Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / system / netd / 05827de37e5413d165bf655bdfd13e3d49c906d1 / . / bpfloader / bpf_kern.h
blob: 806b45a469bcf43ec91cef9075f047bf44d7ba97 [file] [log] [blame]
/*
* Copyright (C) 2018 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include <linux/bpf.h>
#include <stdint.h>
#include "bpf_shared.h"
#define ELF_SEC(NAME) __attribute__((section(NAME), used))
struct uid_tag {
uint32_t uid;
uint32_t tag;
};
struct stats_key {
uint32_t uid;
uint32_t tag;
uint32_t counterSet;
uint32_t ifaceIndex;
};
struct stats_value {
uint64_t rxPackets;
uint64_t rxBytes;
uint64_t txPackets;
uint64_t txBytes;
};
/* helper functions called from eBPF programs written in C */
static void* (*find_map_entry)(uint64_t map, void* key) = (void*)BPF_FUNC_map_lookup_elem;
static int (*write_to_map_entry)(uint64_t map, void* key, void* value,
uint64_t flags) = (void*)BPF_FUNC_map_update_elem;
static int (*delete_map_entry)(uint64_t map, void* key) = (void*)BPF_FUNC_map_delete_elem;
static uint64_t (*get_socket_cookie)(struct __sk_buff* skb) = (void*)BPF_FUNC_get_socket_cookie;
static uint32_t (*get_socket_uid)(struct __sk_buff* skb) = (void*)BPF_FUNC_get_socket_uid;
static int (*bpf_skb_load_bytes)(struct __sk_buff* skb, int off, void* to,
int len) = (void*)BPF_FUNC_skb_load_bytes;
#define BPF_PASS 1
#define BPF_DROP 0
#define BPF_EGRESS 0
#define BPF_INGRESS 1
static __always_inline int xt_bpf_count(struct __sk_buff* skb, int type) {
uint32_t key = skb->ifindex;
struct stats_value* value;
value = find_map_entry(IFACE_STATS_MAP, &key);
if (!value) {
struct stats_value newValue = {};
write_to_map_entry(IFACE_STATS_MAP, &key, &newValue, BPF_NOEXIST);
value = find_map_entry(IFACE_STATS_MAP, &key);
}
if (value) {
if (type == BPF_EGRESS) {
__sync_fetch_and_add(&value->txPackets, 1);
__sync_fetch_and_add(&value->txBytes, skb->len);
} else if (type == BPF_INGRESS) {
__sync_fetch_and_add(&value->rxPackets, 1);
__sync_fetch_and_add(&value->rxBytes, skb->len);
}
}
return BPF_PASS;
}
static __always_inline inline void bpf_update_stats(struct __sk_buff* skb, uint64_t map,
int direction, struct stats_key key) {
struct stats_value* value;
value = find_map_entry(map, &key);
if (!value) {
struct stats_value newValue = {};
write_to_map_entry(map, &key, &newValue, BPF_NOEXIST);
value = find_map_entry(map, &key);
}
if (value) {
if (direction == BPF_INGRESS) {
__sync_fetch_and_add(&value->rxPackets, 1);
__sync_fetch_and_add(&value->rxBytes, skb->len);
} else {
__sync_fetch_and_add(&value->txPackets, 1);
__sync_fetch_and_add(&value->txBytes, skb->len);
}
}
}
static __always_inline inline int bpf_traffic_account(struct __sk_buff* skb, int direction) {
uint64_t cookie = get_socket_cookie(skb);
struct uid_tag* utag = find_map_entry(COOKIE_TAG_MAP, &cookie);
uint32_t uid, tag;
if (utag) {
uid = utag->uid;
tag = utag->tag;
} else {
uid = get_socket_uid(skb);
tag = 0;
}
struct stats_key key = {.uid = uid, .tag = tag, .counterSet = 0, .ifaceIndex = skb->ifindex};
uint32_t* counterSet;
counterSet = find_map_entry(UID_COUNTERSET_MAP, &uid);
if (counterSet) key.counterSet = *counterSet;
int ret;
if (tag) {
bpf_update_stats(skb, TAG_STATS_MAP, direction, key);
}
key.tag = 0;
bpf_update_stats(skb, UID_STATS_MAP, direction, key);
return BPF_PASS;
}