaced. 520 */ 521 struct bpf_prog *extension_prog; 522 /* list of BPF programs using this trampoline */ 523 struct hlist_head progs_hlist[BPF_TRAMP_MAX]; 524 /* Number of attached programs. A counter per kind. */ 525 int progs_cnt[BPF_TRAMP_MAX]; 526 /* Executable image of trampoline */ 527 void *image; 528 u64 selector; 529 struct bpf_ksym ksym; 530 }; 531 532 #define BPF_DISPATCHER_MAX 48 /* Fits in 2048B */ 533 534 struct bpf_dispatcher_prog { 535 struct bpf_prog *prog; 536 refcount_t users; 537 }; 538 539 struct bpf_dispatcher { 540 /* dispatcher mutex */ 541 struct mutex mutex; 542 void *func; 543 struct bpf_dispatcher_prog progs[BPF_DISPATCHER_MAX]; 544 int num_progs; 545 void *image; 546 u32 image_off; 547 struct bpf_ksym ksym; 548 }; 549 550 static __always_inline unsigned int bpf_dispatcher_nop_func( 551 const void *ctx, 552 const struct bpf_insn *insnsi, 553 unsigned int (*bpf_func)(const void *, 554 const struct bpf_insn *)) 555 { 556 return bpf_func(ctx, insnsi); 557 } 558 #ifdef CONFIG_BPF_JIT 559 struct bpf_trampoline *bpf_trampoline_lookup(u64 key); 560 int bpf_trampoline_link_prog(struct bpf_prog *prog); 561 int bpf_trampoline_unlink_prog(struct bpf_prog *prog); 562 void bpf_trampoline_put(struct bpf_trampoline *tr); 563 #define BPF_DISPATCHER_INIT(_name) { \ 564 .mutex = __MUTEX_INITIALIZER(_name.mutex), \ 565 .func = &_name##_func, \ 566 .progs = {}, \ 567 .num_progs = 0, \ 568 .image = NULL, \ 569 .image_off = 0, \ 570 .ksym = { \ 571 .name = #_name, \ 572 .lnode = LIST_HEAD_INIT(_name.ksym.lnode), \ 573 }, \ 574 } 575 576 #define DEFINE_BPF_DISPATCHER(name) \ 577 noinline unsigned int bpf_dispatcher_##name##_func( \ 578 const void *ctx, \ 579 const struct bpf_insn *insnsi, \ 580 unsigned int (*bpf_func)(const void *, \ 581 const struct bpf_insn *)) \ 582 { \ 583 return bpf_func(ctx, insnsi); \ 584 } \ 585 EXPORT_SYMBOL(bpf_dispatcher_##name##_func); \ 586 struct bpf_dispatcher bpf_dispatcher_##name = \ 587 BPF_DISPATCHER_INIT(bpf_dispatcher_##name); 588 #define DECLARE_BPF_DISPATCHER(name) \ 589 unsigned int bpf_dispatcher_##name##_func( \ 590 const void *ctx, \ 591 const struct bpf_insn *insnsi, \ 592 unsigned int (*bpf_func)(const void *, \ 593 const struct bpf_insn *)); \ 594 extern struct bpf_dispatcher bpf_dispatcher_##name; 595 #define BPF_DISPATCHER_FUNC(name) bpf_dispatcher_##name##_func 596 #define BPF_DISPATCHER_PTR(name) (&bpf_dispatcher_##name) 597 void bpf_dispatcher_change_prog(struct bpf_dispatcher *d, struct bpf_prog *from, 598 struct bpf_prog *to); 599 /* Called only from JIT-enabled code, so there's no need for stubs. */ 600 void *bpf_jit_alloc_exec_page(void); 601 void bpf_image_ksym_add(void *data, struct bpf_ksym *ksym); 602 void bpf_image_ksym_del(struct bpf_ksym *ksym); 603 void bpf_ksym_add(struct bpf_ksym *ksym); 604 void bpf_ksym_del(struct bpf_ksym *ksym); 605 #else 606 static inline struct bpf_trampoline *bpf_trampoline_lookup(u64 key) 607 { 608 return NULL; 609 } 610 static inline int bpf_trampoline_link_prog(struct bpf_prog *prog) 611 { 612 return -ENOTSUPP; 613 } 614 static inline int bpf_trampoline_unlink_prog(struct bpf_prog *prog) 615 { 616 return -ENOTSUPP; 617 } 618 static inline void bpf_trampoline_put(struct bpf_trampoline *tr) {} 619 #define DEFINE_BPF_DISPATCHER(name) 620 #define DECLARE_BPF_DISPATCHER(name) 621 #define BPF_DISPATCHER_FUNC(name) bpf_dispatcher_nop_func 622 #define BPF_DISPATCHER_PTR(name) NULL 623 static inline void bpf_dispatcher_change_prog(struct bpf_dispatcher *d, 624 struct bpf_prog *from, 625 struct bpf_prog *to) {} 626 static inline bool is_bpf_image_address(unsigned long address) 627 { 628 return false; 629 } 630 #endif 631 632 struct bpf_func_info_aux { 633 u16 linkage; 634 bool unreliable; 635 }; 636 637 enum bpf_jit_poke_reason { 638 BPF_POKE_REASON_TAIL_CALL, 639 }; 640 641 /* Descriptor of pokes pointing /into/ the JITed image. */ 642 struct bpf_jit_poke_descriptor { 643 void *ip; 644 union { 645 struct { 646 struct bpf_map *map; 647 u32 key; 648 } tail_call; 649 }; 650 bool ip_stable; 651 u8 adj_off; 652 u16 reason; 653 }; 654 655 /* reg_type info for ctx arguments */ 656 struct bpf_ctx_arg_aux { 657 u32 offset; 658 enum bpf_reg_type reg_type; 659 }; 660 661 struct bpf_prog_aux { 662 atomic64_t refcnt; 663 u32 used_map_cnt; 664 u32 max_ctx_offset; 665 u32 max_pkt_offset; 666 u32 max_tp_access; 667 u32 stack_depth; 668 u32 id; 669 u32 func_cnt; /* used by non-func prog as the number of func progs */ 670 u32 func_idx; /* 0 for non-func prog, the index in func array for func prog */ 671 u32 attach_btf_id; /* in-kernel BTF type id to attach to */ 672 u32 ctx_arg_info_size; 673 const struct bpf_ctx_arg_aux *ctx_arg_info; 674 struct bpf_prog *linked_prog; 675 bool verifier_zext; /* Zero extensions has been inserted by verifier. */ 676 bool offload_requested; 677 bool attach_btf_trace; /* true if attaching to BTF-enabled raw tp */ 678 bool func_proto_unreliable; 679 enum bpf_tramp_prog_type trampoline_prog_type; 680 struct bpf_trampoline *trampoline; 681 struct hlist_node tramp_hlist; 682 /* BTF_KIND_FUNC_PROTO for valid attach_btf_id */ 683 const struct btf_type *attach_func_proto; 684 /* function name for valid attach_btf_id */ 685 const char *attach_func_name; 686 struct bpf_prog **func; 687 void *jit_data; /* JIT specific data. arch dependent */ 688 struct bpf_jit_poke_descriptor *poke_tab; 689 u32 size_poke_tab; 690 struct bpf_ksym ksym; 691 const struct bpf_prog_ops *ops; 692 struct bpf_map **used_maps; 693 struct bpf_prog *prog; 694 struct user_struct *user; 695 u64 load_time; /* ns since boottime */ 696 struct bpf_map *cgroup_storage[MAX_BPF_CGROUP_STORAGE_TYPE]; 697 char name[BPF_OBJ_NAME_LEN]; 698 #ifdef CONFIG_SECURITY 699 void *security; 700 #endif 701 struct bpf_prog_offload *offload; 702 struct btf *btf; 703 struct bpf_func_info *func_info; 704 struct bpf_func_info_aux *func_info_aux; 705 /* bpf_line_info loaded from userspace. linfo->insn_off 706 * has the xlated insn offset. 