| blob | c90bffcad30fd02f24bb74fc80e609982a5255d0 |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #include <stdio.h>
12 // Helper function for Traverse().
21 }
29 }
30 }
31 }
44 }
49 }
50 }
78 stderr,
85 }
88 }
101 }
115 }
135 }
136 }
138 }
143 // We can handle non-jumping instructions and "always" jumps. Both of
144 // them are followed by exactly one "next" instruction.
145 // We allow callers to defer specifying "next", but then they must call
146 // "joinInstructions" later.
151 }
154 }
156 // "Always" jumps use the "true" branch target, only.
161 // Non-jumping instructions do not use any of the branch targets.
165 }
166 }
171 }
175 }
177 }
183 // We can handle all conditional jumps. They are followed by both a
184 // "true" and a "false" branch.
187 }
189 // We allow callers to defer specifying exactly one of the branch
190 // targets. It must then be set later by calling "JoinInstructions".
192 }
196 }
199 // Merge two instructions, or set the branch target for an "always" jump.
200 // This function should be called, if the caller didn't initially provide
201 // a value for "next" when creating the instruction.
206 }
215 }
216 }
223 }
225 }
236 }
237 }
241 // Follow all possible paths through the "instructions" graph and compute
242 // a list of branch targets. This will later be needed to compute the
243 // boundaries of basic blocks.
244 // We maintain a set of all instructions that we have previously seen. This
245 // set ultimately converges on all instructions in the program.
247 Instructions stack;
251 // Found a jump. Increase count of incoming edges for each of the jump
252 // targets.
257 }
258 // Start a recursive decent for depth-first traversal.
260 // We haven't seen the "true" branch yet. Traverse it now. We have
261 // already remembered the "false" branch on the stack and will
262 // traverse it later.
266 // Now try traversing the "false" branch.
268 }
270 // This is a non-jump instruction, just continue to the next instruction
271 // (if any). It's OK if "insn" becomes NULL when reaching a return
272 // instruction.
275 "Internal compiler error; return instruction must be at "
277 }
281 // We have seen this instruction before. That could happen if it is
282 // a branch target. No need to continue processing.
284 }
285 }
287 // We are done processing all the way to a leaf node, backtrack up the
288 // stack to any branches that we haven't processed yet. By definition,
289 // this has to be a "false" branch, as we always process the "true"
290 // branches right away.
294 // We haven't seen the "false" branch yet. So, that's where we'll
295 // go now.
298 // We have seen both the "true" and the "false" branch, continue
299 // up the stack.
302 "Internal compiler error; cannot find all "
304 }
306 }
307 }
308 }
310 }
313 // Iterate over all the instructions between "head" and "tail" and
314 // insert them into a new basic block.
320 }
323 }
324 }
327 }
334 // Add a new basic block to "basic_blocks". Also set "firstBlock", if it
335 // has not been set before.
340 "Only the very first basic block should have no "
342 }
346 }
349 }
355 // Textbook implementation of a basic block generator. All basic blocks
356 // start with a branch target and end with either a return statement or
357 // a jump (or are followed by an instruction that forms the beginning of a
358 // new block). Both conditional and "always" jumps are supported.
361 Instructions stack;
366 // We somehow went in a circle. This should never be possible. Not even
367 // cyclic graphs are supposed to confuse us this much.
369 }
372 // We reached a branch target. Start a new basic block (this means,
373 // flushing the previous basic block first).
376 }
378 // We reached a jump instruction, this completes our current basic
379 // block. Flush it and continue by traversing both the true and the
380 // false branch of the jump. We need to maintain a stack to do so.
384 }
387 // If we are jumping to an instruction that we have previously
388 // processed, we are done with this branch. Continue by backtracking
389 // up the stack.
391 backtracking:
393 // We successfully traversed all reachable instructions.
396 // Going up the stack.
399 }
400 }
401 // Starting a new basic block.
405 // We found a non-jumping instruction, append it to current basic
406 // block.
410 // We reached a return statement, flush the current basic block and
411 // backtrack up the stack.
414 }
415 }
416 }
418 }
420 // We define a comparator that inspects the sequence of instructions in our
421 // basic block and any blocks referenced by this block. This function can be
422 // used in a "less" comparator for the purpose of storing pointers to basic
423 // blocks in STL containers; this gives an easy option to use STL to find
424 // shared tail sequences of basic blocks.
428 // Return <0, 0, or >0 depending on the ordering of "block1" and "block2".
429 // If we are looking at the exact same block, this is trivial and we don't
430 // need to do a full comparison.
433 }
435 // We compare the sequence of instructions in both basic blocks.
438 // Basic blocks should never be empty.
445 // If we have reached the end of the sequence of instructions in one or
446 // both basic blocks, we know the relative ordering between the two blocks
447 // and can return.
451 }
454 }
456 // If the two blocks are the same length (and have elementwise-equal code
457 // and k fields) and their last instructions are neither a JMP nor a RET
458 // (which is the only way we can reach this point), then we must compare
459 // their successors.
465 // Non jumping instructions will always have a valid next instruction.
470 blocks);
471 }
473 // Compare the individual fields for both instructions.
478 }
481 }
483 // Sanity check: If we're looking at a JMP or RET instruction, by definition
484 // it should be the last instruction of the basic block.
