commit 20b7f4db45dd30521f856123ac85f7c209b916cd
author Maciej Żenczykowski <maze@google.com> Thu Sep 05 03:15:08 2024 +0000
committer Gerrit Code Review <noreply-gerritcodereview@google.com> Thu Sep 05 03:15:08 2024 +0000
tree 7e6c2166780d1c60d2ffadaa1fa836f77ea34b7e
parent 1ec8d7df583aff4a32fc7a5aa4b938da96546f17
parent bbb549957ac97e8b14c53775041a8189bfce3119

Merge "dscpPolicy: assume cache lookup always succeeds (though it might miss)" into main

bpf/progs/dscpPolicy.c

diff --git a/bpf/progs/dscpPolicy.c b/bpf/progs/dscpPolicy.c
index 0842aaa..7ef5620 100644
--- a/bpf/progs/dscpPolicy.c
+++ b/bpf/progs/dscpPolicy.c
@@ -113,8 +113,9 @@
     // this array lookup cannot actually fail
     RuleEntry* existing_rule = bpf_socket_policy_cache_map_lookup_elem(&cacheid);
 
-    if (existing_rule &&
-        v6_equal(src_ip, existing_rule->src_ip) &&
+    if (!existing_rule) return; // impossible
+
+    if (v6_equal(src_ip, existing_rule->src_ip) &&
         v6_equal(dst_ip, existing_rule->dst_ip) &&
         skb->ifindex == existing_rule->ifindex &&
         sport == existing_rule->src_port &&
@@ -187,7 +188,8 @@
         }
     }
 
-    RuleEntry value = {
+    // Update cache with found policy.
+    *existing_rule = (RuleEntry){
         .src_ip = src_ip,
         .dst_ip = dst_ip,
         .ifindex = skb->ifindex,
@@ -197,9 +199,6 @@
         .dscp_val = new_dscp,
     };
 
-    // Update cache with found policy.
-    bpf_socket_policy_cache_map_update_elem(&cacheid, &value, BPF_ANY);
-
     if (new_dscp < 0) return;
 
     // Need to store bytes after updating map or program will not load.