Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / refs/tags/FP3-REL-Q-3.A.0107 / . / include / uapi / linux / bpf.h
blob: 67d7d771a944897e0e87d4f4670c781550fbc295 [file] [log] [blame]
Alexei Starovoitovdaedfb22014-09-04 22:17:18 -0700[diff] [blame]1/* Copyright (c) 2011-2014 PLUMgrid, http://plumgrid.com
2 *
3 * This program is free software; you can redistribute it and/or
4 * modify it under the terms of version 2 of the GNU General Public
5 * License as published by the Free Software Foundation.
6 */
7#ifndef _UAPI__LINUX_BPF_H__
8#define _UAPI__LINUX_BPF_H__
9
10#include <linux/types.h>
Alexei Starovoitovc15952d2014-10-14 02:08:54 -0700[diff] [blame]11#include <linux/bpf_common.h>
Alexei Starovoitovdaedfb22014-09-04 22:17:18 -0700[diff] [blame]12
13/* Extended instruction set based on top of classic BPF */
14
15/* instruction classes */
16#define BPF_ALU64 0x07 /* alu mode in double word width */
17
18/* ld/ldx fields */
19#define BPF_DW 0x18 /* double word */
20#define BPF_XADD 0xc0 /* exclusive add */
21
22/* alu/jmp fields */
23#define BPF_MOV 0xb0 /* mov reg to reg */
24#define BPF_ARSH 0xc0 /* sign extending arithmetic shift right */
25
26/* change endianness of a register */
27#define BPF_END 0xd0 /* flags for endianness conversion: */
28#define BPF_TO_LE 0x00 /* convert to little-endian */
29#define BPF_TO_BE 0x08 /* convert to big-endian */
30#define BPF_FROM_LE BPF_TO_LE
31#define BPF_FROM_BE BPF_TO_BE
32
33#define BPF_JNE 0x50 /* jump != */
34#define BPF_JSGT 0x60 /* SGT is signed '>', GT in x86 */
35#define BPF_JSGE 0x70 /* SGE is signed '>=', GE in x86 */
36#define BPF_CALL 0x80 /* function call */
37#define BPF_EXIT 0x90 /* function return */
38
39/* Register numbers */
40enum {
41 BPF_REG_0 = 0,
42 BPF_REG_1,
43 BPF_REG_2,
44 BPF_REG_3,
45 BPF_REG_4,
46 BPF_REG_5,
47 BPF_REG_6,
48 BPF_REG_7,
49 BPF_REG_8,
50 BPF_REG_9,
51 BPF_REG_10,
52 __MAX_BPF_REG,
53};
54
55/* BPF has 10 general purpose 64-bit registers and stack frame. */
56#define MAX_BPF_REG __MAX_BPF_REG
57
58struct bpf_insn {
59 __u8 code; /* opcode */
60 __u8 dst_reg:4; /* dest register */
61 __u8 src_reg:4; /* source register */
62 __s16 off; /* signed offset */
63 __s32 imm; /* signed immediate constant */
64};
65
Daniel Borkmannb2197752015-10-29 14:58:09 +0100[diff] [blame]66/* BPF syscall commands, see bpf(2) man-page for details. */
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]67enum bpf_cmd {
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]68 BPF_MAP_CREATE,
Alexei Starovoitovdb20fd22014-09-26 00:16:59 -0700[diff] [blame]69 BPF_MAP_LOOKUP_ELEM,
Alexei Starovoitovdb20fd22014-09-26 00:16:59 -0700[diff] [blame]70 BPF_MAP_UPDATE_ELEM,
Alexei Starovoitovdb20fd22014-09-26 00:16:59 -0700[diff] [blame]71 BPF_MAP_DELETE_ELEM,
Alexei Starovoitovdb20fd22014-09-26 00:16:59 -0700[diff] [blame]72 BPF_MAP_GET_NEXT_KEY,
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]73 BPF_PROG_LOAD,
Daniel Borkmannb2197752015-10-29 14:58:09 +0100[diff] [blame]74 BPF_OBJ_PIN,
75 BPF_OBJ_GET,
Daniel Mack00615df2016-11-23 16:52:27 +0100[diff] [blame]76 BPF_PROG_ATTACH,
77 BPF_PROG_DETACH,
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]78};
79
80enum bpf_map_type {
81 BPF_MAP_TYPE_UNSPEC,
Alexei Starovoitov0f8e4bd2014-11-13 17:36:45 -0800[diff] [blame]82 BPF_MAP_TYPE_HASH,
Alexei Starovoitov28fbcfa2014-11-13 17:36:46 -0800[diff] [blame]83 BPF_MAP_TYPE_ARRAY,
Alexei Starovoitov04fd61a2015-05-19 16:59:03 -0700[diff] [blame]84 BPF_MAP_TYPE_PROG_ARRAY,
