1 // SPDX-License-Identifier: GPL-2.0
2 #include <linux/bpf.h>
3 #include <bpf/bpf_helpers.h>
4 #include <bpf/bpf_endian.h>
5 int verdict_max_size = 10000;
6 struct {
7 	__uint(type, BPF_MAP_TYPE_SOCKMAP);
8 	__uint(max_entries, 20);
9 	__type(key, int);
10 	__type(value, int);
11 } sock_map SEC(".maps");
12 
13 SEC("sk_skb/stream_verdict")
prog_skb_verdict(struct __sk_buff * skb)14 int prog_skb_verdict(struct __sk_buff *skb)
15 {
16 	__u32 one = 1;
17 
18 	if (skb->len > verdict_max_size)
19 		return SK_PASS;
20 
21 	return bpf_sk_redirect_map(skb, &sock_map, one, 0);
22 }
23 
24 SEC("sk_skb/stream_verdict")
prog_skb_verdict_pass(struct __sk_buff * skb)25 int prog_skb_verdict_pass(struct __sk_buff *skb)
26 {
27 	return SK_PASS;
28 }
29 
30 SEC("sk_skb/stream_parser")
prog_skb_parser(struct __sk_buff * skb)31 int prog_skb_parser(struct __sk_buff *skb)
32 {
33 	return skb->len;
34 }
35 
36 SEC("sk_skb/stream_parser")
prog_skb_parser_partial(struct __sk_buff * skb)37 int prog_skb_parser_partial(struct __sk_buff *skb)
38 {
39 	/* agreement with the test program on a 4-byte size header
40 	 * and 6-byte body.
41 	 */
42 	if (skb->len < 4) {
43 		/* need more header to determine full length */
44 		return 0;
45 	}
46 	/* return full length decoded from header.
47 	 * the return value may be larger than skb->len which
48 	 * means framework must wait body coming.
49 	 */
50 	return 10;
51 }
52 
53 char _license[] SEC("license") = "GPL";
54