1 // SPDX-License-Identifier: (GPL-2.0-only OR B 1 // SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause)
2 // Copyright (C) 2018 Facebook 2 // Copyright (C) 2018 Facebook
3 3
4 #ifndef _GNU_SOURCE <<
5 #define _GNU_SOURCE 4 #define _GNU_SOURCE
6 #endif <<
7 #include <errno.h> 5 #include <errno.h>
8 #include <fcntl.h> 6 #include <fcntl.h>
9 #include <stdlib.h> 7 #include <stdlib.h>
10 #include <string.h> 8 #include <string.h>
11 #include <time.h> 9 #include <time.h>
12 #include <unistd.h> 10 #include <unistd.h>
13 #include <bpf/bpf.h> 11 #include <bpf/bpf.h>
14 #include <bpf/libbpf.h> 12 #include <bpf/libbpf.h>
15 #include <net/if.h> 13 #include <net/if.h>
16 #include <linux/rtnetlink.h> 14 #include <linux/rtnetlink.h>
17 #include <linux/socket.h> 15 #include <linux/socket.h>
18 #include <linux/tc_act/tc_bpf.h> 16 #include <linux/tc_act/tc_bpf.h>
19 #include <sys/socket.h> 17 #include <sys/socket.h>
20 #include <sys/stat.h> 18 #include <sys/stat.h>
21 #include <sys/types.h> 19 #include <sys/types.h>
22 20
23 #include "bpf/nlattr.h" 21 #include "bpf/nlattr.h"
24 #include "main.h" 22 #include "main.h"
25 #include "netlink_dumper.h" 23 #include "netlink_dumper.h"
26 24
27 #ifndef SOL_NETLINK 25 #ifndef SOL_NETLINK
28 #define SOL_NETLINK 270 26 #define SOL_NETLINK 270
29 #endif 27 #endif
30 28
31 struct ip_devname_ifindex { 29 struct ip_devname_ifindex {
32 char devname[64]; 30 char devname[64];
33 int ifindex; 31 int ifindex;
34 }; 32 };
35 33
36 struct bpf_netdev_t { 34 struct bpf_netdev_t {
37 struct ip_devname_ifindex *devices; 35 struct ip_devname_ifindex *devices;
38 int used_len; 36 int used_len;
39 int array_len; 37 int array_len;
40 int filter_idx; 38 int filter_idx;
41 }; 39 };
42 40
43 struct tc_kind_handle { 41 struct tc_kind_handle {
44 char kind[64]; 42 char kind[64];
45 int handle; 43 int handle;
46 }; 44 };
47 45
48 struct bpf_tcinfo_t { 46 struct bpf_tcinfo_t {
49 struct tc_kind_handle *handle_array; 47 struct tc_kind_handle *handle_array;
50 int used_len; 48 int used_len;
51 int array_len; 49 int array_len;
52 bool is_qdisc; 50 bool is_qdisc;
53 }; 51 };
54 52
55 struct bpf_filter_t { 53 struct bpf_filter_t {
56 const char *kind; 54 const char *kind;
57 const char *devname; 55 const char *devname;
58 int ifindex; 56 int ifindex;
59 }; 57 };
60 58
61 struct bpf_attach_info { 59 struct bpf_attach_info {
62 __u32 flow_dissector_id; 60 __u32 flow_dissector_id;
63 }; 61 };
64 62
65 enum net_attach_type { 63 enum net_attach_type {
66 NET_ATTACH_TYPE_XDP, 64 NET_ATTACH_TYPE_XDP,
67 NET_ATTACH_TYPE_XDP_GENERIC, 65 NET_ATTACH_TYPE_XDP_GENERIC,
68 NET_ATTACH_TYPE_XDP_DRIVER, 66 NET_ATTACH_TYPE_XDP_DRIVER,
69 NET_ATTACH_TYPE_XDP_OFFLOAD, 67 NET_ATTACH_TYPE_XDP_OFFLOAD,
70 NET_ATTACH_TYPE_TCX_INGRESS, <<
71 NET_ATTACH_TYPE_TCX_EGRESS, <<
72 }; 68 };
73 69
74 static const char * const attach_type_strings[ 70 static const char * const attach_type_strings[] = {
75 [NET_ATTACH_TYPE_XDP] = "xdp 71 [NET_ATTACH_TYPE_XDP] = "xdp",
76 [NET_ATTACH_TYPE_XDP_GENERIC] = "xdp 72 [NET_ATTACH_TYPE_XDP_GENERIC] = "xdpgeneric",
77 [NET_ATTACH_TYPE_XDP_DRIVER] = "xdp 73 [NET_ATTACH_TYPE_XDP_DRIVER] = "xdpdrv",
78 [NET_ATTACH_TYPE_XDP_OFFLOAD] = "xdp 74 [NET_ATTACH_TYPE_XDP_OFFLOAD] = "xdpoffload",
79 [NET_ATTACH_TYPE_TCX_INGRESS] = "tcx <<
80 [NET_ATTACH_TYPE_TCX_EGRESS] = "tcx <<
81 }; <<
82 <<
83 static const char * const attach_loc_strings[] <<
84 [BPF_TCX_INGRESS] = "tcx <<
85 [BPF_TCX_EGRESS] = "tcx <<
86 [BPF_NETKIT_PRIMARY] = "net <<
87 [BPF_NETKIT_PEER] = "net <<
88 }; 75 };
89 76
90 const size_t net_attach_type_size = ARRAY_SIZE 77 const size_t net_attach_type_size = ARRAY_SIZE(attach_type_strings);
91 78
92 static enum net_attach_type parse_attach_type( 79 static enum net_attach_type parse_attach_type(const char *str)
93 { 80 {
94 enum net_attach_type type; 81 enum net_attach_type type;
95 82
96 for (type = 0; type < net_attach_type_ 83 for (type = 0; type < net_attach_type_size; type++) {
97 if (attach_type_strings[type] 84 if (attach_type_strings[type] &&
98 is_prefix(str, attach_type 85 is_prefix(str, attach_type_strings[type]))
99 return type; 86 return type;
100 } 87 }
101 88
102 return net_attach_type_size; 89 return net_attach_type_size;
103 } 90 }
104 91
105 typedef int (*dump_nlmsg_t)(void *cookie, void 92 typedef int (*dump_nlmsg_t)(void *cookie, void *msg, struct nlattr **tb);
106 93
107 typedef int (*__dump_nlmsg_t)(struct nlmsghdr 94 typedef int (*__dump_nlmsg_t)(struct nlmsghdr *nlmsg, dump_nlmsg_t, void *cookie);
108 95
109 static int netlink_open(__u32 *nl_pid) 96 static int netlink_open(__u32 *nl_pid)
110 { 97 {
111 struct sockaddr_nl sa; 98 struct sockaddr_nl sa;
112 socklen_t addrlen; 99 socklen_t addrlen;
113 int one = 1, ret; 100 int one = 1, ret;
114 int sock; 101 int sock;
115 102
116 memset(&sa, 0, sizeof(sa)); 103 memset(&sa, 0, sizeof(sa));
117 sa.nl_family = AF_NETLINK; 104 sa.nl_family = AF_NETLINK;
118 105
119 sock = socket(AF_NETLINK, SOCK_RAW, NE 106 sock = socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE);
120 if (sock < 0) 107 if (sock < 0)
121 return -errno; 108 return -errno;
122 109
123 if (setsockopt(sock, SOL_NETLINK, NETL 110 if (setsockopt(sock, SOL_NETLINK, NETLINK_EXT_ACK,
124 &one, sizeof(one)) < 0) 111 &one, sizeof(one)) < 0) {
125 p_err("Netlink error reporting 112 p_err("Netlink error reporting not supported");
