2 * BPF Jit compiler for s390.
4 * Copyright IBM Corp. 2012
6 * Author(s): Martin Schwidefsky <schwidefsky@de.ibm.com>
8 #include <linux/moduleloader.h>
9 #include <linux/netdevice.h>
10 #include <linux/if_vlan.h>
11 #include <linux/filter.h>
12 #include <linux/random.h>
13 #include <asm/cacheflush.h>
14 #include <asm/processor.h>
15 #include <asm/facility.h>
20 * %r3 = offset parameter
21 * %r4 = scratch register / length parameter
22 * %r5 = BPF A accumulator
23 * %r8 = return address
24 * %r9 = save register for skb pointer
26 * %r11 = skb->len - skb->data_len (headlen)
27 * %r12 = BPF X accumulator
28 * %r13 = literal pool pointer
29 * 0(%r15) - 63(%r15) scratch memory array with BPF_MEMWORDS
31 int bpf_jit_enable __read_mostly;
34 * assembly code in arch/x86/net/bpf_jit.S
36 extern u8 sk_load_word[], sk_load_half[], sk_load_byte[], sk_load_byte_msh[];
37 extern u8 sk_load_word_ind[], sk_load_half_ind[], sk_load_byte_ind[];
49 unsigned int off_load_word;
50 unsigned int off_load_half;
51 unsigned int off_load_byte;
52 unsigned int off_load_bmsh;
53 unsigned int off_load_iword;
54 unsigned int off_load_ihalf;
55 unsigned int off_load_ibyte;
58 #define BPF_SIZE_MAX 4096 /* Max size for program */
60 #define SEEN_DATAREF 1 /* might call external helpers */
61 #define SEEN_XREG 2 /* ebx is used */
62 #define SEEN_MEM 4 /* use mem[] for temporary storage */
63 #define SEEN_RET0 8 /* pc_ret0 points to a valid return 0 */
64 #define SEEN_LITERAL 16 /* code uses literals */
65 #define SEEN_LOAD_WORD 32 /* code uses sk_load_word */
66 #define SEEN_LOAD_HALF 64 /* code uses sk_load_half */
67 #define SEEN_LOAD_BYTE 128 /* code uses sk_load_byte */
68 #define SEEN_LOAD_BMSH 256 /* code uses sk_load_byte_msh */
69 #define SEEN_LOAD_IWORD 512 /* code uses sk_load_word_ind */
70 #define SEEN_LOAD_IHALF 1024 /* code uses sk_load_half_ind */
71 #define SEEN_LOAD_IBYTE 2048 /* code uses sk_load_byte_ind */
75 if (jit->prg + 2 <= jit->mid) \
76 *(u16 *) jit->prg = op; \
82 if (jit->prg + 4 <= jit->mid) \
83 *(u32 *) jit->prg = op; \
87 #define EMIT4_DISP(op, disp) \
89 unsigned int __disp = (disp) & 0xfff; \
93 #define EMIT4_IMM(op, imm) \
95 unsigned int __imm = (imm) & 0xffff; \
99 #define EMIT4_PCREL(op, pcrel) \
101 long __pcrel = ((pcrel) >> 1) & 0xffff; \
102 EMIT4(op | __pcrel); \
105 #define EMIT6(op1, op2) \
107 if (jit->prg + 6 <= jit->mid) { \
108 *(u32 *) jit->prg = op1; \
109 *(u16 *) (jit->prg + 4) = op2; \
114 #define EMIT6_DISP(op1, op2, disp) \
116 unsigned int __disp = (disp) & 0xfff; \
117 EMIT6(op1 | __disp, op2); \
120 #define EMIT6_IMM(op, imm) \
122 unsigned int __imm = (imm); \
123 EMIT6(op | (__imm >> 16), __imm & 0xffff); \
126 #define EMIT_CONST(val) \
129 ret = (unsigned int) (jit->lit - jit->base_ip); \
