2019-10-09 01:59:39 +08:00
|
|
|
/* SPDX-License-Identifier: (LGPL-2.1 OR BSD-2-Clause) */
|
|
|
|
|
#ifndef __BPF_TRACING_H__
|
|
|
|
|
#define __BPF_TRACING_H__
|
|
|
|
|
|
2022-07-14 15:07:53 +08:00
|
|
|
#include <bpf/bpf_helpers.h>
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
/* Scan the ARCH passed in from ARCH env variable (see Makefile) */
|
|
|
|
|
#if defined(__TARGET_ARCH_x86)
|
|
|
|
|
#define bpf_target_x86
|
|
|
|
|
#define bpf_target_defined
|
|
|
|
|
#elif defined(__TARGET_ARCH_s390)
|
|
|
|
|
#define bpf_target_s390
|
|
|
|
|
#define bpf_target_defined
|
|
|
|
|
#elif defined(__TARGET_ARCH_arm)
|
|
|
|
|
#define bpf_target_arm
|
|
|
|
|
#define bpf_target_defined
|
|
|
|
|
#elif defined(__TARGET_ARCH_arm64)
|
|
|
|
|
#define bpf_target_arm64
|
|
|
|
|
#define bpf_target_defined
|
|
|
|
|
#elif defined(__TARGET_ARCH_mips)
|
|
|
|
|
#define bpf_target_mips
|
|
|
|
|
#define bpf_target_defined
|
|
|
|
|
#elif defined(__TARGET_ARCH_powerpc)
|
|
|
|
|
#define bpf_target_powerpc
|
|
|
|
|
#define bpf_target_defined
|
|
|
|
|
#elif defined(__TARGET_ARCH_sparc)
|
|
|
|
|
#define bpf_target_sparc
|
|
|
|
|
#define bpf_target_defined
|
2021-10-29 00:10:56 +08:00
|
|
|
#elif defined(__TARGET_ARCH_riscv)
|
|
|
|
|
#define bpf_target_riscv
|
|
|
|
|
#define bpf_target_defined
|
2022-04-09 06:44:42 +08:00
|
|
|
#elif defined(__TARGET_ARCH_arc)
|
|
|
|
|
#define bpf_target_arc
|
|
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#else
|
|
|
|
|
|
|
|
|
|
/* Fall back to what the compiler says */
|
|
|
|
|
#if defined(__x86_64__)
|
|
|
|
|
#define bpf_target_x86
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(__s390__)
|
|
|
|
|
#define bpf_target_s390
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(__arm__)
|
|
|
|
|
#define bpf_target_arm
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(__aarch64__)
|
|
|
|
|
#define bpf_target_arm64
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(__mips__)
|
|
|
|
|
#define bpf_target_mips
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(__powerpc__)
|
|
|
|
|
#define bpf_target_powerpc
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(__sparc__)
|
|
|
|
|
#define bpf_target_sparc
|
2021-06-16 16:36:35 +08:00
|
|
|
#define bpf_target_defined
|
2021-10-29 00:10:56 +08:00
|
|
|
#elif defined(__riscv) && __riscv_xlen == 64
|
|
|
|
|
#define bpf_target_riscv
|
|
|
|
|
#define bpf_target_defined
|
2022-04-09 06:44:42 +08:00
|
|
|
#elif defined(__arc__)
|
|
|
|
|
#define bpf_target_arc
|
|
|
|
|
#define bpf_target_defined
|
2021-06-16 16:36:35 +08:00
|
|
|
#endif /* no compiler target */
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#endif
|
2021-06-16 16:36:35 +08:00
|
|
|
|
|
|
|
|
#ifndef __BPF_TARGET_MISSING
|
|
|
|
|
#define __BPF_TARGET_MISSING "GCC error \"Must specify a BPF target arch via __TARGET_ARCH_xxx\""
|
2019-10-09 01:59:39 +08:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#if defined(bpf_target_x86)
|
|
|
|
|
|
2020-03-01 07:11:10 +08:00
|
|
|
#if defined(__KERNEL__) || defined(__VMLINUX_H__)
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_PARM1_REG di
|
|
|
|
|
#define __PT_PARM2_REG si
|
|
|
|
|
#define __PT_PARM3_REG dx
|
|
|
|
|
#define __PT_PARM4_REG cx
|
|
|
|
|
#define __PT_PARM5_REG r8
|
|
|
|
|
#define __PT_RET_REG sp
|
|
|
|
|
#define __PT_FP_REG bp
|
|
|
|
|
#define __PT_RC_REG ax
|
|
|
|
|
#define __PT_SP_REG sp
|
|
|
|
|
#define __PT_IP_REG ip
|
2022-02-09 10:17:43 +08:00
|
|
|
/* syscall uses r10 for PARM4 */
|
|
|
|
|
#define PT_REGS_PARM4_SYSCALL(x) ((x)->r10)
|
|
|
|
|
#define PT_REGS_PARM4_CORE_SYSCALL(x) BPF_CORE_READ(x, r10)
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#else
