首頁 探索 說明
登入
DragonOS-Community
/
aya
镜像来自 https://github.com/aya-rs/aya
4
0
複刻 0
Files 問題管理 0 Wiki
目錄樹: 00b5cc5aaf
分支列表 標籤列表
aya
/
test
/
integration-test
/
src
/
tests
/
xdp.rs

xdp.rs 6.3 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190 
  1. use std::{net::UdpSocket, num::NonZeroU32, time::Duration};
    2. 

  2. 

  3. use aya::{
    4. 

  4.     Ebpf,
    5. 

  5.     maps::{Array, CpuMap, XskMap},
    6. 

  6.     programs::{Xdp, XdpFlags},
    7. 

  7. };
    8. 

  8. use object::{Object, ObjectSection, ObjectSymbol, SymbolSection};
    9. 

  9. use test_log::test;
    10. 

  10. use xdpilone::{BufIdx, IfInfo, Socket, SocketConfig, Umem, UmemConfig};
    11. 

  11. 

  12. use crate::utils::NetNsGuard;
    13. 

  13. 

  14. #[test]
    15. 

  15. fn af_xdp() {
    16. 

  16.     let _netns = NetNsGuard::new();
    17. 

  17. 

  18.     let mut bpf = Ebpf::load(crate::REDIRECT).unwrap();
    19. 

  19.     let mut socks: XskMap<_> = bpf.take_map("SOCKS").unwrap().try_into().unwrap();
    20. 

  20. 

  21.     let xdp: &mut Xdp = bpf
    22. 

  22.         .program_mut("redirect_sock")
    23. 

  23.         .unwrap()
    24. 

  24.         .try_into()
    25. 

  25.         .unwrap();
    26. 

  26.     xdp.load().unwrap();
    27. 

  27.     xdp.attach("lo", XdpFlags::default()).unwrap();
    28. 

  28. 

  29.     const SIZE: usize = 2 * 4096;
    30. 

  30. 

  31.     // So this needs to be page aligned. Pages are 4k on all mainstream architectures except for
    32. 

  32.     // Apple Silicon which uses 16k pages. So let's align on that for tests to run natively there.
    33. 

  33.     #[repr(C, align(16384))]
    34. 

  34.     struct PageAligned([u8; SIZE]);
    35. 

  35. 

  36.     let mut alloc = Box::new(PageAligned([0; SIZE]));
    37. 

  37.     let umem = {
    38. 

  38.         let PageAligned(mem) = alloc.as_mut();
    39. 

  39.         let mem = mem.as_mut().into();
    40. 

  40.         // Safety: we cannot access `mem` further down the line because it falls out of scope.
    41. 

  41.         unsafe { Umem::new(UmemConfig::default(), mem).unwrap() }
    42. 

  42.     };
    43. 

  43. 

  44.     let mut iface = IfInfo::invalid();
    45. 

  45.     iface.from_name(c"lo").unwrap();
    46. 

  46.     let sock = Socket::with_shared(&iface, &umem).unwrap();
    47. 

  47. 

  48.     let mut fq_cq = umem.fq_cq(&sock).unwrap(); // Fill Queue / Completion Queue
    49. 

  49. 

  50.     let cfg = SocketConfig {
    51. 

  51.         rx_size: NonZeroU32::new(32),
    52. 

  52.         ..Default::default()
    53. 

  53.     };
    54. 

  54.     let rxtx = umem.rx_tx(&sock, &cfg).unwrap(); // RX + TX Queues
    55. 

  55.     let mut rx = rxtx.map_rx().unwrap();
    56. 

  56. 

  57.     umem.bind(&rxtx).unwrap();
    58. 

  58. 

  59.     socks.set(0, rx.as_raw_fd(), 0).unwrap();
    60. 

  60. 

  61.     let frame = umem.frame(BufIdx(0)).unwrap();
    62. 

  62.     let frame1 = umem.frame(BufIdx(1)).unwrap();
    63. 

  63. 