Kaixu Xiaea317b22015-08-06 07:02:34 +0000[diff] [blame]85 BPF_MAP_TYPE_PERF_EVENT_ARRAY,
Alexei Starovoitov824bd0c2016-02-01 22:39:53 -0800[diff] [blame]86 BPF_MAP_TYPE_PERCPU_HASH,
Alexei Starovoitova10423b2016-02-01 22:39:54 -0800[diff] [blame]87 BPF_MAP_TYPE_PERCPU_ARRAY,
Alexei Starovoitovd5a3b1f2016-02-17 19:58:58 -0800[diff] [blame]88 BPF_MAP_TYPE_STACK_TRACE,
Martin KaFai Lau4ed8ec52016-06-30 10:28:43 -0700[diff] [blame]89 BPF_MAP_TYPE_CGROUP_ARRAY,
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]90};
91
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]92enum bpf_prog_type {
93 BPF_PROG_TYPE_UNSPEC,
Alexei Starovoitovddd872b2014-12-01 15:06:34 -0800[diff] [blame]94 BPF_PROG_TYPE_SOCKET_FILTER,
Alexei Starovoitov25415172015-03-25 12:49:20 -0700[diff] [blame]95 BPF_PROG_TYPE_KPROBE,
Daniel Borkmann96be4322015-03-01 12:31:46 +0100[diff] [blame]96 BPF_PROG_TYPE_SCHED_CLS,
Daniel Borkmann94caee82015-03-20 15:11:11 +0100[diff] [blame]97 BPF_PROG_TYPE_SCHED_ACT,
Alexei Starovoitov98b5c2c2016-04-06 18:43:25 -0700[diff] [blame]98 BPF_PROG_TYPE_TRACEPOINT,
Brenden Blanco6a773a12016-07-19 12:16:47 -0700[diff] [blame]99 BPF_PROG_TYPE_XDP,
Alexei Starovoitov0515e592016-09-01 18:37:22 -0700[diff] [blame]100 BPF_PROG_TYPE_PERF_EVENT,
Daniel Mack760b55c2016-11-23 16:52:25 +0100[diff] [blame]101 BPF_PROG_TYPE_CGROUP_SKB,
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]102};
103
Daniel Mack760b55c2016-11-23 16:52:25 +0100[diff] [blame]104enum bpf_attach_type {
105 BPF_CGROUP_INET_INGRESS,
106 BPF_CGROUP_INET_EGRESS,
107 __MAX_BPF_ATTACH_TYPE
108};
109
110#define MAX_BPF_ATTACH_TYPE __MAX_BPF_ATTACH_TYPE
111
Alexei Starovoitov148f1112017-10-02 22:50:21 -0700[diff] [blame]112/* cgroup-bpf attach flags used in BPF_PROG_ATTACH command
113 *
114 * NONE(default): No further bpf programs allowed in the subtree.
115 *
116 * BPF_F_ALLOW_OVERRIDE: If a sub-cgroup installs some bpf program,
117 * the program in this cgroup yields to sub-cgroup program.
118 *
119 * BPF_F_ALLOW_MULTI: If a sub-cgroup installs some bpf program,
120 * that cgroup program gets run in addition to the program in this cgroup.
121 *
122 * Only one program is allowed to be attached to a cgroup with
123 * NONE or BPF_F_ALLOW_OVERRIDE flag.
124 * Attaching another program on top of NONE or BPF_F_ALLOW_OVERRIDE will
125 * release old program and attach the new one. Attach flags has to match.
126 *
127 * Multiple programs are allowed to be attached to a cgroup with
128 * BPF_F_ALLOW_MULTI flag. They are executed in FIFO order
129 * (those that were attached first, run first)
130 * The programs of sub-cgroup are executed first, then programs of
131 * this cgroup and then programs of parent cgroup.
132 * When children program makes decision (like picking TCP CA or sock bind)
133 * parent program has a chance to override it.
134 *
135 * A cgroup with MULTI or OVERRIDE flag allows any attach flags in sub-cgroups.
136 * A cgroup with NONE doesn't allow any programs in sub-cgroups.
137 * Ex1:
138 * cgrp1 (MULTI progs A, B) ->
139 * cgrp2 (OVERRIDE prog C) ->
140 * cgrp3 (MULTI prog D) ->
141 * cgrp4 (OVERRIDE prog E) ->
142 * cgrp5 (NONE prog F)
143 * the event in cgrp5 triggers execution of F,D,A,B in that order.
144 * if prog F is detached, the execution is E,D,A,B
145 * if prog F and D are detached, the execution is E,A,B
146 * if prog F, E and D are detached, the execution is C,A,B
147 *
148 * All eligible programs are executed regardless of return code from
149 * earlier programs.
