Merge branch 'bpf-track-changes_pkt_data-property-for-global-functions'

	bool is_extended; /* true if extended by freplace program */

	bool jits_use_priv_stack;

	bool priv_stack_requested;

	bool changes_pkt_data;

	u64 prog_array_member_cnt; /* counts how many times as member of prog_array */

	struct mutex ext_mutex; /* mutex for is_extended and prog_array_member_cnt */

	struct bpf_arena *arena;

	bool args_cached: 1;

	/* true if bpf_fastcall stack region is used by functions that can't be inlined */

	bool keep_fastcall_stack: 1;

	bool changes_pkt_data: 1;

	enum priv_stack_mode priv_stack_mode;

	u8 arg_cnt;

bool bpf_jit_supports_private_stack(void);

u64 bpf_arch_uaddress_limit(void);

void arch_bpf_stack_walk(bool (*consume_fn)(void *cookie, u64 ip, u64 sp, u64 bp), void *cookie);

bool bpf_helper_changes_pkt_data(void *func);

bool bpf_helper_changes_pkt_data(enum bpf_func_id func_id);

static inline bool bpf_dump_raw_ok(const struct cred *cred)

{

{

}

bool __weak bpf_helper_changes_pkt_data(void *func)

bool __weak bpf_helper_changes_pkt_data(enum bpf_func_id func_id)

{

	return false;

}

	       ((struct bpf_subprog_info *)b)->start;

}

/* Find subprogram that contains instruction at 'off' */

static struct bpf_subprog_info *find_containing_subprog(struct bpf_verifier_env *env, int off)

{

	struct bpf_subprog_info *vals = env->subprog_info;

	int l, r, m;

	if (off >= env->prog->len || off < 0 || env->subprog_cnt == 0)

		return NULL;

	l = 0;

	r = env->subprog_cnt - 1;

	while (l < r) {

		m = l + (r - l + 1) / 2;

		if (vals[m].start <= off)

			l = m;

		else

			r = m - 1;

	}

	return &vals[l];

}

/* Find subprogram that starts exactly at 'off' */

static int find_subprog(struct bpf_verifier_env *env, int off)

{

	struct bpf_subprog_info *p;

	p = bsearch(&off, env->subprog_info, env->subprog_cnt,

		    sizeof(env->subprog_info[0]), cmp_subprogs);

	if (!p)

	p = find_containing_subprog(env, off);

	if (!p || p->start != off)

		return -ENOENT;

	return p - env->subprog_info;

}

static int add_subprog(struct bpf_verifier_env *env, int off)

		verbose(env, "Func#%d ('%s') is global and assumed valid.\n",

			subprog, sub_name);

		if (env->subprog_info[subprog].changes_pkt_data)

			clear_all_pkt_pointers(env);

		/* mark global subprog for verifying after main prog */

		subprog_aux(env, subprog)->called = true;

		clear_caller_saved_regs(env, caller->regs);

	}

	/* With LD_ABS/IND some JITs save/restore skb from r1. */

	changes_data = bpf_helper_changes_pkt_data(fn->func);

	changes_data = bpf_helper_changes_pkt_data(func_id);

	if (changes_data && fn->arg1_type != ARG_PTR_TO_CTX) {

		verbose(env, "kernel subsystem misconfigured func %s#%d: r1 != ctx\n",

			func_id_name(func_id), func_id);

	return 0;

}

static void mark_subprog_changes_pkt_data(struct bpf_verifier_env *env, int off)

{

	struct bpf_subprog_info *subprog;

	subprog = find_containing_subprog(env, off);

	subprog->changes_pkt_data = true;

}

/* 't' is an index of a call-site.

 * 'w' is a callee entry point.

 * Eventually this function would be called when env->cfg.insn_state[w] == EXPLORED.

 * Rely on DFS traversal order and absence of recursive calls to guarantee that

 * callee's change_pkt_data marks would be correct at that moment.

 */

static void merge_callee_effects(struct bpf_verifier_env *env, int t, int w)

{

	struct bpf_subprog_info *caller, *callee;

	caller = find_containing_subprog(env, t);

	callee = find_containing_subprog(env, w);

	caller->changes_pkt_data |= callee->changes_pkt_data;

}

/* non-recursive DFS pseudo code

 * 1  procedure DFS-iterative(G,v):

 * 2      label v as discovered

				bool visit_callee)

{

	int ret, insn_sz;

	int w;

	insn_sz = bpf_is_ldimm64(&insns[t]) ? 2 : 1;

	ret = push_insn(t, t + insn_sz, FALLTHROUGH, env);

	mark_jmp_point(env, t + insn_sz);

	if (visit_callee) {

		w = t + insns[t].imm + 1;

		mark_prune_point(env, t);

		ret = push_insn(t, t + insns[t].imm + 1, BRANCH, env);

		merge_callee_effects(env, t, w);

		ret = push_insn(t, w, BRANCH, env);

	}

	return ret;

}

			mark_prune_point(env, t);

			mark_jmp_point(env, t);

		}

		if (bpf_helper_call(insn) && bpf_helper_changes_pkt_data(insn->imm))

			mark_subprog_changes_pkt_data(env, t);

		if (insn->src_reg == BPF_PSEUDO_KFUNC_CALL) {

			struct bpf_kfunc_call_arg_meta meta;

		}

	}

	ret = 0; /* cfg looks good */

	env->prog->aux->changes_pkt_data = env->subprog_info[0].changes_pkt_data;

err_free:

	kvfree(insn_state);

		func[i]->aux->num_exentries = num_exentries;

		func[i]->aux->tail_call_reachable = env->subprog_info[i].tail_call_reachable;

		func[i]->aux->exception_cb = env->subprog_info[i].is_exception_cb;

		func[i]->aux->changes_pkt_data = env->subprog_info[i].changes_pkt_data;

		if (!i)

			func[i]->aux->exception_boundary = env->seen_exception;

		func[i] = bpf_int_jit_compile(func[i]);

					"Extension programs should be JITed\n");

				return -EINVAL;

			}

			if (prog->aux->changes_pkt_data &&

			    !aux->func[subprog]->aux->changes_pkt_data) {

				bpf_log(log,

					"Extension program changes packet data, while original does not\n");

				return -EINVAL;

			}

		}

		if (!tgt_prog->jited) {

			bpf_log(log, "Can attach to only JITed progs\n");

	if (ret < 0)

		goto skip_full_check;

	ret = check_attach_btf_id(env);

	if (ret)

		goto skip_full_check;

	ret = resolve_pseudo_ldimm64(env);

	if (ret < 0)

		goto skip_full_check;

	if (ret < 0)

		goto skip_full_check;

	ret = check_attach_btf_id(env);

	if (ret)

		goto skip_full_check;

	ret = mark_fastcall_patterns(env);

	if (ret < 0)

		goto skip_full_check;