707 * Both the main and sub prog share the same linfo. 708 * The subprog can access its first linfo by 709 * using the linfo_idx. 710 */ 711 struct bpf_line_info *linfo; 712 /* jited_linfo is the jited addr of the linfo. It has a 713 * one to one mapping to linfo: 714 * jited_linfo[i] is the jited addr for the linfo[i]->insn_off. 715 * Both the main and sub prog share the same jited_linfo. 716 * The subprog can access its first jited_linfo by 717 * using the linfo_idx. 718 */ 719 void **jited_linfo; 720 u32 func_info_cnt; 721 u32 nr_linfo; 722 /* subprog can use linfo_idx to access its first linfo and 723 * jited_linfo. 724 * main prog always has linfo_idx == 0 725 */ 726 u32 linfo_idx; 727 u32 num_exentries; 728 struct exception_table_entry *extable; 729 struct bpf_prog_stats __percpu *stats; 730 union { 731 struct work_struct work; 732 struct rcu_head rcu; 733 }; 734 }; 735 736 struct bpf_array_aux { 737 /* 'Ownership' of prog array is claimed by the first program that 738 * is going to use this map or by the first program which FD is 739 * stored in the map to make sure that all callers and callees have 740 * the same prog type and JITed flag. 741 */ 742 enum bpf_prog_type type; 743 bool jited; 744 /* Programs with direct jumps into programs part of this array. */ 745 struct list_head poke_progs; 746 struct bpf_map *map; 747 struct mutex poke_mutex; 748 struct work_struct work; 749 }; 750 751 struct bpf_struct_ops_value; 752 struct btf_type; 753 struct btf_member; 754 755 #define BPF_STRUCT_OPS_MAX_NR_MEMBERS 64 756 struct bpf_struct_ops { 757 const struct bpf_verifier_ops *verifier_ops; 758 int (*init)(struct btf *btf); 759 int (*check_member)(const struct btf_type *t, 760 const struct btf_member *member); 761 int (*init_member)(const struct btf_type *t, 762 const struct btf_member *member, 763 void *kdata, const void *udata); 764 int (*reg)(void *kdata); 765 void (*unreg)(void *kdata); 766 const struct btf_type *type; 767 const struct btf_type *value_type; 768 const char *name; 769 struct btf_func_model func_models[BPF_STRUCT_OPS_MAX_NR_MEMBERS]; 770 u32 type_id; 771 u32 value_id; 772 }; 773 774 #if defined(CONFIG_BPF_JIT) && defined(CONFIG_BPF_SYSCALL) 775 #define BPF_MODULE_OWNER ((void *)((0xeB9FUL << 2) + POISON_POINTER_DELTA)) 776 const struct bpf_struct_ops *bpf_struct_ops_find(u32 type_id); 777 void bpf_struct_ops_init(struct btf *btf, struct bpf_verifier_log *log); 778 bool bpf_struct_ops_get(const void *kdata); 779 void bpf_struct_ops_put(const void *kdata); 780 int bpf_struct_ops_map_sys_lookup_elem(struct bpf_map *map, void *key, 781 void *value); 782 static inline bool bpf_try_module_get(const void *data, struct module *owner) 783 { 784 if (owner == BPF_MODULE_OWNER) 785 return bpf_struct_ops_get(data); 786 else 787 return try_module_get(owner); 788 } 789 static inline void bpf_module_put(const void *data, struct module *owner) 790 { 791 if (owner == BPF_MODULE_OWNER) 792 bpf_struct_ops_put(data); 793 else 794 module_put(owner); 795 } 796 #else 797 static inline const struct bpf_struct_ops *bpf_struct_ops_find(u32 type_id) 798 { 799 return NULL; 800 } 801 static inline void bpf_struct_ops_init(struct btf *btf, 802 struct bpf_verifier_log *log) 803 { 804 } 805 static inline bool bpf_try_module_get(const void *data, struct module *owner) 806 { 807 return try_module_get(owner); 808 } 809 static inline void bpf_module_put(const void *data, struct module *owner) 810 { 811 module_put(owner); 812 } 813 static inline int bpf_struct_ops_map_sys_lookup_elem(struct bpf_map *map, 814 void *key, 815 void *value) 816 { 817 return -EINVAL; 818 } 819 #endif 820 821 struct bpf_array { 822 struct bpf_map map; 823 u32 elem_size; 824 u32 index_mask; 825 struct bpf_array_aux *aux; 826 union { 827 char value[0] __aligned(8); 828 void *ptrs[0] __aligned(8); 829 void __percpu *pptrs[0] __aligned(8); 830 }; 831 }; 832 833 #define BPF_COMPLEXITY_LIMIT_INSNS 1000000 /* yes. 1M insns */ 834 #define MAX_TAIL_CALL_CNT 32 835 836 #define BPF_F_ACCESS_MASK (BPF_F_RDONLY | \ 837 BPF_F_RDONLY_PROG | \ 838 BPF_F_WRONLY | \ 839 BPF_F_WRONLY_PROG) 840 841 #define BPF_MAP_CAN_READ BIT(0) 842 #define BPF_MAP_CAN_WRITE BIT(1) 843 844 static inline u32 bpf_map_flags_to_cap(struct bpf_map *map) 845 { 846 u32 access_flags = map->map_flags & (BPF_F_RDONLY_PROG | BPF_F_WRONLY_PROG); 847 848 /* Combination of BPF_F_RDONLY_PROG | BPF_F_WRONLY_PROG is 849 * not possible. 