Alexei Starovoitov1ee2b4b2017-02-10 20:28:24 -0800[diff] [blame]150 */
151#define BPF_F_ALLOW_OVERRIDE (1U << 0)
Alexei Starovoitov148f1112017-10-02 22:50:21 -0700[diff] [blame]152#define BPF_F_ALLOW_MULTI (1U << 1)
Alexei Starovoitov1ee2b4b2017-02-10 20:28:24 -0800[diff] [blame]153
Daniel Borkmannf1a66f82015-03-01 12:31:43 +0100[diff] [blame]154#define BPF_PSEUDO_MAP_FD 1
155
Alexei Starovoitov3274f522014-11-13 17:36:44 -0800[diff] [blame]156/* flags for BPF_MAP_UPDATE_ELEM command */
157#define BPF_ANY 0 /* create new element or update existing */
158#define BPF_NOEXIST 1 /* create new element if it didn't exist */
159#define BPF_EXIST 2 /* update existing element */
160
Alexei Starovoitov6c905982016-03-07 21:57:15 -0800[diff] [blame]161#define BPF_F_NO_PREALLOC (1U << 0)
162
Chenbo Feng4672ded2017-10-18 13:00:22 -0700[diff] [blame]163/* Flags for accessing BPF object */
164#define BPF_F_RDONLY (1U << 3)
165#define BPF_F_WRONLY (1U << 4)
166
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]167union bpf_attr {
168 struct { /* anonymous struct used by BPF_MAP_CREATE command */
169 __u32 map_type; /* one of enum bpf_map_type */
170 __u32 key_size; /* size of key in bytes */
171 __u32 value_size; /* size of value in bytes */
172 __u32 max_entries; /* max number of entries in a map */
Alexei Starovoitov6c905982016-03-07 21:57:15 -0800[diff] [blame]173 __u32 map_flags; /* prealloc or not */
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]174 };
Alexei Starovoitovdb20fd22014-09-26 00:16:59 -0700[diff] [blame]175
176 struct { /* anonymous struct used by BPF_MAP_*_ELEM commands */
177 __u32 map_fd;
178 __aligned_u64 key;
179 union {
180 __aligned_u64 value;
181 __aligned_u64 next_key;
182 };
Alexei Starovoitov3274f522014-11-13 17:36:44 -0800[diff] [blame]183 __u64 flags;
Alexei Starovoitovdb20fd22014-09-26 00:16:59 -0700[diff] [blame]184 };
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]185
186 struct { /* anonymous struct used by BPF_PROG_LOAD command */
187 __u32 prog_type; /* one of enum bpf_prog_type */
188 __u32 insn_cnt;
189 __aligned_u64 insns;
190 __aligned_u64 license;
Alexei Starovoitovcbd35702014-09-26 00:17:03 -0700[diff] [blame]191 __u32 log_level; /* verbosity level of verifier */
192 __u32 log_size; /* size of user buffer */
193 __aligned_u64 log_buf; /* user supplied buffer */
Alexei Starovoitov25415172015-03-25 12:49:20 -0700[diff] [blame]194 __u32 kern_version; /* checked when prog_type=kprobe */
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]195 };
Daniel Borkmannb2197752015-10-29 14:58:09 +0100[diff] [blame]196
197 struct { /* anonymous struct used by BPF_OBJ_* commands */
198 __aligned_u64 pathname;
199 __u32 bpf_fd;
Chenbo Feng4672ded2017-10-18 13:00:22 -0700[diff] [blame]200 __u32 file_flags;
Daniel Borkmannb2197752015-10-29 14:58:09 +0100[diff] [blame]201 };
Daniel Mack00615df2016-11-23 16:52:27 +0100[diff] [blame]202
203 struct { /* anonymous struct used by BPF_PROG_ATTACH/DETACH commands */
204 __u32 target_fd; /* container object to attach to */
205 __u32 attach_bpf_fd; /* eBPF program to attach */
206 __u32 attach_type;
Alexei Starovoitov1ee2b4b2017-02-10 20:28:24 -0800[diff] [blame]207 __u32 attach_flags;
Daniel Mack00615df2016-11-23 16:52:27 +0100[diff] [blame]208 };
Alexei Starovoitov99c55f72014-09-26 00:16:57 -0700[diff] [blame]209} __attribute__((aligned(8)));
210
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]211/* integer value in 'imm' field of BPF_CALL instruction selects which helper
212 * function eBPF program intends to call
213 */
214enum bpf_func_id {
215 BPF_FUNC_unspec,
Alexei Starovoitovd0003ec2014-11-13 17:36:49 -0800[diff] [blame]216 BPF_FUNC_map_lookup_elem, /* void *map_lookup_elem(&map, &key) */