130 jit->seen |= SEEN_LITERAL; \
131 if (jit->lit + 4 <= jit->end) \
132 *(u32 *) jit->lit = val; \
137 #define EMIT_FN_CONST(bit, fn) \
140 ret = (unsigned int) (jit->lit - jit->base_ip); \
141 if (jit->seen & bit) { \
142 jit->seen |= SEEN_LITERAL; \
143 if (jit->lit + 8 <= jit->end) \
144 *(void **) jit->lit = fn; \
150 static void bpf_jit_prologue(struct bpf_jit *jit)
152 /* Save registers and create stack frame if necessary */
153 if (jit->seen & SEEN_DATAREF) {
154 /* stmg %r8,%r15,88(%r15) */
155 EMIT6(0xeb8ff058, 0x0024);
158 /* ahi %r15,<offset> */
159 EMIT4_IMM(0xa7fa0000, (jit->seen & SEEN_MEM) ? -112 : -80);
160 /* stg %r14,152(%r15) */
161 EMIT6(0xe3e0f098, 0x0024);
162 } else if ((jit->seen & SEEN_XREG) && (jit->seen & SEEN_LITERAL))
163 /* stmg %r12,%r13,120(%r15) */
164 EMIT6(0xebcdf078, 0x0024);
165 else if (jit->seen & SEEN_XREG)
166 /* stg %r12,120(%r15) */
167 EMIT6(0xe3c0f078, 0x0024);
168 else if (jit->seen & SEEN_LITERAL)
169 /* stg %r13,128(%r15) */
170 EMIT6(0xe3d0f080, 0x0024);
172 /* Setup literal pool */
173 if (jit->seen & SEEN_LITERAL) {
176 jit->base_ip = jit->prg;
178 jit->off_load_word = EMIT_FN_CONST(SEEN_LOAD_WORD, sk_load_word);
179 jit->off_load_half = EMIT_FN_CONST(SEEN_LOAD_HALF, sk_load_half);
180 jit->off_load_byte = EMIT_FN_CONST(SEEN_LOAD_BYTE, sk_load_byte);
181 jit->off_load_bmsh = EMIT_FN_CONST(SEEN_LOAD_BMSH, sk_load_byte_msh);
182 jit->off_load_iword = EMIT_FN_CONST(SEEN_LOAD_IWORD, sk_load_word_ind);
183 jit->off_load_ihalf = EMIT_FN_CONST(SEEN_LOAD_IHALF, sk_load_half_ind);
184 jit->off_load_ibyte = EMIT_FN_CONST(SEEN_LOAD_IBYTE, sk_load_byte_ind);
186 /* Filter needs to access skb data */
187 if (jit->seen & SEEN_DATAREF) {
188 /* l %r11,<len>(%r2) */
189 EMIT4_DISP(0x58b02000, offsetof(struct sk_buff, len));
190 /* s %r11,<data_len>(%r2) */
191 EMIT4_DISP(0x5bb02000, offsetof(struct sk_buff, data_len));
192 /* lg %r10,<data>(%r2) */
193 EMIT6_DISP(0xe3a02000, 0x0004,
194 offsetof(struct sk_buff, data));
198 static void bpf_jit_epilogue(struct bpf_jit *jit)
201 if (jit->seen & SEEN_RET0) {
202 jit->ret0_ip = jit->prg;
206 jit->exit_ip = jit->prg;
207 /* Restore registers */
208 if (jit->seen & SEEN_DATAREF)
209 /* lmg %r8,%r15,<offset>(%r15) */
210 EMIT6_DISP(0xeb8ff000, 0x0004,
211 (jit->seen & SEEN_MEM) ? 200 : 168);
212 else if ((jit->seen & SEEN_XREG) && (jit->seen & SEEN_LITERAL))
213 /* lmg %r12,%r13,120(%r15) */
214 EMIT6(0xebcdf078, 0x0004);
215 else if (jit->seen & SEEN_XREG)
216 /* lg %r12,120(%r15) */
217 EMIT6(0xe3c0f078, 0x0004);
218 else if (jit->seen & SEEN_LITERAL)
219 /* lg %r13,128(%r15) */
220 EMIT6(0xe3d0f080, 0x0004);
226 * make sure we dont leak kernel information to user
228 static void bpf_jit_noleaks(struct bpf_jit *jit, struct sock_filter *filter)