850 */ 851 if (access_flags & BPF_F_RDONLY_PROG) 852 return BPF_MAP_CAN_READ; 853 else if (access_flags & BPF_F_WRONLY_PROG) 854 return BPF_MAP_CAN_WRITE; 855 else 856 return BPF_MAP_CAN_READ | BPF_MAP_CAN_WRITE; 857 } 858 859 static inline bool bpf_map_flags_access_ok(u32 access_flags) 860 { 861 return (access_flags & (BPF_F_RDONLY_PROG | BPF_F_WRONLY_PROG)) != 862 (BPF_F_RDONLY_PROG | BPF_F_WRONLY_PROG); 863 } 864 865 struct bpf_event_entry { 866 struct perf_event *event; 867 struct file *perf_file; 868 struct file *map_file; 869 struct rcu_head rcu; 870 }; 871 872 bool bpf_prog_array_compatible(struct bpf_array *array, const struct bpf_prog *fp); 873 int bpf_prog_calc_tag(struct bpf_prog *fp); 874 const char *kernel_type_name(u32 btf_type_id); 875 876 const struct bpf_func_proto *bpf_get_trace_printk_proto(void); 877 878 typedef unsigned long (*bpf_ctx_copy_t)(void *dst, const void *src, 879 unsigned long off, unsigned long len); 880 typedef u32 (*bpf_convert_ctx_access_t)(enum bpf_access_type type, 881 const struct bpf_insn *src, 882 struct bpf_insn *dst, 883 struct bpf_prog *prog, 884 u32 *target_size); 885 886 u64 bpf_event_output(struct bpf_map *map, u64 flags, void *meta, u64 meta_size, 887 void *ctx, u64 ctx_size, bpf_ctx_copy_t ctx_copy); 888 889 /* an array of programs to be executed under rcu_lock. 890 * 891 * Typical usage: 892 * ret = BPF_PROG_RUN_ARRAY(&bpf_prog_array, ctx, BPF_PROG_RUN); 893 * 894 * the structure returned by bpf_prog_array_alloc() should be populated 895 * with program pointers and the last pointer must be NULL. 896 * The user has to keep refcnt on the program and make sure the program 897 * is removed from the array before bpf_prog_put(). 898 * The 'struct bpf_prog_array *' should only be replaced with xchg() 899 * since other cpus are walking the array of pointers in parallel. 900 */ 901 struct bpf_prog_array_item { 902 struct bpf_prog *prog; 903 struct bpf_cgroup_storage *cgroup_storage[MAX_BPF_CGROUP_STORAGE_TYPE]; 904 }; 905 906 struct bpf_prog_array { 907 struct rcu_head rcu; 908 struct bpf_prog_array_item items[]; 909 }; 910 911 struct bpf_prog_array *bpf_prog_array_alloc(u32 prog_cnt, gfp_t flags); 912 void bpf_prog_array_free(struct bpf_prog_array *progs); 913 int bpf_prog_array_length(struct bpf_prog_array *progs); 914 bool bpf_prog_array_is_empty(struct bpf_prog_array *array); 915 int bpf_prog_array_copy_to_user(struct bpf_prog_array *progs, 916 __u32 __user *prog_ids, u32 cnt); 917 918 void bpf_prog_array_delete_safe(struct bpf_prog_array *progs, 919 struct bpf_prog *old_prog); 920 int bpf_prog_array_copy_info(struct bpf_prog_array *array, 921 u32 *prog_ids, u32 request_cnt, 922 u32 *prog_cnt); 923 int bpf_prog_array_copy(struct bpf_prog_array *old_array, 924 struct bpf_prog *exclude_prog, 925 struct bpf_prog *include_prog, 926 struct bpf_prog_array **new_array); 927 928 #define __BPF_PROG_RUN_ARRAY(array, ctx, func, check_non_null) \ 929 ({ \ 930 struct bpf_prog_array_item *_item; \ 931 struct bpf_prog *_prog; \ 932 struct bpf_prog_array *_array; \ 933 u32 _ret = 1; \ 934 migrate_disable(); \ 935 rcu_read_lock(); \ 936 _array = rcu_dereference(array); \ 937 if (unlikely(check_non_null && !_array))\ 938 goto _out; \ 939 _item = &_array->items[0]; \ 940 while ((_prog = READ_ONCE(_item->prog))) { \ 941 bpf_cgroup_storage_set(_item->cgroup_storage); \ 942 _ret &= func(_prog, ctx); \ 943 _item++; \ 944 } \ 945 _out: \ 946 rcu_read_unlock(); \ 947 migrate_enable(); \ 948 _ret; \ 949 }) 950 951 /* To be used by __cgroup_bpf_run_filter_skb for EGRESS BPF progs 952 * so BPF programs can request cwr for TCP packets. 953 * 954 * Current cgroup skb programs can only return 0 or 1 (0 to drop the 955 * packet. This macro changes the behavior so the low order bit 956 * indicates whether the packet should be dropped (0) or not (1) 957 * and the next bit is a congestion notification bit. This could be 958 * used by TCP to call tcp_enter_cwr() 959 * 960 * Hence, new allowed return values of CGROUP EGRESS BPF programs are: 961 * 0: drop packet 962 * 1: keep packet 963 * 2: drop packet and cn 964 * 3: keep packet and cn 965 * 966 * This macro then converts it to one of the NET_XMIT or an error 967 * code that is then interpreted as drop packet (and no cn): 968 * 0: NET_XMIT_SUCCESS skb should be transmitted 969 * 1: NET_XMIT_DROP skb should be dropped and cn 970 * 2: NET_XMIT_CN skb should be transmitted and cn 971 * 3: -EPERM skb should be dropped 972 */ 973 #define BPF_PROG_CGROUP_INET_EGRESS_RUN_ARRAY(array, ctx, func) \ 974 ({ \ 975 struct bpf_prog_array_item *_item; \ 976 struct bpf_prog *_prog; \ 977 struct bpf_prog_array *_array; \ 978 u32 ret; \ 979 u32 _ret = 1; \ 980 u32 _cn = 0; \ 981 migrate_disable(); \ 982 rcu_read_lock(); \ 983 _array = rcu_dereference(array); \ 984 _item = &_array->items[0]; \ 985 while ((_prog = READ_ONCE(_item->prog))) { \ 986 bpf_cgroup_storage_set(_item->cgroup_storage); \ 987 ret = func(_prog, ctx); \ 988 _ret &= (ret & 1); \ 989 _cn |= (ret & 2); \ 990 _item++; \ 991 } \ 992 rcu_read_unlock(); \ 993 migrate_enable(); \ 994 if (_ret) \ 995 _ret = (_cn ? NET_XMIT_CN : NET_XMIT_SUCCESS); \ 996 else \ 997 _ret = (_cn ? NET_XMIT_DROP : -EPERM); \ 998 _ret; \ 999 }) 1000 1001 #define BPF_PROG_RUN_ARRAY(array, ctx, func) \ 1002 __BPF_PROG_RUN_ARRAY(array, ctx, func, false) 1003 1004 #define BPF_PROG_RUN_ARRAY_CHECK(array, ctx, func) \ 1005 __BPF_PROG_RUN_ARRAY(array, ctx, func, true) 1006 1007 #ifdef CONFIG_BPF_SYSCALL 1008 DECLARE_PER_CPU(int, bpf_prog_active); 1009 extern struct mutex bpf_stats_enabled_mutex; 1010 1011 /* 1012 * Block execution of BPF programs attached to instrumentation (perf, 1013 * kprobes, tracepoints) to prevent deadlocks on map operations as any of 1014 * these events can happen inside a region which holds a map bucket lock 1015 * and can deadlock on it. 1016 * 1017 * Use the preemption safe inc/dec variants on RT because migrate disable 1018 * is preemptible on RT and preemption in the middle of the RMW operation 1019 * might lead to inconsistent state. Use the raw variants for non RT 1020 * kernels as migrate_disable() maps to preempt_disable() so the slightly 1021 * more expensive save operation can be avoided. 