Blame - server/TrafficController.cpp - platform_system_netd

2017-10-10 17:31:57 -0700

[diff] [blame]

/*

*

* Licensed under the Apache License, Version 2.0 (the "License");

5

* you may not use this file except in compliance with the License.

6

* You may obtain a copy of the License at

7

*

8

* http://www.apache.org/licenses/LICENSE-2.0

9

*

10

* Unless required by applicable law or agreed to in writing, software

11

* distributed under the License is distributed on an "AS IS" BASIS,

12

* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

13

* See the License for the specific language governing permissions and

14

* limitations under the License.

15

*/

16

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

17

#define LOG_TAG "TrafficController"

Chenbo Feng

2017-10-23 15:16:37 -0700

[diff] [blame]

18

#include <inttypes.h>

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

19

#include <linux/bpf.h>

20

#include <linux/if_ether.h>

21

#include <linux/in.h>

22

#include <linux/inet_diag.h>

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

23

#include <linux/netlink.h>

24

#include <linux/sock_diag.h>

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

25

#include <linux/unistd.h>

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

26

#include <net/if.h>

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

27

#include <stdlib.h>

28

#include <string.h>

29

#include <sys/socket.h>

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

30

#include <sys/stat.h>

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

31

#include <sys/types.h>

Chenbo Feng

2017-10-23 15:16:37 -0700

[diff] [blame]

32

#include <sys/utsname.h>

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

33

#include <sys/wait.h>

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

34

#include <mutex>

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

35

#include <unordered_set>

36

#include <vector>

37

38

#include <android-base/stringprintf.h>

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

39

#include <android-base/strings.h>

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

40

#include <android-base/unique_fd.h>

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

41

#include <logwrap/logwrap.h>

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

42

#include <netdutils/StatusOr.h>

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

43

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

44

#include <netdutils/Misc.h>

45

#include <netdutils/Syscalls.h>

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

46

#include "TrafficController.h"

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

47

#include "bpf/BpfMap.h"

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

48

#include "bpf/bpf_shared.h"

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

49

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

50

#include "DumpWriter.h"

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

51

#include "FirewallController.h"

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

52

#include "InterfaceController.h"

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

53

#include "NetlinkListener.h"

Chenbo Feng

2017-10-23 15:16:37 -0700

[diff] [blame]

54

#include "qtaguid/qtaguid.h"

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

55

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

56

using namespace android::bpf;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

namespace android {

namespace net {

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

61

using base::StringPrintf;

62

using base::unique_fd;

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

63

using base::Join;

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

64

using netdutils::extract;

65

using netdutils::Slice;

66

using netdutils::sSyscalls;

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

67

using netdutils::Status;

68

using netdutils::statusFromErrno;

69

using netdutils::StatusOr;

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

70

using netdutils::status::ok;

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

71

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

72

constexpr int kSockDiagMsgType = SOCK_DIAG_BY_FAMILY;

73

constexpr int kSockDiagDoneMsgType = NLMSG_DONE;

74

75

StatusOr<std::unique_ptr<NetlinkListenerInterface>> makeSkDestroyListener() {

76

const auto& sys = sSyscalls.get();

77

ASSIGN_OR_RETURN(auto event, sys.eventfd(0, EFD_CLOEXEC));

78

const int domain = AF_NETLINK;

79

const int type = SOCK_DGRAM | SOCK_CLOEXEC | SOCK_NONBLOCK;

80

const int protocol = NETLINK_INET_DIAG;

81

ASSIGN_OR_RETURN(auto sock, sys.socket(domain, type, protocol));

82

Lorenzo Colitti

75057f0

2018-07-26 17:20:57 +0900

[diff] [blame]

83

// TODO: if too many sockets are closed too quickly, we can overflow the socket buffer, and

84

// some entries in mCookieTagMap will not be freed. In order to fix this we would need to

85

// periodically dump all sockets and remove the tag entries for sockets that have been closed.

86

// For now, set a large-enough buffer that we can close hundreds of sockets without getting

87

// ENOBUFS and leaking mCookieTagMap entries.

88

int rcvbuf = 512 * 1024;

89

auto ret = sys.setsockopt(sock, SOL_SOCKET, SO_RCVBUF, &rcvbuf, sizeof(rcvbuf));

90

if (!ret.ok()) {

91

ALOGW("Failed to set SkDestroyListener buffer size to %d: %s", rcvbuf, ret.msg().c_str());

92

}

93

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

94

sockaddr_nl addr = {

95

.nl_family = AF_NETLINK,

96

.nl_groups = 1 << (SKNLGRP_INET_TCP_DESTROY - 1) | 1 << (SKNLGRP_INET_UDP_DESTROY - 1) |

97

1 << (SKNLGRP_INET6_TCP_DESTROY - 1) | 1 << (SKNLGRP_INET6_UDP_DESTROY - 1)};

98

RETURN_IF_NOT_OK(sys.bind(sock, addr));

99

100

const sockaddr_nl kernel = {.nl_family = AF_NETLINK};

101

RETURN_IF_NOT_OK(sys.connect(sock, kernel));

102

103

std::unique_ptr<NetlinkListenerInterface> listener =

104

std::make_unique<NetlinkListener>(std::move(event), std::move(sock));

return listener;

}

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

109

Status changeOwnerAndMode(const char* path, gid_t group, const char* debugName, bool netdOnly) {

110

int ret = chown(path, AID_ROOT, group);

111

if (ret != 0) return statusFromErrno(errno, StringPrintf("change %s group failed", debugName));

112

113

if (netdOnly) {

114

ret = chmod(path, S_IRWXU);

115

} else {

116

// Allow both netd and system server to obtain map fd from the path.