230 /* Clear temporary memory if (seen & SEEN_MEM) */
231 if (jit->seen & SEEN_MEM)
232 /* xc 0(64,%r15),0(%r15) */
233 EMIT6(0xd73ff000, 0xf000);
234 /* Clear X if (seen & SEEN_XREG) */
235 if (jit->seen & SEEN_XREG)
238 /* Clear A if the first register does not set it. */
239 switch (filter[0].code) {
247 case BPF_S_LDX_B_MSH:
251 case BPF_S_ANC_PROTOCOL:
252 case BPF_S_ANC_PKTTYPE:
253 case BPF_S_ANC_IFINDEX:
255 case BPF_S_ANC_QUEUE:
256 case BPF_S_ANC_HATYPE:
257 case BPF_S_ANC_RXHASH:
259 case BPF_S_ANC_VLAN_TAG:
260 case BPF_S_ANC_VLAN_TAG_PRESENT:
262 /* first instruction sets A register */
270 static int bpf_jit_insn(struct bpf_jit *jit, struct sock_filter *filter,
271 unsigned int *addrs, int i, int last)
278 switch (filter->code) {
279 case BPF_S_ALU_ADD_X: /* A += X */
280 jit->seen |= SEEN_XREG;
284 case BPF_S_ALU_ADD_K: /* A += K */
289 EMIT4_IMM(0xa75a0000, K);
290 else if (test_facility(21))
292 EMIT6_IMM(0xc25b0000, K);
294 /* a %r5,<d(K)>(%r13) */
295 EMIT4_DISP(0x5a50d000, EMIT_CONST(K));
297 case BPF_S_ALU_SUB_X: /* A -= X */
298 jit->seen |= SEEN_XREG;
302 case BPF_S_ALU_SUB_K: /* A -= K */
307 EMIT4_IMM(0xa75a0000, -K);
308 else if (test_facility(21))
310 EMIT6_IMM(0xc25b0000, -K);
312 /* s %r5,<d(K)>(%r13) */
313 EMIT4_DISP(0x5b50d000, EMIT_CONST(K));
315 case BPF_S_ALU_MUL_X: /* A *= X */
316 jit->seen |= SEEN_XREG;
320 case BPF_S_ALU_MUL_K: /* A *= K */
323 EMIT4_IMM(0xa75c0000, K);
324 else if (test_facility(34))
326 EMIT6_IMM(0xc2510000, K);
328 /* ms %r5,<d(K)>(%r13) */
329 EMIT4_DISP(0x7150d000, EMIT_CONST(K));
331 case BPF_S_ALU_DIV_X: /* A /= X */
332 jit->seen |= SEEN_XREG | SEEN_RET0;
336 EMIT4_PCREL(0xa7840000, (jit->ret0_ip - jit->prg));
342 case BPF_S_ALU_DIV_K: /* A = reciprocal_divide(A, K) */
343 /* m %r4,<d(K)>(%r13) */
344 EMIT4_DISP(0x5c40d000, EMIT_CONST(K));
348 case BPF_S_ALU_MOD_X: /* A %= X */
349 jit->seen |= SEEN_XREG | SEEN_RET0;
353 EMIT4_PCREL(0xa7840000, (jit->ret0_ip - jit->prg));
361 case BPF_S_ALU_MOD_K: /* A %= K */
364 /* d %r4,<d(K)>(%r13) */
365 EMIT4_DISP(0x5d40d000, EMIT_CONST(K));
369 case BPF_S_ALU_AND_X: /* A &= X */
370 jit->seen |= SEEN_XREG;
374 case BPF_S_ALU_AND_K: /* A &= K */
375 if (test_facility(21))
377 EMIT6_IMM(0xc05b0000, K);
379 /* n %r5,<d(K)>(%r13) */
380 EMIT4_DISP(0x5450d000, EMIT_CONST(K));
382 case BPF_S_ALU_OR_X: /* A |= X */
383 jit->seen |= SEEN_XREG;
387 case BPF_S_ALU_OR_K: /* A |= K */
388 if (test_facility(21))
390 EMIT6_IMM(0xc05d0000, K);
392 /* o %r5,<d(K)>(%r13) */
393 EMIT4_DISP(0x5650d000, EMIT_CONST(K));
395 case BPF_S_ANC_ALU_XOR_X: /* A ^= X; */
396 case BPF_S_ALU_XOR_X:
397 jit->seen |= SEEN_XREG;
401 case BPF_S_ALU_XOR_K: /* A ^= K */
404 /* x %r5,<d(K)>(%r13) */
405 EMIT4_DISP(0x5750d000, EMIT_CONST(K));