126 } 113 }
127 114
128 if (bind(sock, (struct sockaddr *)&sa, 115 if (bind(sock, (struct sockaddr *)&sa, sizeof(sa)) < 0) {
129 ret = -errno; 116 ret = -errno;
130 goto cleanup; 117 goto cleanup;
131 } 118 }
132 119
133 addrlen = sizeof(sa); 120 addrlen = sizeof(sa);
134 if (getsockname(sock, (struct sockaddr 121 if (getsockname(sock, (struct sockaddr *)&sa, &addrlen) < 0) {
135 ret = -errno; 122 ret = -errno;
136 goto cleanup; 123 goto cleanup;
137 } 124 }
138 125
139 if (addrlen != sizeof(sa)) { 126 if (addrlen != sizeof(sa)) {
140 ret = -LIBBPF_ERRNO__INTERNAL; 127 ret = -LIBBPF_ERRNO__INTERNAL;
141 goto cleanup; 128 goto cleanup;
142 } 129 }
143 130
144 *nl_pid = sa.nl_pid; 131 *nl_pid = sa.nl_pid;
145 return sock; 132 return sock;
146 133
147 cleanup: 134 cleanup:
148 close(sock); 135 close(sock);
149 return ret; 136 return ret;
150 } 137 }
151 138
152 static int netlink_recv(int sock, __u32 nl_pid 139 static int netlink_recv(int sock, __u32 nl_pid, __u32 seq,
153 __dump_nlmsg_t _fn 140 __dump_nlmsg_t _fn, dump_nlmsg_t fn,
154 void *cookie) 141 void *cookie)
155 { 142 {
156 bool multipart = true; 143 bool multipart = true;
157 struct nlmsgerr *err; 144 struct nlmsgerr *err;
158 struct nlmsghdr *nh; 145 struct nlmsghdr *nh;
159 char buf[4096]; 146 char buf[4096];
160 int len, ret; 147 int len, ret;
161 148
162 while (multipart) { 149 while (multipart) {
163 multipart = false; 150 multipart = false;
164 len = recv(sock, buf, sizeof(b 151 len = recv(sock, buf, sizeof(buf), 0);
165 if (len < 0) { 152 if (len < 0) {
166 ret = -errno; 153 ret = -errno;
167 goto done; 154 goto done;
168 } 155 }
169 156
170 if (len == 0) 157 if (len == 0)
171 break; 158 break;
172 159
173 for (nh = (struct nlmsghdr *)b 160 for (nh = (struct nlmsghdr *)buf; NLMSG_OK(nh, (unsigned int)len);
174 nh = NLMSG_NEXT(nh, len)) 161 nh = NLMSG_NEXT(nh, len)) {
175 if (nh->nlmsg_pid != n 162 if (nh->nlmsg_pid != nl_pid) {
176 ret = -LIBBPF_ 163 ret = -LIBBPF_ERRNO__WRNGPID;
177 goto done; 164 goto done;
178 } 165 }
179 if (nh->nlmsg_seq != s 166 if (nh->nlmsg_seq != seq) {
180 ret = -LIBBPF_ 167 ret = -LIBBPF_ERRNO__INVSEQ;
181 goto done; 168 goto done;
182 } 169 }
183 if (nh->nlmsg_flags & 170 if (nh->nlmsg_flags & NLM_F_MULTI)
184 multipart = tr 171 multipart = true;
185 switch (nh->nlmsg_type 172 switch (nh->nlmsg_type) {
186 case NLMSG_ERROR: 173 case NLMSG_ERROR:
187 err = (struct 174 err = (struct nlmsgerr *)NLMSG_DATA(nh);
188 if (!err->erro 175 if (!err->error)
189 contin 176 continue;
190 ret = err->err 177 ret = err->error;
191 libbpf_nla_dum 178 libbpf_nla_dump_errormsg(nh);
192 goto done; 179 goto done;
193 case NLMSG_DONE: 180 case NLMSG_DONE:
194 return 0; 181 return 0;
195 default: 182 default:
196 break; 183 break;
197 } 184 }
198 if (_fn) { 185 if (_fn) {
199 ret = _fn(nh, 186 ret = _fn(nh, fn, cookie);
200 if (ret) 187 if (ret)
201 return 188 return ret;
202 } 189 }
203 } 190 }
204 } 191 }
205 ret = 0; 192 ret = 0;
206 done: 193 done:
207 return ret; 194 return ret;
208 } 195 }
209 196
210 static int __dump_class_nlmsg(struct nlmsghdr 197 static int __dump_class_nlmsg(struct nlmsghdr *nlh,
211 dump_nlmsg_t dum 198 dump_nlmsg_t dump_class_nlmsg,
212 void *cookie) 199 void *cookie)
213 { 200 {
214 struct nlattr *tb[TCA_MAX + 1], *attr; 201 struct nlattr *tb[TCA_MAX + 1], *attr;
215 struct tcmsg *t = NLMSG_DATA(nlh); 202 struct tcmsg *t = NLMSG_DATA(nlh);
216 int len; 203 int len;
217 204
218 len = nlh->nlmsg_len - NLMSG_LENGTH(si 205 len = nlh->nlmsg_len - NLMSG_LENGTH(sizeof(*t));
219 attr = (struct nlattr *) ((void *) t + 206 attr = (struct nlattr *) ((void *) t + NLMSG_ALIGN(sizeof(*t)));
220 if (libbpf_nla_parse(tb, TCA_MAX, attr 207 if (libbpf_nla_parse(tb, TCA_MAX, attr, len, NULL) != 0)
221 return -LIBBPF_ERRNO__NLPARSE; 208 return -LIBBPF_ERRNO__NLPARSE;
222 209
223 return dump_class_nlmsg(cookie, t, tb) 210 return dump_class_nlmsg(cookie, t, tb);
224 } 211 }
225 212
226 static int netlink_get_class(int sock, unsigne 213 static int netlink_get_class(int sock, unsigned int nl_pid, int ifindex,
227 dump_nlmsg_t dump 214 dump_nlmsg_t dump_class_nlmsg, void *cookie)
228 { 215 {
229 struct { 216 struct {
230 struct nlmsghdr nlh; 217 struct nlmsghdr nlh;
231 struct tcmsg t; 218 struct tcmsg t;
232 } req = { 219 } req = {
233 .nlh.nlmsg_len = NLMSG_LENGTH( 220 .nlh.nlmsg_len = NLMSG_LENGTH(sizeof(struct tcmsg)),
234 .nlh.nlmsg_type = RTM_GETTCLAS 221 .nlh.nlmsg_type = RTM_GETTCLASS,
235 .nlh.nlmsg_flags = NLM_F_DUMP 222 .nlh.nlmsg_flags = NLM_F_DUMP | NLM_F_REQUEST,
236 .t.tcm_family = AF_UNSPEC, 223 .t.tcm_family = AF_UNSPEC,
237 .t.tcm_ifindex = ifindex, 224 .t.tcm_ifindex = ifindex,
238 }; 225 };
239 int seq = time(NULL); 226 int seq = time(NULL);
240 227
241 req.nlh.nlmsg_seq = seq; 228 req.nlh.nlmsg_seq = seq;
242 if (send(sock, &req, req.nlh.nlmsg_len 229 if (send(sock, &req, req.nlh.nlmsg_len, 0) < 0)
243 return -errno; 230 return -errno;
244 231
245 return netlink_recv(sock, nl_pid, seq, 232 return netlink_recv(sock, nl_pid, seq, __dump_class_nlmsg,
246 dump_class_nlmsg, 233 dump_class_nlmsg, cookie);
247 } 234 }
248 235
249 static int __dump_qdisc_nlmsg(struct nlmsghdr 236 static int __dump_qdisc_nlmsg(struct nlmsghdr *nlh,
250 dump_nlmsg_t dum 237 dump_nlmsg_t dump_qdisc_nlmsg,
251 void *cookie) 238 void *cookie)
252 { 239 {
