Daniel Borkmann says:

In other words, no backwards compatibility is guaranteed if one using a type

in BTF with 'bpf\_' prefix.

Q: What is the compatibility story for special BPF types in local kptrs?

------------------------------------------------------------------------

Q: Same as above, but for local kptrs (i.e. pointers to objects allocated using

bpf_obj_new for user defined structures). Will the kernel preserve backwards

Q: What is the compatibility story for special BPF types in allocated objects?

------------------------------------------------------------------------------

Q: Same as above, but for allocated objects (i.e. objects allocated using

bpf_obj_new for user defined types). Will the kernel preserve backwards

compatibility for these features?

A: NO.

Unlike map value types, there are no stability guarantees for this case. The

whole local kptr API itself is unstable (since it is exposed through kfuncs).

whole API to work with allocated objects and any support for special fields

inside them is unstable (since it is exposed through kfuncs).

Submitting patches

==================

Q: How do I run BPF CI on my changes before sending them out for review?

------------------------------------------------------------------------

A: BPF CI is GitHub based and hosted at https://github.com/kernel-patches/bpf.

While GitHub also provides a CLI that can be used to accomplish the same

results, here we focus on the UI based workflow.

The following steps lay out how to start a CI run for your patches:

- Create a fork of the aforementioned repository in your own account (one time

  action)

- Clone the fork locally, check out a new branch tracking either the bpf-next

  or bpf branch, and apply your to-be-tested patches on top of it

- Push the local branch to your fork and create a pull request against

  kernel-patches/bpf's bpf-next_base or bpf_base branch, respectively

Shortly after the pull request has been created, the CI workflow will run. Note

that capacity is shared with patches submitted upstream being checked and so

depending on utilization the run can take a while to finish.

Note furthermore that both base branches (bpf-next_base and bpf_base) will be

updated as patches are pushed to the respective upstream branches they track. As

such, your patch set will automatically (be attempted to) be rebased as well.

This behavior can result in a CI run being aborted and restarted with the new

base line.

Q: To which mailing list do I need to submit my BPF patches?

------------------------------------------------------------

A: Please submit your BPF patches to the bpf kernel mailing list:

7. Testing

==========

Kernel bpf selftest `test_btf.c` provides extensive set of BTF-related tests.

The kernel BPF selftest `tools/testing/selftests/bpf/prog_tests/btf.c`_

provides an extensive set of BTF-related tests.

.. Links

.. _tools/testing/selftests/bpf/prog_tests/btf.c:

   https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tree/tools/testing/selftests/bpf/prog_tests/btf.c

   clang-notes

   linux-notes

   other

   redirect

.. only::  subproject and html

of the pointer is used. Without __sz annotation, a kfunc cannot accept a void

pointer.

2.2.2 __k Annotation

--------------------

This annotation is only understood for scalar arguments, where it indicates that

the verifier must check the scalar argument to be a known constant, which does

not indicate a size parameter, and the value of the constant is relevant to the

safety of the program.

An example is given below::

        void *bpf_obj_new(u32 local_type_id__k, ...)

        {

        ...

        }

Here, bpf_obj_new uses local_type_id argument to find out the size of that type

ID in program's BTF and return a sized pointer to it. Each type ID will have a

distinct size, hence it is crucial to treat each such call as distinct when

values don't match during verifier state pruning checks.

Hence, whenever a constant scalar argument is accepted by a kfunc which is not a

size parameter, and the value of the constant matters for program safety, __k

suffix should be used.

.. _BPF_kfunc_nodef:

2.3 Using an existing kernel function

--------------------------

The KF_TRUSTED_ARGS flag is used for kfuncs taking pointer arguments. It

indicates that the all pointer arguments will always have a guaranteed lifetime,

and pointers to kernel objects are always passed to helpers in their unmodified

form (as obtained from acquire kfuncs).

It can be used to enforce that a pointer to a refcounted object acquired from a

kfunc or BPF helper is passed as an argument to this kfunc without any

modifications (e.g. pointer arithmetic) such that it is trusted and points to

the original object.

Meanwhile, it is also allowed pass pointers to normal memory to such kfuncs,

but those can have a non-zero offset.

This flag is often used for kfuncs that operate (change some property, perform

some operation) on an object that was obtained using an acquire kfunc. Such

kfuncs need an unchanged pointer to ensure the integrity of the operation being

performed on the expected object.

indicates that the all pointer arguments are valid, and that all pointers to

BTF objects have been passed in their unmodified form (that is, at a zero

offset, and without having been obtained from walking another pointer).

There are two types of pointers to kernel objects which are considered "valid":

1. Pointers which are passed as tracepoint or struct_ops callback arguments.

2. Pointers which were returned from a KF_ACQUIRE or KF_KPTR_GET kfunc.

Pointers to non-BTF objects (e.g. scalar pointers) may also be passed to

KF_TRUSTED_ARGS kfuncs, and may have a non-zero offset.

The definition of "valid" pointers is subject to change at any time, and has

absolutely no ABI stability guarantees.

2.4.6 KF_SLEEPABLE flag

-----------------------