boot time test of queryProgram() Test: TreeHugger Bug: 292156770 Signed-off-by: Maciej Żenczykowski <maze@google.com> Change-Id: I6e4527a8cb5b5bfc033c5a4d09f0b78080c163c9

commit: 5b2611d044fbd976e14225e91bacb715f4d4d47d [log] [tgz]
author: Maciej Żenczykowski <maze@google.com> Wed Oct 04 00:44:56 2023 +0000
committer: Maciej Żenczykowski <maze@google.com> Wed Oct 04 19:12:32 2023 +0000
tree: f2247c428b5304f3dc1674bdaa7ffe49aa197434
parent: 340e2ff355000de232aebcf9b322afaf8b859d96 [diff] [blame]
diff --git a/netd/BpfHandler.cpp b/netd/BpfHandler.cpp
index a090a54..fa92f10 100644
--- a/netd/BpfHandler.cpp
+++ b/netd/BpfHandler.cpp

@@ -129,6 +129,15 @@
         RETURN_IF_NOT_OK(
                 attachProgramToCgroup(CGROUP_SOCKET_PROG_PATH, cg_fd, BPF_CGROUP_INET_SOCK_CREATE));
     }
+
+    // This should trivially pass, since we just attached up above,
+    // but BPF_PROG_QUERY is only implemented on 4.19+ kernels.
+    if (bpf::isAtLeastKernelVersion(4, 19, 0)) {
+        if (bpf::queryProgram(cg_fd, BPF_CGROUP_INET_EGRESS) <= 0) abort();
+        if (bpf::queryProgram(cg_fd, BPF_CGROUP_INET_INGRESS) <= 0) abort();
+        if (bpf::queryProgram(cg_fd, BPF_CGROUP_INET_SOCK_CREATE) <= 0) abort();
+    }
+
     return netdutils::status::ok;
 }
commit	5b2611d044fbd976e14225e91bacb715f4d4d47d	[log] [tgz]
author	Maciej Żenczykowski <maze@google.com>	Wed Oct 04 00:44:56 2023 +0000
committer	Maciej Żenczykowski <maze@google.com>	Wed Oct 04 19:12:32 2023 +0000
tree	f2247c428b5304f3dc1674bdaa7ffe49aa197434
parent	340e2ff355000de232aebcf9b322afaf8b859d96 [diff] [blame]