From: Yonghong Song <yonghong.song@linux.dev>
To: Puranjay Mohan <puranjay@kernel.org>,
Alexei Starovoitov <ast@kernel.org>,
Daniel Borkmann <daniel@iogearbox.net>,
Andrii Nakryiko <andrii@kernel.org>,
Martin KaFai Lau <martin.lau@linux.dev>,
Eduard Zingerman <eddyz87@gmail.com>, Song Liu <song@kernel.org>,
John Fastabend <john.fastabend@gmail.com>,
KP Singh <kpsingh@kernel.org>,
Stanislav Fomichev <sdf@fomichev.me>, Hao Luo <haoluo@google.com>,
Jiri Olsa <jolsa@kernel.org>,
Xu Kuohai <xukuohai@huaweicloud.com>,
Catalin Marinas <catalin.marinas@arm.com>,
Will Deacon <will@kernel.org>, Mykola Lysenko <mykolal@fb.com>,
bpf@vger.kernel.org
Subject: Re: [PATCH bpf-next v2 2/3] bpf, arm64: JIT support for private stack
Date: Thu, 24 Jul 2025 09:58:43 -0700 [thread overview]
Message-ID: <aa80ed3a-caab-4dc6-9f04-34017f50c230@linux.dev> (raw)
In-Reply-To: <20250724120257.7299-3-puranjay@kernel.org>
On 7/24/25 5:02 AM, Puranjay Mohan wrote:
> The private stack is allocated in bpf_int_jit_compile() with 16-byte
> alignment. It includes additional guard regions to detect stack
> overflows and underflows at runtime.
>
> Memory layout:
>
> +------------------------------------------------------+
> | |
> | 16 bytes padding (overflow guard - stack top) |
> | [ detects writes beyond top of stack ] |
> BPF FP ->+------------------------------------------------------+
> | |
> | BPF private stack (sized by verifier) |
> | [ 16-byte aligned ] |
> | |
> BPF PRIV SP ->+------------------------------------------------------+
> | |
> | 16 bytes padding (underflow guard - stack bottom) |
> | [ detects accesses before start of stack ] |
> | |
> +------------------------------------------------------+
>
> On detection of an overflow or underflow, the kernel emits messages
> like:
> BPF private stack overflow/underflow detected for prog <prog_name>
>
> After commit bd737fcb6485 ("bpf, arm64: Get rid of fpb"), Jited BPF
> programs use the stack in two ways:
> 1. Via the BPF frame pointer (top of stack), using negative offsets.
> 2. Via the stack pointer (bottom of stack), using positive offsets in
> LDR/STR instructions.
>
> When a private stack is used, ARM64 callee-saved register x27 replaces
> the stack pointer. The BPF frame pointer usage remains unchanged; but it
> now points to the top of the private stack.
>
> Relevant tests (Enabled in following patch):
>
> #415/1 struct_ops_private_stack/private_stack:OK
> #415/2 struct_ops_private_stack/private_stack_fail:OK
> #415/3 struct_ops_private_stack/private_stack_recur:OK
> #415 struct_ops_private_stack:OK
> #549/1 verifier_private_stack/Private stack, single prog:OK
> #549/2 verifier_private_stack/Private stack, subtree > MAX_BPF_STACK:OK
> #549/3 verifier_private_stack/No private stack:OK
> #549/4 verifier_private_stack/Private stack, callback:OK
> #549/5 verifier_private_stack/Private stack, exception in main prog:OK
> #549/6 verifier_private_stack/Private stack, exception in subprog:OK
> #549/7 verifier_private_stack/Private stack, async callback, not nested:OK
> #549/8 verifier_private_stack/Private stack, async callback, potential nesting:OK
> #549 verifier_private_stack:OK
> Summary: 2/11 PASSED, 0 SKIPPED, 0 FAILED
>
> Signed-off-by: Puranjay Mohan <puranjay@kernel.org>
Acked-by: Yonghong Song <yonghong.song@linux.dev>
next prev parent reply other threads:[~2025-07-24 16:58 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-07-24 12:02 [PATCH bpf-next v2 0/3] bpf: Private stack support for arm64 JIT Puranjay Mohan
2025-07-24 12:02 ` [PATCH bpf-next v2 1/3] bpf: move bpf_jit_get_prog_name() to core.c Puranjay Mohan
2025-07-24 16:01 ` Yonghong Song
2025-07-24 12:02 ` [PATCH bpf-next v2 2/3] bpf, arm64: JIT support for private stack Puranjay Mohan
2025-07-24 16:58 ` Yonghong Song [this message]
2025-07-24 12:02 ` [PATCH bpf-next v2 3/3] selftests/bpf: enable private stack tests for arm64 Puranjay Mohan
2025-07-24 17:03 ` Yonghong Song
2025-07-26 19:30 ` [PATCH bpf-next v2 0/3] bpf: Private stack support for arm64 JIT patchwork-bot+netdevbpf
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=aa80ed3a-caab-4dc6-9f04-34017f50c230@linux.dev \
--to=yonghong.song@linux.dev \
--cc=andrii@kernel.org \
--cc=ast@kernel.org \
--cc=bpf@vger.kernel.org \
--cc=catalin.marinas@arm.com \
--cc=daniel@iogearbox.net \
--cc=eddyz87@gmail.com \
--cc=haoluo@google.com \
--cc=john.fastabend@gmail.com \
--cc=jolsa@kernel.org \
--cc=kpsingh@kernel.org \
--cc=martin.lau@linux.dev \
--cc=mykolal@fb.com \
--cc=puranjay@kernel.org \
--cc=sdf@fomichev.me \
--cc=song@kernel.org \
--cc=will@kernel.org \
--cc=xukuohai@huaweicloud.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.