Commit f5ad4101 authored by Linus Torvalds's avatar Linus Torvalds
Browse files

Merge tag 'bpf-next-7.1' of git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next 

Pull bpf updates from Alexei Starovoitov:

 - Welcome new BPF maintainers: Kumar Kartikeya Dwivedi, Eduard
   Zingerman while Martin KaFai Lau reduced his load to Reviwer.

 - Lots of fixes everywhere from many first time contributors. Thank you
   All.

 - Diff stat is dominated by mechanical split of verifier.c into
   multiple components:

    - backtrack.c: backtracking logic and jump history
    - states.c:    state equivalence
    - cfg.c:       control flow graph, postorder, strongly connected
                   components
    - liveness.c:  register and stack liveness
    - fixups.c:    post-verification passes: instruction patching, dead
                   code removal, bpf_loop inlining, finalize fastcall

   8k line were moved. verifier.c still stands at 20k lines.

   Further refactoring is planned for the next release.

 - Replace dynamic stack liveness with static stack liveness based on
   data flow analysis.

   This improved the verification time by 2x for some programs and
   equally reduced memory consumption. New logic is in liveness.c and
   supported by constant folding in const_fold.c (Eduard Zingerman,
   Alexei Starovoitov)

 - Introduce BTF layout to ease addition of new BTF kinds (Alan Maguire)

 - Use kmalloc_nolock() universally in BPF local storage (Amery Hung)

 - Fix several bugs in linked registers delta tracking (Daniel Borkmann)

 - Improve verifier support of arena pointers (Emil Tsalapatis)

 - Improve verifier tracking of register bounds in min/max and tnum
   domains (Harishankar Vishwanathan, Paul Chaignon, Hao Sun)

 - Further extend support for implicit arguments in the verifier (Ihor
   Solodrai)

 - Add support for nop,nop5 instruction combo for USDT probes in libbpf
   (Jiri Olsa)

 - Support merging multiple module BTFs (Josef Bacik)

 - Extend applicability of bpf_kptr_xchg (Kaitao Cheng)

 - Retire rcu_trace_implies_rcu_gp() (Kumar Kartikeya Dwivedi)

 - Support variable offset context access for 'syscall' programs (Kumar
   Kartikeya Dwivedi)

 - Migrate bpf_task_work and dynptr to kmalloc_nolock() (Mykyta
   Yatsenko)

 - Fix UAF in in open-coded task_vma iterator (Puranjay Mohan)

* tag 'bpf-next-7.1' of git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next: (241 commits)
  selftests/bpf: cover short IPv4/IPv6 inputs with adjust_room
  bpf: reject short IPv4/IPv6 inputs in bpf_prog_test_run_skb
  selftests/bpf: Use memfd_create instead of shm_open in cgroup_iter_memcg
  selftests/bpf: Add test for cgroup storage OOB read
  bpf: Fix OOB in pcpu_init_value
  selftests/bpf: Fix reg_bounds to match new tnum-based refinement
  selftests/bpf: Add tests for non-arena/arena operations
  bpf: Allow instructions with arena source and non-arena dest registers
  bpftool: add missing fsession to the usage and docs of bpftool
  docs/bpf: add missing fsession attach type to docs
  bpf: add missing fsession to the verifier log
  bpf: Move BTF checking logic into check_btf.c
  bpf: Move backtracking logic to backtrack.c
  bpf: Move state equivalence logic to states.c
  bpf: Move check_cfg() into cfg.c
  bpf: Move compute_insn_live_regs() into liveness.c
  bpf: Move fixup/post-processing logic from verifier.c into fixups.c
  bpf: Simplify do_check_insn()
  bpf: Move checks for reserved fields out of the main pass
  bpf: Delete unused variable
  ...
parents e997ac58 71b500af

Documentation/bpf/drgn.rst

+2 −2
Original line number Diff line number Diff line
@@ -26,8 +26,8 @@ about these objects, including id, type and name. 


The main use-case `bpf_inspect.py`_ covers is to show BPF programs of types

``BPF_PROG_TYPE_EXT`` and ``BPF_PROG_TYPE_TRACING`` attached to other BPF

programs via ``freplace``/``fentry``/``fexit`` mechanisms, since there is no

user-space API to get this information.

programs via ``freplace``/``fentry``/``fexit``/``fsession`` mechanisms, since

there is no user-space API to get this information.



