| blob | 52fc24c692789ca43b46e1e71dd105842b845346 |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #include <errno.h>
7 #include <algorithm>
8 #include <set>
9 #include <vector>
20 };
22 // We want to access some of the private methods in the code generator. We
23 // do so by defining a "friend" that makes these methods public for us.
29 }
35 }
38 };
43 // Create the most basic valid BPF program:
44 // RET ERR_ALLOWED
48 }
51 // Create a program with a single branch:
52 // JUMP if eq 42 then $0 else $1
53 // 0: RET EPERM
54 // 1: RET ERR_ALLOWED
62 }
65 // Create a program with a single branch:
66 // JUMP if eq 42 then $0 else $0
67 // 0: RET ERR_ALLOWED
69 // N.B.: As the instructions in both sides of the branch are already
70 // the same object, we do not actually have any "mergeable" branches.
71 // This needs to be reflected in our choice of "flags".
77 }
80 // Creates a basic BPF program that we'll use to test some of the code:
81 // JUMP if eq 42 the $0 else $1 (insn6)
82 // 0: LD 23 (insn5)
83 // 1: JUMP if eq 42 then $2 else $4 (insn4)
84 // 2: JUMP to $3 (insn1)
85 // 3: LD 42 (insn0)
86 // RET ErrorCode(42) (insn2)
87 // 4: LD 42 (insn3)
88 // RET ErrorCode(42) (insn3+)
107 // We explicitly duplicate instructions so that MergeTails() can coalesce
108 // them later.
132 // Force a basic block that ends in neither a jump instruction nor a return
133 // instruction. It only contains "insn5". This exercises one of the less
134 // common code paths in the topo-sort algorithm.
135 // This also gives us a diamond-shaped pattern in our graph, which stresses
136 // another aspect of the topo-sort algorithm (namely, the ability to
137 // correctly count the incoming branches for subtrees that are not disjunct).
142 }
145 // This simple program demonstrates https://crbug.com/351103/
146 // The two "LOAD 0" instructions are blocks of their own. MergeTails() could
147 // be tempted to merge them since they are the same. However, they are
148 // not mergeable because they fall-through to non semantically equivalent
149 // blocks.
150 // Without the fix for this bug, this program should trigger the check in
151 // CompileAndCompare: the serialized graphs from the program and its compiled
152 // version will differ.
153 //
154 // 0) LOAD 1 // ???
155 // 1) if A == 0x1; then JMP 2 else JMP 3
156 // 2) LOAD 0 // System call number
157 // 3) if A == 0x2; then JMP 4 else JMP 5
158 // 4) LOAD 0 // System call number
159 // 5) if A == 0x1; then JMP 6 else JMP 7
160 // 6) RET 0x50000 // errno = 0
161 // 7) RET 0x50001 // errno = 1
177 }
180 // Without the fix for https://crbug.com/351103/, (see
181 // SampleProgramConfusingTails()), this would generate a cyclic graph and
182 // crash as the two "LOAD 0" instructions would get merged.
183 //
184 // 0) LOAD 1 // ???
185 // 1) if A == 0x1; then JMP 2 else JMP 3
186 // 2) LOAD 0 // System call number
187 // 3) if A == 0x2; then JMP 4 else JMP 5
188 // 4) LOAD 0 // System call number
189 // 5) RET 0x50001 // errno = 1
202 }
206 // This is similar to SampleProgramConfusingTails(), except that
207 // instructions 2 and 4 are now RET instructions.
208 // In PointerCompare(), this exercises the path where two blocks are of the
209 // same length and identical and the last instruction is a JMP or RET, so the
210 // following blocks don't need to be looked at and the blocks are mergeable.
211 //
212 // 0) LOAD 1 // ???
