1bd4aed0eSJiong Wang // SPDX-License-Identifier: GPL-2.0 2bd4aed0eSJiong Wang // Copyright (c) 2018 Facebook 3bd4aed0eSJiong Wang 4bd4aed0eSJiong Wang #include <linux/stddef.h> 5bd4aed0eSJiong Wang #include <linux/bpf.h> 6bd4aed0eSJiong Wang #include <sys/socket.h> 7bd4aed0eSJiong Wang 83e689141SToke Høiland-Jørgensen #include <bpf/bpf_helpers.h> 93e689141SToke Høiland-Jørgensen #include <bpf/bpf_endian.h> 10bd4aed0eSJiong Wang 11*62476cc1SStanislav Fomichev #include <bpf_sockopt_helpers.h> 12*62476cc1SStanislav Fomichev 13bd4aed0eSJiong Wang #define SRC_REWRITE_IP6_0 0 14bd4aed0eSJiong Wang #define SRC_REWRITE_IP6_1 0 15bd4aed0eSJiong Wang #define SRC_REWRITE_IP6_2 0 16bd4aed0eSJiong Wang #define SRC_REWRITE_IP6_3 6 17bd4aed0eSJiong Wang 18bd4aed0eSJiong Wang #define DST_REWRITE_IP6_0 0 19bd4aed0eSJiong Wang #define DST_REWRITE_IP6_1 0 20bd4aed0eSJiong Wang #define DST_REWRITE_IP6_2 0 21bd4aed0eSJiong Wang #define DST_REWRITE_IP6_3 1 22bd4aed0eSJiong Wang 23bd4aed0eSJiong Wang #define DST_REWRITE_PORT6 6666 24bd4aed0eSJiong Wang 25bd4aed0eSJiong Wang SEC("cgroup/sendmsg6") sendmsg_v6_prog(struct bpf_sock_addr * ctx)26bd4aed0eSJiong Wangint sendmsg_v6_prog(struct bpf_sock_addr *ctx) 27bd4aed0eSJiong Wang { 28bd4aed0eSJiong Wang if (ctx->type != SOCK_DGRAM) 29bd4aed0eSJiong Wang return 0; 30bd4aed0eSJiong Wang 31*62476cc1SStanislav Fomichev if (!get_set_sk_priority(ctx)) 32*62476cc1SStanislav Fomichev return 0; 33*62476cc1SStanislav Fomichev 34bd4aed0eSJiong Wang /* Rewrite source. */ 35bd4aed0eSJiong Wang if (ctx->msg_src_ip6[3] == bpf_htonl(1) || 36bd4aed0eSJiong Wang ctx->msg_src_ip6[3] == bpf_htonl(0)) { 37bd4aed0eSJiong Wang ctx->msg_src_ip6[0] = bpf_htonl(SRC_REWRITE_IP6_0); 38bd4aed0eSJiong Wang ctx->msg_src_ip6[1] = bpf_htonl(SRC_REWRITE_IP6_1); 39bd4aed0eSJiong Wang ctx->msg_src_ip6[2] = bpf_htonl(SRC_REWRITE_IP6_2); 40bd4aed0eSJiong Wang ctx->msg_src_ip6[3] = bpf_htonl(SRC_REWRITE_IP6_3); 41bd4aed0eSJiong Wang } else { 42bd4aed0eSJiong Wang /* Unexpected source. Reject sendmsg. */ 43bd4aed0eSJiong Wang return 0; 44bd4aed0eSJiong Wang } 45bd4aed0eSJiong Wang 46bd4aed0eSJiong Wang /* Rewrite destination. */ 47c8eee413SIlya Leoshkevich if (ctx->user_ip6[0] == bpf_htonl(0xFACEB00C)) { 48bd4aed0eSJiong Wang ctx->user_ip6[0] = bpf_htonl(DST_REWRITE_IP6_0); 49bd4aed0eSJiong Wang ctx->user_ip6[1] = bpf_htonl(DST_REWRITE_IP6_1); 50bd4aed0eSJiong Wang ctx->user_ip6[2] = bpf_htonl(DST_REWRITE_IP6_2); 51bd4aed0eSJiong Wang ctx->user_ip6[3] = bpf_htonl(DST_REWRITE_IP6_3); 52bd4aed0eSJiong Wang 53bd4aed0eSJiong Wang ctx->user_port = bpf_htons(DST_REWRITE_PORT6); 54bd4aed0eSJiong Wang } else { 55bd4aed0eSJiong Wang /* Unexpected destination. Reject sendmsg. */ 56bd4aed0eSJiong Wang return 0; 57bd4aed0eSJiong Wang } 58bd4aed0eSJiong Wang 59bd4aed0eSJiong Wang return 1; 60bd4aed0eSJiong Wang } 61bd4aed0eSJiong Wang 62bd4aed0eSJiong Wang char _license[] SEC("license") = "GPL"; 63