217 BPF_FUNC_map_update_elem, /* int map_update_elem(&map, &key, &value, flags) */
218 BPF_FUNC_map_delete_elem, /* int map_delete_elem(&map, &key) */
Alexei Starovoitov25415172015-03-25 12:49:20 -0700[diff] [blame]219 BPF_FUNC_probe_read, /* int bpf_probe_read(void *dst, int size, void *src) */
Alexei Starovoitovd9847d32015-03-25 12:49:21 -0700[diff] [blame]220 BPF_FUNC_ktime_get_ns, /* u64 bpf_ktime_get_ns(void) */
Alexei Starovoitov9c959c82015-03-25 12:49:22 -0700[diff] [blame]221 BPF_FUNC_trace_printk, /* int bpf_trace_printk(const char *fmt, int fmt_size, ...) */
Daniel Borkmann03e69b52015-03-14 02:27:16 +0100[diff] [blame]222 BPF_FUNC_get_prandom_u32, /* u32 prandom_u32(void) */
Daniel Borkmannc04167c2015-03-14 02:27:17 +0100[diff] [blame]223 BPF_FUNC_get_smp_processor_id, /* u32 raw_smp_processor_id(void) */
Alexei Starovoitov91bc48222015-04-01 17:12:13 -0700[diff] [blame]224
225 /**
226 * skb_store_bytes(skb, offset, from, len, flags) - store bytes into packet
227 * @skb: pointer to skb
Alexei Starovoitova1661512015-04-15 12:55:45 -0700[diff] [blame]228 * @offset: offset within packet from skb->mac_header
Alexei Starovoitov91bc48222015-04-01 17:12:13 -0700[diff] [blame]229 * @from: pointer where to copy bytes from
230 * @len: number of bytes to store into packet
231 * @flags: bit 0 - if true, recompute skb->csum
232 * other bits - reserved
233 * Return: 0 on success
234 */
235 BPF_FUNC_skb_store_bytes,
236
237 /**
238 * l3_csum_replace(skb, offset, from, to, flags) - recompute IP checksum
239 * @skb: pointer to skb
240 * @offset: offset within packet where IP checksum is located
241 * @from: old value of header field
242 * @to: new value of header field
243 * @flags: bits 0-3 - size of header field
244 * other bits - reserved
245 * Return: 0 on success
246 */
247 BPF_FUNC_l3_csum_replace,
248
249 /**
250 * l4_csum_replace(skb, offset, from, to, flags) - recompute TCP/UDP checksum
251 * @skb: pointer to skb
252 * @offset: offset within packet where TCP/UDP checksum is located
253 * @from: old value of header field
254 * @to: new value of header field
255 * @flags: bits 0-3 - size of header field
256 * bit 4 - is pseudo header
257 * other bits - reserved
258 * Return: 0 on success
259 */
260 BPF_FUNC_l4_csum_replace,
Alexei Starovoitov04fd61a2015-05-19 16:59:03 -0700[diff] [blame]261
262 /**
263 * bpf_tail_call(ctx, prog_array_map, index) - jump into another BPF program
264 * @ctx: context pointer passed to next program
265 * @prog_array_map: pointer to map which type is BPF_MAP_TYPE_PROG_ARRAY
266 * @index: index inside array that selects specific program to run
267 * Return: 0 on success
268 */
269 BPF_FUNC_tail_call,
Alexei Starovoitov3896d652015-06-02 16:03:14 -0700[diff] [blame]270
271 /**
272 * bpf_clone_redirect(skb, ifindex, flags) - redirect to another netdev
273 * @skb: pointer to skb
274 * @ifindex: ifindex of the net device
275 * @flags: bit 0 - if set, redirect to ingress instead of egress
276 * other bits - reserved
277 * Return: 0 on success
278 */
279 BPF_FUNC_clone_redirect,
Alexei Starovoitovffeedaf2015-06-12 19:39:12 -0700[diff] [blame]280
281 /**
282 * u64 bpf_get_current_pid_tgid(void)
283 * Return: current->tgid << 32 | current->pid
284 */
285 BPF_FUNC_get_current_pid_tgid,
286
287 /**
288 * u64 bpf_get_current_uid_gid(void)
289 * Return: current_gid << 32 | current_uid
290 */
291 BPF_FUNC_get_current_uid_gid,
292
293 /**
294 * bpf_get_current_comm(char *buf, int size_of_buf)
295 * stores current->comm into buf
296 * Return: 0 on success
297 */
298 BPF_FUNC_get_current_comm,
Daniel Borkmann8d20aab2015-07-15 14:21:42 +0200[diff] [blame]299