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#ifdef __i386__
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_PARM1_REG eax
|
|
|
|
|
#define __PT_PARM2_REG edx
|
|
|
|
|
#define __PT_PARM3_REG ecx
|
|
|
|
|
/* i386 kernel is built with -mregparm=3 */
|
|
|
|
|
#define __PT_PARM4_REG __unsupported__
|
|
|
|
|
#define __PT_PARM5_REG __unsupported__
|
|
|
|
|
#define __PT_RET_REG esp
|
|
|
|
|
#define __PT_FP_REG ebp
|
|
|
|
|
#define __PT_RC_REG eax
|
|
|
|
|
#define __PT_SP_REG esp
|
|
|
|
|
#define __PT_IP_REG eip
|
|
|
|
|
|
|
|
|
|
#else /* __i386__ */
|
|
|
|
|
|
|
|
|
|
#define __PT_PARM1_REG rdi
|
|
|
|
|
#define __PT_PARM2_REG rsi
|
|
|
|
|
#define __PT_PARM3_REG rdx
|
|
|
|
|
#define __PT_PARM4_REG rcx
|
|
|
|
|
#define __PT_PARM5_REG r8
|
|
|
|
|
#define __PT_RET_REG rsp
|
|
|
|
|
#define __PT_FP_REG rbp
|
|
|
|
|
#define __PT_RC_REG rax
|
|
|
|
|
#define __PT_SP_REG rsp
|
|
|
|
|
#define __PT_IP_REG rip
|
2022-02-09 10:17:43 +08:00
|
|
|
/* syscall uses r10 for PARM4 */
|
|
|
|
|
#define PT_REGS_PARM4_SYSCALL(x) ((x)->r10)
|
|
|
|
|
#define PT_REGS_PARM4_CORE_SYSCALL(x) BPF_CORE_READ(x, r10)
|
2021-12-23 05:39:23 +08:00
|
|
|
|
|
|
|
|
#endif /* __i386__ */
|
|
|
|
|
|
|
|
|
|
#endif /* __KERNEL__ || __VMLINUX_H__ */
|
2019-10-09 01:59:39 +08:00
|
|
|
|
|
|
|
|
#elif defined(bpf_target_s390)
|
|
|
|
|
|
2022-02-09 10:17:45 +08:00
|
|
|
struct pt_regs___s390 {
|
|
|
|
|
unsigned long orig_gpr2;
|
|
|
|
|
};
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
/* s390 provides user_pt_regs instead of struct pt_regs to userspace */
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_REGS_CAST(x) ((const user_pt_regs *)(x))
|
|
|
|
|
#define __PT_PARM1_REG gprs[2]
|
|
|
|
|
#define __PT_PARM2_REG gprs[3]
|
|
|
|
|
#define __PT_PARM3_REG gprs[4]
|
|
|
|
|
#define __PT_PARM4_REG gprs[5]
|
|
|
|
|
#define __PT_PARM5_REG gprs[6]
|
|
|
|
|
#define __PT_RET_REG grps[14]
|
|
|
|
|
#define __PT_FP_REG gprs[11] /* Works only with CONFIG_FRAME_POINTER */
|
|
|
|
|
#define __PT_RC_REG gprs[2]
|
|
|
|
|
#define __PT_SP_REG gprs[15]
|
|
|
|
|
#define __PT_IP_REG psw.addr
|
2022-07-14 15:07:53 +08:00
|
|
|
#define PT_REGS_PARM1_SYSCALL(x) PT_REGS_PARM1_CORE_SYSCALL(x)
|
2022-02-09 10:17:45 +08:00
|
|
|
#define PT_REGS_PARM1_CORE_SYSCALL(x) BPF_CORE_READ((const struct pt_regs___s390 *)(x), orig_gpr2)
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(bpf_target_arm)
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_PARM1_REG uregs[0]
|
|
|
|
|
#define __PT_PARM2_REG uregs[1]
|
|
|
|
|
#define __PT_PARM3_REG uregs[2]
|
|
|
|
|
#define __PT_PARM4_REG uregs[3]
|
|
|
|
|
#define __PT_PARM5_REG uregs[4]
|
|
|
|
|
#define __PT_RET_REG uregs[14]
|
|
|
|
|
#define __PT_FP_REG uregs[11] /* Works only with CONFIG_FRAME_POINTER */
|
|
|
|
|
#define __PT_RC_REG uregs[0]
|
|
|
|
|
#define __PT_SP_REG uregs[13]
|
|
|
|
|
#define __PT_IP_REG uregs[12]
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(bpf_target_arm64)
|
|
|
|
|
|
2022-02-09 10:17:44 +08:00
|
|
|
struct pt_regs___arm64 {
|
|
|
|
|
unsigned long orig_x0;
|
|
|
|
|
};
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
/* arm64 provides struct user_pt_regs instead of struct pt_regs to userspace */
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_REGS_CAST(x) ((const struct user_pt_regs *)(x))
|
|
|
|
|
#define __PT_PARM1_REG regs[0]
|
|
|
|
|
#define __PT_PARM2_REG regs[1]
|
|
|
|
|
#define __PT_PARM3_REG regs[2]
|
|
|
|
|
#define __PT_PARM4_REG regs[3]
|
|
|
|
|
#define __PT_PARM5_REG regs[4]
|
|
|
|
|
#define __PT_RET_REG regs[30]
|
|
|
|
|
#define __PT_FP_REG regs[29] /* Works only with CONFIG_FRAME_POINTER */