117

// chmod doesn't grant permission to all processes in that group to

118

// read/write the bpf map. They still need correct sepolicy to

119

// read/write the map.

120

ret = chmod(path, S_IRWXU | S_IRGRP);

121

}

122

if (ret != 0) return statusFromErrno(errno, StringPrintf("change %s mode failed", debugName));

123

return netdutils::status::ok;

124

}

125

126

TrafficController::TrafficController() {

Chenbo Feng

f43bf81

2017-12-15 18:27:22 -0800

[diff] [blame]

127

ebpfSupported = hasBpfSupport();

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

128

}

129

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

130

Status initialOwnerMap(BpfMap<uint32_t, uint8_t>& map) {

131

// Check and delete all the entries from the map in case it is a runtime

132

// restart

133

const auto deleteAllEntries = [](const uint32_t& key, BpfMap<uint32_t, uint8_t>& map) {

134

Status res = map.deleteValue(key);

135

if (!isOk(res) && (res.code() == ENOENT)) {

136

ALOGE("Failed to delete data(uid=%u): %s\n", key, strerror(res.code()));

137

}

138

return netdutils::status::ok;

139

};

140

// It is safe to delete from this map because nothing will concurrently iterate over it:

141

// - Nothing in netd will iterate over it because we're holding mOwnerMatchMutex.

142

// - Nothing outside netd iterates over it.

143

map.iterate(deleteAllEntries);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

144

uint32_t mapSettingKey = UID_MAP_ENABLED;

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

145

uint8_t defaultMapState = 0;

146

return map.writeValue(mapSettingKey, defaultMapState, BPF_NOEXIST);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

147

}

148

149

Status TrafficController::initMaps() {

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

150

std::lock_guard<std::mutex> ownerMapGuard(mOwnerMatchMutex);

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

151

RETURN_IF_NOT_OK(

152

mCookieTagMap.getOrCreate(COOKIE_UID_MAP_SIZE, COOKIE_TAG_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

153

154

RETURN_IF_NOT_OK(changeOwnerAndMode(COOKIE_TAG_MAP_PATH, AID_NET_BW_ACCT, "CookieTagMap",

155

false));

156

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

157

RETURN_IF_NOT_OK(mUidCounterSetMap.getOrCreate(UID_COUNTERSET_MAP_SIZE, UID_COUNTERSET_MAP_PATH,

158

BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

159

RETURN_IF_NOT_OK(changeOwnerAndMode(UID_COUNTERSET_MAP_PATH, AID_NET_BW_ACCT,

160

"UidCounterSetMap", false));

161

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

162

RETURN_IF_NOT_OK(

Chenbo Feng

2018-05-11 19:15:15 -0700

[diff] [blame]

163

mAppUidStatsMap.getOrCreate(UID_STATS_MAP_SIZE, APP_UID_STATS_MAP_PATH, BPF_MAP_TYPE_HASH));

164

RETURN_IF_NOT_OK(

165

changeOwnerAndMode(APP_UID_STATS_MAP_PATH, AID_NET_BW_STATS, "AppUidStatsMap", false));

166

167

RETURN_IF_NOT_OK(

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

168

mUidStatsMap.getOrCreate(UID_STATS_MAP_SIZE, UID_STATS_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

169

RETURN_IF_NOT_OK(changeOwnerAndMode(UID_STATS_MAP_PATH, AID_NET_BW_STATS, "UidStatsMap",

170

false));

171

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

172

RETURN_IF_NOT_OK(

173

mTagStatsMap.getOrCreate(TAG_STATS_MAP_SIZE, TAG_STATS_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

174

RETURN_IF_NOT_OK(changeOwnerAndMode(TAG_STATS_MAP_PATH, AID_NET_BW_STATS, "TagStatsMap",

175

false));

176

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

177

RETURN_IF_NOT_OK(mIfaceIndexNameMap.getOrCreate(IFACE_INDEX_NAME_MAP_SIZE,

178

IFACE_INDEX_NAME_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

179

RETURN_IF_NOT_OK(changeOwnerAndMode(IFACE_INDEX_NAME_MAP_PATH, AID_NET_BW_STATS,

180

"IfaceIndexNameMap", false));

181

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

182

RETURN_IF_NOT_OK(

183

mDozableUidMap.getOrCreate(UID_OWNER_MAP_SIZE, DOZABLE_UID_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

184

RETURN_IF_NOT_OK(changeOwnerAndMode(DOZABLE_UID_MAP_PATH, AID_ROOT, "DozableUidMap", true));

