experiment01-tailgrow: Clean up example xdp_prog_kern2.c

netoptimizer · netoptimizer · commit 4a627a53f53e · 2020-05-05T19:04:00.000+02:00
Signed-off-by: Jesper Dangaard Brouer &lt;brouer@redhat.com&gt;
diff --git a/experiment01-tailgrow/README.org b/experiment01-tailgrow/README.org
@@ -36,6 +36,18 @@ the overhead when doing =XDP_TX=.  Selecting others BPF programs via
  sudo ./xdp_loader --dev mlx5p1 --force --prog xdp_tailgrow_tx
 #+end_src
 
+* Alternative methods
+
+** Works: Use loop to access data_end
+
+Code in [[file:xdp_prog_kern2.c]] shows howto find the =data_end=,
+*without parsing packet contents*, but by advancing a =data= position
+pointer one-byte at the time in a bounded loop.  The bounded loop with
+max number of iterations allows the verifier to see the bound.  (This
+obviously depend on the bounded loop support that was added in kernel
+[[https://git.kernel.org/torvalds/c/v5.3-rc1~140^2~179^2^2~5][v5.3]]).
+This is not very effecient, but it works.
+
 * Methods that fail
 
 Methods for accessing access BPF packet data at XDP =data_end=.
diff --git a/experiment01-tailgrow/xdp_prog_kern2.c b/experiment01-tailgrow/xdp_prog_kern2.c
@@ -1,34 +1,35 @@
 /* SPDX-License-Identifier: GPL-2.0 */
 #include <linux/bpf.h>
-#include <linux/in.h>
 #include <bpf/bpf_helpers.h>
-#include <bpf/bpf_endian.h>
-
-// The parsing helper functions from the packet01 lesson have moved here
-#include "../common/parsing_helpers.h"
-#include "../common/rewrite_helpers.h"
-
-/* Defines xdp_stats_map */
-#include "../common/xdp_stats_kern_user.h"
-#include "../common/xdp_stats_kern.h"
 
 #define MTU 1536
-#define MIN_LEN 64
-
-SEC("xdp_test1b")
-int _xdp_test1b(struct xdp_md *ctx)
+#define MIN_LEN 14
+
+/*
+ * This example show howto access packet last byte in XDP packet,
+ * without parsing packet contents.
+ *
+ * It is not very effecient, as it advance the data pointer one-byte in a
+ * loop until reaching data_end.  This is needed as the verifier only allows
+ * accessing data via advancing the position of the data pointer. The bounded
+ * loop with a max number of iterations allows the verifier to see the bound.
+ */
+
+SEC("xdp_end_loop")
+int _xdp_end_loop(struct xdp_md *ctx)
 {
 	void *data_end = (void *)(long)ctx->data_end;
 	void *data     = (void *)(long)ctx->data;
 	unsigned char *ptr;
 	unsigned int i;
 	void *pos;
 
+	/* Assume minimum length to reduce loops needed a bit */
 	unsigned int offset = MIN_LEN;
 
 	pos = data;
 
-	/* Verifier can handle this bounded basic-loop construct */
+	/* Verifier can handle this bounded 'basic-loop' construct */
 	for (i = 0; i < (MTU - MIN_LEN); i++ ) {
 		if (pos + offset > data_end) {
 			/* Promise verifier no access beyond data_end */
@@ -54,80 +55,9 @@ int _xdp_test1b(struct xdp_md *ctx)
 	goto out;
 
 read:
-//	ptr = pos + (offset - );
-//	ptr = pos + (offset - sizeof(*ptr) - 1);
-	ptr = pos + (offset - sizeof(*ptr));
+	ptr = pos + (offset - sizeof(*ptr)); /* Parentheses needed */
 	if (*ptr == 0xFF)
 		return XDP_ABORTED;
 out:
 	return XDP_PASS;
 }
-
-
-SEC("xdp_test1")
-int _xdp_test1(struct xdp_md *ctx)
-{
-	void *data_end = (void *)(long)ctx->data_end;
-	void *data     = (void *)(long)ctx->data;
-	unsigned char *ptr;
-	unsigned int i;
-	void *pos;
-
-	unsigned int offset = 64;
-
-	pos = data;
-
-	if (pos + 64 > data_end)
-		goto out;
-
-	for (i = 0; i < (1536-64); i++ ) {
-		if (pos + offset > data_end) {
-			goto out;
-		}
-		if (pos + offset == data_end) {
-			goto read;
-		}
-		offset++;
-	}
-	goto out;
-
-read:
-//	ptr = pos + (offset - );
-//	ptr = pos + (offset - sizeof(*ptr) - 1);
-	ptr = pos + (offset - sizeof(*ptr));
-	if (*ptr == 0xFF)
-		return XDP_ABORTED;
-out:
-	return XDP_PASS;
-}
-
-
-SEC("xdp_test2")
-int _xdp_test2(struct xdp_md *ctx)
-{
-	void *data_end = (void *)(long)ctx->data_end;
-	void *data = (void *)(long)ctx->data;
-	struct hdr_cursor nh;
-	unsigned char *ptr;
-
-	unsigned int offset = 64;
-
-	nh.pos = data;
-
-	if (nh.pos + offset > data_end)
-		goto out;
-
-//	ptr = nh.pos + (offset - 1);
-	ptr = nh.pos + (offset - sizeof(*ptr));
-	if (*ptr == 0xFF)
-		return XDP_ABORTED;
-out:
-	return xdp_stats_record_action(ctx, XDP_PASS);
-}
-
-SEC("xdp_pass")
-int xdp_pass_f1(struct xdp_md *ctx)
-{
-	return xdp_stats_record_action(ctx, XDP_PASS);
-}
-