1022 */ 1023 static inline void bpf_disable_instrumentation(void) 1024 { 1025 migrate_disable(); 1026 if (IS_ENABLED(CONFIG_PREEMPT_RT)) 1027 this_cpu_inc(bpf_prog_active); 1028 else 1029 __this_cpu_inc(bpf_prog_active); 1030 } 1031 1032 static inline void bpf_enable_instrumentation(void) 1033 { 1034 if (IS_ENABLED(CONFIG_PREEMPT_RT)) 1035 this_cpu_dec(bpf_prog_active); 1036 else 1037 __this_cpu_dec(bpf_prog_active); 1038 migrate_enable(); 1039 } 1040 1041 extern const struct file_operations bpf_map_fops; 1042 extern const struct file_operations bpf_prog_fops; 1043 extern const struct file_operations bpf_iter_fops; 1044 1045 #define BPF_PROG_TYPE(_id, _name, prog_ctx_type, kern_ctx_type) \ 1046 extern const struct bpf_prog_ops _name ## _prog_ops; \ 1047 extern const struct bpf_verifier_ops _name ## _verifier_ops; 1048 #define BPF_MAP_TYPE(_id, _ops) \ 1049 extern const struct bpf_map_ops _ops; 1050 #define BPF_LINK_TYPE(_id, _name) 1051 #include <linux/bpf_types.h> 1052 #undef BPF_PROG_TYPE 1053 #undef BPF_MAP_TYPE 1054 #undef BPF_LINK_TYPE 1055 1056 extern const struct bpf_prog_ops bpf_offload_prog_ops; 1057 extern const struct bpf_verifier_ops tc_cls_act_analyzer_ops; 1058 extern const struct bpf_verifier_ops xdp_analyzer_ops; 1059 1060 struct bpf_prog *bpf_prog_get(u32 ufd); 1061 struct bpf_prog *bpf_prog_get_type_dev(u32 ufd, enum bpf_prog_type type, 1062 bool attach_drv); 1063 void bpf_prog_add(struct bpf_prog *prog, int i); 1064 void bpf_prog_sub(struct bpf_prog *prog, int i); 1065 void bpf_prog_inc(struct bpf_prog *prog); 1066 struct bpf_prog * __must_check bpf_prog_inc_not_zero(struct bpf_prog *prog); 1067 void bpf_prog_put(struct bpf_prog *prog); 1068 int __bpf_prog_charge(struct user_struct *user, u32 pages); 1069 void __bpf_prog_uncharge(struct user_struct *user, u32 pages); 1070 void __bpf_free_used_maps(struct bpf_prog_aux *aux, 1071 struct bpf_map **used_maps, u32 len); 1072 1073 void bpf_prog_free_id(struct bpf_prog *prog, bool do_idr_lock); 1074 void bpf_map_free_id(struct bpf_map *map, bool do_idr_lock); 1075 1076 struct bpf_map *bpf_map_get(u32 ufd); 1077 struct bpf_map *bpf_map_get_with_uref(u32 ufd); 1078 struct bpf_map *__bpf_map_get(struct fd f); 1079 void bpf_map_inc(struct bpf_map *map); 1080 void bpf_map_inc_with_uref(struct bpf_map *map); 1081 struct bpf_map * __must_check bpf_map_inc_not_zero(struct bpf_map *map); 1082 void bpf_map_put_with_uref(struct bpf_map *map); 1083 void bpf_map_put(struct bpf_map *map); 1084 int bpf_map_charge_memlock(struct bpf_map *map, u32 pages); 1085 void bpf_map_uncharge_memlock(struct bpf_map *map, u32 pages); 1086 int bpf_map_charge_init(struct bpf_map_memory *mem, u64 size); 1087 void bpf_map_charge_finish(struct bpf_map_memory *mem); 1088 void bpf_map_charge_move(struct bpf_map_memory *dst, 1089 struct bpf_map_memory *src); 1090 void *bpf_map_area_alloc(u64 size, int numa_node); 1091 void *bpf_map_area_mmapable_alloc(u64 size, int numa_node); 1092 void bpf_map_area_free(void *base); 1093 void bpf_map_init_from_attr(struct bpf_map *map, union bpf_attr *attr); 1094 int generic_map_lookup_batch(struct bpf_map *map, 1095 const union bpf_attr *attr, 1096 union bpf_attr __user *uattr); 1097 int generic_map_update_batch(struct bpf_map *map, 1098 const union bpf_attr *attr, 1099 union bpf_attr __user *uattr); 1100 int generic_map_delete_batch(struct bpf_map *map, 1101 const union bpf_attr *attr, 1102 union bpf_attr __user *uattr); 1103 struct bpf_map *bpf_map_get_curr_or_next(u32 *id); 1104 1105 extern int sysctl_unprivileged_bpf_disabled; 1106 1107 static inline bool bpf_allow_ptr_leaks(void) 1108 { 1109 return perfmon_capable(); 1110 } 1111 1112 static inline bool bpf_bypass_spec_v1(void) 1113 { 1114 return perfmon_capable(); 1115 } 1116 1117 static inline bool bpf_bypass_spec_v4(void) 1118 { 1119 return perfmon_capable(); 1120 } 1121 1122 int bpf_map_new_fd(struct bpf_map *map, int flags); 1123 int bpf_prog_new_fd(struct bpf_prog *prog); 1124 1125 struct bpf_link { 1126 atomic64_t refcnt; 1127 u32 id; 1128 enum bpf_link_type type; 1129 const struct bpf_link_ops *ops; 1130 struct bpf_prog *prog; 1131 struct work_struct work; 1132 }; 1133 1134 struct bpf_link_primer { 1135 struct bpf_link *link; 1136 struct file *file; 1137 int fd; 1138 u32 id; 1139 }; 1140 1141 struct bpf_link_ops { 1142 void (*release)(struct bpf_link *link); 1143 void (*dealloc)(struct bpf_link *link); 1144 int (*update_prog)(struct bpf_link *link, struct bpf_prog *new_prog, 1145 struct bpf_prog *old_prog); 1146 void (*show_fdinfo)(const struct bpf_link *link, struct seq_file *seq); 1147 int (*fill_link_info)(const struct bpf_link *link, 1148 struct bpf_link_info *info); 1149 }; 1150 1151 void bpf_link_init(struct bpf_link *link, enum bpf_link_type type, 1152 const struct bpf_link_ops *ops, struct bpf_prog *prog); 1153 int bpf_link_prime(struct bpf_link *link, struct bpf_link_primer *primer); 1154 int bpf_link_settle(struct bpf_link_primer *primer); 1155 void bpf_link_cleanup(struct bpf_link_primer *primer); 1156 void bpf_link_inc(struct bpf_link *link); 1157 void bpf_link_put(struct bpf_link *link); 1158 int bpf_link_new_fd(struct bpf_link *link); 1159 struct file *bpf_link_new_file(struct bpf_link *link, int *reserved_fd); 1160 struct bpf_link *bpf_link_get_from_fd(u32 ufd); 1161 1162 int bpf_obj_pin_user(u32 ufd, const char __user *pathname); 1163 int bpf_obj_get_user(const char __user *pathname, int flags); 1164 1165 #define BPF_ITER_FUNC_PREFIX "bpf_iter_" 1166 #define DEFINE_BPF_ITER_FUNC(target, args...) \ 1167 extern int bpf_iter_ ## target(args); \ 1168 int __init bpf_iter_ ## target(args) { return 0; } 1169 1170 typedef int (*bpf_iter_init_seq_priv_t)(void *private_data); 1171 typedef void (*bpf_iter_fini_seq_priv_t)(void *private_data); 1172 1173 #define BPF_ITER_CTX_ARG_MAX 2 1174 struct bpf_iter_reg { 1175 const char *target; 1176 const struct seq_operations *seq_ops; 1177 bpf_iter_init_seq_priv_t init_seq_private; 1178 bpf_iter_fini_seq_priv_t fini_seq_private; 1179 u32 seq_priv_size; 1180 u32 ctx_arg_info_size; 1181 struct bpf_ctx_arg_aux ctx_arg_info[BPF_ITER_CTX_ARG_MAX]; 1182 }; 1183 1184 struct bpf_iter_meta { 1185 __bpf_md_ptr(struct seq_file *, seq); 1186 u64 session_id; 1187 u64 seq_num; 1188 }; 1189 1190 int bpf_iter_reg_target(const struct bpf_iter_reg *reg_info); 1191 void bpf_iter_unreg_target(const struct bpf_iter_reg *reg_info); 1192 bool bpf_iter_prog_supported(struct bpf_prog *prog); 1193 int bpf_iter_link_attach(const union bpf_attr *attr, struct bpf_prog *prog); 1194 int bpf_iter_new_fd(struct bpf_link *link); 1195 bool bpf_link_is_iter(struct bpf_link *link); 1196 struct bpf_prog *bpf_iter_get_info(struct bpf_iter_meta *meta, bool in_stop); 1197 int bpf_iter_run_prog(struct bpf_prog *prog, void *ctx); 1198 1199 int bpf_percpu_hash_copy(struct bpf_map *map, void *key, void *value); 1200 int bpf_percpu_array_copy(struct bpf_map *map, void *key, void *value); 1201 int bpf_percpu_hash_update(struct bpf_map *map, void *key, void *value, 1202 u64 flags); 1203 int bpf_percpu_array_update(struct bpf_map *map, void *key, void *value, 1204 u64 flags); 1205 1206 int bpf_stackmap_copy(struct bpf_map *map, void *key, void *value); 1207 1208 int bpf_fd_array_map_update_elem(struct bpf_map *map, struct file *map_file, 1209 void *key, void *value, u64 map_flags); 1210 int bpf_fd_array_map_lookup_elem(struct bpf_map *map, void *key, u32 *value); 1211 int bpf_fd_htab_map_update_elem(struct bpf_map *map, struct file *map_file, 1212 void *key, void *value, u64 map_flags); 1213 int bpf_fd_htab_map_lookup_elem(struct bpf_map *map, void *key, u32 *value); 1214 1215 int bpf_get_file_flag(int flags); 1216 int bpf_check_uarg_tail_zero(void __user *uaddr, size_t expected_size, 1217 size_t actual_size); 1218 1219 /* memcpy that is used with 8-byte aligned pointers, power-of-8 size and 1220 * forced to use 'long' read/writes to try to atomically copy long counters. 1221 * Best-effort only. No barriers here, since it _will_ race with concurrent 1222 * updates from BPF programs. Called from bpf syscall and mostly used with 1223 * size 8 or 16 bytes, so ask compiler to inline it. 1224 */ 1225 static inline void bpf_long_memcpy(void *dst, const void *src, u32 size) 1226 { 1227 const long *lsrc = src; 1228 long *ldst = dst; 1229 1230 size /= sizeof(long); 1231 while (size--) 1232 *ldst++ = *lsrc++; 1233 } 1234 1235 /* verify correctness of eBPF program */ 1236 int bpf_check(struct bpf_prog **fp, union bpf_attr *attr, 1237 union bpf_attr __user *uattr); 1238 void bpf_patch_call_args(struct bpf_insn *insn, u32 stack_depth); 1239 1240 /* Map specifics */ 1241 struct xdp_buff; 1242 struct sk_buff; 1243 1244 struct bpf_dtab_netdev *__dev_map_lookup_elem(struct bpf_map *map, u32 key); 1245 struct bpf_dtab_netdev *__dev_map_hash_lookup_elem(struct bpf_map *map, u32 key); 1246 void __dev_flush(void); 1247 int dev_xdp_enqueue(struct net_device *dev, struct xdp_buff *xdp, 1248 struct net_device *dev_rx); 1249 int dev_map_enqueue(struct bpf_dtab_netdev *dst, struct xdp_buff *xdp, 1250 struct net_device *dev_rx); 1251 int dev_map_generic_redirect(struct bpf_dtab_netdev *dst, struct sk_buff *skb, 1252 struct bpf_prog *xdp_prog); 1253 bool dev_map_can_have_prog(struct bpf_map *map); 1254 1255 struct bpf_cpu_map_entry *__cpu_map_lookup_elem(struct bpf_map *map, u32 key); 1256 void __cpu_map_flush(void); 1257 int cpu_map_enqueue(struct bpf_cpu_map_entry *rcpu, struct xdp_buff *xdp, 1258 struct net_device *dev_rx); 1259 1260 /* Return map's numa specified by userspace */ 1261 static inline int bpf_map_attr_numa_node(const union bpf_attr *attr) 1262 { 1263 return (attr->map_flags & BPF_F_NUMA_NODE) ? 