300 /**
301 * bpf_get_cgroup_classid(skb) - retrieve a proc's classid
302 * @skb: pointer to skb
303 * Return: classid if != 0
304 */
305 BPF_FUNC_get_cgroup_classid,
Alexei Starovoitov4e10df92015-07-20 20:34:18 -0700[diff] [blame]306 BPF_FUNC_skb_vlan_push, /* bpf_skb_vlan_push(skb, vlan_proto, vlan_tci) */
307 BPF_FUNC_skb_vlan_pop, /* bpf_skb_vlan_pop(skb) */
Alexei Starovoitovd3aa45c2015-07-30 15:36:57 -0700[diff] [blame]308
309 /**
310 * bpf_skb_[gs]et_tunnel_key(skb, key, size, flags)
311 * retrieve or populate tunnel metadata
312 * @skb: pointer to skb
313 * @key: pointer to 'struct bpf_tunnel_key'
314 * @size: size of 'struct bpf_tunnel_key'
315 * @flags: room for future extensions
316 * Retrun: 0 on success
317 */
318 BPF_FUNC_skb_get_tunnel_key,
319 BPF_FUNC_skb_set_tunnel_key,
Kaixu Xia35578d72015-08-06 07:02:35 +0000[diff] [blame]320 BPF_FUNC_perf_event_read, /* u64 bpf_perf_event_read(&map, index) */
Alexei Starovoitov27b29f62015-09-15 23:05:43 -0700[diff] [blame]321 /**
322 * bpf_redirect(ifindex, flags) - redirect to another netdev
323 * @ifindex: ifindex of the net device
324 * @flags: bit 0 - if set, redirect to ingress instead of egress
325 * other bits - reserved
326 * Return: TC_ACT_REDIRECT
327 */
328 BPF_FUNC_redirect,
Daniel Borkmannc46646d2015-09-30 01:41:51 +0200[diff] [blame]329
330 /**
331 * bpf_get_route_realm(skb) - retrieve a dst's tclassid
332 * @skb: pointer to skb
333 * Return: realm if != 0
334 */
335 BPF_FUNC_get_route_realm,
Alexei Starovoitova43eec32015-10-20 20:02:34 -0700[diff] [blame]336
337 /**
338 * bpf_perf_event_output(ctx, map, index, data, size) - output perf raw sample
339 * @ctx: struct pt_regs*
340 * @map: pointer to perf_event_array map
341 * @index: index of event in the map
342 * @data: data on stack to be output as raw data
343 * @size: size of data
344 * Return: 0 on success
345 */
346 BPF_FUNC_perf_event_output,
Daniel Borkmann05c74e52015-12-17 23:51:53 +0100[diff] [blame]347 BPF_FUNC_skb_load_bytes,
Alexei Starovoitovd5a3b1f2016-02-17 19:58:58 -0800[diff] [blame]348
349 /**
350 * bpf_get_stackid(ctx, map, flags) - walk user or kernel stack and return id
351 * @ctx: struct pt_regs*
352 * @map: pointer to stack_trace map
353 * @flags: bits 0-7 - numer of stack frames to skip
354 * bit 8 - collect user stack instead of kernel
355 * bit 9 - compare stacks by hash only
356 * bit 10 - if two different stacks hash into the same stackid
357 * discard old
358 * other bits - reserved
359 * Return: >= 0 stackid on success or negative error
360 */
361 BPF_FUNC_get_stackid,
Daniel Borkmann7d672342016-02-19 23:05:23 +0100[diff] [blame]362
363 /**
364 * bpf_csum_diff(from, from_size, to, to_size, seed) - calculate csum diff
365 * @from: raw from buffer
366 * @from_size: length of from buffer
367 * @to: raw to buffer
368 * @to_size: length of to buffer
369 * @seed: optional seed
370 * Return: csum result
371 */
372 BPF_FUNC_csum_diff,
Daniel Borkmann14ca0752016-03-04 15:15:06 +0100[diff] [blame]373
374 /**
375 * bpf_skb_[gs]et_tunnel_opt(skb, opt, size)
376 * retrieve or populate tunnel options metadata
377 * @skb: pointer to skb
378 * @opt: pointer to raw tunnel option data
379 * @size: size of @opt
380 * Return: 0 on success for set, option size for get
381 */
382 BPF_FUNC_skb_get_tunnel_opt,
383 BPF_FUNC_skb_set_tunnel_opt,
Daniel Borkmann65781712016-06-28 12:18:27 +0200[diff] [blame]384
385 /**
386 * bpf_skb_change_proto(skb, proto, flags)
387 * Change protocol of the skb. Currently supported is
388 * v4 -> v6, v6 -> v4 transitions. The helper will also
389 * resize the skb. eBPF program is expected to fill the
390 * new headers via skb_store_bytes and lX_csum_replace.
