Bump PREVAIL verifier from e68a347b to b24faf5ea and handle breaking changes (microsoft#5078)

* Bump PREVAIL verifier to b9010eee and handle breaking changes

Bump external/ebpf-verifier from e68a347b to b9010eee (main), which
includes the fix for the verifier_fuzzer CI timeout (issue microsoft#5055).

Handle breaking API changes:
- Include io/elf_reader.hpp (header split in microsoft#1026)
- Re-implement _instype()/collect_stats() locally (removed in microsoft#1042
  but needed for ebpf_stat_t public API)
- Add resolve_ksym_btf_id nullptr to platform structs
- Patch load_elf stream-size fallback for in-memory ELF loading
  (vbpf/prevail#1048)

* bump submodule

* Pass Instruction by const ref in _instype

* Update DLL dependency baselines for PREVAIL verifier bump

---------

Co-authored-by: Michael Agun <danielagun@microsoft.com>

Author: mikeagun

external/ebpf-verifier

@@ -10,6 +10,13 @@
 #include "ebpf_tracelog.h"
 #include "ebpf_verifier_wrapper.hpp"
 #include "elfio_wrapper.hpp"
+#pragma warning(push)
+#pragma warning(disable : 4100)  // unreferenced formal parameter
+#pragma warning(disable : 4244)  // conversion, possible loss of data
+#pragma warning(disable : 4267)  // conversion from 'size_t' to 'int'
+#pragma warning(disable : 26495) // Always initialize a member variable
+#include "io/elf_reader.hpp"
+#pragma warning(pop)
 #define ebpf_inst ebpf_inst_btf
 #include "libbtf/btf_map.h"
 #include "libbtf/btf_type_data.h"
@@ -42,6 +49,110 @@ elf_everparse_error(_In_ const char* struct_name, _In_ const char* field_name, _
 
 using namespace std;
 
+// Provide collect_stats locally — it was removed from the verifier public API in a69e70a
+// (commit "Human-friendly CLI output for bin/prevail"), but we still need it for the
+// verbose program-info stats reported by ebpf_api_elf_enumerate_programs.
+static std::string
+_instype(const prevail::Instruction& ins)
+{
+    if (const auto pcall = std::get_if<prevail::Call>(&ins)) {
+        if (pcall->is_map_lookup) {
+            return "call_1";
+        }
+        if (pcall->pairs.empty()) {
+            if (std::ranges::all_of(pcall->singles, [](const prevail::ArgSingle arg) {
+                    return arg.kind == prevail::ArgSingle::Kind::ANYTHING;
+                })) {
+                return "call_nomem";
+            }
+        }
+        return "call_mem";
+    } else if (std::holds_alternative<prevail::Callx>(ins)) {
+        return "callx";
+    } else if (std::holds_alternative<prevail::CallBtf>(ins)) {
+        return "call_btf";
+    } else if (const auto pimm = std::get_if<prevail::Mem>(&ins)) {
+        return pimm->is_load ? "load" : "store";
+    } else if (std::holds_alternative<prevail::Atomic>(ins)) {
+        return "load_store";
+    } else if (std::holds_alternative<prevail::Packet>(ins)) {
+        return "packet_access";
+    } else if (const auto pins = std::get_if<prevail::Bin>(&ins)) {
+        switch (pins->op) {
+        case prevail::Bin::Op::MOV:
+        case prevail::Bin::Op::MOVSX8:
+        case prevail::Bin::Op::MOVSX16:
+        case prevail::Bin::Op::MOVSX32:
+            return "assign";
+        default:
+            return "arith";
+        }
+    } else if (std::holds_alternative<prevail::Un>(ins)) {
+        return "arith";
+    } else if (std::holds_alternative<prevail::LoadMapFd>(ins)) {
+        return "assign";
+    } else if (std::holds_alternative<prevail::LoadMapAddress>(ins)) {
+        return "assign";
+    } else if (std::holds_alternative<prevail::LoadPseudo>(ins)) {
+        return "assign";
+    } else if (std::holds_alternative<prevail::Assume>(ins)) {
+        return "assume";
+    } else {
+        return "other";
+    }
+}
+
+static std::map<std::string, int>
+collect_stats(const prevail::Program& prog)
+{
+    std::map<std::string, int> res;
+    for (const char* stat_name :
+         {"instructions",
+          "joins",
+          "other",
+          "jumps",
+          "assign",
+          "arith",
+          "load",
+          "store",
+          "load_store",
+          "packet_access",
+          "call_1",
+          "call_mem",
+          "call_nomem",
+          "reallocate",
+          "map_in_map",
+          "arith64",
+          "arith32"}) {
+        res[stat_name] = 0;
+    }
+    for (const prevail::Label& label : prog.labels()) {
+        res["instructions"]++;
+        const prevail::Instruction& cmd = prog.instruction_at(label);
+        if (const auto pins = std::get_if<prevail::LoadMapFd>(&cmd)) {
+            if (pins->mapfd == -1) {
+                res["map_in_map"] = 1;
+            }
+        }
+        if (const auto pins = std::get_if<prevail::Call>(&cmd)) {
+            if (pins->reallocate_packet) {
+                res["reallocate"] = 1;
+            }
+        }
+        if (const auto pins = std::get_if<prevail::Bin>(&cmd)) {
+            res[pins->is64 ? "arith64" : "arith32"]++;
+        }
+        res[_instype(cmd)]++;
+        if (prog.cfg().in_degree(label) > 1) {
+            res["joins"]++;
+        }
+        if (prog.cfg().out_degree(label) > 1) {
+            res["jumps"]++;
+        }
+    }
+    return res;
+}
+
 typedef struct _section_program_map
 {
     string section_name;
@@ -359,6 +470,7 @@ load_byte_code(
         }
 