1264 attr->numa_node : NUMA_NO_NODE; 1265 } 1266 1267 struct bpf_prog *bpf_prog_get_type_path(const char *name, enum bpf_prog_type type); 1268 int array_map_alloc_check(union bpf_attr *attr); 1269 1270 int bpf_prog_test_run_xdp(struct bpf_prog *prog, const union bpf_attr *kattr, 1271 union bpf_attr __user *uattr); 1272 int bpf_prog_test_run_skb(struct bpf_prog *prog, const union bpf_attr *kattr, 1273 union bpf_attr __user *uattr); 1274 int bpf_prog_test_run_tracing(struct bpf_prog *prog, 1275 const union bpf_attr *kattr, 1276 union bpf_attr __user *uattr); 1277 int bpf_prog_test_run_flow_dissector(struct bpf_prog *prog, 1278 const union bpf_attr *kattr, 1279 union bpf_attr __user *uattr); 1280 bool btf_ctx_access(int off, int size, enum bpf_access_type type, 1281 const struct bpf_prog *prog, 1282 struct bpf_insn_access_aux *info); 1283 int btf_struct_access(struct bpf_verifier_log *log, 1284 const struct btf_type *t, int off, int size, 1285 enum bpf_access_type atype, 1286 u32 *next_btf_id); 1287 int btf_resolve_helper_id(struct bpf_verifier_log *log, 1288 const struct bpf_func_proto *fn, int); 1289 1290 int btf_distill_func_proto(struct bpf_verifier_log *log, 1291 struct btf *btf, 1292 const struct btf_type *func_proto, 1293 const char *func_name, 1294 struct btf_func_model *m); 1295 1296 struct bpf_reg_state; 1297 int btf_check_func_arg_match(struct bpf_verifier_env *env, int subprog, 1298 struct bpf_reg_state *regs); 1299 int btf_prepare_func_args(struct bpf_verifier_env *env, int subprog, 1300 struct bpf_reg_state *reg); 1301 int btf_check_type_match(struct bpf_verifier_env *env, struct bpf_prog *prog, 1302 struct btf *btf, const struct btf_type *t); 1303 1304 struct bpf_prog *bpf_prog_by_id(u32 id); 1305 1306 const struct bpf_func_proto *bpf_base_func_proto(enum bpf_func_id func_id); 1307 #else /* !CONFIG_BPF_SYSCALL */ 1308 static inline struct bpf_prog *bpf_prog_get(u32 ufd) 1309 { 1310 return ERR_PTR(-EOPNOTSUPP); 1311 } 1312 1313 static inline struct bpf_prog *bpf_prog_get_type_dev(u32 ufd, 1314 enum bpf_prog_type type, 1315 bool attach_drv) 1316 { 1317 return ERR_PTR(-EOPNOTSUPP); 1318 } 1319 1320 static inline void bpf_prog_add(struct bpf_prog *prog, int i) 1321 { 1322 } 1323 1324 static inline void bpf_prog_sub(struct bpf_prog *prog, int i) 1325 { 1326 } 1327 1328 static inline void bpf_prog_put(struct bpf_prog *prog) 1329 { 1330 } 1331 1332 static inline void bpf_prog_inc(struct bpf_prog *prog) 1333 { 1334 } 1335 1336 static inline struct bpf_prog *__must_check 1337 bpf_prog_inc_not_zero(struct bpf_prog *prog) 1338 { 1339 return ERR_PTR(-EOPNOTSUPP); 1340 } 1341 1342 static inline int __bpf_prog_charge(struct user_struct *user, u32 pages) 1343 { 1344 return 0; 1345 } 1346 1347 static inline void __bpf_prog_uncharge(struct user_struct *user, u32 pages) 1348 { 1349 } 1350 1351 static inline int bpf_obj_get_user(const char __user *pathname, int flags) 1352 { 1353 return -EOPNOTSUPP; 1354 } 1355 1356 static inline struct net_device *__dev_map_lookup_elem(struct bpf_map *map, 1357 u32 key) 1358 { 1359 return NULL; 1360 } 1361 1362 static inline struct net_device *__dev_map_hash_lookup_elem(struct bpf_map *map, 1363 u32 key) 1364 { 1365 return NULL; 1366 } 1367 static inline bool dev_map_can_have_prog(struct bpf_map *map) 1368 { 1369 return false; 1370 } 1371 1372 static inline void __dev_flush(void) 1373 { 1374 } 1375 1376 struct xdp_buff; 1377 struct bpf_dtab_netdev; 1378 1379 static inline 1380 int dev_xdp_enqueue(struct net_device *dev, struct xdp_buff *xdp, 1381 struct net_device *dev_rx) 1382 { 1383 return 0; 1384 } 1385 1386 static inline 1387 int dev_map_enqueue(struct bpf_dtab_netdev *dst, struct xdp_buff *xdp, 1388 struct net_device *dev_rx) 1389 { 1390 return 0; 1391 } 1392 1393 struct sk_buff; 1394 1395 static inline int dev_map_generic_redirect(struct bpf_dtab_netdev *dst, 1396 struct sk_buff *skb, 1397 struct bpf_prog *xdp_prog) 1398 { 1399 return 0; 1400 } 1401 1402 static inline 1403 struct bpf_cpu_map_entry *__cpu_map_lookup_elem(struct bpf_map *map, u32 key) 1404 { 1405 return NULL; 1406 } 1407 1408 static inline void __cpu_map_flush(void) 1409 { 1410 } 1411 1412 static inline int cpu_map_enqueue(struct bpf_cpu_map_entry *rcpu, 1413 struct xdp_buff *xdp, 1414 struct net_device *dev_rx) 1415 { 1416 return 0; 1417 } 1418 1419 static inline struct bpf_prog *bpf_prog_get_type_path(const char *name, 1420 enum bpf_prog_type type) 1421 { 1422 return ERR_PTR(-EOPNOTSUPP); 1423 } 1424 1425 static inline int bpf_prog_test_run_xdp(struct bpf_prog *prog, 1426 const union bpf_attr *kattr, 1427 union bpf_attr __user *uattr) 1428 { 1429 return -ENOTSUPP; 1430 } 1431 1432 static inline int bpf_prog_test_run_skb(struct bpf_prog *prog, 1433 const union bpf_attr *kattr, 1434 union bpf_attr __user *uattr) 1435 { 1436 return -ENOTSUPP; 1437 } 1438 1439 static inline int bpf_prog_test_run_tracing(struct bpf_prog *prog, 1440 const union bpf_attr *kattr, 1441 union bpf_attr __user *uattr) 1442 { 1443 return -ENOTSUPP; 1444 } 1445 1446 static inline int bpf_prog_test_run_flow_dissector(struct bpf_prog *prog, 1447 const union bpf_attr *kattr, 1448 union bpf_attr __user *uattr) 1449 { 1450 return -ENOTSUPP; 1451 } 1452 1453 static inline void bpf_map_put(struct bpf_map *map) 1454 { 1455 } 1456 1457 static inline struct bpf_prog *bpf_prog_by_id(u32 id) 1458 { 1459 return ERR_PTR(-ENOTSUPP); 1460 } 1461 1462 