407 case BPF_S_ALU_LSH_X: /* A <<= X; */
408 jit->seen |= SEEN_XREG;
409 /* sll %r5,0(%r12) */
412 case BPF_S_ALU_LSH_K: /* A <<= K */
416 EMIT4_DISP(0x89500000, K);
418 case BPF_S_ALU_RSH_X: /* A >>= X; */
419 jit->seen |= SEEN_XREG;
420 /* srl %r5,0(%r12) */
423 case BPF_S_ALU_RSH_K: /* A >>= K; */
427 EMIT4_DISP(0x88500000, K);
429 case BPF_S_ALU_NEG: /* A = -A */
433 case BPF_S_JMP_JA: /* ip += K */
434 offset = addrs[i + K] + jit->start - jit->prg;
435 EMIT4_PCREL(0xa7f40000, offset);
437 case BPF_S_JMP_JGT_K: /* ip += (A > K) ? jt : jf */
438 mask = 0x200000; /* jh */
440 case BPF_S_JMP_JGE_K: /* ip += (A >= K) ? jt : jf */
441 mask = 0xa00000; /* jhe */
443 case BPF_S_JMP_JEQ_K: /* ip += (A == K) ? jt : jf */
444 mask = 0x800000; /* je */
445 kbranch: /* Emit compare if the branch targets are different */
446 if (filter->jt != filter->jf) {
449 EMIT4_IMM(0xa75e0000, K);
450 else if (test_facility(21))
452 EMIT6_IMM(0xc25f0000, K);
454 /* c %r5,<d(K)>(%r13) */
455 EMIT4_DISP(0x5950d000, EMIT_CONST(K));
457 branch: if (filter->jt == filter->jf) {
461 offset = addrs[i + filter->jt] + jit->start - jit->prg;
462 EMIT4_PCREL(0xa7f40000, offset);
465 if (filter->jt != 0) {
466 /* brc <mask>,<jt> */
467 offset = addrs[i + filter->jt] + jit->start - jit->prg;
468 EMIT4_PCREL(0xa7040000 | mask, offset);
470 if (filter->jf != 0) {
471 /* brc <mask^15>,<jf> */
472 offset = addrs[i + filter->jf] + jit->start - jit->prg;
473 EMIT4_PCREL(0xa7040000 | (mask ^ 0xf00000), offset);
476 case BPF_S_JMP_JSET_K: /* ip += (A & K) ? jt : jf */
477 mask = 0x700000; /* jnz */
478 /* Emit test if the branch targets are different */
479 if (filter->jt != filter->jf) {
483 /* n %r4,<d(K)>(%r13) */
484 EMIT4_DISP(0x5440d000, EMIT_CONST(K));
487 EMIT4_IMM(0xa7510000, K);
490 case BPF_S_JMP_JGT_X: /* ip += (A > X) ? jt : jf */
491 mask = 0x200000; /* jh */
493 case BPF_S_JMP_JGE_X: /* ip += (A >= X) ? jt : jf */
494 mask = 0xa00000; /* jhe */
496 case BPF_S_JMP_JEQ_X: /* ip += (A == X) ? jt : jf */
497 mask = 0x800000; /* je */
498 xbranch: /* Emit compare if the branch targets are different */
499 if (filter->jt != filter->jf) {
500 jit->seen |= SEEN_XREG;
505 case BPF_S_JMP_JSET_X: /* ip += (A & X) ? jt : jf */
506 mask = 0x700000; /* jnz */
507 /* Emit test if the branch targets are different */
508 if (filter->jt != filter->jf) {
509 jit->seen |= SEEN_XREG;
516 case BPF_S_LD_W_ABS: /* A = *(u32 *) (skb->data+K) */
517 jit->seen |= SEEN_DATAREF | SEEN_RET0 | SEEN_LOAD_WORD;
518 offset = jit->off_load_word;
520 case BPF_S_LD_H_ABS: /* A = *(u16 *) (skb->data+K) */
521 jit->seen |= SEEN_DATAREF | SEEN_RET0 | SEEN_LOAD_HALF;
522 offset = jit->off_load_half;
524 case BPF_S_LD_B_ABS: /* A = *(u8 *) (skb->data+K) */
525 jit->seen |= SEEN_DATAREF | SEEN_RET0 | SEEN_LOAD_BYTE;