|
|
|
|
|
#define __PT_RC_REG regs[0]
|
|
|
|
|
#define __PT_SP_REG sp
|
|
|
|
|
#define __PT_IP_REG pc
|
2022-07-14 15:07:53 +08:00
|
|
|
#define PT_REGS_PARM1_SYSCALL(x) PT_REGS_PARM1_CORE_SYSCALL(x)
|
2022-02-09 10:17:44 +08:00
|
|
|
#define PT_REGS_PARM1_CORE_SYSCALL(x) BPF_CORE_READ((const struct pt_regs___arm64 *)(x), orig_x0)
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(bpf_target_mips)
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_PARM1_REG regs[4]
|
|
|
|
|
#define __PT_PARM2_REG regs[5]
|
|
|
|
|
#define __PT_PARM3_REG regs[6]
|
|
|
|
|
#define __PT_PARM4_REG regs[7]
|
|
|
|
|
#define __PT_PARM5_REG regs[8]
|
|
|
|
|
#define __PT_RET_REG regs[31]
|
|
|
|
|
#define __PT_FP_REG regs[30] /* Works only with CONFIG_FRAME_POINTER */
|
|
|
|
|
#define __PT_RC_REG regs[2]
|
|
|
|
|
#define __PT_SP_REG regs[29]
|
|
|
|
|
#define __PT_IP_REG cp0_epc
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(bpf_target_powerpc)
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_PARM1_REG gpr[3]
|
|
|
|
|
#define __PT_PARM2_REG gpr[4]
|
|
|
|
|
#define __PT_PARM3_REG gpr[5]
|
|
|
|
|
#define __PT_PARM4_REG gpr[6]
|
|
|
|
|
#define __PT_PARM5_REG gpr[7]
|
|
|
|
|
#define __PT_RET_REG regs[31]
|
|
|
|
|
#define __PT_FP_REG __unsupported__
|
|
|
|
|
#define __PT_RC_REG gpr[3]
|
|
|
|
|
#define __PT_SP_REG sp
|
|
|
|
|
#define __PT_IP_REG nip
|
2022-02-09 10:17:39 +08:00
|
|
|
/* powerpc does not select ARCH_HAS_SYSCALL_WRAPPER. */
|
|
|
|
|
#define PT_REGS_SYSCALL_REGS(ctx) ctx
|
2020-03-14 01:23:35 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(bpf_target_sparc)
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_PARM1_REG u_regs[UREG_I0]
|
|
|
|
|
#define __PT_PARM2_REG u_regs[UREG_I1]
|
|
|
|
|
#define __PT_PARM3_REG u_regs[UREG_I2]
|
|
|
|
|
#define __PT_PARM4_REG u_regs[UREG_I3]
|
|
|
|
|
#define __PT_PARM5_REG u_regs[UREG_I4]
|
|
|
|
|
#define __PT_RET_REG u_regs[UREG_I7]
|
|
|
|
|
#define __PT_FP_REG __unsupported__
|
|
|
|
|
#define __PT_RC_REG u_regs[UREG_I0]
|
|
|
|
|
#define __PT_SP_REG u_regs[UREG_FP]
|
2019-10-09 01:59:39 +08:00
|
|
|
/* Should this also be a bpf_target check for the sparc case? */
|
|
|
|
|
#if defined(__arch64__)
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_IP_REG tpc
|
2019-10-09 01:59:39 +08:00
|
|
|
#else
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_IP_REG pc
|
2019-10-09 01:59:39 +08:00
|
|
|
#endif
|
|
|
|
|
|
2021-10-29 00:10:56 +08:00
|
|
|
#elif defined(bpf_target_riscv)
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_REGS_CAST(x) ((const struct user_regs_struct *)(x))
|
|
|
|
|
#define __PT_PARM1_REG a0
|
|
|
|
|
#define __PT_PARM2_REG a1
|
|
|
|
|
#define __PT_PARM3_REG a2
|
|
|
|
|
#define __PT_PARM4_REG a3
|
|
|
|
|
#define __PT_PARM5_REG a4
|
|
|
|
|
#define __PT_RET_REG ra
|
2022-02-09 10:17:40 +08:00
|
|
|
#define __PT_FP_REG s0
|
2022-07-06 22:02:04 +08:00
|
|
|
#define __PT_RC_REG a0
|
2021-12-23 05:39:23 +08:00
|
|
|
#define __PT_SP_REG sp
|
2022-02-09 10:17:40 +08:00
|
|
|
#define __PT_IP_REG pc
|
2022-02-09 10:17:41 +08:00
|
|
|
/* riscv does not select ARCH_HAS_SYSCALL_WRAPPER. */
|
|
|
|
|
#define PT_REGS_SYSCALL_REGS(ctx) ctx
|
2021-12-23 05:39:23 +08:00
|
|
|
|
2022-04-09 06:44:42 +08:00
|
|
|
#elif defined(bpf_target_arc)
|
|
|
|
|
|
|
|
|
|
/* arc provides struct user_pt_regs instead of struct pt_regs to userspace */
|
|
|
|
|
#define __PT_REGS_CAST(x) ((const struct user_regs_struct *)(x))
|
|
|
|
|
#define __PT_PARM1_REG scratch.r0
|
|
|
|
|
#define __PT_PARM2_REG scratch.r1
|
|
|
|
|
#define __PT_PARM3_REG scratch.r2
|
|
|
|
|
#define __PT_PARM4_REG scratch.r3
|
|
|
|
|