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

185

RETURN_IF_NOT_OK(initialOwnerMap(mDozableUidMap));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

186

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

187

RETURN_IF_NOT_OK(

188

mStandbyUidMap.getOrCreate(UID_OWNER_MAP_SIZE, STANDBY_UID_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

189

RETURN_IF_NOT_OK(changeOwnerAndMode(STANDBY_UID_MAP_PATH, AID_ROOT, "StandbyUidMap", true));

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

190

RETURN_IF_NOT_OK(initialOwnerMap(mStandbyUidMap));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

191

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

192

RETURN_IF_NOT_OK(mPowerSaveUidMap.getOrCreate(UID_OWNER_MAP_SIZE, POWERSAVE_UID_MAP_PATH,

193

BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

194

RETURN_IF_NOT_OK(changeOwnerAndMode(POWERSAVE_UID_MAP_PATH, AID_ROOT, "PowerSaveUidMap", true));

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

195

RETURN_IF_NOT_OK(initialOwnerMap(mPowerSaveUidMap));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

196

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

197

RETURN_IF_NOT_OK(

198

mIfaceStatsMap.getOrCreate(IFACE_STATS_MAP_SIZE, IFACE_STATS_MAP_PATH, BPF_MAP_TYPE_HASH));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

199

RETURN_IF_NOT_OK(changeOwnerAndMode(IFACE_STATS_MAP_PATH, AID_NET_BW_STATS, "IfaceStatsMap",

200

false));

201

return netdutils::status::ok;

202

}

203

204

Status TrafficController::start() {

205

Chenbo Feng

f43bf81

2017-12-15 18:27:22 -0800

[diff] [blame]

206

if (!ebpfSupported) {

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

207

return netdutils::status::ok;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

208

}

209

210

/* When netd restart from a crash without total system reboot, the program

211

* is still attached to the cgroup, detach it so the program can be freed

212

* and we can load and attach new program into the target cgroup.

213

*

214

* TODO: Scrape existing socket when run-time restart and clean up the map

215

* if the socket no longer exist

216

*/

217

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

218

RETURN_IF_NOT_OK(initMaps());

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

219

220

// Fetch the list of currently-existing interfaces. At this point NetlinkHandler is

221

// already running, so it will call addInterface() when any new interface appears.

222

std::map<std::string, uint32_t> ifacePairs;

223

ASSIGN_OR_RETURN(ifacePairs, InterfaceController::getIfaceList());

224

for (const auto& ifacePair:ifacePairs) {

225

addInterface(ifacePair.first.c_str(), ifacePair.second);

226

}

227

Chenbo Feng

d425ec8

2018-03-13 21:30:49 -0700

[diff] [blame]

228

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

229

auto result = makeSkDestroyListener();

230

if (!isOk(result)) {

231

ALOGE("Unable to create SkDestroyListener: %s", toString(result).c_str());

232

} else {

233

mSkDestroyListener = std::move(result.value());

234

}

235

// Rx handler extracts nfgenmsg looks up and invokes registered dispatch function.

236

const auto rxHandler = [this](const nlmsghdr&, const Slice msg) {

237

inet_diag_msg diagmsg = {};

238

if (extract(msg, diagmsg) < sizeof(inet_diag_msg)) {

239

ALOGE("unrecognized netlink message: %s", toString(msg).c_str());

240

return;

241

}

242

uint64_t sock_cookie = static_cast<uint64_t>(diagmsg.id.idiag_cookie[0]) |

243

(static_cast<uint64_t>(diagmsg.id.idiag_cookie[1]) << 32);

244

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

245

mCookieTagMap.deleteValue(sock_cookie);

Chenbo Feng

2017-12-04 17:25:19 -0800

[diff] [blame]

246

};

247

expectOk(mSkDestroyListener->subscribe(kSockDiagMsgType, rxHandler));

248

249

// In case multiple netlink message comes in as a stream, we need to handle the rxDone message

250

// properly.

251

const auto rxDoneHandler = [](const nlmsghdr&, const Slice msg) {

252

// Ignore NLMSG_DONE messages

253

inet_diag_msg diagmsg = {};

254

extract(msg, diagmsg);

255

};

256

expectOk(mSkDestroyListener->subscribe(kSockDiagDoneMsgType, rxDoneHandler));

257

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

258

int* status = nullptr;

259

260

std::vector<const char*> prog_args{

261

"/system/bin/bpfloader",

262

};

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

263

int ret = access(BPF_INGRESS_PROG_PATH, R_OK);

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

264

if (ret != 0 && errno == ENOENT) {

265

prog_args.push_back((char*)"-i");

266

}

267

ret = access(BPF_EGRESS_PROG_PATH, R_OK);

268

if (ret != 0 && errno == ENOENT) {

269

prog_args.push_back((char*)"-e");

270

}

Chenbo Feng

d425ec8

2018-03-13 21:30:49 -0700

[diff] [blame]

271

ret = access(XT_BPF_INGRESS_PROG_PATH, R_OK);

272

if (ret != 0 && errno == ENOENT) {

273

prog_args.push_back((char*)"-p");

274

}

275

ret = access(XT_BPF_EGRESS_PROG_PATH, R_OK);

276

if (ret != 0 && errno == ENOENT) {

277

prog_args.push_back((char*)"-m");

278

}

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

279

280

if (prog_args.size() == 1) {

Chenbo Feng

d425ec8

2018-03-13 21:30:49 -0700

[diff] [blame]

281

// all program are loaded already.