526 offset = jit->off_load_byte;
527 load_abs: if ((int) K < 0)
529 call_fn: /* lg %r1,<d(function)>(%r13) */
530 EMIT6_DISP(0xe310d000, 0x0004, offset);
531 /* l %r3,<d(K)>(%r13) */
532 EMIT4_DISP(0x5830d000, EMIT_CONST(K));
536 EMIT4_PCREL(0xa7740000, (jit->ret0_ip - jit->prg));
538 case BPF_S_LD_W_IND: /* A = *(u32 *) (skb->data+K+X) */
539 jit->seen |= SEEN_DATAREF | SEEN_RET0 | SEEN_LOAD_IWORD;
540 offset = jit->off_load_iword;
542 case BPF_S_LD_H_IND: /* A = *(u16 *) (skb->data+K+X) */
543 jit->seen |= SEEN_DATAREF | SEEN_RET0 | SEEN_LOAD_IHALF;
544 offset = jit->off_load_ihalf;
546 case BPF_S_LD_B_IND: /* A = *(u8 *) (skb->data+K+X) */
547 jit->seen |= SEEN_DATAREF | SEEN_RET0 | SEEN_LOAD_IBYTE;
548 offset = jit->off_load_ibyte;
550 case BPF_S_LDX_B_MSH:
551 /* X = (*(u8 *)(skb->data+K) & 0xf) << 2 */
552 jit->seen |= SEEN_RET0;
555 EMIT4_PCREL(0xa7f40000, (jit->ret0_ip - jit->prg));
558 jit->seen |= SEEN_DATAREF | SEEN_LOAD_BMSH;
559 offset = jit->off_load_bmsh;
561 case BPF_S_LD_W_LEN: /* A = skb->len; */
562 BUILD_BUG_ON(FIELD_SIZEOF(struct sk_buff, len) != 4);
563 /* l %r5,<d(len)>(%r2) */
564 EMIT4_DISP(0x58502000, offsetof(struct sk_buff, len));
566 case BPF_S_LDX_W_LEN: /* X = skb->len; */
567 jit->seen |= SEEN_XREG;
568 /* l %r12,<d(len)>(%r2) */
569 EMIT4_DISP(0x58c02000, offsetof(struct sk_buff, len));
571 case BPF_S_LD_IMM: /* A = K */
574 EMIT4_IMM(0xa7580000, K);
575 else if (test_facility(21))
577 EMIT6_IMM(0xc05f0000, K);
579 /* l %r5,<d(K)>(%r13) */
580 EMIT4_DISP(0x5850d000, EMIT_CONST(K));
582 case BPF_S_LDX_IMM: /* X = K */
583 jit->seen |= SEEN_XREG;
586 EMIT4_IMM(0xa7c80000, K);
587 else if (test_facility(21))
589 EMIT6_IMM(0xc0cf0000, K);
591 /* l %r12,<d(K)>(%r13) */
592 EMIT4_DISP(0x58c0d000, EMIT_CONST(K));
594 case BPF_S_LD_MEM: /* A = mem[K] */
595 jit->seen |= SEEN_MEM;
596 /* l %r5,<K>(%r15) */
597 EMIT4_DISP(0x5850f000,
598 (jit->seen & SEEN_DATAREF) ? 160 + K*4 : K*4);
600 case BPF_S_LDX_MEM: /* X = mem[K] */
601 jit->seen |= SEEN_XREG | SEEN_MEM;
602 /* l %r12,<K>(%r15) */
603 EMIT4_DISP(0x58c0f000,
604 (jit->seen & SEEN_DATAREF) ? 160 + K*4 : K*4);
606 case BPF_S_MISC_TAX: /* X = A */
607 jit->seen |= SEEN_XREG;
611 case BPF_S_MISC_TXA: /* A = X */
612 jit->seen |= SEEN_XREG;
618 jit->seen |= SEEN_RET0;
622 EMIT4_PCREL(0xa7f40000, jit->ret0_ip - jit->prg);
626 EMIT4_IMM(0xa7290000, K);
628 /* llgf %r2,<K>(%r13) */
629 EMIT6_DISP(0xe320d000, 0x0016, EMIT_CONST(K));
631 if (last && !(jit->seen & SEEN_RET0))
633 EMIT4_PCREL(0xa7f40000, jit->exit_ip - jit->prg);
640 EMIT4_PCREL(0xa7f40000, jit->exit_ip - jit->prg);
642 case BPF_S_ST: /* mem[K] = A */
643 jit->seen |= SEEN_MEM;
644 /* st %r5,<K>(%r15) */
645 EMIT4_DISP(0x5050f000,
646 (jit->seen & SEEN_DATAREF) ? 160 + K*4 : K*4);