#define __PT_PARM5_REG scratch.r4
|
|
|
|
|
#define __PT_RET_REG scratch.blink
|
|
|
|
|
#define __PT_FP_REG __unsupported__
|
|
|
|
|
#define __PT_RC_REG scratch.r0
|
|
|
|
|
#define __PT_SP_REG scratch.sp
|
|
|
|
|
#define __PT_IP_REG scratch.ret
|
|
|
|
|
/* arc does not select ARCH_HAS_SYSCALL_WRAPPER. */
|
|
|
|
|
#define PT_REGS_SYSCALL_REGS(ctx) ctx
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#if defined(bpf_target_defined)
|
|
|
|
|
|
2021-10-29 00:10:56 +08:00
|
|
|
struct pt_regs;
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
/* allow some architecutres to override `struct pt_regs` */
|
|
|
|
|
#ifndef __PT_REGS_CAST
|
|
|
|
|
#define __PT_REGS_CAST(x) (x)
|
2019-10-09 01:59:39 +08:00
|
|
|
#endif
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#define PT_REGS_PARM1(x) (__PT_REGS_CAST(x)->__PT_PARM1_REG)
|
|
|
|
|
#define PT_REGS_PARM2(x) (__PT_REGS_CAST(x)->__PT_PARM2_REG)
|
|
|
|
|
#define PT_REGS_PARM3(x) (__PT_REGS_CAST(x)->__PT_PARM3_REG)
|
|
|
|
|
#define PT_REGS_PARM4(x) (__PT_REGS_CAST(x)->__PT_PARM4_REG)
|
|
|
|
|
#define PT_REGS_PARM5(x) (__PT_REGS_CAST(x)->__PT_PARM5_REG)
|
|
|
|
|
#define PT_REGS_RET(x) (__PT_REGS_CAST(x)->__PT_RET_REG)
|
|
|
|
|
#define PT_REGS_FP(x) (__PT_REGS_CAST(x)->__PT_FP_REG)
|
|
|
|
|
#define PT_REGS_RC(x) (__PT_REGS_CAST(x)->__PT_RC_REG)
|
|
|
|
|
#define PT_REGS_SP(x) (__PT_REGS_CAST(x)->__PT_SP_REG)
|
|
|
|
|
#define PT_REGS_IP(x) (__PT_REGS_CAST(x)->__PT_IP_REG)
|
|
|
|
|
|
|
|
|
|
#define PT_REGS_PARM1_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_PARM1_REG)
|
|
|
|
|
#define PT_REGS_PARM2_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_PARM2_REG)
|
|
|
|
|
#define PT_REGS_PARM3_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_PARM3_REG)
|
|
|
|
|
#define PT_REGS_PARM4_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_PARM4_REG)
|
|
|
|
|
#define PT_REGS_PARM5_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_PARM5_REG)
|
|
|
|
|
#define PT_REGS_RET_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_RET_REG)
|
|
|
|
|
#define PT_REGS_FP_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_FP_REG)
|
|
|
|
|
#define PT_REGS_RC_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_RC_REG)
|
|
|
|
|
#define PT_REGS_SP_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_SP_REG)
|
|
|
|
|
#define PT_REGS_IP_CORE(x) BPF_CORE_READ(__PT_REGS_CAST(x), __PT_IP_REG)
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#if defined(bpf_target_powerpc)
|
2021-12-23 05:39:23 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#define BPF_KPROBE_READ_RET_IP(ip, ctx) ({ (ip) = (ctx)->link; })
|
|
|
|
|
#define BPF_KRETPROBE_READ_RET_IP BPF_KPROBE_READ_RET_IP
|
2021-12-23 05:39:23 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#elif defined(bpf_target_sparc)
|
2021-12-23 05:39:23 +08:00
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#define BPF_KPROBE_READ_RET_IP(ip, ctx) ({ (ip) = PT_REGS_RET(ctx); })
|
|
|
|
|
#define BPF_KRETPROBE_READ_RET_IP BPF_KPROBE_READ_RET_IP
|
2021-12-23 05:39:23 +08:00
|
|
|
|
|
|
|
|
#else
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#define BPF_KPROBE_READ_RET_IP(ip, ctx) \
|
2020-08-19 05:33:55 +08:00
|
|
|
({ bpf_probe_read_kernel(&(ip), sizeof(ip), (void *)PT_REGS_RET(ctx)); })
|
2019-10-09 01:59:39 +08:00
|
|
|
#define BPF_KRETPROBE_READ_RET_IP(ip, ctx) \
|
2021-12-23 05:39:23 +08:00
|
|
|
({ bpf_probe_read_kernel(&(ip), sizeof(ip), (void *)(PT_REGS_FP(ctx) + sizeof(ip))); })
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#endif
|
|
|
|
|
|
2022-02-09 10:17:43 +08:00
|
|
|
#ifndef PT_REGS_PARM1_SYSCALL
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM1_SYSCALL(x) PT_REGS_PARM1(x)
