Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 10 Sep 2024 20:04:40 +0100
From:      Alexander Nasonov <alnsn@yandex.ru>
To:        Poul-Henning Kamp <phk@phk.freebsd.dk>
Cc:        Vadim Goncharov <vadimnuclight@gmail.com>, freebsd-arch@FreeBSD.org, freebsd-hackers@FreeBSD.org, freebsd-net@FreeBSD.org, tech-net@NetBSD.org, Alexander Nasonov <alnsn@NetBSD.org>
Subject:   Re: BPF64: proposal of platform-independent hardware-friendly backwards-compatible eBPF alternative
Message-ID:  <ZuCYSBuf_MPjTd3V@nebo>
In-Reply-To: <202409101432.48AEWu1q094702@critter.freebsd.dk>
References:  <20240910040544.125245ad@nuclight.lan> <202409100638.48A6cor2090591@critter.freebsd.dk> <20240910144557.4d95052a@nuclight.lan> <202409101224.48ACO7oj094058@critter.freebsd.dk> <20240910160915.55ff579b@nuclight.lan> <202409101432.48AEWu1q094702@critter.freebsd.dk>

next in thread | previous in thread | raw e-mail | index | archive | help
Poul-Henning Kamp wrote:
> A) How powerful do you want the downloaded bytecode to be ?
...
> There are basically two possible answers to A.
> 
> Either the downloaded code is "real", which means it can include
> loops, function calls etc. or it is a "toy" which relies on
> Brinch-Hansen's "all arrows point to the right" argument to prove
> that it will always terminate.

BPF can be easily modified to have functions and calls but it will
increase worst case execution complexity to quadratic and the stack
growth will have to be watched closely:

 - always jump forward (within the current function),
 - always call backwards (outside of the current function).

Backward jumps (within the current function) can be implemented
with some kind of slowly closing door. For instance, in packet
filtering, the first backward jump disables access to the first
byte, the second backward jump disables access to the second byte,
etc.

In general, it will require a special counter but BPFJIT compiler
should be able to spot simple loops that process at least one
byte on each iteration and minimise runtime overhead.

> ...
> The answer to that is that you can write them in /any/ programming
> language you want, as long as the interpreter for the resulting
> (byte-)code an spot attempts to jump backwards, and refuse to
> do so, if so configured.

I guess it will work for a simple single-pass interpreter that
generates bytecode as it reads source code but anything more
complicated may reshuffle bytecode and some forward jumps may
become backward jumps etc.

> And that is why I say: If we're going to do this, let us do
> it with Lua:  It's already in our tree and it will do the
> job nicely.

Lua is a good choice, IMO but we likely need a subset of Lua (e.g.
no metatables, no C or paused GC with a periodic lua_State rotations
to collect garbage).

Alex



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ZuCYSBuf_MPjTd3V>