253 struct nlattr *tb[TCA_MAX + 1], *attr; 240 struct nlattr *tb[TCA_MAX + 1], *attr;
254 struct tcmsg *t = NLMSG_DATA(nlh); 241 struct tcmsg *t = NLMSG_DATA(nlh);
255 int len; 242 int len;
256 243
257 len = nlh->nlmsg_len - NLMSG_LENGTH(si 244 len = nlh->nlmsg_len - NLMSG_LENGTH(sizeof(*t));
258 attr = (struct nlattr *) ((void *) t + 245 attr = (struct nlattr *) ((void *) t + NLMSG_ALIGN(sizeof(*t)));
259 if (libbpf_nla_parse(tb, TCA_MAX, attr 246 if (libbpf_nla_parse(tb, TCA_MAX, attr, len, NULL) != 0)
260 return -LIBBPF_ERRNO__NLPARSE; 247 return -LIBBPF_ERRNO__NLPARSE;
261 248
262 return dump_qdisc_nlmsg(cookie, t, tb) 249 return dump_qdisc_nlmsg(cookie, t, tb);
263 } 250 }
264 251
265 static int netlink_get_qdisc(int sock, unsigne 252 static int netlink_get_qdisc(int sock, unsigned int nl_pid, int ifindex,
266 dump_nlmsg_t dump 253 dump_nlmsg_t dump_qdisc_nlmsg, void *cookie)
267 { 254 {
268 struct { 255 struct {
269 struct nlmsghdr nlh; 256 struct nlmsghdr nlh;
270 struct tcmsg t; 257 struct tcmsg t;
271 } req = { 258 } req = {
272 .nlh.nlmsg_len = NLMSG_LENGTH( 259 .nlh.nlmsg_len = NLMSG_LENGTH(sizeof(struct tcmsg)),
273 .nlh.nlmsg_type = RTM_GETQDISC 260 .nlh.nlmsg_type = RTM_GETQDISC,
274 .nlh.nlmsg_flags = NLM_F_DUMP 261 .nlh.nlmsg_flags = NLM_F_DUMP | NLM_F_REQUEST,
275 .t.tcm_family = AF_UNSPEC, 262 .t.tcm_family = AF_UNSPEC,
276 .t.tcm_ifindex = ifindex, 263 .t.tcm_ifindex = ifindex,
277 }; 264 };
278 int seq = time(NULL); 265 int seq = time(NULL);
279 266
280 req.nlh.nlmsg_seq = seq; 267 req.nlh.nlmsg_seq = seq;
281 if (send(sock, &req, req.nlh.nlmsg_len 268 if (send(sock, &req, req.nlh.nlmsg_len, 0) < 0)
282 return -errno; 269 return -errno;
283 270
284 return netlink_recv(sock, nl_pid, seq, 271 return netlink_recv(sock, nl_pid, seq, __dump_qdisc_nlmsg,
285 dump_qdisc_nlmsg, 272 dump_qdisc_nlmsg, cookie);
286 } 273 }
287 274
288 static int __dump_filter_nlmsg(struct nlmsghdr 275 static int __dump_filter_nlmsg(struct nlmsghdr *nlh,
289 dump_nlmsg_t du 276 dump_nlmsg_t dump_filter_nlmsg,
290 void *cookie) 277 void *cookie)
291 { 278 {
292 struct nlattr *tb[TCA_MAX + 1], *attr; 279 struct nlattr *tb[TCA_MAX + 1], *attr;
293 struct tcmsg *t = NLMSG_DATA(nlh); 280 struct tcmsg *t = NLMSG_DATA(nlh);
294 int len; 281 int len;
295 282
296 len = nlh->nlmsg_len - NLMSG_LENGTH(si 283 len = nlh->nlmsg_len - NLMSG_LENGTH(sizeof(*t));
297 attr = (struct nlattr *) ((void *) t + 284 attr = (struct nlattr *) ((void *) t + NLMSG_ALIGN(sizeof(*t)));
298 if (libbpf_nla_parse(tb, TCA_MAX, attr 285 if (libbpf_nla_parse(tb, TCA_MAX, attr, len, NULL) != 0)
299 return -LIBBPF_ERRNO__NLPARSE; 286 return -LIBBPF_ERRNO__NLPARSE;
300 287
301 return dump_filter_nlmsg(cookie, t, tb 288 return dump_filter_nlmsg(cookie, t, tb);
302 } 289 }
303 290
304 static int netlink_get_filter(int sock, unsign 291 static int netlink_get_filter(int sock, unsigned int nl_pid, int ifindex, int handle,
305 dump_nlmsg_t dum 292 dump_nlmsg_t dump_filter_nlmsg, void *cookie)
306 { 293 {
307 struct { 294 struct {
308 struct nlmsghdr nlh; 295 struct nlmsghdr nlh;
309 struct tcmsg t; 296 struct tcmsg t;
310 } req = { 297 } req = {
311 .nlh.nlmsg_len = NLMSG_LENGTH( 298 .nlh.nlmsg_len = NLMSG_LENGTH(sizeof(struct tcmsg)),
312 .nlh.nlmsg_type = RTM_GETTFILT 299 .nlh.nlmsg_type = RTM_GETTFILTER,
313 .nlh.nlmsg_flags = NLM_F_DUMP 300 .nlh.nlmsg_flags = NLM_F_DUMP | NLM_F_REQUEST,
314 .t.tcm_family = AF_UNSPEC, 301 .t.tcm_family = AF_UNSPEC,
315 .t.tcm_ifindex = ifindex, 302 .t.tcm_ifindex = ifindex,
316 .t.tcm_parent = handle, 303 .t.tcm_parent = handle,
317 }; 304 };
318 int seq = time(NULL); 305 int seq = time(NULL);
319 306
320 req.nlh.nlmsg_seq = seq; 307 req.nlh.nlmsg_seq = seq;
321 if (send(sock, &req, req.nlh.nlmsg_len 308 if (send(sock, &req, req.nlh.nlmsg_len, 0) < 0)
322 return -errno; 309 return -errno;
323 310
324 return netlink_recv(sock, nl_pid, seq, 311 return netlink_recv(sock, nl_pid, seq, __dump_filter_nlmsg,
325 dump_filter_nlmsg, 312 dump_filter_nlmsg, cookie);
326 } 313 }
327 314
328 static int __dump_link_nlmsg(struct nlmsghdr * 315 static int __dump_link_nlmsg(struct nlmsghdr *nlh,
329 dump_nlmsg_t dump 316 dump_nlmsg_t dump_link_nlmsg, void *cookie)
330 { 317 {
331 struct nlattr *tb[IFLA_MAX + 1], *attr 318 struct nlattr *tb[IFLA_MAX + 1], *attr;
332 struct ifinfomsg *ifi = NLMSG_DATA(nlh 319 struct ifinfomsg *ifi = NLMSG_DATA(nlh);
333 int len; 320 int len;
334 321
335 len = nlh->nlmsg_len - NLMSG_LENGTH(si 322 len = nlh->nlmsg_len - NLMSG_LENGTH(sizeof(*ifi));
336 attr = (struct nlattr *) ((void *) ifi 323 attr = (struct nlattr *) ((void *) ifi + NLMSG_ALIGN(sizeof(*ifi)));
337 if (libbpf_nla_parse(tb, IFLA_MAX, att 324 if (libbpf_nla_parse(tb, IFLA_MAX, attr, len, NULL) != 0)
338 return -LIBBPF_ERRNO__NLPARSE; 325 return -LIBBPF_ERRNO__NLPARSE;
339 326
340 return dump_link_nlmsg(cookie, ifi, tb 327 return dump_link_nlmsg(cookie, ifi, tb);
341 } 328 }
342 329
343 static int netlink_get_link(int sock, unsigned 330 static int netlink_get_link(int sock, unsigned int nl_pid,
344 dump_nlmsg_t dump_ 331 dump_nlmsg_t dump_link_nlmsg, void *cookie)
345 { 332 {
346 struct { 333 struct {
347 struct nlmsghdr nlh; 334 struct nlmsghdr nlh;
348 struct ifinfomsg ifm; 335 struct ifinfomsg ifm;
349 } req = { 336 } req = {
350 .nlh.nlmsg_len = NLMSG_LENGTH( 337 .nlh.nlmsg_len = NLMSG_LENGTH(sizeof(struct ifinfomsg)),
351 .nlh.nlmsg_type = RTM_GETLINK, 338 .nlh.nlmsg_type = RTM_GETLINK,
352 .nlh.nlmsg_flags = NLM_F_DUMP 339 .nlh.nlmsg_flags = NLM_F_DUMP | NLM_F_REQUEST,
353 .ifm.ifi_family = AF_PACKET, 340 .ifm.ifi_family = AF_PACKET,
354 }; 341 };
355 int seq = time(NULL); 342 int seq = time(NULL);
356 343
357 req.nlh.nlmsg_seq = seq; 344 req.nlh.nlmsg_seq = seq;
358 if (send(sock, &req, req.nlh.nlmsg_len 345 if (send(sock, &req, req.nlh.nlmsg_len, 0) < 0)
359 return -errno; 346 return -errno;
360 347
361 return netlink_recv(sock, nl_pid, seq, 348 return netlink_recv(sock, nl_pid, seq, __dump_link_nlmsg,
362 dump_link_nlmsg, c 349 dump_link_nlmsg, cookie);
363 } 350 }
364 351
365 static int dump_link_nlmsg(void *cookie, void 352 static int dump_link_nlmsg(void *cookie, void *msg, struct nlattr **tb)
366 { 353 {
367 struct bpf_netdev_t *netinfo = cookie; 354 struct bpf_netdev_t *netinfo = cookie;
368 struct ifinfomsg *ifinfo = msg; 355 struct ifinfomsg *ifinfo = msg;
369 356
370 if (netinfo->filter_idx > 0 && netinfo 357 if (netinfo->filter_idx > 0 && netinfo->filter_idx != ifinfo->ifi_index)
371 return 0; 358 return 0;
372 359
373 if (netinfo->used_len == netinfo->arra 360 if (netinfo->used_len == netinfo->array_len) {
374 netinfo->devices = realloc(net 361 netinfo->devices = realloc(netinfo->devices,
375 (netinfo->array_len + 362 (netinfo->array_len + 16) *
376 sizeof(struct ip_devna 363 sizeof(struct ip_devname_ifindex));
377 if (!netinfo->devices) 364 if (!netinfo->devices)
378 return -ENOMEM; 365 return -ENOMEM;
379 366
380 netinfo->array_len += 16; 367 netinfo->array_len += 16;
381 } 368 }
382 netinfo->devices[netinfo->used_len].if 369 netinfo->devices[netinfo->used_len].ifindex = ifinfo->ifi_index;
383 snprintf(netinfo->devices[netinfo->use 370 snprintf(netinfo->devices[netinfo->used_len].devname,
384 sizeof(netinfo->devices[netin 371 sizeof(netinfo->devices[netinfo->used_len].devname),
385 "%s", 372 "%s",
386 tb[IFLA_IFNAME] 373 tb[IFLA_IFNAME]
387 ? libbpf_nla_getattr_ 374 ? libbpf_nla_getattr_str(tb[IFLA_IFNAME])
388 : ""); 375 : "");
389 netinfo->used_len++; 376 netinfo->used_len++;
390 377
391 return do_xdp_dump(ifinfo, tb); 378 return do_xdp_dump(ifinfo, tb);
392 } 379 }
393 380
394 static int dump_class_qdisc_nlmsg(void *cookie 381 static int dump_class_qdisc_nlmsg(void *cookie, void *msg, struct nlattr **tb)
395 { 382 {
396 struct bpf_tcinfo_t *tcinfo = cookie; 383 struct bpf_tcinfo_t *tcinfo = cookie;
397 struct tcmsg *info = msg; 384 struct tcmsg *info = msg;
398 385
399 if (tcinfo->is_qdisc) { 386 if (tcinfo->is_qdisc) {
400 /* skip clsact qdisc */ 387 /* skip clsact qdisc */
401 if (tb[TCA_KIND] && 388 if (tb[TCA_KIND] &&
402 strcmp(libbpf_nla_data(tb[ 389 strcmp(libbpf_nla_data(tb[TCA_KIND]), "clsact") == 0)
403 return 0; 390 return 0;
404 if (info->tcm_handle == 0) 391 if (info->tcm_handle == 0)
405 return 0; 392 return 0;
406 } 393 }
407 394
408 if (tcinfo->used_len == tcinfo->array_ 395 if (tcinfo->used_len == tcinfo->array_len) {
409 tcinfo->handle_array = realloc 396 tcinfo->handle_array = realloc(tcinfo->handle_array,
410 (tcinfo->array_len + 1 397 (tcinfo->array_len + 16) * sizeof(struct tc_kind_handle));
411 if (!tcinfo->handle_array) 398 if (!tcinfo->handle_array)
412 return -ENOMEM; 399 return -ENOMEM;
413 400
414 tcinfo->array_len += 16; 401 tcinfo->array_len += 16;
415 } 402 }
416 tcinfo->handle_array[tcinfo->used_len] 403 tcinfo->handle_array[tcinfo->used_len].handle = info->tcm_handle;
417 snprintf(tcinfo->handle_array[tcinfo-> 404 snprintf(tcinfo->handle_array[tcinfo->used_len].kind,
418 sizeof(tcinfo->handle_array[t 405 sizeof(tcinfo->handle_array[tcinfo->used_len].kind),
419 "%s", 406 "%s",
420 tb[TCA_KIND] 407 tb[TCA_KIND]
421 ? libbpf_nla_getattr_ 408 ? libbpf_nla_getattr_str(tb[TCA_KIND])
422 : "unknown"); 409 : "unknown");
423 tcinfo->used_len++; 410 tcinfo->used_len++;
424 411
425 return 0; 412 return 0;
426 } 413 }
427 414
428 static int dump_filter_nlmsg(void *cookie, voi 415 static int dump_filter_nlmsg(void *cookie, void *msg, struct nlattr **tb)
429 { 416 {
430 const struct bpf_filter_t *filter_info 417 const struct bpf_filter_t *filter_info = cookie;
431 418
432 return do_filter_dump((struct tcmsg *) 419 return do_filter_dump((struct tcmsg *)msg, tb, filter_info->kind,
433 filter_info->dev 420 filter_info->devname, filter_info->ifindex);
434 } 421 }
435 422
436 static int __show_dev_tc_bpf_name(__u32 id, ch !! 423 static int show_dev_tc_bpf(int sock, unsigned int nl_pid,
437 { !! 424 struct ip_devname_ifindex *dev)
438 struct bpf_prog_info info = {}; <<
439 __u32 ilen = sizeof(info); <<
440 int fd, ret; <<
441 <<
442 fd = bpf_prog_get_fd_by_id(id); <<
443 if (fd < 0) <<
444 return fd; <<
445 ret = bpf_obj_get_info_by_fd(fd, &info <<
446 if (ret < 0) <<
447 goto out; <<
448 ret = -ENOENT; <<
449 if (info.name[0]) { <<
450 get_prog_full_name(&info, fd, <<
451 ret = 0; <<
452 } <<
453 out: <<
454 close(fd); <<
455 return ret; <<
456 } <<
457 <<
458 static void __show_dev_tc_bpf(const struct ip_ <<
459 const enum bpf_a <<
460 { <<
461 __u32 prog_flags[64] = {}, link_flags[ <<
462 __u32 prog_ids[64] = {}, link_ids[64] <<
463 LIBBPF_OPTS(bpf_prog_query_opts, optq) <<
464 char prog_name[MAX_PROG_FULL_NAME]; <<
465 int ret; <<
466 <<
467 optq.prog_ids = prog_ids; <<
