]>
Commit | Line | Data |
---|---|---|
12471842 PL |
1 | /* |
2 | * This file is part of PowerDNS or dnsdist. | |
3 | * Copyright -- PowerDNS.COM B.V. and its contributors | |
4 | * | |
5 | * This program is free software; you can redistribute it and/or modify | |
6 | * it under the terms of version 2 of the GNU General Public License as | |
7 | * published by the Free Software Foundation. | |
8 | * | |
9 | * In addition, for the avoidance of any doubt, permission is granted to | |
10 | * link this program with OpenSSL and to (re)distribute the binaries | |
11 | * produced as the result of such linking. | |
12 | * | |
13 | * This program is distributed in the hope that it will be useful, | |
14 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
15 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
16 | * GNU General Public License for more details. | |
17 | * | |
18 | * You should have received a copy of the GNU General Public License | |
19 | * along with this program; if not, write to the Free Software | |
20 | * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. | |
21 | */ | |
87b515ed RG |
22 | #pragma once |
23 | #include "config.h" | |
24 | ||
25 | #include <mutex> | |
26 | ||
27 | #include "bpf-filter.hh" | |
28 | #include "iputils.hh" | |
29 | ||
30 | #ifdef HAVE_EBPF | |
31 | ||
32 | #include <boost/multi_index_container.hpp> | |
33 | #include <boost/multi_index/ordered_index.hpp> | |
34 | ||
35 | class DynBPFFilter | |
36 | { | |
37 | public: | |
38 | DynBPFFilter(std::shared_ptr<BPFFilter> bpf): d_bpf(bpf) | |
39 | { | |
40 | } | |
41 | ~DynBPFFilter() | |
42 | { | |
43 | } | |
44 | void block(const ComboAddress& addr, const struct timespec& until); | |
45 | void purgeExpired(const struct timespec& now); | |
8429ad04 | 46 | std::vector<std::tuple<ComboAddress, uint64_t, struct timespec> > getAddrStats(); |
87b515ed RG |
47 | private: |
48 | struct BlockEntry | |
49 | { | |
50 | BlockEntry(const ComboAddress& addr, const struct timespec until): d_addr(addr), d_until(until) | |
51 | { | |
52 | } | |
53 | ComboAddress d_addr; | |
54 | struct timespec d_until; | |
55 | }; | |
56 | typedef multi_index_container<BlockEntry, | |
57 | indexed_by < | |
58 | ordered_unique< member<BlockEntry,ComboAddress,&BlockEntry::d_addr>, ComboAddress::addressOnlyLessThan >, | |
59 | ordered_non_unique< member<BlockEntry,struct timespec,&BlockEntry::d_until> > | |
60 | > | |
61 | > container_t; | |
62 | container_t d_entries; | |
63 | std::mutex d_mutex; | |
64 | std::shared_ptr<BPFFilter> d_bpf; | |
65 | }; | |
66 | ||
67 | #endif /* HAVE_EBPF */ |