391 * @skb: pointer to skb
392 * @proto: new skb->protocol type
393 * @flags: reserved
394 * Return: 0 on success or negative error
395 */
396 BPF_FUNC_skb_change_proto,
397
Daniel Borkmannd2485c42016-06-28 12:18:28 +0200[diff] [blame]398 /**
399 * bpf_skb_change_type(skb, type)
400 * Change packet type of skb.
401 * @skb: pointer to skb
402 * @type: new skb->pkt_type type
403 * Return: 0 on success or negative error
404 */
405 BPF_FUNC_skb_change_type,
406
Martin KaFai Lau4a482f32016-06-30 10:28:44 -0700[diff] [blame]407 /**
Daniel Borkmann747ea552016-08-12 22:17:17 +0200[diff] [blame]408 * bpf_skb_under_cgroup(skb, map, index) - Check cgroup2 membership of skb
Martin KaFai Lau4a482f32016-06-30 10:28:44 -0700[diff] [blame]409 * @skb: pointer to skb
410 * @map: pointer to bpf_map in BPF_MAP_TYPE_CGROUP_ARRAY type
411 * @index: index of the cgroup in the bpf_map
412 * Return:
413 * == 0 skb failed the cgroup2 descendant test
414 * == 1 skb succeeded the cgroup2 descendant test
415 * < 0 error
416 */
Daniel Borkmann747ea552016-08-12 22:17:17 +0200[diff] [blame]417 BPF_FUNC_skb_under_cgroup,
Daniel Borkmann13c5c242016-07-03 01:28:47 +0200[diff] [blame]418
419 /**
420 * bpf_get_hash_recalc(skb)
421 * Retrieve and possibly recalculate skb->hash.
422 * @skb: pointer to skb
423 * Return: hash
424 */
425 BPF_FUNC_get_hash_recalc,
426
Alexei Starovoitov606274c2016-07-06 22:38:36 -0700[diff] [blame]427 /**
428 * u64 bpf_get_current_task(void)
429 * Returns current task_struct
430 * Return: current
431 */
432 BPF_FUNC_get_current_task,
433
Sargun Dhillon96ae5222016-07-25 05:54:46 -0700[diff] [blame]434 /**
435 * bpf_probe_write_user(void *dst, void *src, int len)
436 * safely attempt to write to a location
437 * @dst: destination address in userspace
438 * @src: source address on stack
439 * @len: number of bytes to copy
440 * Return: 0 on success or negative error
441 */
442 BPF_FUNC_probe_write_user,
443
Sargun Dhillon60d20f92016-08-12 08:56:52 -0700[diff] [blame]444 /**
445 * bpf_current_task_under_cgroup(map, index) - Check cgroup2 membership of current task
446 * @map: pointer to bpf_map in BPF_MAP_TYPE_CGROUP_ARRAY type
447 * @index: index of the cgroup in the bpf_map
448 * Return:
449 * == 0 current failed the cgroup2 descendant test
450 * == 1 current succeeded the cgroup2 descendant test
451 * < 0 error
452 */
453 BPF_FUNC_current_task_under_cgroup,
454
Daniel Borkmann5293efe2016-08-18 01:00:39 +0200[diff] [blame]455 /**
456 * bpf_skb_change_tail(skb, len, flags)
457 * The helper will resize the skb to the given new size,
458 * to be used f.e. with control messages.
459 * @skb: pointer to skb
460 * @len: new skb length
461 * @flags: reserved
462 * Return: 0 on success or negative error
463 */
464 BPF_FUNC_skb_change_tail,
465
Daniel Borkmann36bbef52016-09-20 00:26:13 +0200[diff] [blame]466 /**
467 * bpf_skb_pull_data(skb, len)
468 * The helper will pull in non-linear data in case the
469 * skb is non-linear and not all of len are part of the
470 * linear section. Only needed for read/write with direct
471 * packet access.
472 * @skb: pointer to skb
473 * @len: len to make read/writeable
474 * Return: 0 on success or negative error
475 */
476 BPF_FUNC_skb_pull_data,
477
478 /**
479 * bpf_csum_update(skb, csum)
480 * Adds csum into skb->csum in case of CHECKSUM_COMPLETE.
481 * @skb: pointer to skb
482 * @csum: csum to add
483 * Return: csum on success or negative error
484 */
485 BPF_FUNC_csum_update,
486
Daniel Borkmann7a4b28c2016-09-23 01:28:37 +0200[diff] [blame]487 /**
488 * bpf_set_hash_invalid(skb)
489 * Invalidate current skb>hash.
490 * @skb: pointer to skb
491 */
492 BPF_FUNC_set_hash_invalid,
493
Chenbo Feng0aa01512017-05-03 15:22:42 -0700[diff] [blame]494 /**
495 * int bpf_get_numa_node_id()
496 * Return: Id of current NUMA node.