468 optq.prog_attach_flags = prog_flags; <<
469 optq.link_ids = link_ids; <<
470 optq.link_attach_flags = link_flags; <<
471 optq.count = ARRAY_SIZE(prog_ids); <<
472 <<
473 ret = bpf_prog_query_opts(dev->ifindex <<
474 if (ret) <<
475 return; <<
476 for (i = 0; i < optq.count; i++) { <<
477 NET_START_OBJECT; <<
478 NET_DUMP_STR("devname", "%s", <<
479 NET_DUMP_UINT("ifindex", "(%u) <<
480 NET_DUMP_STR("kind", " %s", at <<
481 ret = __show_dev_tc_bpf_name(p <<
482 s <<
483 if (!ret) <<
484 NET_DUMP_STR("name", " <<
485 NET_DUMP_UINT("prog_id", " pro <<
486 if (prog_flags[i] || json_outp <<
487 NET_START_ARRAY("prog_ <<
488 for (j = 0; prog_flags <<
489 if (!(prog_fla <<
490 contin <<
491 NET_DUMP_UINT_ <<
492 } <<
493 NET_END_ARRAY(""); <<
494 } <<
495 if (link_ids[i] || json_output <<
496 NET_DUMP_UINT("link_id <<
497 if (link_flags[i] || j <<
498 NET_START_ARRA <<
499 for (j = 0; li <<
500 if (!( <<
501 <<
502 NET_DU <<
503 } <<
504 NET_END_ARRAY( <<
505 } <<
506 } <<
507 NET_END_OBJECT_FINAL; <<
508 } <<
509 } <<
510 <<
511 static void show_dev_tc_bpf(struct ip_devname_ <<
512 { <<
513 __show_dev_tc_bpf(dev, BPF_TCX_INGRESS <<
514 __show_dev_tc_bpf(dev, BPF_TCX_EGRESS) <<
515 <<
516 __show_dev_tc_bpf(dev, BPF_NETKIT_PRIM <<
517 __show_dev_tc_bpf(dev, BPF_NETKIT_PEER <<
518 } <<
519 <<
520 static int show_dev_tc_bpf_classic(int sock, u <<
521 struct ip_d <<
522 { 425 {
523 struct bpf_filter_t filter_info; 426 struct bpf_filter_t filter_info;
524 struct bpf_tcinfo_t tcinfo; 427 struct bpf_tcinfo_t tcinfo;
525 int i, handle, ret = 0; 428 int i, handle, ret = 0;
526 429
527 tcinfo.handle_array = NULL; 430 tcinfo.handle_array = NULL;
528 tcinfo.used_len = 0; 431 tcinfo.used_len = 0;
529 tcinfo.array_len = 0; 432 tcinfo.array_len = 0;
530 433
531 tcinfo.is_qdisc = false; 434 tcinfo.is_qdisc = false;
532 ret = netlink_get_class(sock, nl_pid, 435 ret = netlink_get_class(sock, nl_pid, dev->ifindex,
533 dump_class_qdi 436 dump_class_qdisc_nlmsg, &tcinfo);
534 if (ret) 437 if (ret)
535 goto out; 438 goto out;
536 439
537 tcinfo.is_qdisc = true; 440 tcinfo.is_qdisc = true;
538 ret = netlink_get_qdisc(sock, nl_pid, 441 ret = netlink_get_qdisc(sock, nl_pid, dev->ifindex,
539 dump_class_qdi 442 dump_class_qdisc_nlmsg, &tcinfo);
540 if (ret) 443 if (ret)
541 goto out; 444 goto out;
542 445
543 filter_info.devname = dev->devname; 446 filter_info.devname = dev->devname;
544 filter_info.ifindex = dev->ifindex; 447 filter_info.ifindex = dev->ifindex;
545 for (i = 0; i < tcinfo.used_len; i++) 448 for (i = 0; i < tcinfo.used_len; i++) {
546 filter_info.kind = tcinfo.hand 449 filter_info.kind = tcinfo.handle_array[i].kind;
547 ret = netlink_get_filter(sock, 450 ret = netlink_get_filter(sock, nl_pid, dev->ifindex,
548 tcinf 451 tcinfo.handle_array[i].handle,
549 dump_ 452 dump_filter_nlmsg, &filter_info);
550 if (ret) 453 if (ret)
551 goto out; 454 goto out;
552 } 455 }
553 456
554 /* root, ingress and egress handle */ 457 /* root, ingress and egress handle */
555 handle = TC_H_ROOT; 458 handle = TC_H_ROOT;
556 filter_info.kind = "root"; 459 filter_info.kind = "root";
557 ret = netlink_get_filter(sock, nl_pid, 460 ret = netlink_get_filter(sock, nl_pid, dev->ifindex, handle,
558 dump_filter_n 461 dump_filter_nlmsg, &filter_info);
559 if (ret) 462 if (ret)
560 goto out; 463 goto out;
561 464
562 handle = TC_H_MAKE(TC_H_CLSACT, TC_H_M 465 handle = TC_H_MAKE(TC_H_CLSACT, TC_H_MIN_INGRESS);
563 filter_info.kind = "clsact/ingress"; 466 filter_info.kind = "clsact/ingress";
564 ret = netlink_get_filter(sock, nl_pid, 467 ret = netlink_get_filter(sock, nl_pid, dev->ifindex, handle,
565 dump_filter_n 468 dump_filter_nlmsg, &filter_info);
566 if (ret) 469 if (ret)
567 goto out; 470 goto out;
568 471
569 handle = TC_H_MAKE(TC_H_CLSACT, TC_H_M 472 handle = TC_H_MAKE(TC_H_CLSACT, TC_H_MIN_EGRESS);
570 filter_info.kind = "clsact/egress"; 473 filter_info.kind = "clsact/egress";
571 ret = netlink_get_filter(sock, nl_pid, 474 ret = netlink_get_filter(sock, nl_pid, dev->ifindex, handle,
572 dump_filter_n 475 dump_filter_nlmsg, &filter_info);
573 if (ret) 476 if (ret)
574 goto out; 477 goto out;
575 478
576 out: 479 out:
577 free(tcinfo.handle_array); 480 free(tcinfo.handle_array);
578 return 0; 481 return 0;
579 } 482 }
580 483
581 static int query_flow_dissector(struct bpf_att 484 static int query_flow_dissector(struct bpf_attach_info *attach_info)
582 { 485 {
583 __u32 attach_flags; 486 __u32 attach_flags;
584 __u32 prog_ids[1]; 487 __u32 prog_ids[1];
585 __u32 prog_cnt; 488 __u32 prog_cnt;
586 int err; 489 int err;
587 int fd; 490 int fd;
588 491
589 fd = open("/proc/self/ns/net", O_RDONL 492 fd = open("/proc/self/ns/net", O_RDONLY);
590 if (fd < 0) { 493 if (fd < 0) {
591 p_err("can't open /proc/self/n 494 p_err("can't open /proc/self/ns/net: %s",
592 strerror(errno)); 495 strerror(errno));
593 return -1; 496 return -1;
594 } 497 }
595 prog_cnt = ARRAY_SIZE(prog_ids); 498 prog_cnt = ARRAY_SIZE(prog_ids);
596 err = bpf_prog_query(fd, BPF_FLOW_DISS 499 err = bpf_prog_query(fd, BPF_FLOW_DISSECTOR, 0,
597 &attach_flags, pr 500 &attach_flags, prog_ids, &prog_cnt);
598 close(fd); 501 close(fd);
599 if (err) { 502 if (err) {
600 if (errno == EINVAL) { 503 if (errno == EINVAL) {
601 /* Older kernel's don' 504 /* Older kernel's don't support querying
602 * flow dissector prog 505 * flow dissector programs.