|
2022-02-09 10:17:43 +08:00
|
|
|
#endif
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM2_SYSCALL(x) PT_REGS_PARM2(x)
|
|
|
|
|
#define PT_REGS_PARM3_SYSCALL(x) PT_REGS_PARM3(x)
|
2022-02-09 10:17:43 +08:00
|
|
|
#ifndef PT_REGS_PARM4_SYSCALL
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM4_SYSCALL(x) PT_REGS_PARM4(x)
|
|
|
|
|
#endif
|
|
|
|
|
#define PT_REGS_PARM5_SYSCALL(x) PT_REGS_PARM5(x)
|
|
|
|
|
|
2022-02-09 10:17:43 +08:00
|
|
|
#ifndef PT_REGS_PARM1_CORE_SYSCALL
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM1_CORE_SYSCALL(x) PT_REGS_PARM1_CORE(x)
|
2022-02-09 10:17:43 +08:00
|
|
|
#endif
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM2_CORE_SYSCALL(x) PT_REGS_PARM2_CORE(x)
|
|
|
|
|
#define PT_REGS_PARM3_CORE_SYSCALL(x) PT_REGS_PARM3_CORE(x)
|
2022-02-09 10:17:43 +08:00
|
|
|
#ifndef PT_REGS_PARM4_CORE_SYSCALL
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM4_CORE_SYSCALL(x) PT_REGS_PARM4_CORE(x)
|
|
|
|
|
#endif
|
|
|
|
|
#define PT_REGS_PARM5_CORE_SYSCALL(x) PT_REGS_PARM5_CORE(x)
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#else /* defined(bpf_target_defined) */
|
2021-06-16 16:36:35 +08:00
|
|
|
|
|
|
|
|
#define PT_REGS_PARM1(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM2(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM3(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM4(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM5(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_RET(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_FP(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_RC(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_SP(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_IP(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
|
|
|
|
|
#define PT_REGS_PARM1_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM2_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM3_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM4_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM5_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_RET_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_FP_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_RC_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_SP_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_IP_CORE(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
|
|
|
|
|
#define BPF_KPROBE_READ_RET_IP(ip, ctx) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define BPF_KRETPROBE_READ_RET_IP(ip, ctx) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
|
2022-01-24 22:16:21 +08:00
|
|
|
#define PT_REGS_PARM1_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM2_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM3_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM4_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM5_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
|
|
|
|
|
#define PT_REGS_PARM1_CORE_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM2_CORE_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM3_CORE_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM4_CORE_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
#define PT_REGS_PARM5_CORE_SYSCALL(x) ({ _Pragma(__BPF_TARGET_MISSING); 0l; })
|
|
|
|
|
|
2021-12-23 05:39:23 +08:00
|
|
|
#endif /* defined(bpf_target_defined) */
|
2021-06-16 16:36:35 +08:00
|
|
|
|
2022-02-09 10:17:37 +08:00
|
|
|
/*
|
|
|
|
|
* When invoked from a syscall handler kprobe, returns a pointer to a
|
|
|
|
|
* struct pt_regs containing syscall arguments and suitable for passing to
|
|
|
|
|
* PT_REGS_PARMn_SYSCALL() and PT_REGS_PARMn_CORE_SYSCALL().