Chenbo Feng

2018-01-09 15:18:43 -0800

[diff] [blame]

282

return netdutils::status::ok;

283

}

284

285

prog_args.push_back(nullptr);

286

ret = android_fork_execvp(prog_args.size(), (char**)prog_args.data(), status, false, true);

287

if (ret) {

288

ret = errno;

289

ALOGE("failed to execute %s: %s", prog_args[0], strerror(errno));

290

return statusFromErrno(ret, "run bpf loader failed");

291

}

292

return netdutils::status::ok;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

293

}

294

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

295

int TrafficController::tagSocket(int sockFd, uint32_t tag, uid_t uid) {

Chenbo Feng

2018-04-11 18:27:19 -0700

[diff] [blame]

296

if (!ebpfSupported) {

297

if (legacy_tagSocket(sockFd, tag, uid)) return -errno;

298

return 0;

299

}

Chenbo Feng

2017-10-23 15:16:37 -0700

[diff] [blame]

300

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

301

uint64_t sock_cookie = getSocketCookie(sockFd);

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

302

if (sock_cookie == NONEXISTENT_COOKIE) return -errno;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

303

UidTag newKey = {.uid = (uint32_t)uid, .tag = tag};

304

305

// Update the tag information of a socket to the cookieUidMap. Use BPF_ANY

306

// flag so it will insert a new entry to the map if that value doesn't exist

307

// yet. And update the tag if there is already a tag stored. Since the eBPF

308

// program in kernel only read this map, and is protected by rcu read lock. It

309

// should be fine to cocurrently update the map while eBPF program is running.

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

310

Status res = mCookieTagMap.writeValue(sock_cookie, newKey, BPF_ANY);

311

if (!isOk(res)) {

312

ALOGE("Failed to tag the socket: %s, fd: %d", strerror(res.code()),

313

mCookieTagMap.getMap().get());

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

314

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

315

return -res.code();

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

316

}

317

318

int TrafficController::untagSocket(int sockFd) {

Chenbo Feng

2018-04-11 18:27:19 -0700

[diff] [blame]

319

if (!ebpfSupported) {

320

if (legacy_untagSocket(sockFd)) return -errno;

321

return 0;

322

}

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

323

uint64_t sock_cookie = getSocketCookie(sockFd);

324

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

325

if (sock_cookie == NONEXISTENT_COOKIE) return -errno;

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

326

Status res = mCookieTagMap.deleteValue(sock_cookie);

327

if (!isOk(res)) {

328

ALOGE("Failed to untag socket: %s\n", strerror(res.code()));

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

329

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

330

return -res.code();

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

331

}

332

333

int TrafficController::setCounterSet(int counterSetNum, uid_t uid) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

334

if (counterSetNum < 0 || counterSetNum >= OVERFLOW_COUNTERSET) return -EINVAL;

335

Status res;

Chenbo Feng

2018-04-11 18:27:19 -0700

[diff] [blame]

336

if (!ebpfSupported) {

337

if (legacy_setCounterSet(counterSetNum, uid)) return -errno;

338

return 0;

339

}

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

340

341

// The default counter set for all uid is 0, so deleting the current counterset for that uid

342

// will automatically set it to 0.

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

343

if (counterSetNum == 0) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

344

Status res = mUidCounterSetMap.deleteValue(uid);

345

if (isOk(res) || (!isOk(res) && res.code() == ENOENT)) {

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

346

return 0;

347

} else {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

348

ALOGE("Failed to delete the counterSet: %s\n", strerror(res.code()));

349

return -res.code();

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

350

}

351

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

352

uint8_t tmpCounterSetNum = (uint8_t)counterSetNum;

353

res = mUidCounterSetMap.writeValue(uid, tmpCounterSetNum, BPF_ANY);

354

if (!isOk(res)) {

355

ALOGE("Failed to set the counterSet: %s, fd: %d", strerror(res.code()),

356

mUidCounterSetMap.getMap().get());

357

return -res.code();

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

358

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

359

return 0;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

360

}

361

362

int TrafficController::deleteTagData(uint32_t tag, uid_t uid) {

Chenbo Feng

2017-10-23 15:16:37 -0700

[diff] [blame]

363

Chenbo Feng

2018-04-11 18:27:19 -0700

[diff] [blame]

364

if (!ebpfSupported) {

365

if (legacy_deleteTagData(tag, uid)) return -errno;

366

return 0;

367

}

Chenbo Feng

2017-10-23 15:16:37 -0700

[diff] [blame]

368

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

369

// First we go through the cookieTagMap to delete the target uid tag combination. Or delete all

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

370

// the tags related to the uid if the tag is 0.

