Merge branch 'arm64-jit-fixes'

 * >0 - successfully JITed a 16-byte eBPF instruction.

 * <0 - failed to JIT.

 */

static int build_insn(const struct bpf_insn *insn, struct jit_ctx *ctx)

static int build_insn(const struct bpf_insn *insn, struct jit_ctx *ctx,

		      bool extra_pass)

{

	const u8 code = insn->code;

	const u8 dst = bpf2a64[insn->dst_reg];

	case BPF_JMP | BPF_CALL:

	{

		const u8 r0 = bpf2a64[BPF_REG_0];

		const u64 func = (u64)__bpf_call_base + imm;

		bool func_addr_fixed;

		u64 func_addr;

		int ret;

		if (ctx->prog->is_func)

			emit_addr_mov_i64(tmp, func, ctx);

		ret = bpf_jit_get_func_addr(ctx->prog, insn, extra_pass,

					    &func_addr, &func_addr_fixed);

		if (ret < 0)

			return ret;

		if (func_addr_fixed)

			/* We can use optimized emission here. */

			emit_a64_mov_i64(tmp, func_addr, ctx);

		else

			emit_a64_mov_i64(tmp, func, ctx);

			emit_addr_mov_i64(tmp, func_addr, ctx);

		emit(A64_BLR(tmp), ctx);

		emit(A64_MOV(1, r0, A64_R(0)), ctx);

		break;

	return 0;

}

static int build_body(struct jit_ctx *ctx)

static int build_body(struct jit_ctx *ctx, bool extra_pass)

{

	const struct bpf_prog *prog = ctx->prog;

	int i;

		const struct bpf_insn *insn = &prog->insnsi[i];

		int ret;

		ret = build_insn(insn, ctx);

		ret = build_insn(insn, ctx, extra_pass);

		if (ret > 0) {

			i++;

			if (ctx->image == NULL)

	/* 1. Initial fake pass to compute ctx->idx. */

	/* Fake pass to fill in ctx->offset. */

	if (build_body(&ctx)) {

	if (build_body(&ctx, extra_pass)) {

		prog = orig_prog;

		goto out_off;

	}

	build_prologue(&ctx, was_classic);

	if (build_body(&ctx)) {

	if (build_body(&ctx, extra_pass)) {

		bpf_jit_binary_free(header);

		prog = orig_prog;

		goto out_off;

	PPC_BLR();

}

static void bpf_jit_emit_func_call(u32 *image, struct codegen_context *ctx, u64 func)

static void bpf_jit_emit_func_call_hlp(u32 *image, struct codegen_context *ctx,

				       u64 func)

{

#ifdef PPC64_ELF_ABI_v1

	/* func points to the function descriptor */

	PPC_LI64(b2p[TMP_REG_2], func);

	/* Load actual entry point from function descriptor */

	PPC_BPF_LL(b2p[TMP_REG_1], b2p[TMP_REG_2], 0);

	/* ... and move it to LR */

	PPC_MTLR(b2p[TMP_REG_1]);

	/*

	 * Load TOC from function descriptor at offset 8.

	 * We can clobber r2 since we get called through a

	 * function pointer (so caller will save/restore r2)

	 * and since we don't use a TOC ourself.

	 */

	PPC_BPF_LL(2, b2p[TMP_REG_2], 8);

#else

	/* We can clobber r12 */

	PPC_FUNC_ADDR(12, func);

	PPC_MTLR(12);

#endif

	PPC_BLRL();

}

static void bpf_jit_emit_func_call_rel(u32 *image, struct codegen_context *ctx,

				       u64 func)

{

	unsigned int i, ctx_idx = ctx->idx;

{

	const struct bpf_insn *insn = fp->insnsi;

	int flen = fp->len;

	int i;

	int i, ret;

	/* Start of epilogue code - will only be valid 2nd pass onwards */

	u32 exit_addr = addrs[flen];

		u32 src_reg = b2p[insn[i].src_reg];

		s16 off = insn[i].off;

		s32 imm = insn[i].imm;

		bool func_addr_fixed;

		u64 func_addr;

		u64 imm64;

		u8 *func;

		u32 true_cond;

		u32 tmp_idx;

		case BPF_JMP | BPF_CALL:

			ctx->seen |= SEEN_FUNC;

			/* bpf function call */

			if (insn[i].src_reg == BPF_PSEUDO_CALL)

				if (!extra_pass)

					func = NULL;

				else if (fp->aux->func && off < fp->aux->func_cnt)

					/* use the subprog id from the off

					 * field to lookup the callee address

					 */

					func = (u8 *) fp->aux->func[off]->bpf_func;

				else

					return -EINVAL;

			/* kernel helper call */

			else

				func = (u8 *) __bpf_call_base + imm;

			bpf_jit_emit_func_call(image, ctx, (u64)func);

			ret = bpf_jit_get_func_addr(fp, &insn[i], extra_pass,

						    &func_addr, &func_addr_fixed);

			if (ret < 0)

				return ret;

			if (func_addr_fixed)

				bpf_jit_emit_func_call_hlp(image, ctx, func_addr);

			else

				bpf_jit_emit_func_call_rel(image, ctx, func_addr);

			/* move return value from r3 to BPF_REG_0 */

			PPC_MR(b2p[BPF_REG_0], 3);

			break;

void bpf_jit_free(struct bpf_prog *fp);

int bpf_jit_get_func_addr(const struct bpf_prog *prog,

			  const struct bpf_insn *insn, bool extra_pass,

			  u64 *func_addr, bool *func_addr_fixed);

struct bpf_prog *bpf_jit_blind_constants(struct bpf_prog *fp);

void bpf_jit_prog_release_other(struct bpf_prog *fp, struct bpf_prog *fp_other);

	bpf_prog_unlock_free(fp);

}

int bpf_jit_get_func_addr(const struct bpf_prog *prog,

			  const struct bpf_insn *insn, bool extra_pass,

			  u64 *func_addr, bool *func_addr_fixed)

{

	s16 off = insn->off;

	s32 imm = insn->imm;

	u8 *addr;

	*func_addr_fixed = insn->src_reg != BPF_PSEUDO_CALL;

	if (!*func_addr_fixed) {

		/* Place-holder address till the last pass has collected

		 * all addresses for JITed subprograms in which case we

		 * can pick them up from prog->aux.

		 */

		if (!extra_pass)

			addr = NULL;

		else if (prog->aux->func &&

			 off >= 0 && off < prog->aux->func_cnt)

			addr = (u8 *)prog->aux->func[off]->bpf_func;

		else

			return -EINVAL;

	} else {

		/* Address of a BPF helper call. Since part of the core

		 * kernel, it's always at a fixed location. __bpf_call_base

		 * and the helper with imm relative to it are both in core

		 * kernel.

		 */

		addr = (u8 *)__bpf_call_base + imm;

	}

	*func_addr = (unsigned long)addr;

	return 0;

}

static int bpf_jit_blind_insn(const struct bpf_insn *from,

			      const struct bpf_insn *aux,

			      struct bpf_insn *to_buff)