|
|
|
|
|
*/
|
|
|
|
|
#ifndef PT_REGS_SYSCALL_REGS
|
|
|
|
|
/* By default, assume that the arch selects ARCH_HAS_SYSCALL_WRAPPER. */
|
|
|
|
|
#define PT_REGS_SYSCALL_REGS(ctx) ((struct pt_regs *)PT_REGS_PARM1(ctx))
|
|
|
|
|
#endif
|
|
|
|
|
|
2021-05-27 00:46:43 +08:00
|
|
|
#ifndef ___bpf_concat
|
2020-03-01 07:11:12 +08:00
|
|
|
#define ___bpf_concat(a, b) a ## b
|
2021-05-27 00:46:43 +08:00
|
|
|
#endif
|
|
|
|
|
#ifndef ___bpf_apply
|
2020-03-01 07:11:12 +08:00
|
|
|
#define ___bpf_apply(fn, n) ___bpf_concat(fn, n)
|
2021-05-27 00:46:43 +08:00
|
|
|
#endif
|
|
|
|
|
#ifndef ___bpf_nth
|
2020-03-01 07:11:12 +08:00
|
|
|
#define ___bpf_nth(_, _1, _2, _3, _4, _5, _6, _7, _8, _9, _a, _b, _c, N, ...) N
|
2021-05-27 00:46:43 +08:00
|
|
|
#endif
|
|
|
|
|
#ifndef ___bpf_narg
|
2021-12-23 05:39:24 +08:00
|
|
|
#define ___bpf_narg(...) ___bpf_nth(_, ##__VA_ARGS__, 12, 11, 10, 9, 8, 7, 6, 5, 4, 3, 2, 1, 0)
|
2021-05-27 00:46:43 +08:00
|
|
|
#endif
|
2020-03-01 07:11:12 +08:00
|
|
|
|
2021-12-23 05:39:24 +08:00
|
|
|
#define ___bpf_ctx_cast0() ctx
|
|
|
|
|
#define ___bpf_ctx_cast1(x) ___bpf_ctx_cast0(), (void *)ctx[0]
|
|
|
|
|
#define ___bpf_ctx_cast2(x, args...) ___bpf_ctx_cast1(args), (void *)ctx[1]
|
|
|
|
|
#define ___bpf_ctx_cast3(x, args...) ___bpf_ctx_cast2(args), (void *)ctx[2]
|
|
|
|
|
#define ___bpf_ctx_cast4(x, args...) ___bpf_ctx_cast3(args), (void *)ctx[3]
|
|
|
|
|
#define ___bpf_ctx_cast5(x, args...) ___bpf_ctx_cast4(args), (void *)ctx[4]
|
|
|
|
|
#define ___bpf_ctx_cast6(x, args...) ___bpf_ctx_cast5(args), (void *)ctx[5]
|
|
|
|
|
#define ___bpf_ctx_cast7(x, args...) ___bpf_ctx_cast6(args), (void *)ctx[6]
|
|
|
|
|
#define ___bpf_ctx_cast8(x, args...) ___bpf_ctx_cast7(args), (void *)ctx[7]
|
|
|
|
|
#define ___bpf_ctx_cast9(x, args...) ___bpf_ctx_cast8(args), (void *)ctx[8]
|
2020-03-01 07:11:12 +08:00
|
|
|
#define ___bpf_ctx_cast10(x, args...) ___bpf_ctx_cast9(args), (void *)ctx[9]
|
|
|
|
|
#define ___bpf_ctx_cast11(x, args...) ___bpf_ctx_cast10(args), (void *)ctx[10]
|
|
|
|
|
#define ___bpf_ctx_cast12(x, args...) ___bpf_ctx_cast11(args), (void *)ctx[11]
|
2021-12-23 05:39:24 +08:00
|
|
|
#define ___bpf_ctx_cast(args...) ___bpf_apply(___bpf_ctx_cast, ___bpf_narg(args))(args)
|
2020-03-01 07:11:12 +08:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* BPF_PROG is a convenience wrapper for generic tp_btf/fentry/fexit and
|
|
|
|
|
* similar kinds of BPF programs, that accept input arguments as a single
|
|
|
|
|
* pointer to untyped u64 array, where each u64 can actually be a typed
|
|
|
|
|
* pointer or integer of different size. Instead of requring user to write
|
|
|
|
|
* manual casts and work with array elements by index, BPF_PROG macro
|
|
|
|
|
* allows user to declare a list of named and typed input arguments in the
|
|
|
|
|
* same syntax as for normal C function. All the casting is hidden and
|
|
|
|
|
* performed transparently, while user code can just assume working with
|
|
|
|
|
* function arguments of specified type and name.
|
|
|
|
|
*
|
|
|
|
|
* Original raw context argument is preserved as well as 'ctx' argument.
|
|
|
|
|
* This is useful when using BPF helpers that expect original context
|
|
|
|
|
* as one of the parameters (e.g., for bpf_perf_event_output()).
|
|
|
|
|
*/
|
|
|
|
|
#define BPF_PROG(name, args...) \
|
|
|
|
|
name(unsigned long long *ctx); \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2020-03-01 07:11:12 +08:00
|
|
|
____##name(unsigned long long *ctx, ##args); \
|
|
|
|
|
typeof(name(0)) name(unsigned long long *ctx) \
|
|
|
|
|
{ \
|
|
|
|
|
_Pragma("GCC diagnostic push") \
|
|
|
|
|
_Pragma("GCC diagnostic ignored \"-Wint-conversion\"") \
|
|
|
|
|
return ____##name(___bpf_ctx_cast(args)); \
|
|
|
|
|
_Pragma("GCC diagnostic pop") \
|
|
|
|
|
} \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2020-03-01 07:11:12 +08:00
|
|
|
____##name(unsigned long long *ctx, ##args)
|
|
|
|
|
|
|
|
|
|
struct pt_regs;
|
|
|
|
|
|
2021-12-23 05:39:24 +08:00
|
|
|
#define ___bpf_kprobe_args0() ctx
|
|
|
|
|
#define ___bpf_kprobe_args1(x) ___bpf_kprobe_args0(), (void *)PT_REGS_PARM1(ctx)
|
|
|
|
|
#define ___bpf_kprobe_args2(x, args...) ___bpf_kprobe_args1(args), (void *)PT_REGS_PARM2(ctx)
|
|
|
|
|
#define ___bpf_kprobe_args3(x, args...) ___bpf_kprobe_args2(args), (void *)PT_REGS_PARM3(ctx)
|
|
|
|
|
#define ___bpf_kprobe_args4(x, args...) ___bpf_kprobe_args3(args), (void *)PT_REGS_PARM4(ctx)
|
|
|
|
|
#define ___bpf_kprobe_args5(x, args...) ___bpf_kprobe_args4(args), (void *)PT_REGS_PARM5(ctx)
|
|
|
|
|
#define ___bpf_kprobe_args(args...) ___bpf_apply(___bpf_kprobe_args, ___bpf_narg(args))(args)
|
2020-03-01 07:11:12 +08:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* BPF_KPROBE serves the same purpose for kprobes as BPF_PROG for
|
|
|
|
|
* tp_btf/fentry/fexit BPF programs. It hides the underlying platform-specific
|
|
|
|
|
* low-level way of getting kprobe input arguments from struct pt_regs, and
|
|
|
|
|
* provides a familiar typed and named function arguments syntax and
|
|
|
|
|
* semantics of accessing kprobe input paremeters.