  64.     // Produce two frames to be filled by the kernel
    65. 

  65.     let mut writer = fq_cq.fill(2);
    66. 

  66.     writer.insert_once(frame.offset);
    67. 

  67.     writer.insert_once(frame1.offset);
    68. 

  68.     writer.commit();
    69. 

  69. 

  70.     let sock = UdpSocket::bind("127.0.0.1:0").unwrap();
    71. 

  71.     let port = sock.local_addr().unwrap().port();
    72. 

  72.     sock.send_to(b"hello AF_XDP", "127.0.0.1:1777").unwrap();
    73. 

  73. 

  74.     assert_eq!(rx.available(), 1);
    75. 

  75.     let desc = rx.receive(1).read().unwrap();
    76. 

  76.     let buf = unsafe {
    77. 

  77.         &frame.addr.as_ref()[desc.addr as usize..(desc.addr as usize + desc.len as usize)]
    78. 

  78.     };
    79. 

  79. 

  80.     let (eth, buf) = buf.split_at(14);
    81. 

  81.     assert_eq!(eth[12..14], [0x08, 0x00]); // IP
    82. 

  82.     let (ip, buf) = buf.split_at(20);
    83. 

  83.     assert_eq!(ip[9], 17); // UDP
    84. 

  84.     let (udp, payload) = buf.split_at(8);
    85. 

  85.     assert_eq!(&udp[0..2], port.to_be_bytes().as_slice()); // Source
    86. 

  86.     assert_eq!(&udp[2..4], 1777u16.to_be_bytes().as_slice()); // Dest
    87. 

  87.     assert_eq!(payload, b"hello AF_XDP");
    88. 

  88. 

  89.     assert_eq!(rx.available(), 1);
    90. 

  90.     // Removes socket from map, no more packets will be redirected.
    91. 

  91.     socks.unset(0).unwrap();
    92. 

  92.     assert_eq!(rx.available(), 1);
    93. 

  93.     sock.send_to(b"hello AF_XDP", "127.0.0.1:1777").unwrap();
    94. 

  94.     assert_eq!(rx.available(), 1);
    95. 

  95.     // Adds socket to map again, packets will be redirected again.
    96. 

  96.     socks.set(0, rx.as_raw_fd(), 0).unwrap();
    97. 

  97.     sock.send_to(b"hello AF_XDP", "127.0.0.1:1777").unwrap();
    98. 

  98.     assert_eq!(rx.available(), 2);
    99. 

  99. }
    100. 

  100. 

  101. #[test]
    102. 

  102. fn prog_sections() {
    103. 

  103.     let obj_file = object::File::parse(crate::XDP_SEC).unwrap();
    104. 

  104. 

  105.     ensure_symbol(&obj_file, "xdp", "xdp_plain");
    106. 

  106.     ensure_symbol(&obj_file, "xdp.frags", "xdp_frags");
    107. 

  107.     ensure_symbol(&obj_file, "xdp/cpumap", "xdp_cpumap");
    108. 

  108.     ensure_symbol(&obj_file, "xdp/devmap", "xdp_devmap");
    109. 

  109.     ensure_symbol(&obj_file, "xdp.frags/cpumap", "xdp_frags_cpumap");
    110. 

  110.     ensure_symbol(&obj_file, "xdp.frags/devmap", "xdp_frags_devmap");
    111. 

  111. }
    112. 

  112. 

  113. #[track_caller]
    114. 

  114. fn ensure_symbol(obj_file: &object::File, sec_name: &str, sym_name: &str) {
    115. 

  115.     let sec = obj_file.section_by_name(sec_name).unwrap_or_else(|| {
    116. 

  116.         let secs = obj_file
    117. 

  117.             .sections()
    118. 

  118.             .flat_map(|sec| sec.name().ok().map(|name| name.to_owned()))
    119. 

  119.             .collect::<Vec<_>>();
    120. 

  120.         panic!("section {sec_name} not found. available sections: {secs:?}");
    121. 

