2021-05-25 11:59:31 +08:00
|
|
|
/* SPDX-License-Identifier: (LGPL-2.1 OR BSD-2-Clause) */
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Libbpf legacy APIs (either discouraged or deprecated, as mentioned in [0])
|
|
|
|
*
|
|
|
|
* [0] https://docs.google.com/document/d/1UyjTZuPFWiPFyKk1tV5an11_iaRuec6U-ZESZ54nNTY
|
|
|
|
*
|
|
|
|
* Copyright (C) 2021 Facebook
|
|
|
|
*/
|
|
|
|
#ifndef __LIBBPF_LEGACY_BPF_H
|
|
|
|
#define __LIBBPF_LEGACY_BPF_H
|
|
|
|
|
|
|
|
#include <linux/bpf.h>
|
|
|
|
#include <stdbool.h>
|
|
|
|
#include <stddef.h>
|
|
|
|
#include <stdint.h>
|
|
|
|
#include "libbpf_common.h"
|
|
|
|
|
|
|
|
#ifdef __cplusplus
|
|
|
|
extern "C" {
|
|
|
|
#endif
|
|
|
|
|
|
|
|
enum libbpf_strict_mode {
|
|
|
|
/* Turn on all supported strict features of libbpf to simulate libbpf
|
|
|
|
* v1.0 behavior.
|
|
|
|
* This will be the default behavior in libbpf v1.0.
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_ALL = 0xffffffff,
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Disable any libbpf 1.0 behaviors. This is the default before libbpf
|
|
|
|
* v1.0. It won't be supported anymore in v1.0, please update your
|
|
|
|
* code so that it handles LIBBPF_STRICT_ALL mode before libbpf v1.0.
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_NONE = 0x00,
|
2021-05-25 11:59:33 +08:00
|
|
|
/*
|
|
|
|
* Return NULL pointers on error, not ERR_PTR(err).
|
|
|
|
* Additionally, libbpf also always sets errno to corresponding Exx
|
|
|
|
* (positive) error code.
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_CLEAN_PTRS = 0x01,
|
|
|
|
/*
|
|
|
|
* Return actual error codes from low-level APIs directly, not just -1.
|
|
|
|
* Additionally, libbpf also always sets errno to corresponding Exx
|
|
|
|
* (positive) error code.
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_DIRECT_ERRS = 0x02,
|
libbpf: Add opt-in strict BPF program section name handling logic
Implement strict ELF section name handling for BPF programs. It utilizes
`libbpf_set_strict_mode()` framework and adds new flag: LIBBPF_STRICT_SEC_NAME.
If this flag is set, libbpf will enforce exact section name matching for
a lot of program types that previously allowed just partial prefix
match. E.g., if previously SEC("xdp_whatever_i_want") was allowed, now
in strict mode only SEC("xdp") will be accepted, which makes SEC("")
definitions cleaner and more structured. SEC() now won't be used as yet
another way to uniquely encode BPF program identifier (for that
C function name is better and is guaranteed to be unique within
bpf_object). Now SEC() is strictly BPF program type and, depending on
program type, extra load/attach parameter specification.
Libbpf completely supports multiple BPF programs in the same ELF
section, so multiple BPF programs of the same type/specification easily
co-exist together within the same bpf_object scope.
Additionally, a new (for now internal) convention is introduced: section
name that can be a stand-alone exact BPF program type specificator, but
also could have extra parameters after '/' delimiter. An example of such
section is "struct_ops", which can be specified by itself, but also
allows to specify the intended operation to be attached to, e.g.,
"struct_ops/dctcp_init". Note, that "struct_ops_some_op" is not allowed.
Such section definition is specified as "struct_ops+".
This change is part of libbpf 1.0 effort ([0], [1]).
[0] Closes: https://github.com/libbpf/libbpf/issues/271
[1] https://github.com/libbpf/libbpf/wiki/Libbpf:-the-road-to-v1.0#stricter-and-more-uniform-bpf-program-section-name-sec-handling
Signed-off-by: Andrii Nakryiko <andrii@kernel.org>
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
Acked-by: Dave Marchevsky <davemarchevsky@fb.com>
Link: https://lore.kernel.org/bpf/20210928161946.2512801-10-andrii@kernel.org
2021-09-29 00:19:45 +08:00
|
|
|
/*
|
|
|
|
* Enforce strict BPF program section (SEC()) names.
