Google Git
Sign in
kernel / pub / scm / linux / kernel / git / ast / bpf / refs/heads/v14
commit953d10936be8d64fd66f09098d3a342bbb2756f8[log] [tgz]
authorAlexei Starovoitov <ast@plumgrid.com>Tue Jun 24 18:00:41 2014 -0700
committerAlexei Starovoitov <ast@plumgrid.com>Thu Sep 25 21:58:02 2014 -0700
treedd5f4b48bd1cc95e0e08710d6d1c418a1c91a67a
parent32ad607145dca23d28ca714ef0845c8170d3fc06 [diff]
samples: bpf: example of stateful socket filtering

this socket filter example does:

- creates a hashtable in kernel with key 4 bytes and value 8 bytes

- populates map[6] = 0; map[17] = 0;  // 6 - tcp_proto, 17 - udp_proto

- loads eBPF program:
  r0 = skb[14 + 9]; // load one byte of ip->proto
  *(u32*)(fp - 4) = r0;
  value = bpf_map_lookup_elem(map_fd, fp - 4);
  if (value)
       (*(u64*)value) += 1;

- attaches this program to eth0 raw socket

- every second user space reads map[6] and map[17] to see how many
  TCP and UDP packets were seen on eth0

Signed-off-by: Alexei Starovoitov <ast@plumgrid.com>
3 files changed
tree: dd5f4b48bd1cc95e0e08710d6d1c418a1c91a67a
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS