| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 |
- use libc::{setsockopt, SOL_SOCKET, SO_ATTACH_BPF, SO_DETACH_BPF};
- use std::{cell::RefCell, io, mem, os::unix::prelude::RawFd, rc::Rc};
- use crate::{
- generated::bpf_prog_type::BPF_PROG_TYPE_SOCKET_FILTER,
- programs::{load_program, Link, LinkRef, ProgramData, ProgramError},
- };
- #[derive(Debug)]
- pub struct SocketFilter {
- pub(crate) data: ProgramData,
- }
- impl SocketFilter {
- pub fn load(&mut self) -> Result<(), ProgramError> {
- load_program(BPF_PROG_TYPE_SOCKET_FILTER, &mut self.data)
- }
- pub fn attach(&self, socket: RawFd) -> Result<impl Link, ProgramError> {
- let prog_fd = self.data.fd_or_err()?;
- let ret = unsafe {
- setsockopt(
- socket,
- SOL_SOCKET,
- SO_ATTACH_BPF,
- &prog_fd as *const _ as *const _,
- mem::size_of::<RawFd>() as u32,
- )
- };
- if ret < 0 {
- return Err(ProgramError::SocketFilterError {
- io_error: io::Error::last_os_error(),
- });
- }
- let link = Rc::new(RefCell::new(SocketFilterLink {
- socket,
- prog_fd: Some(prog_fd),
- }));
- Ok(LinkRef::new(&link))
- }
- }
- #[derive(Debug)]
- pub(crate) struct SocketFilterLink {
- socket: RawFd,
- prog_fd: Option<RawFd>,
- }
- impl Link for SocketFilterLink {
- fn detach(&mut self) -> Result<(), ProgramError> {
- if let Some(fd) = self.prog_fd.take() {
- unsafe {
- setsockopt(
- self.socket,
- SOL_SOCKET,
- SO_DETACH_BPF,
- &fd as *const _ as *const _,
- mem::size_of::<RawFd>() as u32,
- );
- }
- Ok(())
- } else {
- Err(ProgramError::AlreadyDetached)
- }
- }
- }
- impl Drop for SocketFilterLink {
- fn drop(&mut self) {
- let _ = self.detach();
- }
- }
|
