git.ipfire.org Git - thirdparty/systemd.git/commit

author	Julia Kartseva <hex@fb.com>
	Sat, 22 Jan 2022 02:50:26 +0000 (18:50 -0800)
committer	Yu Watanabe <watanabe.yu+github@gmail.com>
	Sat, 22 Jan 2022 07:48:42 +0000 (16:48 +0900)
commit	8fe9dbb9266988235a0590f76a4e77428540f900
tree	f276616e4d75f7144ba78f4c0a55ecebc4026ba1	tree \| snapshot
parent	df4ec48f45f518b6926e02ef4d77c8ed1a8b4e2c	commit \| diff

bpf: name unnamed bpf programs

bpf-firewall and bpf-devices do not have names. This complicates
debugging with bpftool(8).

Assign names starting with 'sd_' prefix:
* firewall program names are 'sd_fw_ingress' for ingress attach
point and 'sd_fw_egress' for egress.
* 'sd_devices' for devices prog

'sd_' prefix is already used in source-compiled programs, e.g.
sd_restrictif_i, sd_restrictif_e, sd_bind6.

The name must not be longer than 15 characters or BPF_OBJ_NAME_LEN - 1.

Assign names only to programs loaded to kernel by systemd since
programs pinned to bpffs are already loaded.

src/core/bpf-devices.c		diff \| blob \| blame \| history
src/core/bpf-firewall.c		diff \| blob \| blame \| history
src/shared/bpf-program.c		diff \| blob \| blame \| history
src/shared/bpf-program.h		diff \| blob \| blame \| history
src/test/test-bpf-firewall.c		diff \| blob \| blame \| history
src/test/test-bpf-foreign-programs.c		diff \| blob \| blame \| history