488 }
490 // RET instructions terminate execution, and only JMP instructions use the
491 // jt_ptr and jf_ptr fields. Anything else can continue to the next
492 // instruction in the basic block.
497 }
499 // Recursively compare the "true" and "false" branches.
500 // A well-formed BPF program can't have any cycles, so we know
501 // that our recursive algorithm will ultimately terminate.
502 // In the unlikely event that the programmer made a mistake and
503 // went out of the way to give us a cyclic program, we will crash
504 // with a stack overflow. We are OK with that.
508 blocks);
511 }
512 }
515 blocks);
516 }
517 }
520 // We enter all of our basic blocks into a set using the BasicBlock::Less()
521 // comparator. This naturally results in blocks with identical tails of
522 // instructions to map to the same entry in the set. Whenever we discover
523 // that a particular chain of instructions is already in the set, we merge
524 // the basic blocks and update the pointer in the "blocks" map.
525 // Returns the number of unique basic blocks.
526 // N.B. We don't merge instructions on a granularity that is finer than
527 // a basic block. In practice, this is sufficiently rare that we don't
528 // incur a big cost.
529 // Similarly, we currently don't merge anything other than tails. In
530 // the future, we might decide to revisit this decision and attempt to
531 // merge arbitrary sub-sequences of instructions.
540 // This is the first time we see this particular sequence of
541 // instructions. Enter the basic block into the set of known
542 // basic blocks.
545 // We have previously seen another basic block that defines the same
546 // sequence of instructions. Merge the two blocks and update the
547 // pointer in the "blocks" map.
549 }
550 }
551 }
556 // We increment the number of incoming branches each time we encounter a
557 // basic block. But we only traverse recursively the very first time we
558 // encounter a new block. This is necessary to make topological sorting
559 // work correctly.
564 targets_to_blocks,
565 incoming_branches);
569 targets_to_blocks,
570 incoming_branches);
571 }
574 targets_to_blocks,
575 incoming_branches);
576 }
577 }
578 }
583 // Textbook implementation of a toposort. We keep looking for basic blocks
584 // that don't have any incoming branches (initially, this is just the
585 // "first_block") and add them to the topologically sorted list of
586 // "basic_blocks". As we do so, we remove outgoing branches. This potentially
587 // ends up making our descendants eligible for the sorted list. The
588 // sorting algorithm terminates when there are no more basic blocks that have
589 // no incoming branches. If we didn't move all blocks from the set of
590 // "unordered_blocks" to the sorted list of "basic_blocks", there must have
591 // been a cyclic dependency. This should never happen in a BPF program, as
592 // well-formed BPF programs only ever have forward branches.
593 IncomingBranches unordered_blocks;
598 // Move block from "unordered_blocks" to "basic_blocks".
601 // Inspect last instruction in the basic block. This is typically either a
602 // jump or a return statement. But it could also be a "normal" instruction
603 // that is followed by a jump target.
606 // Remove outgoing branches. This might end up moving our descendants
607 // into set of "head" nodes that no longer have any incoming branches.
613 }
614 }
619 }
621 // We encountered an instruction that doesn't change code flow. Try to
622 // pick the next "first_block" from "last_insn->next", if possible.
629 // Our basic block is supposed to be followed by "last_insn->next",
630 // but dependencies prevent this from happening. Insert a BPF_JA
631 // instruction to correct the code flow.
635 }
636 }
640 }
642 }
643 // Proceed by picking an arbitrary node from the set of basic blocks that
644 // do not have any incoming branches.
647 }
648 }
652 // While we previously used pointers in jt_ptr and jf_ptr to link jump
653 // instructions to their targets, we now convert these jumps to relative
654 // jumps that are suitable for loading the BPF program into the kernel.
657 // Since we just completed a toposort, all jump targets are guaranteed to
658 // go forward. This means, iterating over the basic blocks in reverse makes
659 // it trivial to compute the correct offsets.
669 // Basic block ended in a jump instruction. We can now compute the
670 // appropriate offsets.
672 // "Always" jumps use the 32bit "k" field for the offset, instead
673 // of the 8bit "jt" and "jf" fields.
678 // The offset computations for conditional jumps are just the same
679 // as for "always" jumps.
683 // There is an added complication, because conditional relative jumps
684 // can only jump at most 255 instructions forward. If we have to jump
685 // further, insert an extra "always" jump.
693 // The newly inserted "always" jump, of course, requires us to adjust
694 // the jump targets in the original conditional jump.
697 }
704 // Again, we have to adjust the jump targets in the original
705 // conditional jump.
708 }
710 // Now we can finally set the relative jump targets in the conditional
711 // jump instruction. Afterwards, we must no longer access the jt_ptr
712 // and jf_ptr fields.
715 }
719 }
721 // Proceed to next basic block.
724 }
726 }
730 // Our basic blocks have been sorted and relative jump offsets have been
731 // computed. The last remaining step is for all the instructions in our
732 // basic blocks to be concatenated into a BPF program.
744 }
745 }
747 }
752 "Cannot call Compile() multiple times. Create a new code "
754 }
757 BranchTargets branch_targets;
759 TargetsToBlocks all_blocks;
763 BasicBlocks basic_blocks;
768 }