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

371

const auto deleteMatchedCookieEntries = [uid, tag](const uint64_t& key, const UidTag& value,

372

BpfMap<uint64_t, UidTag>& map) {

373

if (value.uid == uid && (value.tag == tag || tag == 0)) {

374

Status res = map.deleteValue(key);

375

if (isOk(res) || (res.code() == ENOENT)) {

376

return netdutils::status::ok;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

377

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

378

ALOGE("Failed to delete data(cookie = %" PRIu64 "): %s\n", key, strerror(res.code()));

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

379

}

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

380

// Move forward to next cookie in the map.

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

381

return netdutils::status::ok;

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

382

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

383

mCookieTagMap.iterateWithValue(deleteMatchedCookieEntries);

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

384

// Now we go through the Tag stats map and delete the data entry with correct uid and tag

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

385

// combination. Or all tag stats under that uid if the target tag is 0.

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

386

const auto deleteMatchedUidTagEntries = [uid, tag](const StatsKey& key,

387

BpfMap<StatsKey, StatsValue>& map) {

388

if (key.uid == uid && (key.tag == tag || tag == 0)) {

389

Status res = map.deleteValue(key);

390

if (isOk(res) || (res.code() == ENOENT)) {

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

391

//Entry is deleted, use the current key to get a new nextKey;

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

392

return netdutils::status::ok;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

393

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

394

ALOGE("Failed to delete data(uid=%u, tag=%u): %s\n", key.uid, key.tag,

395

strerror(res.code()));

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

396

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

397

return netdutils::status::ok;

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

398

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

399

mTagStatsMap.iterate(deleteMatchedUidTagEntries);

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

400

// If the tag is not zero, we already deleted all the data entry required. If tag is 0, we also

Chenbo Feng

ed37fea

2017-12-13 19:35:01 -0800

[diff] [blame]

401

// need to delete the stats stored in uidStatsMap and counterSet map.

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

402

if (tag != 0) return 0;

403

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

404

Status res = mUidCounterSetMap.deleteValue(uid);

405

if (!isOk(res) && res.code() != ENOENT) {

406

ALOGE("Failed to delete counterSet data(uid=%u, tag=%u): %s\n", uid, tag,

407

strerror(res.code()));

Chenbo Feng

2017-12-15 13:56:33 -0800

[diff] [blame]

408

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

409

mUidStatsMap.iterate(deleteMatchedUidTagEntries);

Chenbo Feng

2018-05-11 19:15:15 -0700

[diff] [blame]

410

411

auto deleteAppUidStatsEntry = [uid](const uint32_t& key, BpfMap<uint32_t, StatsValue>& map) {

412

if (key == uid) {

413

Status res = map.deleteValue(key);

414

if (isOk(res) || (res.code() == ENOENT)) {

415

return netdutils::status::ok;

416

}

417

ALOGE("Failed to delete data(uid=%u): %s", key, strerror(res.code()));

418

}

419

return netdutils::status::ok;

420

};

421

mAppUidStatsMap.iterate(deleteAppUidStatsEntry);

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

422

return 0;

Chenbo Feng

2017-10-10 17:31:57 -0700

[diff] [blame]

423

}

424

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

425

int TrafficController::addInterface(const char* name, uint32_t ifaceIndex) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

426

if (!ebpfSupported) return 0;

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

427

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

428

IfaceValue iface;

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

429

if (ifaceIndex == 0) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

430

ALOGE("Unknown interface %s(%d)", name, ifaceIndex);

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

return -1;

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

434

strlcpy(iface.name, name, sizeof(IfaceValue));

435

Status res = mIfaceIndexNameMap.writeValue(ifaceIndex, iface, BPF_ANY);

436

if (!isOk(res)) {

437

ALOGE("Failed to add iface %s(%d): %s", name, ifaceIndex, strerror(res.code()));

438

return -res.code();

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

439

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

440

return 0;

Chenbo Feng

2018-02-28 22:57:21 -0800

[diff] [blame]

441

}

442

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

443

Status TrafficController::updateOwnerMapEntry(BpfMap<uint32_t, uint8_t>& map, uid_t uid,

444

FirewallRule rule, FirewallType type) {

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

445

if (uid == UID_MAP_ENABLED) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

446

return statusFromErrno(-EINVAL, "This uid is reserved for map state");

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

447

}

448

449

if ((rule == ALLOW && type == WHITELIST) || (rule == DENY && type == BLACKLIST)) {

450

uint8_t flag = (type == WHITELIST) ? BPF_PASS : BPF_DROP;

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

451

RETURN_IF_NOT_OK(map.writeValue(uid, flag, BPF_ANY));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

452

} else if ((rule == ALLOW && type == BLACKLIST) || (rule == DENY && type == WHITELIST)) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

453

RETURN_IF_NOT_OK(map.deleteValue(uid));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

454

} else {

455

//Cannot happen.

