Merge tag 'net-next-6.1' of git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next

	debugpat	[X86] Enable PAT debugging

	decnet.addr=	[HW,NET]

			Format: <area>[,<node>]

			See also Documentation/networking/decnet.rst.

	default_hugepagesz=

			[HW] The size of the default HugeTLB page. This is

			the size represented by the legacy /proc/ hugepages

Table : Subdirectories in /proc/sys/net

 ========= =================== = ========== ==================

 ========= =================== = ========== ===================

 Directory Content               Directory  Content

 ========= =================== = ========== ==================

 core      General parameter     appletalk  Appletalk protocol

 unix      Unix domain sockets   netrom     NET/ROM

 802       E802 protocol         ax25       AX25

 ethernet  Ethernet protocol     rose       X.25 PLP layer

 ========= =================== = ========== ===================

 802       E802 protocol         mptcp      Multipath TCP

 appletalk Appletalk protocol    netfilter  Network Filter

 ax25      AX25                  netrom     NET/ROM

 bridge    Bridging              rose       X.25 PLP layer

 core      General parameter     tipc       TIPC

 ethernet  Ethernet protocol     unix       Unix domain sockets

 ipv4      IP version 4          x25        X.25 protocol

 bridge    Bridging              decnet     DEC net

 ipv6      IP version 6          tipc       TIPC

 ========= =================== = ========== ==================

 ipv6      IP version 6

 ========= =================== = ========== ===================

1. /proc/sys/net/core - Network core options

============================================

	- 1 - enable JIT hardening for unprivileged users only

	- 2 - enable JIT hardening for all users

where "privileged user" in this context means a process having

CAP_BPF or CAP_SYS_ADMIN in the root user name space.

bpf_jit_kallsyms

----------------

.. contents::

.. sectnum::

==========================

Clang implementation notes

==========================

This document provides more details specific to the Clang/LLVM implementation of the eBPF instruction set.

Versions

========

Clang defined "CPU" versions, where a CPU version of 3 corresponds to the current eBPF ISA.

Clang can select the eBPF ISA version using ``-mcpu=v3`` for example to select version 3.

Arithmetic instructions

=======================

For CPU versions prior to 3, Clang v7.0 and later can enable ``BPF_ALU`` support with

``-Xclang -target-feature -Xclang +alu32``.  In CPU version 3, support is automatically included.

Atomic operations

=================

Clang can generate atomic instructions by default when ``-mcpu=v3`` is

enabled. If a lower version for ``-mcpu`` is set, the only atomic instruction

Clang can generate is ``BPF_ADD`` *without* ``BPF_FETCH``. If you need to enable

the atomics features, while keeping a lower ``-mcpu`` version, you can use

``-Xclang -target-feature -Xclang +alu32``.

   classic_vs_extended.rst

   bpf_licensing

   test_debug

   clang-notes

   linux-notes

   other

.. only::  subproject and html

.. contents::

.. sectnum::

========================================

eBPF Instruction Set Specification, v1.0

========================================

This document specifies version 1.0 of the eBPF instruction set.

====================

eBPF Instruction Set

====================

Registers and calling convention

================================

The three LSB bits of the 'opcode' field store the instruction class:

  =========  =====  ===============================

  class      value  description

  =========  =====  ===============================

  BPF_LD     0x00   non-standard load operations

  BPF_LDX    0x01   load into register operations

  BPF_ST     0x02   store from immediate operations

  BPF_STX    0x03   store from register operations

  BPF_ALU    0x04   32-bit arithmetic operations

  BPF_JMP    0x05   64-bit jump operations

  BPF_JMP32  0x06   32-bit jump operations

  BPF_ALU64  0x07   64-bit arithmetic operations

  =========  =====  ===============================

=========  =====  ===============================  ===================================

class      value  description                      reference

=========  =====  ===============================  ===================================

BPF_LD     0x00   non-standard load operations     `Load and store instructions`_

BPF_LDX    0x01   load into register operations    `Load and store instructions`_

BPF_ST     0x02   store from immediate operations  `Load and store instructions`_

BPF_STX    0x03   store from register operations   `Load and store instructions`_

BPF_ALU    0x04   32-bit arithmetic operations     `Arithmetic and jump instructions`_

BPF_JMP    0x05   64-bit jump operations           `Arithmetic and jump instructions`_

BPF_JMP32  0x06   32-bit jump operations           `Arithmetic and jump instructions`_