648 case BPF_S_STX: /* mem[K] = X : mov %ebx,off8(%rbp) */
649 jit->seen |= SEEN_XREG | SEEN_MEM;
650 /* st %r12,<K>(%r15) */
651 EMIT4_DISP(0x50c0f000,
652 (jit->seen & SEEN_DATAREF) ? 160 + K*4 : K*4);
654 case BPF_S_ANC_PROTOCOL: /* A = ntohs(skb->protocol); */
655 BUILD_BUG_ON(FIELD_SIZEOF(struct sk_buff, protocol) != 2);
658 /* icm %r5,3,<d(protocol)>(%r2) */
659 EMIT4_DISP(0xbf532000, offsetof(struct sk_buff, protocol));
661 case BPF_S_ANC_IFINDEX: /* if (!skb->dev) return 0;
662 * A = skb->dev->ifindex */
663 BUILD_BUG_ON(FIELD_SIZEOF(struct net_device, ifindex) != 4);
664 jit->seen |= SEEN_RET0;
665 /* lg %r1,<d(dev)>(%r2) */
666 EMIT6_DISP(0xe3102000, 0x0004, offsetof(struct sk_buff, dev));
670 EMIT4_PCREL(0xa7840000, jit->ret0_ip - jit->prg);
671 /* l %r5,<d(ifindex)>(%r1) */
672 EMIT4_DISP(0x58501000, offsetof(struct net_device, ifindex));
674 case BPF_S_ANC_MARK: /* A = skb->mark */
675 BUILD_BUG_ON(FIELD_SIZEOF(struct sk_buff, mark) != 4);
676 /* l %r5,<d(mark)>(%r2) */
677 EMIT4_DISP(0x58502000, offsetof(struct sk_buff, mark));
679 case BPF_S_ANC_QUEUE: /* A = skb->queue_mapping */
680 BUILD_BUG_ON(FIELD_SIZEOF(struct sk_buff, queue_mapping) != 2);
683 /* icm %r5,3,<d(queue_mapping)>(%r2) */
684 EMIT4_DISP(0xbf532000, offsetof(struct sk_buff, queue_mapping));
686 case BPF_S_ANC_HATYPE: /* if (!skb->dev) return 0;
687 * A = skb->dev->type */
688 BUILD_BUG_ON(FIELD_SIZEOF(struct net_device, type) != 2);
689 jit->seen |= SEEN_RET0;
690 /* lg %r1,<d(dev)>(%r2) */
691 EMIT6_DISP(0xe3102000, 0x0004, offsetof(struct sk_buff, dev));
695 EMIT4_PCREL(0xa7840000, jit->ret0_ip - jit->prg);
698 /* icm %r5,3,<d(type)>(%r1) */
699 EMIT4_DISP(0xbf531000, offsetof(struct net_device, type));
701 case BPF_S_ANC_RXHASH: /* A = skb->rxhash */
702 BUILD_BUG_ON(FIELD_SIZEOF(struct sk_buff, rxhash) != 4);
703 /* l %r5,<d(rxhash)>(%r2) */
704 EMIT4_DISP(0x58502000, offsetof(struct sk_buff, rxhash));
706 case BPF_S_ANC_VLAN_TAG:
707 case BPF_S_ANC_VLAN_TAG_PRESENT:
708 BUILD_BUG_ON(FIELD_SIZEOF(struct sk_buff, vlan_tci) != 2);
709 BUILD_BUG_ON(VLAN_TAG_PRESENT != 0x1000);
712 /* icm %r5,3,<d(vlan_tci)>(%r2) */
713 EMIT4_DISP(0xbf532000, offsetof(struct sk_buff, vlan_tci));
714 if (filter->code == BPF_S_ANC_VLAN_TAG) {
715 /* nill %r5,0xefff */
716 EMIT4_IMM(0xa5570000, ~VLAN_TAG_PRESENT);
718 /* nill %r5,0x1000 */
719 EMIT4_IMM(0xa5570000, VLAN_TAG_PRESENT);
721 EMIT4_DISP(0x88500000, 12);
724 case BPF_S_ANC_CPU: /* A = smp_processor_id() */
726 /* l %r5,<d(cpu_nr)> */
727 EMIT4_DISP(0x58500000, offsetof(struct _lowcore, cpu_nr));
733 default: /* too complex, give up */
736 addrs[i] = jit->prg - jit->start;
743 * Note: for security reasons, bpf code will follow a randomly
744 * sized amount of illegal instructions.