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

456

return statusFromErrno(-EINVAL, "");

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

457

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

458

return netdutils::status::ok;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

459

}

460

461

int TrafficController::changeUidOwnerRule(ChildChain chain, uid_t uid, FirewallRule rule,

462

FirewallType type) {

463

std::lock_guard<std::mutex> guard(mOwnerMatchMutex);

464

if (!ebpfSupported) {

465

ALOGE("bpf is not set up, should use iptables rule");

466

return -ENOSYS;

467

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

468

Status res;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

469

switch (chain) {

470

case DOZABLE:

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

471

res = updateOwnerMapEntry(mDozableUidMap, uid, rule, type);

472

break;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

473

case STANDBY:

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

474

res = updateOwnerMapEntry(mStandbyUidMap, uid, rule, type);

475

break;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

476

case POWERSAVE:

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

477

res = updateOwnerMapEntry(mPowerSaveUidMap, uid, rule, type);

478

break;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

case NONE:

default:

return -EINVAL;

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

483

if (!isOk(res)) {

484

ALOGE("change uid(%u) rule of %d failed: %s, rule: %d, type: %d", uid, chain,

485

res.msg().c_str(), rule, type);

486

return -res.code();

487

}

488

return 0;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

489

}

490

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

491

Status TrafficController::replaceUidsInMap(BpfMap<uint32_t, uint8_t>& map,

492

const std::vector<int32_t>& uids, FirewallRule rule,

493

FirewallType type) {

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

494

std::set<int32_t> uidSet(uids.begin(), uids.end());

495

std::vector<uint32_t> uidsToDelete;

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

496

auto getUidsToDelete = [&uidsToDelete, &uidSet](const uint32_t& key,

497

const BpfMap<uint32_t, uint8_t>&) {

498

if (key != UID_MAP_ENABLED && uidSet.find((int32_t)key) == uidSet.end()) {

499

uidsToDelete.push_back(key);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

500

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

501

return netdutils::status::ok;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

502

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

503

RETURN_IF_NOT_OK(map.iterate(getUidsToDelete));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

504

505

for(auto uid : uidsToDelete) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

506

RETURN_IF_NOT_OK(map.deleteValue(uid));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

507

}

508

509

for (auto uid : uids) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

510

RETURN_IF_NOT_OK(updateOwnerMapEntry(map, uid, rule, type));

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

511

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

512

return netdutils::status::ok;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

513

}

514

515

int TrafficController::replaceUidOwnerMap(const std::string& name, bool isWhitelist,

516

const std::vector<int32_t>& uids) {

517

std::lock_guard<std::mutex> guard(mOwnerMatchMutex);

FirewallRule rule;

FirewallType type;

if (isWhitelist) {

type = WHITELIST;

rule = ALLOW;

} else {

type = BLACKLIST;

rule = DENY;

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

527

Status res;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

528

if (!name.compare(FirewallController::LOCAL_DOZABLE)) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

529

res = replaceUidsInMap(mDozableUidMap, uids, rule, type);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

530

} else if (!name.compare(FirewallController::LOCAL_STANDBY)) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

531

res = replaceUidsInMap(mStandbyUidMap, uids, rule, type);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

532

} else if (!name.compare(FirewallController::LOCAL_POWERSAVE)) {

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

533

res = replaceUidsInMap(mPowerSaveUidMap, uids, rule, type);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

534

} else {

535

ALOGE("unknown chain name: %s", name.c_str());

536

return -EINVAL;

537

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

538

if (!isOk(res)) {

539

ALOGE("Failed to clean up chain: %s: %s", name.c_str(), res.msg().c_str());

540

return -res.code();

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

}

return 0;

}

int TrafficController::toggleUidOwnerMap(ChildChain chain, bool enable) {

546

std::lock_guard<std::mutex> guard(mOwnerMatchMutex);

547

uint32_t keyUid = UID_MAP_ENABLED;

548

uint8_t mapState = enable ? 1 : 0;

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

549

Status res;

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

550

switch (chain) {

551

case DOZABLE:

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

552

res = mDozableUidMap.writeValue(keyUid, mapState, BPF_EXIST);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

553

break;

554

case STANDBY:

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

555

res = mStandbyUidMap.writeValue(keyUid, mapState, BPF_EXIST);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

556

break;

557

case POWERSAVE:

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

558

res = mPowerSaveUidMap.writeValue(keyUid, mapState, BPF_EXIST);

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

break;

default:

return -EINVAL;

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

563

if (!isOk(res)) {

564

ALOGE("Failed to toggleUidOwnerMap(%d): %s", chain, res.msg().c_str());

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

565

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

566

return -res.code();

Chenbo Feng

2018-03-21 10:29:18 -0700

[diff] [blame]

567

}

568

Chenbo Feng

07d43fe

2017-12-21 14:38:51 -0800

[diff] [blame]

569

bool TrafficController::checkBpfStatsEnable() {

570

return ebpfSupported;

571

}

572

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

573

std::string getProgramStatus(const char *path) {

574

int ret = access(path, R_OK);

575

if (ret == 0) {

576

return StringPrintf("OK");

577

}

578

if (ret != 0 && errno == ENOENT) {

579

return StringPrintf("program is missing at: %s", path);