497 */
498 BPF_FUNC_get_numa_node_id,
499
500 /**
501 * int bpf_skb_change_head()
502 * Grows headroom of skb and adjusts MAC header offset accordingly.
503 * Will extends/reallocae as required automatically.
504 * May change skb data pointer and will thus invalidate any check
505 * performed for direct packet access.
506 * @skb: pointer to skb
507 * @len: length of header to be pushed in front
508 * @flags: Flags (unused for now)
509 * Return: 0 on success or negative error
510 */
511 BPF_FUNC_skb_change_head,
512
513 /**
514 * int bpf_xdp_adjust_head(xdp_md, delta)
515 * Adjust the xdp_md.data by delta
516 * @xdp_md: pointer to xdp_md
517 * @delta: An positive/negative integer to be added to xdp_md.data
518 * Return: 0 on success or negative on error
519 */
520 BPF_FUNC_xdp_adjust_head,
521
522 /**
523 * int bpf_probe_read_str(void *dst, int size, const void *unsafe_ptr)
524 * Copy a NUL terminated string from unsafe address. In case the string
525 * length is smaller than size, the target is not padded with further NUL
526 * bytes. In case the string length is larger than size, just count-1
527 * bytes are copied and the last byte is set to NUL.
528 * @dst: destination address
529 * @size: maximum number of bytes to copy, including the trailing NUL
530 * @unsafe_ptr: unsafe address
531 * Return:
532 * > 0 length of the string including the trailing NUL on success
533 * < 0 error
534 */
535 BPF_FUNC_probe_read_str,
536
Chenbo Feng09313662017-03-22 17:27:34 -0700[diff] [blame]537 /**
538 * u64 bpf_bpf_get_socket_cookie(skb)
539 * Get the cookie for the socket stored inside sk_buff.
540 * @skb: pointer to skb
541 * Return: 8 Bytes non-decreasing number on success or 0 if the socket
542 * field is missing inside sk_buff
543 */
544 BPF_FUNC_get_socket_cookie,
545
Chenbo Fenga29c81e2017-03-22 17:27:35 -0700[diff] [blame]546 /**
547 * u32 bpf_get_socket_uid(skb)
548 * Get the owner uid of the socket stored inside sk_buff.
549 * @skb: pointer to skb
550 * Return: uid of the socket owner on success or 0 if the socket pointer
551 * inside sk_buff is NULL
552 */
553 BPF_FUNC_get_socket_uid,
554
Alexei Starovoitov09756af2014-09-26 00:17:00 -0700[diff] [blame]555 __BPF_FUNC_MAX_ID,
556};
557
Daniel Borkmann781c53b2016-01-11 01:16:38 +0100[diff] [blame]558/* All flags used by eBPF helper functions, placed here. */
559
560/* BPF_FUNC_skb_store_bytes flags. */
561#define BPF_F_RECOMPUTE_CSUM (1ULL << 0)
Daniel Borkmann8afd54c2016-03-04 15:15:03 +0100[diff] [blame]562#define BPF_F_INVALIDATE_HASH (1ULL << 1)
Daniel Borkmann781c53b2016-01-11 01:16:38 +0100[diff] [blame]563
564/* BPF_FUNC_l3_csum_replace and BPF_FUNC_l4_csum_replace flags.
565 * First 4 bits are for passing the header field size.