|
|
|
|
* E.g., while prefiously SEC("xdp_whatever") or SEC("perf_event_blah") were
|
|
|
|
* allowed, with LIBBPF_STRICT_SEC_PREFIX this will become
|
|
|
|
* unrecognized by libbpf and would have to be just SEC("xdp") and
|
|
|
|
* SEC("xdp") and SEC("perf_event").
|
2021-10-22 05:48:12 +08:00
|
|
|
*
|
|
|
|
* Note, in this mode the program pin path will be based on the
|
|
|
|
* function name instead of section name.
|
libbpf: Add opt-in strict BPF program section name handling logic
Implement strict ELF section name handling for BPF programs. It utilizes
`libbpf_set_strict_mode()` framework and adds new flag: LIBBPF_STRICT_SEC_NAME.
If this flag is set, libbpf will enforce exact section name matching for
a lot of program types that previously allowed just partial prefix
match. E.g., if previously SEC("xdp_whatever_i_want") was allowed, now
in strict mode only SEC("xdp") will be accepted, which makes SEC("")
definitions cleaner and more structured. SEC() now won't be used as yet
another way to uniquely encode BPF program identifier (for that
C function name is better and is guaranteed to be unique within
bpf_object). Now SEC() is strictly BPF program type and, depending on
program type, extra load/attach parameter specification.
Libbpf completely supports multiple BPF programs in the same ELF
section, so multiple BPF programs of the same type/specification easily
co-exist together within the same bpf_object scope.
Additionally, a new (for now internal) convention is introduced: section
name that can be a stand-alone exact BPF program type specificator, but
also could have extra parameters after '/' delimiter. An example of such
section is "struct_ops", which can be specified by itself, but also
allows to specify the intended operation to be attached to, e.g.,
"struct_ops/dctcp_init". Note, that "struct_ops_some_op" is not allowed.
Such section definition is specified as "struct_ops+".
This change is part of libbpf 1.0 effort ([0], [1]).
[0] Closes: https://github.com/libbpf/libbpf/issues/271
[1] https://github.com/libbpf/libbpf/wiki/Libbpf:-the-road-to-v1.0#stricter-and-more-uniform-bpf-program-section-name-sec-handling
Signed-off-by: Andrii Nakryiko <andrii@kernel.org>
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
Acked-by: Dave Marchevsky <davemarchevsky@fb.com>
Link: https://lore.kernel.org/bpf/20210928161946.2512801-10-andrii@kernel.org
2021-09-29 00:19:45 +08:00
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_SEC_NAME = 0x04,
|
2021-10-27 06:35:28 +08:00
|
|
|
/*
|
|
|
|
* Disable the global 'bpf_objects_list'. Maintaining this list adds
|
|
|
|
* a race condition to bpf_object__open() and bpf_object__close().
|
|
|
|
* Clients can maintain it on their own if it is valuable for them.
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_NO_OBJECT_LIST = 0x08,
|
libbpf: Auto-bump RLIMIT_MEMLOCK if kernel needs it for BPF
The need to increase RLIMIT_MEMLOCK to do anything useful with BPF is
one of the first extremely frustrating gotchas that all new BPF users go
through and in some cases have to learn it a very hard way.
Luckily, starting with upstream Linux kernel version 5.11, BPF subsystem
dropped the dependency on memlock and uses memcg-based memory accounting
instead. Unfortunately, detecting memcg-based BPF memory accounting is
far from trivial (as can be evidenced by this patch), so in practice
most BPF applications still do unconditional RLIMIT_MEMLOCK increase.
As we move towards libbpf 1.0, it would be good to allow users to forget
about RLIMIT_MEMLOCK vs memcg and let libbpf do the sensible adjustment
automatically. This patch paves the way forward in this matter. Libbpf
will do feature detection of memcg-based accounting, and if detected,
will do nothing. But if the kernel is too old, just like BCC, libbpf
will automatically increase RLIMIT_MEMLOCK on behalf of user
application ([0]).
As this is technically a breaking change, during the transition period
applications have to opt into libbpf 1.0 mode by setting
LIBBPF_STRICT_AUTO_RLIMIT_MEMLOCK bit when calling
libbpf_set_strict_mode().
Libbpf allows to control the exact amount of set RLIMIT_MEMLOCK limit
with libbpf_set_memlock_rlim_max() API. Passing 0 will make libbpf do
nothing with RLIMIT_MEMLOCK. libbpf_set_memlock_rlim_max() has to be
called before the first bpf_prog_load(), bpf_btf_load(), or
bpf_object__load() call, otherwise it has no effect and will return
-EBUSY.