746 struct bpf_binary_header {
751 static struct bpf_binary_header *bpf_alloc_binary(unsigned int bpfsize,
754 struct bpf_binary_header *header;
755 unsigned int sz, hole;
757 /* Most BPF filters are really small, but if some of them fill a page,
758 * allow at least 128 extra bytes for illegal instructions.
760 sz = round_up(bpfsize + sizeof(*header) + 128, PAGE_SIZE);
761 header = module_alloc(sz);
764 memset(header, 0, sz);
765 header->pages = sz / PAGE_SIZE;
766 hole = sz - bpfsize + sizeof(*header);
767 /* Insert random number of illegal instructions before BPF code
768 * and make sure the first instruction starts at an even address.
770 *image_ptr = &header->image[(prandom_u32() % hole) & -2];
774 void bpf_jit_compile(struct sk_filter *fp)
776 struct bpf_binary_header *header = NULL;
777 unsigned long size, prg_len, lit_len;
778 struct bpf_jit jit, cjit;
784 addrs = kcalloc(fp->len, sizeof(*addrs), GFP_KERNEL);
787 memset(&jit, 0, sizeof(cjit));
788 memset(&cjit, 0, sizeof(cjit));
790 for (pass = 0; pass < 10; pass++) {
794 bpf_jit_prologue(&jit);
795 bpf_jit_noleaks(&jit, fp->insns);
796 for (i = 0; i < fp->len; i++) {
797 if (bpf_jit_insn(&jit, fp->insns + i, addrs, i,
801 bpf_jit_epilogue(&jit);
803 WARN_ON(jit.prg > cjit.prg || jit.lit > cjit.lit);
804 if (memcmp(&jit, &cjit, sizeof(jit)) == 0)
806 } else if (jit.prg == cjit.prg && jit.lit == cjit.lit) {
807 prg_len = jit.prg - jit.start;
808 lit_len = jit.lit - jit.mid;
809 size = prg_len + lit_len;
810 if (size >= BPF_SIZE_MAX)
812 header = bpf_alloc_binary(size, &jit.start);
815 jit.prg = jit.mid = jit.start + prg_len;
816 jit.lit = jit.end = jit.start + prg_len + lit_len;
817 jit.base_ip += (unsigned long) jit.start;
818 jit.exit_ip += (unsigned long) jit.start;
819 jit.ret0_ip += (unsigned long) jit.start;
823 if (bpf_jit_enable > 1) {
824 bpf_jit_dump(fp->len, jit.end - jit.start, pass, jit.start);
826 print_fn_code(jit.start, jit.mid - jit.start);
829 set_memory_ro((unsigned long)header, header->pages);
830 fp->bpf_func = (void *) jit.start;
836 void bpf_jit_free(struct sk_filter *fp)
838 unsigned long addr = (unsigned long)fp->bpf_func & PAGE_MASK;
839 struct bpf_binary_header *header = (void *)addr;
841 if (fp->bpf_func == sk_run_filter)
843 set_memory_rw(addr, header->pages);
844 module_free(NULL, header);
projects / karo-tx-linux.git / blob