580

}

581

return StringPrintf("check Program %s error: %s", path, strerror(errno));

582

}

583

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

584

std::string getMapStatus(const base::unique_fd& map_fd, const char* path) {

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

585

if (map_fd.get() < 0) {

586

return StringPrintf("map fd lost");

587

}

588

if (access(path, F_OK) != 0) {

589

return StringPrintf("map not pinned to location: %s", path);

590

}

591

return StringPrintf("OK");

592

}

593

594

void dumpBpfMap(std::string mapName, DumpWriter& dw, const std::string& header) {

595

dw.blankline();

596

dw.println("%s:", mapName.c_str());

597

if(!header.empty()) {

598

dw.println(header.c_str());

}

}

const String16 TrafficController::DUMP_KEYWORD = String16("trafficcontroller");

603

604

void TrafficController::dump(DumpWriter& dw, bool verbose) {

Chenbo Feng

2018-04-13 19:50:49 -0700

[diff] [blame]

605

std::lock_guard<std::mutex> ownerMapGuard(mOwnerMatchMutex);

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

606

dw.incIndent();

607

dw.println("TrafficController");

608

609

dw.incIndent();

610

dw.println("BPF module status: %s", ebpfSupported? "ON" : "OFF");

if (!ebpfSupported)

return;

dw.blankline();

dw.println("mCookieTagMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

617

getMapStatus(mCookieTagMap.getMap(), COOKIE_TAG_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

618

dw.println("mUidCounterSetMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

619

getMapStatus(mUidCounterSetMap.getMap(), UID_COUNTERSET_MAP_PATH).c_str());

Chenbo Feng

2018-05-11 19:15:15 -0700

[diff] [blame]

620

dw.println("mAppUidStatsMap status: %s",

621

getMapStatus(mAppUidStatsMap.getMap(), APP_UID_STATS_MAP_PATH).c_str());

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

622

dw.println("mUidStatsMap status: %s",

623

getMapStatus(mUidStatsMap.getMap(), UID_STATS_MAP_PATH).c_str());

624

dw.println("mTagStatsMap status: %s",

625

getMapStatus(mTagStatsMap.getMap(), TAG_STATS_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

626

dw.println("mIfaceIndexNameMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

627

getMapStatus(mIfaceIndexNameMap.getMap(), IFACE_INDEX_NAME_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

628

dw.println("mIfaceStatsMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

629

getMapStatus(mIfaceStatsMap.getMap(), IFACE_STATS_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

630

dw.println("mDozableUidMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

631

getMapStatus(mDozableUidMap.getMap(), DOZABLE_UID_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

632

dw.println("mStandbyUidMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

633

getMapStatus(mStandbyUidMap.getMap(), STANDBY_UID_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

634

dw.println("mPowerSaveUidMap status: %s",

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

635

getMapStatus(mPowerSaveUidMap.getMap(), POWERSAVE_UID_MAP_PATH).c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

636

637

dw.blankline();

638

dw.println("Cgroup ingress program status: %s",

639

getProgramStatus(BPF_INGRESS_PROG_PATH).c_str());

640

dw.println("Cgroup egress program status: %s", getProgramStatus(BPF_EGRESS_PROG_PATH).c_str());

641

dw.println("xt_bpf ingress program status: %s",

642

getProgramStatus(XT_BPF_INGRESS_PROG_PATH).c_str());

643

dw.println("xt_bpf egress program status: %s",

644

getProgramStatus(XT_BPF_EGRESS_PROG_PATH).c_str());

if(!verbose) return;

dw.blankline();

dw.println("BPF map content:");

dw.incIndent();

// Print CookieTagMap content.

654

dumpBpfMap("mCookieTagMap", dw, "");

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

655

const auto printCookieTagInfo = [&dw](const uint64_t& key, const UidTag& value,

656

const BpfMap<uint64_t, UidTag>&) {

657

dw.println("cookie=%" PRIu64 " tag=0x%x uid=%u", key, value.tag, value.uid);

658

return netdutils::status::ok;

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

659

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

660

Status res = mCookieTagMap.iterateWithValue(printCookieTagInfo);

661

if (!isOk(res)) {

662

dw.println("mCookieTagMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

663

}

664

665

// Print UidCounterSetMap Content

666

dumpBpfMap("mUidCounterSetMap", dw, "");

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

667

const auto printUidInfo = [&dw](const uint32_t& key, const uint8_t& value,

668

const BpfMap<uint32_t, uint8_t>&) {

669

dw.println("%u %u", key, value);

670

return netdutils::status::ok;

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

671

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

672

res = mUidCounterSetMap.iterateWithValue(printUidInfo);

673

if (!isOk(res)) {

674

dw.println("mUidCounterSetMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

675

}

676

Chenbo Feng

2018-05-11 19:15:15 -0700

[diff] [blame]

677

// Print AppUidStatsMap content

678

std::string appUidStatsHeader = StringPrintf("uid rxBytes rxPackets txBytes txPackets");