static inline const struct bpf_func_proto * 1463 bpf_base_func_proto(enum bpf_func_id func_id) 1464 { 1465 return NULL; 1466 } 1467 #endif /* CONFIG_BPF_SYSCALL */ 1468 1469 static inline struct bpf_prog *bpf_prog_get_type(u32 ufd, 1470 enum bpf_prog_type type) 1471 { 1472 return bpf_prog_get_type_dev(ufd, type, false); 1473 } 1474 1475 bool bpf_prog_get_ok(struct bpf_prog *, enum bpf_prog_type *, bool); 1476 1477 int bpf_prog_offload_compile(struct bpf_prog *prog); 1478 void bpf_prog_offload_destroy(struct bpf_prog *prog); 1479 int bpf_prog_offload_info_fill(struct bpf_prog_info *info, 1480 struct bpf_prog *prog); 1481 1482 int bpf_map_offload_info_fill(struct bpf_map_info *info, struct bpf_map *map); 1483 1484 int bpf_map_offload_lookup_elem(struct bpf_map *map, void *key, void *value); 1485 int bpf_map_offload_update_elem(struct bpf_map *map, 1486 void *key, void *value, u64 flags); 1487 int bpf_map_offload_delete_elem(struct bpf_map *map, void *key); 1488 int bpf_map_offload_get_next_key(struct bpf_map *map, 1489 void *key, void *next_key); 1490 1491 bool bpf_offload_prog_map_match(struct bpf_prog *prog, struct bpf_map *map); 1492 1493 struct bpf_offload_dev * 1494 bpf_offload_dev_create(const struct bpf_prog_offload_ops *ops, void *priv); 1495 void bpf_offload_dev_destroy(struct bpf_offload_dev *offdev); 1496 void *bpf_offload_dev_priv(struct bpf_offload_dev *offdev); 1497 int bpf_offload_dev_netdev_register(struct bpf_offload_dev *offdev, 1498 struct net_device *netdev); 1499 void bpf_offload_dev_netdev_unregister(struct bpf_offload_dev *offdev, 1500 struct net_device *netdev); 1501 bool bpf_offload_dev_match(struct bpf_prog *prog, struct net_device *netdev); 1502 1503 #if defined(CONFIG_NET) && defined(CONFIG_BPF_SYSCALL) 1504 int bpf_prog_offload_init(struct bpf_prog *prog, union bpf_attr *attr); 1505 1506 static inline bool bpf_prog_is_dev_bound(const struct bpf_prog_aux *aux) 1507 { 1508 return aux->offload_requested; 1509 } 1510 1511 static inline bool bpf_map_is_dev_bound(struct bpf_map *map) 1512 { 1513 return unlikely(map->ops == &bpf_map_offload_ops); 1514 } 1515 1516 struct bpf_map *bpf_map_offload_map_alloc(union bpf_attr *attr); 1517 void bpf_map_offload_map_free(struct bpf_map *map); 1518 #else 1519 static inline int bpf_prog_offload_init(struct bpf_prog *prog, 1520 union bpf_attr *attr) 1521 { 1522 return -EOPNOTSUPP; 1523 } 1524 1525 static inline bool bpf_prog_is_dev_bound(struct bpf_prog_aux *aux) 1526 { 1527 return false; 1528 } 1529 1530 static inline bool bpf_map_is_dev_bound(struct bpf_map *map) 1531 { 1532 return false; 1533 } 1534 1535 static inline struct bpf_map *bpf_map_offload_map_alloc(union bpf_attr *attr) 1536 { 1537 return ERR_PTR(-EOPNOTSUPP); 1538 } 1539 1540 static inline void bpf_map_offload_map_free(struct bpf_map *map) 1541 { 1542 } 1543 #endif /* CONFIG_NET && CONFIG_BPF_SYSCALL */ 1544 1545 #if defined(CONFIG_BPF_STREAM_PARSER) 1546 int sock_map_prog_update(struct bpf_map *map, struct bpf_prog *prog, u32 which); 1547 int sock_map_get_from_fd(const union bpf_attr *attr, struct bpf_prog *prog); 1548 void sock_map_unhash(struct sock *sk); 1549 void sock_map_close(struct sock *sk, long timeout); 1550 #else 1551 static inline int sock_map_prog_update(struct bpf_map *map, 1552 struct bpf_prog *prog, u32 which) 1553 { 1554 return -EOPNOTSUPP; 1555 } 1556 1557 static inline int sock_map_get_from_fd(const union bpf_attr *attr, 1558 struct bpf_prog *prog) 1559 { 1560 return -EINVAL; 1561 } 1562 #endif /* CONFIG_BPF_STREAM_PARSER */ 1563 1564 #if defined(CONFIG_INET) && defined(CONFIG_BPF_SYSCALL) 1565 void bpf_sk_reuseport_detach(struct sock *sk); 1566 int bpf_fd_reuseport_array_lookup_elem(struct bpf_map *map, void *key, 1567 void *value); 1568 int bpf_fd_reuseport_array_update_elem(struct bpf_map *map, void *key, 1569 void *value, u64 map_flags); 1570 #else 1571 static inline void bpf_sk_reuseport_detach(struct sock *sk) 1572 { 1573 } 1574 1575 #ifdef CONFIG_BPF_SYSCALL 1576 static inline int bpf_fd_reuseport_array_lookup_elem(struct bpf_map *map, 1577 void *key, void *value) 1578 { 1579 return -EOPNOTSUPP; 1580 } 1581 1582 static inline int bpf_fd_reuseport_array_update_elem(struct bpf_map *map, 1583 void *key, void *value, 1584 u64 map_flags) 1585 { 1586 return -EOPNOTSUPP; 1587 } 1588 #endif /* CONFIG_BPF_SYSCALL */ 1589 #endif /* defined(CONFIG_INET) && defined(CONFIG_BPF_SYSCALL) */ 1590 1591 /* verifier prototypes for helper functions called from eBPF programs */ 1592 extern const struct bpf_func_proto bpf_map_lookup_elem_proto; 1593 extern const struct bpf_func_proto bpf_map_update_elem_proto; 1594 extern const struct bpf_func_proto bpf_map_delete_elem_proto; 1595 extern const struct bpf_func_proto bpf_map_push_elem_proto; 1596 extern const struct bpf_func_proto bpf_map_pop_elem_proto; 1597 extern const struct bpf_func_proto bpf_map_peek_elem_proto; 1598 1599 extern const struct bpf_func_proto bpf_get_prandom_u32_proto; 1600 extern const struct bpf_func_proto bpf_get_smp_processor_id_proto; 1601 extern const struct bpf_func_proto bpf_get_numa_node_id_proto; 1602 extern const struct bpf_func_proto bpf_tail_call_proto; 1603 extern const struct bpf_func_proto bpf_ktime_get_ns_proto; 1604 extern const struct bpf_func_proto bpf_ktime_get_boot_ns_proto; 