566 */
567#define BPF_F_HDR_FIELD_MASK 0xfULL
568
569/* BPF_FUNC_l4_csum_replace flags. */
570#define BPF_F_PSEUDO_HDR (1ULL << 4)
Daniel Borkmann2f729592016-02-19 23:05:26 +0100[diff] [blame]571#define BPF_F_MARK_MANGLED_0 (1ULL << 5)
Daniel Borkmann781c53b2016-01-11 01:16:38 +0100[diff] [blame]572
573/* BPF_FUNC_clone_redirect and BPF_FUNC_redirect flags. */
574#define BPF_F_INGRESS (1ULL << 0)
575
Daniel Borkmannc6c33452016-01-11 01:16:39 +0100[diff] [blame]576/* BPF_FUNC_skb_set_tunnel_key and BPF_FUNC_skb_get_tunnel_key flags. */
577#define BPF_F_TUNINFO_IPV6 (1ULL << 0)
578
Alexei Starovoitovd5a3b1f2016-02-17 19:58:58 -0800[diff] [blame]579/* BPF_FUNC_get_stackid flags. */
580#define BPF_F_SKIP_FIELD_MASK 0xffULL
581#define BPF_F_USER_STACK (1ULL << 8)
582#define BPF_F_FAST_STACK_CMP (1ULL << 9)
583#define BPF_F_REUSE_STACKID (1ULL << 10)
584
Daniel Borkmann2da897e2016-02-23 02:05:26 +0100[diff] [blame]585/* BPF_FUNC_skb_set_tunnel_key flags. */
586#define BPF_F_ZERO_CSUM_TX (1ULL << 1)
Daniel Borkmann22080872016-03-04 15:15:05 +0100[diff] [blame]587#define BPF_F_DONT_FRAGMENT (1ULL << 2)
Daniel Borkmann2da897e2016-02-23 02:05:26 +0100[diff] [blame]588
Daniel Borkmann6816a7f2016-06-28 12:18:25 +0200[diff] [blame]589/* BPF_FUNC_perf_event_output and BPF_FUNC_perf_event_read flags. */
Daniel Borkmann1e337592016-04-18 21:01:23 +0200[diff] [blame]590#define BPF_F_INDEX_MASK 0xffffffffULL
591#define BPF_F_CURRENT_CPU BPF_F_INDEX_MASK
Daniel Borkmann555c8a82016-07-14 18:08:05 +0200[diff] [blame]592/* BPF_FUNC_perf_event_output for sk_buff input context. */
593#define BPF_F_CTXLEN_MASK (0xfffffULL << 32)
Daniel Borkmann1e337592016-04-18 21:01:23 +0200[diff] [blame]594
Alexei Starovoitov9bac3d62015-03-13 11:57:42 -0700[diff] [blame]595/* user accessible mirror of in-kernel sk_buff.
596 * new fields can only be added to the end of this structure
597 */
598struct __sk_buff {
599 __u32 len;
600 __u32 pkt_type;
601 __u32 mark;
602 __u32 queue_mapping;
Alexei Starovoitovc2497392015-03-16 18:06:02 -0700[diff] [blame]603 __u32 protocol;
604 __u32 vlan_present;
605 __u32 vlan_tci;
Michal Sekletar27cd5452015-03-24 14:48:41 +0100[diff] [blame]606 __u32 vlan_proto;
Daniel Borkmannbcad5712015-04-03 20:52:24 +0200[diff] [blame]607 __u32 priority;
Alexei Starovoitov37e82c22015-05-27 15:30:39 -0700[diff] [blame]608 __u32 ingress_ifindex;
609 __u32 ifindex;
Alexei Starovoitovd691f9e2015-06-04 10:11:54 -0700[diff] [blame]610 __u32 tc_index;
611 __u32 cb[5];
Daniel Borkmannba7591d2015-08-01 00:46:29 +0200[diff] [blame]612 __u32 hash;
Daniel Borkmann045efa82015-09-15 23:05:42 -0700[diff] [blame]613 __u32 tc_classid;
Alexei Starovoitov969bf052016-05-05 19:49:10 -0700[diff] [blame]614 __u32 data;
615 __u32 data_end;
Alexei Starovoitov9bac3d62015-03-13 11:57:42 -0700[diff] [blame]616};
617
Alexei Starovoitovd3aa45c2015-07-30 15:36:57 -0700[diff] [blame]618struct bpf_tunnel_key {
619 __u32 tunnel_id;
Daniel Borkmannc6c33452016-01-11 01:16:39 +0100[diff] [blame]620 union {
621 __u32 remote_ipv4;
622 __u32 remote_ipv6[4];
623 };
624 __u8 tunnel_tos;
625 __u8 tunnel_ttl;
Daniel Borkmannc0e760c2016-03-30 00:02:00 +0200[diff] [blame]626 __u16 tunnel_ext;
Daniel Borkmann4018ab12016-03-09 03:00:05 +0100[diff] [blame]627 __u32 tunnel_label;
Alexei Starovoitovd3aa45c2015-07-30 15:36:57 -0700[diff] [blame]628};
629
Brenden Blanco6a773a12016-07-19 12:16:47 -0700[diff] [blame]630/* User return codes for XDP prog type.
631 * A valid XDP program must return one of these defined values. All other
632 * return codes are reserved for future use. Unknown return codes will result
633 * in packet drop.
634 */
635enum xdp_action {
636 XDP_ABORTED = 0,
637 XDP_DROP,
638 XDP_PASS,
Brenden Blanco6ce96ca2016-07-19 12:16:53 -0700[diff] [blame]639 XDP_TX,
Brenden Blanco6a773a12016-07-19 12:16:47 -0700[diff] [blame]640};
641
642/* user accessible metadata for XDP packet hook
643 * new fields must be added to the end of this structure
644 */
645struct xdp_md {
646 __u32 data;
647 __u32 data_end;
648};
649
Alexei Starovoitovdaedfb22014-09-04 22:17:18 -0700[diff] [blame]650#endif /* _UAPI__LINUX_BPF_H__ */