|
|
|
|
|
*
|
|
|
|
|
* Original struct pt_regs* context is preserved as 'ctx' argument. This might
|
|
|
|
|
* be necessary when using BPF helpers like bpf_perf_event_output().
|
|
|
|
|
*/
|
|
|
|
|
#define BPF_KPROBE(name, args...) \
|
|
|
|
|
name(struct pt_regs *ctx); \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2020-03-01 07:11:12 +08:00
|
|
|
____##name(struct pt_regs *ctx, ##args); \
|
|
|
|
|
typeof(name(0)) name(struct pt_regs *ctx) \
|
|
|
|
|
{ \
|
|
|
|
|
_Pragma("GCC diagnostic push") \
|
|
|
|
|
_Pragma("GCC diagnostic ignored \"-Wint-conversion\"") \
|
|
|
|
|
return ____##name(___bpf_kprobe_args(args)); \
|
|
|
|
|
_Pragma("GCC diagnostic pop") \
|
|
|
|
|
} \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2020-03-01 07:11:12 +08:00
|
|
|
____##name(struct pt_regs *ctx, ##args)
|
|
|
|
|
|
2021-12-23 05:39:24 +08:00
|
|
|
#define ___bpf_kretprobe_args0() ctx
|
|
|
|
|
#define ___bpf_kretprobe_args1(x) ___bpf_kretprobe_args0(), (void *)PT_REGS_RC(ctx)
|
|
|
|
|
#define ___bpf_kretprobe_args(args...) ___bpf_apply(___bpf_kretprobe_args, ___bpf_narg(args))(args)
|
2020-03-01 07:11:12 +08:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* BPF_KRETPROBE is similar to BPF_KPROBE, except, it only provides optional
|
|
|
|
|
* return value (in addition to `struct pt_regs *ctx`), but no input
|
|
|
|
|
* arguments, because they will be clobbered by the time probed function
|
|
|
|
|
* returns.
|
|
|
|
|
*/
|
|
|
|
|
#define BPF_KRETPROBE(name, args...) \
|
|
|
|
|
name(struct pt_regs *ctx); \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2020-03-01 07:11:12 +08:00
|
|
|
____##name(struct pt_regs *ctx, ##args); \
|
|
|
|
|
typeof(name(0)) name(struct pt_regs *ctx) \
|
|
|
|
|
{ \
|
|
|
|
|
_Pragma("GCC diagnostic push") \
|
|
|
|
|
_Pragma("GCC diagnostic ignored \"-Wint-conversion\"") \
|
|
|
|
|
return ____##name(___bpf_kretprobe_args(args)); \
|
|
|
|
|
_Pragma("GCC diagnostic pop") \
|
|
|
|
|
} \
|
|
|
|
|
static __always_inline typeof(name(0)) ____##name(struct pt_regs *ctx, ##args)
|
|
|
|
|
|
2022-07-14 15:07:53 +08:00
|
|
|
/* If kernel has CONFIG_ARCH_HAS_SYSCALL_WRAPPER, read pt_regs directly */
|
2022-02-07 22:31:33 +08:00
|
|
|
#define ___bpf_syscall_args0() ctx
|
2022-07-14 15:07:53 +08:00
|
|
|
#define ___bpf_syscall_args1(x) ___bpf_syscall_args0(), (void *)PT_REGS_PARM1_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syscall_args2(x, args...) ___bpf_syscall_args1(args), (void *)PT_REGS_PARM2_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syscall_args3(x, args...) ___bpf_syscall_args2(args), (void *)PT_REGS_PARM3_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syscall_args4(x, args...) ___bpf_syscall_args3(args), (void *)PT_REGS_PARM4_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syscall_args5(x, args...) ___bpf_syscall_args4(args), (void *)PT_REGS_PARM5_SYSCALL(regs)
|
2022-02-07 22:31:33 +08:00
|
|
|
#define ___bpf_syscall_args(args...) ___bpf_apply(___bpf_syscall_args, ___bpf_narg(args))(args)
|
|
|
|
|
|
2022-07-14 15:07:53 +08:00
|
|
|
/* If kernel doesn't have CONFIG_ARCH_HAS_SYSCALL_WRAPPER, we have to BPF_CORE_READ from pt_regs */
|
|
|
|
|
#define ___bpf_syswrap_args0() ctx
|
|
|
|
|