603 */ 506 */
604 errno = 0; 507 errno = 0;
605 return 0; 508 return 0;
606 } 509 }
607 p_err("can't query prog: %s", 510 p_err("can't query prog: %s", strerror(errno));
608 return -1; 511 return -1;
609 } 512 }
610 513
611 if (prog_cnt == 1) 514 if (prog_cnt == 1)
612 attach_info->flow_dissector_id 515 attach_info->flow_dissector_id = prog_ids[0];
613 516
614 return 0; 517 return 0;
615 } 518 }
616 519
617 static int net_parse_dev(int *argc, char ***ar 520 static int net_parse_dev(int *argc, char ***argv)
618 { 521 {
619 int ifindex; 522 int ifindex;
620 523
621 if (is_prefix(**argv, "dev")) { 524 if (is_prefix(**argv, "dev")) {
622 NEXT_ARGP(); 525 NEXT_ARGP();
623 526
624 ifindex = if_nametoindex(**arg 527 ifindex = if_nametoindex(**argv);
625 if (!ifindex) 528 if (!ifindex)
626 p_err("invalid devname 529 p_err("invalid devname %s", **argv);
627 530
628 NEXT_ARGP(); 531 NEXT_ARGP();
629 } else { 532 } else {
630 p_err("expected 'dev', got: '% 533 p_err("expected 'dev', got: '%s'?", **argv);
631 return -1; 534 return -1;
632 } 535 }
633 536
634 return ifindex; 537 return ifindex;
635 } 538 }
636 539
637 static int do_attach_detach_xdp(int progfd, en 540 static int do_attach_detach_xdp(int progfd, enum net_attach_type attach_type,
638 int ifindex, b 541 int ifindex, bool overwrite)
639 { 542 {
640 __u32 flags = 0; 543 __u32 flags = 0;
641 544
642 if (!overwrite) 545 if (!overwrite)
643 flags = XDP_FLAGS_UPDATE_IF_NO 546 flags = XDP_FLAGS_UPDATE_IF_NOEXIST;
644 if (attach_type == NET_ATTACH_TYPE_XDP 547 if (attach_type == NET_ATTACH_TYPE_XDP_GENERIC)
645 flags |= XDP_FLAGS_SKB_MODE; 548 flags |= XDP_FLAGS_SKB_MODE;
646 if (attach_type == NET_ATTACH_TYPE_XDP 549 if (attach_type == NET_ATTACH_TYPE_XDP_DRIVER)
647 flags |= XDP_FLAGS_DRV_MODE; 550 flags |= XDP_FLAGS_DRV_MODE;
648 if (attach_type == NET_ATTACH_TYPE_XDP 551 if (attach_type == NET_ATTACH_TYPE_XDP_OFFLOAD)
649 flags |= XDP_FLAGS_HW_MODE; 552 flags |= XDP_FLAGS_HW_MODE;
650 553
651 return bpf_xdp_attach(ifindex, progfd, !! 554 return bpf_set_link_xdp_fd(ifindex, progfd, flags);
652 } <<
653 <<
654 static int get_tcx_type(enum net_attach_type a <<
655 { <<
656 switch (attach_type) { <<
657 case NET_ATTACH_TYPE_TCX_INGRESS: <<
658 return BPF_TCX_INGRESS; <<
659 case NET_ATTACH_TYPE_TCX_EGRESS: <<
660 return BPF_TCX_EGRESS; <<
661 default: <<
662 return -1; <<
663 } <<
664 } <<
665 <<
666 static int do_attach_tcx(int progfd, enum net_ <<
667 { <<
668 int type = get_tcx_type(attach_type); <<
669 <<
670 return bpf_prog_attach(progfd, ifindex <<
671 } <<
672 <<
673 static int do_detach_tcx(int targetfd, enum ne <<
674 { <<
675 int type = get_tcx_type(attach_type); <<
676 <<
677 return bpf_prog_detach(targetfd, type) <<
678 } 555 }
679 556
680 static int do_attach(int argc, char **argv) 557 static int do_attach(int argc, char **argv)
681 { 558 {
682 enum net_attach_type attach_type; 559 enum net_attach_type attach_type;
683 int progfd, ifindex, err = 0; 560 int progfd, ifindex, err = 0;
684 bool overwrite = false; 561 bool overwrite = false;
685 562
686 /* parse attach args */ 563 /* parse attach args */
687 if (!REQ_ARGS(5)) 564 if (!REQ_ARGS(5))
688 return -EINVAL; 565 return -EINVAL;
689 566
690 attach_type = parse_attach_type(*argv) 567 attach_type = parse_attach_type(*argv);
691 if (attach_type == net_attach_type_siz 568 if (attach_type == net_attach_type_size) {
692 p_err("invalid net attach/deta 569 p_err("invalid net attach/detach type: %s", *argv);
693 return -EINVAL; 570 return -EINVAL;
694 } 571 }
695 NEXT_ARG(); 572 NEXT_ARG();
696 573
697 progfd = prog_parse_fd(&argc, &argv); 574 progfd = prog_parse_fd(&argc, &argv);
698 if (progfd < 0) 575 if (progfd < 0)
699 return -EINVAL; 576 return -EINVAL;
700 577
701 ifindex = net_parse_dev(&argc, &argv); 578 ifindex = net_parse_dev(&argc, &argv);
702 if (ifindex < 1) { 579 if (ifindex < 1) {
703 err = -EINVAL; 580 err = -EINVAL;
704 goto cleanup; 581 goto cleanup;
705 } 582 }
706 583
707 if (argc) { 584 if (argc) {
708 if (is_prefix(*argv, "overwrit 585 if (is_prefix(*argv, "overwrite")) {
709 overwrite = true; 586 overwrite = true;
710 } else { 587 } else {
711 p_err("expected 'overw 588 p_err("expected 'overwrite', got: '%s'?", *argv);
712 err = -EINVAL; 589 err = -EINVAL;
713 goto cleanup; 590 goto cleanup;
714 } 591 }
715 } 592 }
716 593
717 switch (attach_type) { <<
718 /* attach xdp prog */ 594 /* attach xdp prog */
719 case NET_ATTACH_TYPE_XDP: !! 595 if (is_prefix("xdp", attach_type_strings[attach_type]))
720 case NET_ATTACH_TYPE_XDP_GENERIC: !! 596 err = do_attach_detach_xdp(progfd, attach_type, ifindex,
721 case NET_ATTACH_TYPE_XDP_DRIVER: !! 597 overwrite);
722 case NET_ATTACH_TYPE_XDP_OFFLOAD: <<
723 err = do_attach_detach_xdp(pro <<
724 break; <<
725 /* attach tcx prog */ <<
726 case NET_ATTACH_TYPE_TCX_INGRESS: <<
727 case NET_ATTACH_TYPE_TCX_EGRESS: <<
728 err = do_attach_tcx(progfd, at <<
729 break; <<
730 default: <<
731 break; <<
732 } <<
733 <<
734 if (err) { 598 if (err) {
