Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_bpf / d76a2004a6987369e4130213d36ac20ac31dc3d7 / . / bpfloader / BpfLoader.cpp
blob: a09af29f452082ddb301cf4f306959e032388bc2 [file] [log] [blame]
/*
* Copyright (C) 2017 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#ifndef LOG_TAG
#define LOG_TAG "bpfloader"
#endif
#include <arpa/inet.h>
#include <dirent.h>
#include <elf.h>
#include <error.h>
#include <fcntl.h>
#include <inttypes.h>
#include <linux/bpf.h>
#include <linux/unistd.h>
#include <net/if.h>
#include <stdint.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <sys/mman.h>
#include <sys/socket.h>
#include <sys/stat.h>
#include <sys/types.h>
#include <android-base/stringprintf.h>
#include <android-base/strings.h>
#include <android-base/unique_fd.h>
#include <libbpf_android.h>
#include <log/log.h>
#include <netdutils/Misc.h>
#include <netdutils/Slice.h>
#include "bpf/BpfUtils.h"
#include "netdbpf/bpf_shared.h"
using android::base::EndsWith;
using android::base::unique_fd;
using android::netdutils::Slice;
using std::string;
#define BPF_PROG_PATH "/system/etc/bpf/"
#define BPF_PROG_SRC BPF_PROG_PATH "bpf_kern.o"
#define CLEANANDEXIT(ret, mapPatterns) \
do { \
for (size_t i = 0; i < mapPatterns.size(); i++) { \
if (mapPatterns[i].fd > -1) { \
close(mapPatterns[i].fd); \
} \
} \
return ret; \
} while (0)
using android::bpf::BpfMapInfo;
using android::bpf::BpfProgInfo;
void loadAllElfObjects(void) {
DIR* dir;
struct dirent* ent;
if ((dir = opendir(BPF_PROG_PATH)) != NULL) {
while ((ent = readdir(dir)) != NULL) {
string s = ent->d_name;
if (!EndsWith(s, ".o")) continue;
string progPath = BPF_PROG_PATH + s;
int ret = android::bpf::loadProg(progPath.c_str());
ALOGI("Attempted load object: %s, ret: %s", progPath.c_str(), std::strerror(-ret));
}
closedir(dir);
}
}
int main() {
// Load all ELF objects, create programs and maps, and pin them
loadAllElfObjects();
const std::vector<BpfMapInfo> mapPatterns = {
BpfMapInfo(COOKIE_TAG_MAP, COOKIE_TAG_MAP_PATH),
BpfMapInfo(UID_COUNTERSET_MAP, UID_COUNTERSET_MAP_PATH),
BpfMapInfo(APP_UID_STATS_MAP, APP_UID_STATS_MAP_PATH),
BpfMapInfo(UID_STATS_MAP, UID_STATS_MAP_PATH),
BpfMapInfo(TAG_STATS_MAP, TAG_STATS_MAP_PATH),
BpfMapInfo(IFACE_STATS_MAP, IFACE_STATS_MAP_PATH),
BpfMapInfo(CONFIGURATION_MAP, CONFIGURATION_MAP_PATH),
BpfMapInfo(UID_OWNER_MAP, UID_OWNER_MAP_PATH),
};
for (size_t i = 0; i < mapPatterns.size(); i++) {
if (mapPatterns[i].fd < 0) {
ALOGE("Rerieve Map from %s failed: %d", mapPatterns[i].path.c_str(), mapPatterns[i].fd);
CLEANANDEXIT(-1, mapPatterns);
}
}
BpfProgInfo programs[] = {
{BPF_CGROUP_INET_EGRESS, BPF_EGRESS_PROG_PATH, BPF_CGROUP_EGRESS_PROG_NAME,
BPF_PROG_TYPE_CGROUP_SKB, unique_fd(-1)},
{BPF_CGROUP_INET_INGRESS, BPF_INGRESS_PROG_PATH, BPF_CGROUP_INGRESS_PROG_NAME,
BPF_PROG_TYPE_CGROUP_SKB, unique_fd(-1)},
{MAX_BPF_ATTACH_TYPE, XT_BPF_INGRESS_PROG_PATH, XT_BPF_INGRESS_PROG_NAME,
BPF_PROG_TYPE_SOCKET_FILTER, unique_fd(-1)},
{MAX_BPF_ATTACH_TYPE, XT_BPF_EGRESS_PROG_PATH, XT_BPF_EGRESS_PROG_NAME,
BPF_PROG_TYPE_SOCKET_FILTER, unique_fd(-1)},
{MAX_BPF_ATTACH_TYPE, XT_BPF_WHITELIST_PROG_PATH, XT_BPF_WHITELIST_PROG_NAME,
BPF_PROG_TYPE_SOCKET_FILTER, unique_fd(-1)},
{MAX_BPF_ATTACH_TYPE, XT_BPF_BLACKLIST_PROG_PATH, XT_BPF_BLACKLIST_PROG_NAME,
BPF_PROG_TYPE_SOCKET_FILTER, unique_fd(-1)}};
int ret = android::bpf::parseProgramsFromFile(BPF_PROG_SRC, programs, ARRAY_SIZE(programs),
mapPatterns);
CLEANANDEXIT(ret, mapPatterns);
}