#define ___bpf_syswrap_args1(x) ___bpf_syswrap_args0(), (void *)PT_REGS_PARM1_CORE_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syswrap_args2(x, args...) ___bpf_syswrap_args1(args), (void *)PT_REGS_PARM2_CORE_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syswrap_args3(x, args...) ___bpf_syswrap_args2(args), (void *)PT_REGS_PARM3_CORE_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syswrap_args4(x, args...) ___bpf_syswrap_args3(args), (void *)PT_REGS_PARM4_CORE_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syswrap_args5(x, args...) ___bpf_syswrap_args4(args), (void *)PT_REGS_PARM5_CORE_SYSCALL(regs)
|
|
|
|
|
#define ___bpf_syswrap_args(args...) ___bpf_apply(___bpf_syswrap_args, ___bpf_narg(args))(args)
|
|
|
|
|
|
2022-02-07 22:31:33 +08:00
|
|
|
/*
|
2022-07-14 15:07:53 +08:00
|
|
|
* BPF_KSYSCALL is a variant of BPF_KPROBE, which is intended for
|
2022-02-07 22:31:33 +08:00
|
|
|
* tracing syscall functions, like __x64_sys_close. It hides the underlying
|
|
|
|
|
* platform-specific low-level way of getting syscall input arguments from
|
|
|
|
|
* struct pt_regs, and provides a familiar typed and named function arguments
|
|
|
|
|
* syntax and semantics of accessing syscall input parameters.
|
|
|
|
|
*
|
2022-07-14 15:07:53 +08:00
|
|
|
* Original struct pt_regs * context is preserved as 'ctx' argument. This might
|
2022-02-07 22:31:33 +08:00
|
|
|
* be necessary when using BPF helpers like bpf_perf_event_output().
|
|
|
|
|
*
|
2022-07-26 21:40:07 +08:00
|
|
|
* At the moment BPF_KSYSCALL does not transparently handle all the calling
|
|
|
|
|
* convention quirks for the following syscalls:
|
|
|
|
|
*
|
|
|
|
|
* - mmap(): __ARCH_WANT_SYS_OLD_MMAP.
|
|
|
|
|
* - clone(): CONFIG_CLONE_BACKWARDS, CONFIG_CLONE_BACKWARDS2 and
|
|
|
|
|
* CONFIG_CLONE_BACKWARDS3.
|
|
|
|
|
* - socket-related syscalls: __ARCH_WANT_SYS_SOCKETCALL.
|
|
|
|
|
* - compat syscalls.
|
|
|
|
|
*
|
|
|
|
|
* This may or may not change in the future. User needs to take extra measures
|
|
|
|
|
* to handle such quirks explicitly, if necessary.
|
2022-07-14 15:07:53 +08:00
|
|
|
*
|
|
|
|
|
* This macro relies on BPF CO-RE support and virtual __kconfig externs.
|
2022-02-07 22:31:33 +08:00
|
|
|
*/
|
2022-07-14 15:07:53 +08:00
|
|
|
#define BPF_KSYSCALL(name, args...) \
|
2022-02-07 22:31:33 +08:00
|
|
|
name(struct pt_regs *ctx); \
|
2022-07-14 15:07:53 +08:00
|
|
|
extern _Bool LINUX_HAS_SYSCALL_WRAPPER __kconfig; \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2022-02-07 22:31:33 +08:00
|
|
|
____##name(struct pt_regs *ctx, ##args); \
|
|
|
|
|
typeof(name(0)) name(struct pt_regs *ctx) \
|
|
|
|
|
{ \
|
2022-07-14 15:07:53 +08:00
|
|
|
struct pt_regs *regs = LINUX_HAS_SYSCALL_WRAPPER \
|
|
|
|
|
? (struct pt_regs *)PT_REGS_PARM1(ctx) \
|
|
|
|
|
: ctx; \
|
2022-02-07 22:31:33 +08:00
|
|
|
_Pragma("GCC diagnostic push") \
|
|
|
|
|
_Pragma("GCC diagnostic ignored \"-Wint-conversion\"") \
|
2022-07-14 15:07:53 +08:00
|
|
|
if (LINUX_HAS_SYSCALL_WRAPPER) \
|
|
|
|
|
return ____##name(___bpf_syswrap_args(args)); \
|
|
|
|
|
else \
|
|
|
|
|
return ____##name(___bpf_syscall_args(args)); \
|
2022-02-07 22:31:33 +08:00
|
|
|
_Pragma("GCC diagnostic pop") \
|
|
|
|
|
} \
|
2022-08-03 23:14:03 +08:00
|
|
|
static __always_inline typeof(name(0)) \
|
2022-02-07 22:31:33 +08:00
|
|
|
____##name(struct pt_regs *ctx, ##args)
|
|
|
|
|
|
2022-07-14 15:07:53 +08:00
|
|
|
#define BPF_KPROBE_SYSCALL BPF_KSYSCALL
|
|
|
|
|
|
2019-10-09 01:59:39 +08:00
|
|
|
#endif
|