735 p_err("interface %s attach fai 599 p_err("interface %s attach failed: %s",
736 attach_type_strings[atta 600 attach_type_strings[attach_type], strerror(-err));
737 goto cleanup; 601 goto cleanup;
738 } 602 }
739 603
740 if (json_output) 604 if (json_output)
741 jsonw_null(json_wtr); 605 jsonw_null(json_wtr);
742 cleanup: 606 cleanup:
743 close(progfd); 607 close(progfd);
744 return err; 608 return err;
745 } 609 }
746 610
747 static int do_detach(int argc, char **argv) 611 static int do_detach(int argc, char **argv)
748 { 612 {
749 enum net_attach_type attach_type; 613 enum net_attach_type attach_type;
750 int progfd, ifindex, err = 0; 614 int progfd, ifindex, err = 0;
751 615
752 /* parse detach args */ 616 /* parse detach args */
753 if (!REQ_ARGS(3)) 617 if (!REQ_ARGS(3))
754 return -EINVAL; 618 return -EINVAL;
755 619
756 attach_type = parse_attach_type(*argv) 620 attach_type = parse_attach_type(*argv);
757 if (attach_type == net_attach_type_siz 621 if (attach_type == net_attach_type_size) {
758 p_err("invalid net attach/deta 622 p_err("invalid net attach/detach type: %s", *argv);
759 return -EINVAL; 623 return -EINVAL;
760 } 624 }
761 NEXT_ARG(); 625 NEXT_ARG();
762 626
763 ifindex = net_parse_dev(&argc, &argv); 627 ifindex = net_parse_dev(&argc, &argv);
764 if (ifindex < 1) 628 if (ifindex < 1)
765 return -EINVAL; 629 return -EINVAL;
766 630
767 switch (attach_type) { <<
768 /* detach xdp prog */ 631 /* detach xdp prog */
769 case NET_ATTACH_TYPE_XDP: !! 632 progfd = -1;
770 case NET_ATTACH_TYPE_XDP_GENERIC: !! 633 if (is_prefix("xdp", attach_type_strings[attach_type]))
771 case NET_ATTACH_TYPE_XDP_DRIVER: <<
772 case NET_ATTACH_TYPE_XDP_OFFLOAD: <<
773 progfd = -1; <<
774 err = do_attach_detach_xdp(pro 634 err = do_attach_detach_xdp(progfd, attach_type, ifindex, NULL);
775 break; <<
776 /* detach tcx prog */ <<
777 case NET_ATTACH_TYPE_TCX_INGRESS: <<
778 case NET_ATTACH_TYPE_TCX_EGRESS: <<
779 err = do_detach_tcx(ifindex, a <<
780 break; <<
781 default: <<
782 break; <<
783 } <<
784 635
785 if (err < 0) { 636 if (err < 0) {
786 p_err("interface %s detach fai 637 p_err("interface %s detach failed: %s",
787 attach_type_strings[atta 638 attach_type_strings[attach_type], strerror(-err));
788 return err; 639 return err;
789 } 640 }
790 641
791 if (json_output) 642 if (json_output)
792 jsonw_null(json_wtr); 643 jsonw_null(json_wtr);
793 644
794 return 0; 645 return 0;
795 } 646 }
796 647
797 static int netfilter_link_compar(const void *a <<
798 { <<
799 const struct bpf_link_info *nfa = a; <<
800 const struct bpf_link_info *nfb = b; <<
801 int delta; <<
802 <<
803 delta = nfa->netfilter.pf - nfb->netfi <<
804 if (delta) <<
805 return delta; <<
806 <<
807 delta = nfa->netfilter.hooknum - nfb-> <<
808 if (delta) <<
809 return delta; <<
810 <<
811 if (nfa->netfilter.priority < nfb->net <<
812 return -1; <<
813 if (nfa->netfilter.priority > nfb->net <<
814 return 1; <<
815 <<
816 return nfa->netfilter.flags - nfb->net <<
817 } <<
818 <<
819 static void show_link_netfilter(void) <<
820 { <<
821 unsigned int nf_link_len = 0, nf_link_ <<
822 struct bpf_link_info *nf_link_info = N <<
823 __u32 id = 0; <<
824 <<
825 while (true) { <<
826 struct bpf_link_info info; <<
827 int fd, err; <<
828 __u32 len; <<
829 <<
830 err = bpf_link_get_next_id(id, <<
831 if (err) { <<
832 if (errno == ENOENT) <<
833 break; <<
834 p_err("can't get next <<
835 break; <<
836 } <<
837 <<
838 fd = bpf_link_get_fd_by_id(id) <<
839 if (fd < 0) { <<
840 p_err("can't get link <<
841 continue; <<
842 } <<
843 <<
844 memset(&info, 0, sizeof(info)) <<
845 len = sizeof(info); <<
846 <<
847 err = bpf_link_get_info_by_fd( <<
848 <<
849 close(fd); <<
850 <<
851 if (err) { <<
852 p_err("can't get link <<
853 continue; <<
854 } <<
855 <<
856 if (info.type != BPF_LINK_TYPE <<
857 continue; <<
858 <<
859 if (nf_link_count >= nf_link_l <<
860 static const unsigned <<
861 struct bpf_link_info * <<
862 <<
863 if (nf_link_count > ma <<
864 p_err("cannot <<
865 break; <<
866 } <<
867 <<
868 nf_link_len += 16; <<
869 <<
870 expand = realloc(nf_li <<
871 if (!expand) { <<
872 p_err("realloc <<
873 break; <<
874 } <<
875 <<
876 nf_link_info = expand; <<
877 } <<
878 <<
879 nf_link_info[nf_link_count] = <<
880 nf_link_count++; <<
881 } <<
882 <<
883 if (!nf_link_info) <<
884 return; <<
885 <<
886 qsort(nf_link_info, nf_link_count, siz <<
887 <<
888 for (id = 0; id < nf_link_count; id++) <<
889 NET_START_OBJECT; <<
890 if (json_output) <<
891 netfilter_dump_json(&n <<
892 else <<
893 netfilter_dump_plain(& <<
894 <<
895 NET_DUMP_UINT("id", " prog_id <<
896 NET_END_OBJECT; <<
897 } <<
898 <<
899 free(nf_link_info); <<
900 } <<
901 <<
902 static int do_show(int argc, char **argv) 648 static int do_show(int argc, char **argv)
903 { 649 {
904 struct bpf_attach_info attach_info = { 650 struct bpf_attach_info attach_info = {};
905 int i, sock, ret, filter_idx = -1; 651 int i, sock, ret, filter_idx = -1;
906 struct bpf_netdev_t dev_array; 652 struct bpf_netdev_t dev_array;
907 unsigned int nl_pid = 0; 653 unsigned int nl_pid = 0;