Getting started

===============

Documentation/bpf/libbpf/program_types.rst

+4 −0
Original line number Diff line number Diff line
@@ -207,6 +207,10 @@ described in more detail in the footnotes. 
+                                           +                                        +----------------------------------+-----------+

|                                           |                                        | ``fexit.s+`` [#fentry]_          | Yes       |

+                                           +----------------------------------------+----------------------------------+-----------+

|                                           | ``BPF_TRACE_FSESSION``                 | ``fsession+`` [#fentry]_         |           |

+                                           +                                        +----------------------------------+-----------+

|                                           |                                        | ``fsession.s+`` [#fentry]_       | Yes       |

+                                           +----------------------------------------+----------------------------------+-----------+

|                                           | ``BPF_TRACE_ITER``                     | ``iter+`` [#iter]_               |           |

+                                           +                                        +----------------------------------+-----------+

|                                           |                                        | ``iter.s+`` [#iter]_             | Yes       |

MAINTAINERS

+2 −5
Original line number Diff line number Diff line
@@ -4815,13 +4815,10 @@ M: Alexei Starovoitov <ast@kernel.org> 
M:	Daniel Borkmann <daniel@iogearbox.net>

M:	Andrii Nakryiko <andrii@kernel.org>

R:	Martin KaFai Lau <martin.lau@linux.dev>

R:	Eduard Zingerman <eddyz87@gmail.com>

M:	Eduard Zingerman <eddyz87@gmail.com>

M:	Kumar Kartikeya Dwivedi <memxor@gmail.com>

R:	Song Liu <song@kernel.org>

R:	Yonghong Song <yonghong.song@linux.dev>

R:	John Fastabend <john.fastabend@gmail.com>

R:	KP Singh <kpsingh@kernel.org>

R:	Stanislav Fomichev <sdf@fomichev.me>

R:	Hao Luo <haoluo@google.com>

R:	Jiri Olsa <jolsa@kernel.org>

L:	bpf@vger.kernel.org

S:	Supported

arch/arc/net/bpf_jit_arcv2.c

+4 −4
Original line number Diff line number Diff line
@@ -2427,7 +2427,7 @@ u8 arc_prologue(u8 *buf, u32 usage, u16 frame_size) 


#ifdef ARC_BPF_JIT_DEBUG

	if ((usage & BIT(ARC_R_FP)) && frame_size == 0) {

		pr_err("FP is being saved while there is no frame.");

		pr_err("FP is being saved while there is no frame.\n");

		BUG();

	}

#endif
@@ -2454,7 +2454,7 @@ u8 arc_epilogue(u8 *buf, u32 usage, u16 frame_size) 


#ifdef ARC_BPF_JIT_DEBUG

	if ((usage & BIT(ARC_R_FP)) && frame_size == 0) {

		pr_err("FP is being saved while there is no frame.");

		pr_err("FP is being saved while there is no frame.\n");

		BUG();

	}

#endif
@@ -2868,7 +2868,7 @@ u8 gen_jmp_64(u8 *buf, u8 rd, u8 rs, u8 cond, u32 curr_off, u32 targ_off) 
		break;

	default:

#ifdef ARC_BPF_JIT_DEBUG

		pr_err("64-bit jump condition is not known.");

		pr_err("64-bit jump condition is not known.\n");

		BUG();

#endif

	}
@@ -2948,7 +2948,7 @@ u8 gen_jmp_32(u8 *buf, u8 rd, u8 rs, u8 cond, u32 curr_off, u32 targ_off) 
	 */

	if (cond >= ARC_CC_LAST) {

#ifdef ARC_BPF_JIT_DEBUG

		pr_err("32-bit jump condition is not known.");

		pr_err("32-bit jump condition is not known.\n");

		BUG();

#endif

		return 0;

arch/arm64/net/bpf_jit.h

+3 −1
Original line number Diff line number Diff line
@@ -187,7 +187,9 @@ 
/* Rn - imm12; set condition flags */

#define A64_CMP_I(sf, Rn, imm12) A64_SUBS_I(sf, A64_ZR, Rn, imm12)

/* Rd = Rn */

#define A64_MOV(sf, Rd, Rn) A64_ADD_I(sf, Rd, Rn, 0)

#define A64_MOV(sf, Rd, Rn) \

	(((Rd) == A64_SP || (Rn) == A64_SP) ? A64_ADD_I(sf, Rd, Rn, 0) : \

	 aarch64_insn_gen_move_reg(Rd, Rn, A64_VARIANT(sf)))



/* Bitfield move */

#define A64_BITFIELD(sf, Rd, Rn, immr, imms, type) \