  121.     });
    122. 

  122.     let sec = SymbolSection::Section(sec.index());
    123. 

  123. 

  124.     let syms = obj_file
    125. 

  125.         .symbols()
    126. 

  126.         .filter(|sym| sym.section() == sec)
    127. 

  127.         .filter_map(|sym| sym.name().ok())
    128. 

  128.         .collect::<Vec<_>>();
    129. 

  129.     assert!(
    130. 

  130.         syms.contains(&sym_name),
    131. 

  131.         "symbol not found. available symbols in section: {syms:?}"
    132. 

  132.     );
    133. 

  133. }
    134. 

  134. 

  135. #[test]
    136. 

  136. fn map_load() {
    137. 

  137.     let bpf = Ebpf::load(crate::XDP_SEC).unwrap();
    138. 

  138. 

  139.     bpf.program("xdp_plain").unwrap();
    140. 

  140.     bpf.program("xdp_frags").unwrap();
    141. 

  141.     bpf.program("xdp_cpumap").unwrap();
    142. 

  142.     bpf.program("xdp_devmap").unwrap();
    143. 

  143.     bpf.program("xdp_frags_cpumap").unwrap();
    144. 

  144.     bpf.program("xdp_frags_devmap").unwrap();
    145. 

  145. }
    146. 

  146. 

  147. #[test]
    148. 

  148. fn cpumap_chain() {
    149. 

  149.     let _netns = NetNsGuard::new();
    150. 

  150. 

  151.     let mut bpf = Ebpf::load(crate::REDIRECT).unwrap();
    152. 

  152. 

  153.     // Load our cpumap and our canary map
    154. 

  154.     let mut cpus: CpuMap<_> = bpf.take_map("CPUS").unwrap().try_into().unwrap();
    155. 

  155.     let hits: Array<_, u32> = bpf.take_map("HITS").unwrap().try_into().unwrap();
    156. 

  156. 

  157.     let xdp_chain_fd = {
    158. 

  158.         // Load the chained program to run on the target CPU
    159. 

  159.         let xdp: &mut Xdp = bpf
    160. 

  160.             .program_mut("redirect_cpu_chain")
    161. 

  161.             .unwrap()
    162. 

  162.             .try_into()
    163. 

  163.             .unwrap();
    164. 

  164.         xdp.load().unwrap();
    165. 

  165.         xdp.fd().unwrap()
    166. 

  166.     };
    167. 

  167.     cpus.set(0, 2048, Some(xdp_chain_fd), 0).unwrap();
    168. 

  168. 

  169.     // Load the main program
    170. 

  170.     let xdp: &mut Xdp = bpf.program_mut("redirect_cpu").unwrap().try_into().unwrap();
    171. 

  171.     xdp.load().unwrap();
    172. 

  172.     xdp.attach("lo", XdpFlags::default()).unwrap();
    173. 

  173. 

  174.     const PAYLOAD: &str = "hello cpumap";
    175. 

  175. 

  176.     let sock = UdpSocket::bind("127.0.0.1:0").unwrap();
    177. 

  177.     let addr = sock.local_addr().unwrap();
    178. 

  178.     sock.set_read_timeout(Some(Duration::from_secs(60)))
    179. 

  179.         .unwrap();
    180. 

  180.     sock.send_to(PAYLOAD.as_bytes(), addr).unwrap();
    181. 

  181. 

  182.     // Read back the packet to ensure it went through the entire network stack, including our two
    183. 

  183.     // probes.
    184. 

  184.     let mut buf = [0u8; PAYLOAD.len() + 1];
    185. 

  185.     let n = sock.recv(&mut buf).unwrap();
    186. 

  186. 

  187.     assert_eq!(&buf[..n], PAYLOAD.as_bytes());
    188. 

  188.     assert_eq!(hits.get(&0, 0).unwrap(), 1);
    189. 

  189.     assert_eq!(hits.get(&1, 0).unwrap(), 1);
    190. 

  190. }
    191.