[0] Closes: https://github.com/libbpf/libbpf/issues/369
Signed-off-by: Andrii Nakryiko <andrii@kernel.org>
Signed-off-by: Daniel Borkmann <daniel@iogearbox.net>
Link: https://lore.kernel.org/bpf/20211214195904.1785155-2-andrii@kernel.org
2021-12-15 03:59:03 +08:00
|
|
|
/*
|
|
|
|
* Automatically bump RLIMIT_MEMLOCK using setrlimit() before the
|
|
|
|
* first BPF program or map creation operation. This is done only if
|
|
|
|
* kernel is too old to support memcg-based memory accounting for BPF
|
|
|
|
* subsystem. By default, RLIMIT_MEMLOCK limit is set to RLIM_INFINITY,
|
|
|
|
* but it can be overriden with libbpf_set_memlock_rlim_max() API.
|
|
|
|
* Note that libbpf_set_memlock_rlim_max() needs to be called before
|
|
|
|
* the very first bpf_prog_load(), bpf_map_create() or bpf_object__load()
|
|
|
|
* operation.
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_AUTO_RLIMIT_MEMLOCK = 0x10,
|
2022-01-20 14:05:28 +08:00
|
|
|
/*
|
|
|
|
* Error out on any SEC("maps") map definition, which are deprecated
|
|
|
|
* in favor of BTF-defined map definitions in SEC(".maps").
|
|
|
|
*/
|
|
|
|
LIBBPF_STRICT_MAP_DEFINITIONS = 0x20,
|
libbpf: Add opt-in strict BPF program section name handling logic
Implement strict ELF section name handling for BPF programs. It utilizes
`libbpf_set_strict_mode()` framework and adds new flag: LIBBPF_STRICT_SEC_NAME.
If this flag is set, libbpf will enforce exact section name matching for
a lot of program types that previously allowed just partial prefix
match. E.g., if previously SEC("xdp_whatever_i_want") was allowed, now
in strict mode only SEC("xdp") will be accepted, which makes SEC("")
definitions cleaner and more structured. SEC() now won't be used as yet
another way to uniquely encode BPF program identifier (for that
C function name is better and is guaranteed to be unique within
bpf_object). Now SEC() is strictly BPF program type and, depending on
program type, extra load/attach parameter specification.
Libbpf completely supports multiple BPF programs in the same ELF
section, so multiple BPF programs of the same type/specification easily
co-exist together within the same bpf_object scope.
Additionally, a new (for now internal) convention is introduced: section
name that can be a stand-alone exact BPF program type specificator, but
also could have extra parameters after '/' delimiter. An example of such
section is "struct_ops", which can be specified by itself, but also
allows to specify the intended operation to be attached to, e.g.,
"struct_ops/dctcp_init". Note, that "struct_ops_some_op" is not allowed.
Such section definition is specified as "struct_ops+".
This change is part of libbpf 1.0 effort ([0], [1]).
[0] Closes: https://github.com/libbpf/libbpf/issues/271
[1] https://github.com/libbpf/libbpf/wiki/Libbpf:-the-road-to-v1.0#stricter-and-more-uniform-bpf-program-section-name-sec-handling
Signed-off-by: Andrii Nakryiko <andrii@kernel.org>
Signed-off-by: Alexei Starovoitov <ast@kernel.org>
Acked-by: Dave Marchevsky <davemarchevsky@fb.com>
Link: https://lore.kernel.org/bpf/20210928161946.2512801-10-andrii@kernel.org
2021-09-29 00:19:45 +08:00
|
|
|
|
2021-05-25 11:59:31 +08:00
|
|
|
__LIBBPF_STRICT_LAST,
|
|
|
|
};
|
|
|
|
|
|
|
|
LIBBPF_API int libbpf_set_strict_mode(enum libbpf_strict_mode mode);
|
|
|
|
|
2021-11-04 06:08:34 +08:00
|
|
|
#define DECLARE_LIBBPF_OPTS LIBBPF_OPTS
|
2021-05-25 11:59:31 +08:00
|
|
|
|
|
|
|
#ifdef __cplusplus
|
|
|
|
} /* extern "C" */
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#endif /* __LIBBPF_LEGACY_BPF_H */
|