1605 extern const struct bpf_func_proto bpf_get_current_pid_tgid_proto; 1606 extern const struct bpf_func_proto bpf_get_current_uid_gid_proto; 1607 extern const struct bpf_func_proto bpf_get_current_comm_proto; 1608 extern const struct bpf_func_proto bpf_get_stackid_proto; 1609 extern const struct bpf_func_proto bpf_get_stack_proto; 1610 extern const struct bpf_func_proto bpf_sock_map_update_proto; 1611 extern const struct bpf_func_proto bpf_sock_hash_update_proto; 1612 extern const struct bpf_func_proto bpf_get_current_cgroup_id_proto; 1613 extern const struct bpf_func_proto bpf_get_current_ancestor_cgroup_id_proto; 1614 extern const struct bpf_func_proto bpf_msg_redirect_hash_proto; 1615 extern const struct bpf_func_proto bpf_msg_redirect_map_proto; 1616 extern const struct bpf_func_proto bpf_sk_redirect_hash_proto; 1617 extern const struct bpf_func_proto bpf_sk_redirect_map_proto; 1618 extern const struct bpf_func_proto bpf_spin_lock_proto; 1619 extern const struct bpf_func_proto bpf_spin_unlock_proto; 1620 extern const struct bpf_func_proto bpf_get_local_storage_proto; 1621 extern const struct bpf_func_proto bpf_strtol_proto; 1622 extern const struct bpf_func_proto bpf_strtoul_proto; 1623 extern const struct bpf_func_proto bpf_tcp_sock_proto; 1624 extern const struct bpf_func_proto bpf_jiffies64_proto; 1625 extern const struct bpf_func_proto bpf_get_ns_current_pid_tgid_proto; 1626 extern const struct bpf_func_proto bpf_event_output_data_proto; 1627 extern const struct bpf_func_proto bpf_ringbuf_output_proto; 1628 extern const struct bpf_func_proto bpf_ringbuf_reserve_proto; 1629 extern const struct bpf_func_proto bpf_ringbuf_submit_proto; 1630 extern const struct bpf_func_proto bpf_ringbuf_discard_proto; 1631 extern const struct bpf_func_proto bpf_ringbuf_query_proto; 1632 1633 const struct bpf_func_proto *bpf_tracing_func_proto( 1634 enum bpf_func_id func_id, const struct bpf_prog *prog); 1635 1636 const struct bpf_func_proto *tracing_prog_func_proto( 1637 enum bpf_func_id func_id, const struct bpf_prog *prog); 1638 1639 /* Shared helpers among cBPF and eBPF. */ 1640 void bpf_user_rnd_init_once(void); 1641 u64 bpf_user_rnd_u32(u64 r1, u64 r2, u64 r3, u64 r4, u64 r5); 1642 u64 bpf_get_raw_cpu_id(u64 r1, u64 r2, u64 r3, u64 r4, u64 r5); 1643 1644 #if defined(CONFIG_NET) 1645 bool bpf_sock_common_is_valid_access(int off, int size, 1646 enum bpf_access_type type, 1647 struct bpf_insn_access_aux *info); 1648 bool bpf_sock_is_valid_access(int off, int size, enum bpf_access_type type, 1649 struct bpf_insn_access_aux *info); 1650 u32 bpf_sock_convert_ctx_access(enum bpf_access_type type, 1651 const struct bpf_insn *si, 1652 struct bpf_insn *insn_buf, 1653 struct bpf_prog *prog, 1654 u32 *target_size); 1655 #else 1656 static inline bool bpf_sock_common_is_valid_access(int off, int size, 1657 enum bpf_access_type type, 1658 struct bpf_insn_access_aux *info) 1659 { 1660 return false; 1661 } 1662 static inline bool bpf_sock_is_valid_access(int off, int size, 1663 enum bpf_access_type type, 1664 struct bpf_insn_access_aux *info) 1665 { 1666 return false; 1667 } 1668 static inline u32 bpf_sock_convert_ctx_access(enum bpf_access_type type, 1669 const struct bpf_insn *si, 1670 struct bpf_insn *insn_buf, 1671 struct bpf_prog *prog, 1672 u32 *target_size) 1673 { 1674 return 0; 1675 } 1676 #endif 1677 1678 #ifdef CONFIG_INET 1679 struct sk_reuseport_kern { 1680 struct sk_buff *skb; 1681 struct sock *sk; 1682 struct sock *selected_sk; 1683 void *data_end; 1684 u32 hash; 1685 u32 reuseport_id; 1686 bool bind_inany; 1687 }; 1688 bool bpf_tcp_sock_is_valid_access(int off, int size, enum bpf_access_type type, 1689 struct bpf_insn_access_aux *info); 1690 1691 u32 bpf_tcp_sock_convert_ctx_access(enum bpf_access_type type, 1692 const struct bpf_insn *si, 1693 struct bpf_insn *insn_buf, 1694 struct bpf_prog *prog, 1695 u32 *target_size); 1696 1697 bool bpf_xdp_sock_is_valid_access(int off, int size, enum bpf_access_type type, 1698 struct bpf_insn_access_aux *info); 1699 1700 u32 bpf_xdp_sock_convert_ctx_access(enum bpf_access_type type, 1701 const struct bpf_insn *si, 1702 struct bpf_insn *insn_buf, 1703 struct bpf_prog *prog, 1704 u32 *target_size); 1705 #else 1706 static inline bool bpf_tcp_sock_is_valid_access(int off, int size, 1707 enum bpf_access_type type, 1708 struct bpf_insn_access_aux *info) 1709 { 1710 return false; 1711 } 1712 1713 static inline u32 bpf_tcp_sock_convert_ctx_access(enum bpf_access_type type, 1714 const struct bpf_insn *si, 1715 struct bpf_insn *insn_buf, 1716 struct bpf_prog *prog, 1717 u32 *target_size) 1718 { 1719 return 0; 1720 } 1721 static inline bool bpf_xdp_sock_is_valid_access(int off, int size, 1722 enum bpf_access_type type, 1723 struct bpf_insn_access_aux *info) 1724 { 1725 return false; 1726 } 1727 1728 static inline u32 bpf_xdp_sock_convert_ctx_access(enum bpf_access_type type, 1729 const struct bpf_insn *si, 1730 struct bpf_insn *insn_buf, 1731 struct bpf_prog *prog, 1732 u32 *target_size) 1733 { 1734 return 0; 1735 } 1736 #endif /* CONFIG_INET */ 1737 1738 enum bpf_text_poke_type { 1739 BPF_MOD_CALL, 1740 BPF_MOD_JUMP, 1741 }; 1742 1743 int bpf_arch_text_poke(void *ip, enum bpf_text_poke_type t, 1744 void *addr1, void *addr2); 1745 1746 #endif /* _LINUX_BPF_H */ 1747