908 char err_buf[256]; 654 char err_buf[256];
909 655
910 if (argc == 2) { 656 if (argc == 2) {
911 filter_idx = net_parse_dev(&ar 657 filter_idx = net_parse_dev(&argc, &argv);
912 if (filter_idx < 1) 658 if (filter_idx < 1)
913 return -1; 659 return -1;
914 } else if (argc != 0) { 660 } else if (argc != 0) {
915 usage(); 661 usage();
916 } 662 }
917 663
918 ret = query_flow_dissector(&attach_inf 664 ret = query_flow_dissector(&attach_info);
919 if (ret) 665 if (ret)
920 return -1; 666 return -1;
921 667
922 sock = netlink_open(&nl_pid); 668 sock = netlink_open(&nl_pid);
923 if (sock < 0) { 669 if (sock < 0) {
924 fprintf(stderr, "failed to ope 670 fprintf(stderr, "failed to open netlink sock\n");
925 return -1; 671 return -1;
926 } 672 }
927 673
928 dev_array.devices = NULL; 674 dev_array.devices = NULL;
929 dev_array.used_len = 0; 675 dev_array.used_len = 0;
930 dev_array.array_len = 0; 676 dev_array.array_len = 0;
931 dev_array.filter_idx = filter_idx; 677 dev_array.filter_idx = filter_idx;
932 678
933 if (json_output) 679 if (json_output)
934 jsonw_start_array(json_wtr); 680 jsonw_start_array(json_wtr);
935 NET_START_OBJECT; 681 NET_START_OBJECT;
936 NET_START_ARRAY("xdp", "%s:\n"); 682 NET_START_ARRAY("xdp", "%s:\n");
937 ret = netlink_get_link(sock, nl_pid, d 683 ret = netlink_get_link(sock, nl_pid, dump_link_nlmsg, &dev_array);
938 NET_END_ARRAY("\n"); 684 NET_END_ARRAY("\n");
939 685
940 if (!ret) { 686 if (!ret) {
941 NET_START_ARRAY("tc", "%s:\n") 687 NET_START_ARRAY("tc", "%s:\n");
942 for (i = 0; i < dev_array.used 688 for (i = 0; i < dev_array.used_len; i++) {
943 show_dev_tc_bpf(&dev_a !! 689 ret = show_dev_tc_bpf(sock, nl_pid,
944 ret = show_dev_tc_bpf_ !! 690 &dev_array.devices[i]);
945 <<
946 if (ret) 691 if (ret)
947 break; 692 break;
948 } 693 }
949 NET_END_ARRAY("\n"); 694 NET_END_ARRAY("\n");
950 } 695 }
951 696
952 NET_START_ARRAY("flow_dissector", "%s: 697 NET_START_ARRAY("flow_dissector", "%s:\n");
953 if (attach_info.flow_dissector_id > 0) 698 if (attach_info.flow_dissector_id > 0)
954 NET_DUMP_UINT("id", "id %u", a 699 NET_DUMP_UINT("id", "id %u", attach_info.flow_dissector_id);
955 NET_END_ARRAY("\n"); 700 NET_END_ARRAY("\n");
956 701
957 NET_START_ARRAY("netfilter", "%s:\n"); <<
958 show_link_netfilter(); <<
959 NET_END_ARRAY("\n"); <<
960 <<
961 NET_END_OBJECT; 702 NET_END_OBJECT;
962 if (json_output) 703 if (json_output)
963 jsonw_end_array(json_wtr); 704 jsonw_end_array(json_wtr);
964 705
965 if (ret) { 706 if (ret) {
966 if (json_output) 707 if (json_output)
967 jsonw_null(json_wtr); 708 jsonw_null(json_wtr);
968 libbpf_strerror(ret, err_buf, 709 libbpf_strerror(ret, err_buf, sizeof(err_buf));
969 fprintf(stderr, "Error: %s\n", 710 fprintf(stderr, "Error: %s\n", err_buf);
970 } 711 }
971 free(dev_array.devices); 712 free(dev_array.devices);
972 close(sock); 713 close(sock);
973 return ret; 714 return ret;
974 } 715 }
975 716
976 static int do_help(int argc, char **argv) 717 static int do_help(int argc, char **argv)
977 { 718 {
978 if (json_output) { 719 if (json_output) {
979 jsonw_null(json_wtr); 720 jsonw_null(json_wtr);
980 return 0; 721 return 0;
981 } 722 }
982 723
983 fprintf(stderr, 724 fprintf(stderr,
984 "Usage: %1$s %2$s { show | lis 725 "Usage: %1$s %2$s { show | list } [dev <devname>]\n"
985 " %1$s %2$s attach ATTAC 726 " %1$s %2$s attach ATTACH_TYPE PROG dev <devname> [ overwrite ]\n"
986 " %1$s %2$s detach ATTAC 727 " %1$s %2$s detach ATTACH_TYPE dev <devname>\n"
987 " %1$s %2$s help\n" 728 " %1$s %2$s help\n"
988 "\n" 729 "\n"
989 " " HELP_SPEC_PROGRAM "\ 730 " " HELP_SPEC_PROGRAM "\n"
990 " ATTACH_TYPE := { xdp | !! 731 " ATTACH_TYPE := { xdp | xdpgeneric | xdpdrv | xdpoffload }\n"
991 " | tcx <<
992 " " HELP_SPEC_OPTIONS " <<
993 "\n" 732 "\n"
994 "Note: Only xdp, tcx, tc, netk !! 733 "Note: Only xdp and tc attachments are supported now.\n"
995 " are currently supported <<
996 " For progs attached to c 734 " For progs attached to cgroups, use \"bpftool cgroup\"\n"
997 " to dump program attachm 735 " to dump program attachments. For program types\n"
998 " sk_{filter,skb,msg,reus 736 " sk_{filter,skb,msg,reuseport} and lwt/seg6, please\n"
999 " consult iproute2.\n" 737 " consult iproute2.\n"
1000 "", 738 "",
1001 bin_name, argv[-2]); 739 bin_name, argv[-2]);
1002 740
1003 return 0; 741 return 0;
1004 } 742 }
1005 743
1006 static const struct cmd cmds[] = { 744 static const struct cmd cmds[] = {
1007 { "show", do_show }, 745 { "show", do_show },
1008 { "list", do_show }, 746 { "list", do_show },
1009 { "attach", do_attach }, 747 { "attach", do_attach },
1010 { "detach", do_detach }, 748 { "detach", do_detach },
1011 { "help", do_help }, 749 { "help", do_help },
1012 { 0 } 750 { 0 }
1013 }; 751 };
1014 752
1015 int do_net(int argc, char **argv) 753 int do_net(int argc, char **argv)
1016 { 754 {
1017 return cmd_select(cmds, argc, argv, d 755 return cmd_select(cmds, argc, argv, do_help);
1018 } 756 }
1019 757
Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.