Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

set UDP/DNS rate limit at XDP program run time #6

Closed
vincentmli opened this issue Apr 20, 2024 · 3 comments
Closed

set UDP/DNS rate limit at XDP program run time #6

vincentmli opened this issue Apr 20, 2024 · 3 comments

Comments

@vincentmli
Copy link
Owner

No description provided.

@vincentmli
Copy link
Owner Author

vincentmli commented Apr 21, 2024
edited
Loading

technical background to update global data variable at runtime
https://lore.kernel.org/bpf/20190228231829.11993-7-daniel@iogearbox.net/t/#mbb899f37f07924076ab2ace4144ef7fcf7bf82e7

quote from above discussion below for BPF code in general

> The non initialized
> global variable will not be in any allocated section in ELF file,
> it is in a COM section which is to be allocated by loader.
> So user defines some like
>     int g;
> and later on uses it. Right now, it will not work. The workaround
> is "int g = 4", or "static int g". I guess it should be
> okay, we should encourage users to use "static" variables instead.

Would it be reasonable to just plain disable usage of uninitialized
global variables, as it kind of goes against BPF's philosophy that
everything should be written to, before can be read? So while we can
just implicitly zero-out everything beforehand, it might be a good
idea to remind and enforce that explictly?

everything should be written to before can be read

elf static data relocation

pdf

@vincentmli
Copy link
Owner Author

get decimal input from user cli/WeBUI, convert to hex as bash or perl example below, then use bpftool map update
bash example:

#!/bin/bash

decimal=1000
hex=$(printf '%08x' "$decimal")  # Convert decimal to hexadecimal
bytes=$(echo "$hex" | fold -w2 | tac)   # Split the hexadecimal into pairs of bytes and reverse the order
hex_le=$(echo "$bytes" | sed 's/^/0x/' | tr '\n' ' ')  # Add prefix "0x" to each byte and concatenate them

echo "$hex_le"  # Output: 0xe8 0x03 0x00 0x00
bpftool map update name xdp_udp.data key hex 00 00 00 00 value $hex_le
bpftool map lookup name xdp_udp.data key hex 00 00 00 00

or perl

#/usr/bin/perl

use strict;
use warnings;

sub decimal_to_hex_le {
    my ($decimal) = @_;
    my $hex = sprintf('%08x', $decimal);  # Convert decimal to hexadecimal
    my @bytes = $hex =~ /(..)/g;          # Split the hexadecimal into pairs of bytes
    my $little_endian_hex = join(' ', map { '0x' . $_ } reverse @bytes);  # Add prefix "0x" and reverse the order of bytes
    return $little_endian_hex;
}

# Test with input 1000
my $decimal = 1000;
my $hex_le = decimal_to_hex_le($decimal);
print "$hex_le\n";  # Output: 0xe8 0x03 0x00 0x00

@vincentmli
Copy link
Owner Author

if xdp program has two global variables, for example:

static volatile unsigned int ratelimit = 1000;
static volatile unsigned int cpus = 2;

the global data map value would be:

# bpftool map lookup name xdp_udp.data key hex 00 00 00 00
{
    "value": {
        ".data": [{
                "ratelimit": 1000
            },{
                "cpus": 1
            }
        ]
    }
}

value has 8 bytes, so when use bpftool to update the value, need to keep the number of bytes in mind, and if only update the cpus, then

# bpftool map update name xdp_udp.data key hex 00 00 00 00 value hex e8 03 00 00 02 00 00 00
# bpftool map lookup name xdp_udp.data key hex 00 00 00 00
{
    "value": {
        ".data": [{
                "ratelimit": 1000
            },{
                "cpus": 2
            }
        ]
    }
}

vincentmli pushed a commit that referenced this issue Dec 14, 2024
@mtremer
bwm-ng: Update to version 0.6.3
15818f9 
- Update from version 0.6.1-f54b3fa to 0.6.3
- Update of rootfile not required
- Changelog
    0.6.3
	* remove outdated copyright and email
	* Merge pull request #25 from fweimer/patch-1 AC_QEF_C_NORETURN: Include
	  <stdlib.h> for exit
	* Merge pull request #27 from ofalk/master Fix potential write to unallocated
	  memory.
	* Merge pull request #28 from vgropp/#2-fix-csv-bits feat: #2 output bits in csv
	* Merge pull request #29 from vgropp/#2-fix-csv-bits fix(doc): #2 output bits
	  in csv
	* Merge pull request #32 from vgropp/new-netstat-#5 feat: add support for
	  newer (2016+) linux netstat #5
    0.6.2
	* Merge pull request #22 from vgropp/issue-#13 to fix windows build
	* Merge pull request #20 from dreibh/master CSV file output: fix for timestamp
	  inaccuracy and Y-2038 problem
	* Merge pull request #21 from vgropp/travisci add travisci
	* Merge pull request #17 from Himura2la/master Add the started time in "sum" mode
	* Merge pull request #18 from Himura2la/fix-dynamic Fix DYNAMIC and ANSIOUT in
	  config
	* Merge pull request #10 from SoapGentoo/fixes Use `static inline` instead of
	  `inline`
	* Merge pull request #9 from adventureloop/master Always fflush the pipe
	* Merge pull request #7 from samueloph/fsf_address_clean Update FSF address
	* Merge pull request #6 from samueloph/master Fix typos
	* fix nan and inf values on fast refresh (fixes debian bug #532331

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@vincentmli