BPF_ALU64  0x07   64-bit arithmetic operations     `Arithmetic and jump instructions`_

=========  =====  ===============================  ===================================

Arithmetic and jump instructions

================================

For arithmetic and jump instructions (BPF_ALU, BPF_ALU64, BPF_JMP and

BPF_JMP32), the 8-bit 'opcode' field is divided into three parts:

For arithmetic and jump instructions (``BPF_ALU``, ``BPF_ALU64``, ``BPF_JMP`` and

``BPF_JMP32``), the 8-bit 'opcode' field is divided into three parts:

==============  ======  =================

4 bits (MSB)    1 bit   3 bits (LSB)

Arithmetic instructions

-----------------------

BPF_ALU uses 32-bit wide operands while BPF_ALU64 uses 64-bit wide operands for

``BPF_ALU`` uses 32-bit wide operands while ``BPF_ALU64`` uses 64-bit wide operands for

otherwise identical operations.

The code field encodes the operation as below:

The 'code' field encodes the operation as below:

  ========  =====  =================================================

========  =====  ==========================================================

code      value  description

  ========  =====  =================================================

========  =====  ==========================================================

BPF_ADD   0x00   dst += src

BPF_SUB   0x10   dst -= src

BPF_MUL   0x20   dst \*= src

BPF_XOR   0xa0   dst ^= src

BPF_MOV   0xb0   dst = src

BPF_ARSH  0xc0   sign extending shift right

  BPF_END   0xd0   byte swap operations (see separate section below)

  ========  =====  =================================================

BPF_END   0xd0   byte swap operations (see `Byte swap instructions`_ below)

========  =====  ==========================================================

BPF_ADD | BPF_X | BPF_ALU means::

``BPF_ADD | BPF_X | BPF_ALU`` means::

  dst_reg = (u32) dst_reg + (u32) src_reg;

BPF_ADD | BPF_X | BPF_ALU64 means::

``BPF_ADD | BPF_X | BPF_ALU64`` means::

  dst_reg = dst_reg + src_reg

BPF_XOR | BPF_K | BPF_ALU means::

``BPF_XOR | BPF_K | BPF_ALU`` means::

  src_reg = (u32) src_reg ^ (u32) imm32

BPF_XOR | BPF_K | BPF_ALU64 means::

``BPF_XOR | BPF_K | BPF_ALU64`` means::

  src_reg = src_reg ^ imm32

Byte swap instructions

----------------------

~~~~~~~~~~~~~~~~~~~~~~

The byte swap instructions use an instruction class of ``BPF_ALU`` and a 4-bit

code field of ``BPF_END``.

'code' field of ``BPF_END``.

The byte swap instructions operate on the destination register

only and do not use a separate source register or immediate value.

BPF_TO_BE  0x08   convert between host byte order and big endian

=========  =====  =================================================

The imm field encodes the width of the swap operations.  The following widths

The 'imm' field encodes the width of the swap operations.  The following widths

are supported: 16, 32 and 64.

Examples:

  dst_reg = htobe64(dst_reg)

``BPF_FROM_LE`` and ``BPF_FROM_BE`` exist as aliases for ``BPF_TO_LE`` and

``BPF_TO_BE`` respectively.

Jump instructions

-----------------

BPF_JMP32 uses 32-bit wide operands while BPF_JMP uses 64-bit wide operands for

``BPF_JMP32`` uses 32-bit wide operands while ``BPF_JMP`` uses 64-bit wide operands for

otherwise identical operations.

The code field encodes the operation as below:

The 'code' field encodes the operation as below:

========  =====  =========================  ============

code      value  description                notes

Load and store instructions

===========================

For load and store instructions (BPF_LD, BPF_LDX, BPF_ST and BPF_STX), the

For load and store instructions (``BPF_LD``, ``BPF_LDX``, ``BPF_ST``, and ``BPF_STX``), the

8-bit 'opcode' field is divided as:

============  ======  =================

mode          size    instruction class

============  ======  =================

The mode modifier is one of:

  =============  =====  ====================================  =============

  mode modifier  value  description                           reference

  =============  =====  ====================================  =============

  BPF_IMM        0x00   64-bit immediate instructions         `64-bit immediate instructions`_

  BPF_ABS        0x20   legacy BPF packet access (absolute)   `Legacy BPF Packet access instructions`_

  BPF_IND        0x40   legacy BPF packet access (indirect)   `Legacy BPF Packet access instructions`_

  BPF_MEM        0x60   regular load and store operations     `Regular load and store operations`_

  BPF_ATOMIC     0xc0   atomic operations                     `Atomic operations`_

  =============  =====  ====================================  =============

The size modifier is one of:

  =============  =====  =====================

  BPF_DW         0x18   double word (8 bytes)

  =============  =====  =====================

The mode modifier is one of:

  =============  =====  ====================================

  mode modifier  value  description

  =============  =====  ====================================

  BPF_IMM        0x00   64-bit immediate instructions

  BPF_ABS        0x20   legacy BPF packet access (absolute)

  BPF_IND        0x40   legacy BPF packet access (indirect)

  BPF_MEM        0x60   regular load and store operations

  BPF_ATOMIC     0xc0   atomic operations

  =============  =====  ====================================

Regular load and store operations

---------------------------------

* ``BPF_ATOMIC | BPF_DW | BPF_STX`` for 64-bit operations

* 8-bit and 16-bit wide atomic operations are not supported.

The imm field is used to encode the actual atomic operation.

The 'imm' field is used to encode the actual atomic operation.

Simple atomic operation use a subset of the values defined to encode

arithmetic operations in the imm field to encode the atomic operation:

arithmetic operations in the 'imm' field to encode the atomic operation:

========  =====  ===========

imm       value  description

========  =====  ===========

``BPF_ATOMIC | BPF_W  | BPF_STX`` with imm = BPF_ADD means::

``BPF_ATOMIC | BPF_W  | BPF_STX`` with 'imm' = BPF_ADD means::

  *(u32 *)(dst_reg + off16) += src_reg

``BPF_ATOMIC | BPF_DW | BPF_STX`` with imm = BPF ADD means::

``BPF_ATOMIC | BPF_DW | BPF_STX`` with 'imm' = BPF ADD means::

  *(u64 *)(dst_reg + off16) += src_reg

``BPF_XADD`` is a deprecated name for ``BPF_ATOMIC | BPF_ADD``.

In addition to the simple atomic operations, there also is a modifier and

two complex atomic operations:

value that was at ``dst_reg + off`` before the operation is zero-extended

and loaded back to ``R0``.

Clang can generate atomic instructions by default when ``-mcpu=v3`` is

enabled. If a lower version for ``-mcpu`` is set, the only atomic instruction

Clang can generate is ``BPF_ADD`` *without* ``BPF_FETCH``. If you need to enable

the atomics features, while keeping a lower ``-mcpu`` version, you can use

``-Xclang -target-feature -Xclang +alu32``.

64-bit immediate instructions

-----------------------------

Instructions with the ``BPF_IMM`` mode modifier use the wide instruction

Instructions with the ``BPF_IMM`` 'mode' modifier use the wide instruction

encoding for an extra imm64 value.

There is currently only one such instruction.

Legacy BPF Packet access instructions

-------------------------------------

eBPF has special instructions for access to packet data that have been

carried over from classic BPF to retain the performance of legacy socket

filters running in the eBPF interpreter.

The instructions come in two forms: ``BPF_ABS | <size> | BPF_LD`` and

``BPF_IND | <size> | BPF_LD``.

These instructions are used to access packet data and can only be used when

the program context is a pointer to networking packet.  ``BPF_ABS``

accesses packet data at an absolute offset specified by the immediate data

and ``BPF_IND`` access packet data at an offset that includes the value of

a register in addition to the immediate data.

These instructions have seven implicit operands:

 * Register R6 is an implicit input that must contain pointer to a

   struct sk_buff.

 * Register R0 is an implicit output which contains the data fetched from

   the packet.

 * Registers R1-R5 are scratch registers that are clobbered after a call to

   ``BPF_ABS | BPF_LD`` or ``BPF_IND | BPF_LD`` instructions.

These instructions have an implicit program exit condition as well. When an

eBPF program is trying to access the data beyond the packet boundary, the

program execution will be aborted.

``BPF_ABS | BPF_W | BPF_LD`` means::

  R0 = ntohl(*(u32 *) (((struct sk_buff *) R6)->data + imm32))

``BPF_IND | BPF_W | BPF_LD`` means::

  R0 = ntohl(*(u32 *) (((struct sk_buff *) R6)->data + src_reg + imm32))

eBPF previously introduced special instructions for access to packet data that were

carried over from classic BPF. However, these instructions are

deprecated and should no longer be used.