679

dumpBpfMap("mAppUidStatsMap:", dw, appUidStatsHeader);

680

auto printAppUidStatsInfo = [&dw](const uint32_t& key, const StatsValue& value,

681

const BpfMap<uint32_t, StatsValue>&) {

682

dw.println("%u %" PRIu64 " %" PRIu64 " %" PRIu64 " %" PRIu64, key, value.rxBytes,

683

value.rxPackets, value.txBytes, value.txPackets);

684

return netdutils::status::ok;

685

};

686

res = mAppUidStatsMap.iterateWithValue(printAppUidStatsInfo);

687

if (!res.ok()) {

688

dw.println("mAppUidStatsMap print end with error: %s", res.msg().c_str());

689

}

690

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

691

// Print uidStatsMap content

692

std::string statsHeader = StringPrintf("ifaceIndex ifaceName tag_hex uid_int cnt_set rxBytes"

693

" rxPackets txBytes txPackets");

694

dumpBpfMap("mUidStatsMap", dw, statsHeader);

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

695

const auto printStatsInfo = [&dw, this](const StatsKey& key, const StatsValue& value,

696

const BpfMap<StatsKey, StatsValue>&) {

697

uint32_t ifIndex = key.ifaceIndex;

698

auto ifname = mIfaceIndexNameMap.readValue(ifIndex);

699

if (!isOk(ifname)) {

700

strlcpy(ifname.value().name, "unknown", sizeof(IfaceValue));

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

701

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

702

dw.println("%u %s 0x%x %u %u %" PRIu64 " %" PRIu64 " %" PRIu64 " %" PRIu64, ifIndex,

703

ifname.value().name, key.tag, key.uid, key.counterSet, value.rxBytes,

704

value.rxPackets, value.txBytes, value.txPackets);

705

return netdutils::status::ok;

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

706

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

707

res = mUidStatsMap.iterateWithValue(printStatsInfo);

708

if (!isOk(res)) {

709

dw.println("mUidStatsMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

710

}

711

712

// Print TagStatsMap content.

713

dumpBpfMap("mTagStatsMap", dw, statsHeader);

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

714

res = mTagStatsMap.iterateWithValue(printStatsInfo);

715

if (!isOk(res)) {

716

dw.println("mTagStatsMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

717

}

718

719

// Print ifaceIndexToNameMap content.

720

dumpBpfMap("mIfaceIndexNameMap", dw, "");

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

721

const auto printIfaceNameInfo = [&dw](const uint32_t& key, const IfaceValue& value,

722

const BpfMap<uint32_t, IfaceValue>&) {

723

const char* ifname = value.name;

724

dw.println("ifaceIndex=%u ifaceName=%s", key, ifname);

725

return netdutils::status::ok;

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

726

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

727

res = mIfaceIndexNameMap.iterateWithValue(printIfaceNameInfo);

728

if (!isOk(res)) {

729

dw.println("mIfaceIndexNameMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

730

}

731

732

// Print ifaceStatsMap content

733

std::string ifaceStatsHeader = StringPrintf("ifaceIndex ifaceName rxBytes rxPackets txBytes"

734

" txPackets");

735

dumpBpfMap("mIfaceStatsMap:", dw, ifaceStatsHeader);

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

736

const auto printIfaceStatsInfo = [&dw, this](const uint32_t& key, const StatsValue& value,

737

const BpfMap<uint32_t, StatsValue>&) {

738

auto ifname = mIfaceIndexNameMap.readValue(key);

739

if (!isOk(ifname)) {

740

strlcpy(ifname.value().name, "unknown", sizeof(IfaceValue));

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

741

}

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

742

dw.println("%u %s %" PRIu64 " %" PRIu64 " %" PRIu64 " %" PRIu64, key, ifname.value().name,

743

value.rxBytes, value.rxPackets, value.txBytes, value.txPackets);

744

return netdutils::status::ok;

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

745

};

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

746

res = mIfaceStatsMap.iterateWithValue(printIfaceStatsInfo);

747

if (!isOk(res)) {

748

dw.println("mIfaceStatsMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

749

}

750

751

// Print owner match uid maps

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

752

dumpBpfMap("mDozableUidMap", dw, "");

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

753

res = mDozableUidMap.iterateWithValue(printUidInfo);

754

if (!isOk(res)) {

755

dw.println("mDozableUidMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

756

}

757

758

dumpBpfMap("mStandbyUidMap", dw, "");

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

759

res = mStandbyUidMap.iterateWithValue(printUidInfo);

760

if (!isOk(res)) {

761

dw.println("mDozableUidMap print end with error: %s", res.msg().c_str());

Chenbo Feng

2018-03-26 10:53:33 -0700

[diff] [blame]

762

}

763

764

dumpBpfMap("mPowerSaveUidMap", dw, "");

Chenbo Feng

2018-04-26 10:37:55 -0700

[diff] [blame]

765

res = mPowerSaveUidMap.iterateWithValue(printUidInfo);

766

if (!isOk(res)) {

767

dw.println("mDozableUidMap print end with error: %s", res.msg().c_str());

Chenbo Feng