213 // 1) if A == 0x1; then JMP 2 else JMP 3
214 // 2) RET 0x5002a // errno = 42
215 // 3) if A == 0x2; then JMP 4 else JMP 5
216 // 4) RET 0x5002a // errno = 42
217 // 5) if A == 0x1; then JMP 6 else JMP 7
218 // 6) RET 0x50000 // errno = 0
219 // 7) RET 0x50001 // errno = 1
235 }
238 SampleProgramOneInstruction,
239 SampleProgramSimpleBranch,
240 SampleProgramAtypicalBranch,
241 SampleProgramComplex,
242 SampleProgramConfusingTails,
243 SampleProgramConfusingTailsBasic,
244 SampleProgramConfusingTailsMergeable,
245 };
248 CodeGenUnittestHelper codegen;
252 }
253 }
257 // Nothing to do here
258 }
262 }
265 BranchTargets branch_targets;
268 // Verifying the general properties that should be true for every
269 // well-formed BPF program.
270 // Perform a depth-first traversal of the BPF program an verify that all
271 // targets of BPF_JMP instructions are represented in the "branch_targets".
272 // At the same time, compute a set of both the branch targets and all the
273 // instructions in the program.
289 }
295 }
301 }
302 }
305 // We can now subtract the set of the branch targets from the set of all
306 // instructions. This gives us a set with the instructions that nobody
307 // ever jumps to. Verify that they are no included in the
308 // "branch_targets" that FindBranchTargets() computed for us.
320 }
321 }
328 BranchTargets branch_targets;
330 TargetsToBlocks all_blocks;
337 // Basic blocks are supposed to start with a branch target and end with
338 // either a jump or a return instruction. It can also end, if the next
339 // instruction forms the beginning of a new basic block. There should be
340 // no other jumps or return instructions in the middle of a basic block.
360 }
362 }
363 }
364 }
368 }
371 BranchTargets branch_targets;
373 TargetsToBlocks all_blocks;
377 // The shape of our graph and thus the function of our program should
378 // still be unchanged after we run MergeTails(). We verify this by
379 // serializing the graph and verifying that it is still the same.
380 // We also verify that at least some of the edges changed because of
381 // tail merging.
385 // The loop executes twice. After the first run, we call MergeTails() on
386 // our graph.
388 // Traverse the entire program in depth-first order.
391 // Serialize the instructions in this basic block. In general, we only
392 // need to serialize "code" and "k"; except for a BPF_JA instruction
393 // where "k" isn't set.
394 // The stream of instructions should be unchanged after MergeTails().
404 }
405 }
407 // Also serialize the addresses the basic blocks as we encounter them.
408 // This will change as basic blocks are coalesed by MergeTails().
411 // Depth-first traversal of the graph. We only ever need to look at the
412 // very last instruction in the basic block, as that is the only one that
413 // can change code flow.
416 // For jump instructions, we need to remember the "false" branch while
417 // traversing the "true" branch. This is not necessary for BPF_JA which
418 // only has a single branch.
421 }
424 // After a BPF_RET, see if we need to back track.
427 }
431 // For "normal" instructions, just follow to the next basic block.
433 }
434 }
436 // Our loop runs exactly two times.
439 }
441 }
447 }
448 }
452 }
455 // TopoSortBasicBlocks() has internal checks that cause it to fail, if it
456 // detects a problem. Typically, if anything goes wrong, this looks to the
457 // TopoSort algorithm as if there had been cycles in the input data.
458 // This provides a pretty good unittest.
459 // We hand-crafted the program returned by SampleProgram() to exercise
460 // several of the more interesting code-paths. See comments in
461 // SampleProgram() for details.
462 // In addition to relying on the internal consistency checks in the compiler,
463 // we also serialize the graph and the resulting BPF program and compare
464 // them. With the exception of BPF_JA instructions that might have been
465 // inserted, both instruction streams should be equivalent.
466 // As Compile() modifies the instructions, we have to serialize the graph
467 // before calling Compile().
469 Instructions source_stack;
473 // Do not serialize BPF_JA instructions (see above).
479 }
486 }
489 }
490 // Only serialize "code" and "k". That's all the information we need to
491 // compare. The rest of the information is encoded in the order of
492 // instructions.
496 }
498 // Compile the program
502 // Serialize the resulting BPF instructions.
510 // Do not serialize BPF_JA instructions (see above).
516 }
523 }
526 }
527 // Serialize the same information that we serialized before compilation.
530 }
532 }
536 }