         std::stringstream elf_stream(std::string(elf_data.begin(), elf_data.end()));
+
         raw_programs = read_elf(elf_stream, object_name, section_name_string, "", verifier_options, platform);
 
         if (raw_programs.size() == 0) {

libs/api/Verifier.cpp

@@ -97,6 +97,7 @@ const prevail::ebpf_platform_t g_ebpf_platform_windows = {
     get_helper_prototype_windows,
     is_helper_usable_windows,
     nullptr, // resolve_builtin_call_windows,
+    nullptr, // resolve_ksym_btf_id_windows,
     nullptr, // get_builtin_call_windows,
     nullptr, // resolve_kfunc_call_windows,
     sizeof(ebpf_map_definition_in_file_t),

libs/api/windows_platform.cpp

@@ -17,6 +17,7 @@ const prevail::ebpf_platform_t g_ebpf_platform_windows_service = {
     get_helper_prototype_windows,
     is_helper_usable_windows,
     nullptr, // resolve_builtin_call_windows,
+    nullptr, // resolve_ksym_btf_id_windows,
     nullptr, // get_builtin_call_windows,
     nullptr, // resolve_kfunc_call_windows,
     sizeof(ebpf_map_definition_in_memory_t),

libs/service/windows_platform_service.cpp

@@ -2,6 +2,8 @@ ADVAPI32.dll
 api-ms-win-core-debug-l1-1-0.dll
 api-ms-win-core-errorhandling-l1-1-0.dll
 api-ms-win-core-file-l1-1-0.dll
+api-ms-win-core-file-l1-2-2.dll
+api-ms-win-core-file-l2-1-0.dll
 api-ms-win-core-handle-l1-1-0.dll
 api-ms-win-core-heap-l2-1-0.dll
 api-ms-win-core-interlocked-l1-1-0.dll

scripts/check_binary_dependencies_ebpfapi_dll_nativeonly_release.txt

@@ -3,7 +3,9 @@ api-ms-win-core-debug-l1-1-0.dll
 api-ms-win-core-errorhandling-l1-1-0.dll
 api-ms-win-core-file-l1-1-0.dll
 api-ms-win-core-file-l1-2-0.dll
+api-ms-win-core-file-l1-2-2.dll
 api-ms-win-core-file-l2-1-0.dll
+api-ms-win-core-file-l2-1-2.dll
 api-ms-win-core-handle-l1-1-0.dll
 api-ms-win-core-heap-l1-1-0.dll
 api-ms-win-core-heap-l2-1-0.dll
@@ -12,6 +14,7 @@ api-ms-win-core-io-l1-1-0.dll
 api-ms-win-core-libraryloader-l1-2-0.dll
 api-ms-win-core-localization-l1-2-0.dll
 api-ms-win-core-memory-l1-1-0.dll
+api-ms-win-core-processenvironment-l1-1-0.dll
 api-ms-win-core-processthreads-l1-1-0.dll
 api-ms-win-core-processthreads-l1-1-1.dll
 api-ms-win-core-profile-l1-1-0.dll

scripts/check_binary_dependencies_ebpfapi_dll_regular_debug.txt

@@ -3,7 +3,9 @@ api-ms-win-core-debug-l1-1-0.dll
 api-ms-win-core-errorhandling-l1-1-0.dll
 api-ms-win-core-file-l1-1-0.dll
 api-ms-win-core-file-l1-2-0.dll
+api-ms-win-core-file-l1-2-2.dll
 api-ms-win-core-file-l2-1-0.dll
+api-ms-win-core-file-l2-1-2.dll
 api-ms-win-core-handle-l1-1-0.dll
 api-ms-win-core-heap-l1-1-0.dll
 api-ms-win-core-heap-l2-1-0.dll
@@ -12,6 +14,7 @@ api-ms-win-core-io-l1-1-0.dll
 api-ms-win-core-libraryloader-l1-2-0.dll
 api-ms-win-core-localization-l1-2-0.dll
 api-ms-win-core-memory-l1-1-0.dll
+api-ms-win-core-processenvironment-l1-1-0.dll
 api-ms-win-core-processthreads-l1-1-0.dll
 api-ms-win-core-processthreads-l1-1-1.dll
 api-ms-win-core-profile-l1-1-0.dll