pdns/dnsdist-dynbpf.hh

   1 /*
   2  * This file is part of PowerDNS or dnsdist.
   3  * Copyright -- PowerDNS.COM B.V. and its contributors
   4  *
   5  * This program is free software; you can redistribute it and/or modify
   6  * it under the terms of version 2 of the GNU General Public License as
   7  * published by the Free Software Foundation.
   8  *
   9  * In addition, for the avoidance of any doubt, permission is granted to
  10  * link this program with OpenSSL and to (re)distribute the binaries
  11  * produced as the result of such linking.
  12  *
  13  * This program is distributed in the hope that it will be useful,
  14  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  15  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  16  * GNU General Public License for more details.
  17  *
  18  * You should have received a copy of the GNU General Public License
  19  * along with this program; if not, write to the Free Software
  20  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
  21  */
  22 #pragma once
  23 #include "config.h"
  24
  25 #include <mutex>
  26
  27 #include "bpf-filter.hh"
  28 #include "iputils.hh"
  29
  30 #ifdef HAVE_EBPF
  31
  32 #include <boost/multi_index_container.hpp>
  33 #include <boost/multi_index/ordered_index.hpp>
  34
  35 class DynBPFFilter
  36 {
  37 public:
  38   DynBPFFilter(std::shared_ptr<BPFFilter> bpf): d_bpf(bpf)
  39   {
  40   }
  41   ~DynBPFFilter()
  42   {
  43   }
  44   void block(const ComboAddress& addr, const struct timespec& until);
  45   void purgeExpired(const struct timespec& now);
  46   std::vector<std::tuple<ComboAddress, uint64_t, struct timespec> > getAddrStats();
  47 private:
  48   struct BlockEntry
  49   {
  50     BlockEntry(const ComboAddress& addr, const struct timespec until): d_addr(addr), d_until(until)
  51     {
  52     }
  53     ComboAddress d_addr;
  54     struct timespec d_until;
  55   };
  56   typedef multi_index_container<BlockEntry,
  57                                 indexed_by <
  58                                   ordered_unique< member<BlockEntry,ComboAddress,&BlockEntry::d_addr>, ComboAddress::addressOnlyLessThan >,
  59                                   ordered_non_unique< member<BlockEntry,struct timespec,&BlockEntry::d_until> >
  60                                   >
  61                                 > container_t;
  62   container_t d_entries;
  63   std::mutex d_mutex;
  64   std::shared_ptr<BPFFilter> d_bpf;
  65 };
  66
  67 #endif /* HAVE_EBPF */