linux-support 0.0.25

Comprehensive Linux support for namespaces, cgroups, processes, scheduling, parsing /proc, parsing /sys, signals, hyper threads, CPUS, NUMA nodes, unusual file descriptors, PCI devices and much, much more
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80

// This file is part of linux-support. It is subject to the license terms in the COPYRIGHT file found in the top-level directory of this distribution and at https://raw.githubusercontent.com/lemonrock/linux-support/master/COPYRIGHT. No part of linux-support, including this file, may be copied, modified, propagated, or distributed except according to the terms contained in the COPYRIGHT file.
// Copyright © 2020 The developers of linux-support. See the COPYRIGHT file in the top-level directory of this distribution and at https://raw.githubusercontent.com/lemonrock/linux-support/master/COPYRIGHT.


/// Just-in-Time (JIT) compilation choice for eBPF programs.
///
/// Default is `JustInTimeCompilationChoice::Interpreted`.
#[derive(Debug, Copy, Clone, PartialEq, Eq, PartialOrd, Ord, Hash)]
#[derive(Deserialize, Serialize)]
#[serde(deny_unknown_fields)]
#[repr(u8)]
pub enum JustInTimeCompilationHardening
{
	#[allow(missing_docs)]
	Unhardened = 0,
	
	#[allow(missing_docs)]
	HardenedForUnprivilegedUsers = 1,
	
	#[allow(missing_docs)]
	HardenedForAllUsers = 2,
}

impl Default for JustInTimeCompilationHardening
{
	fn default() -> Self
	{
		JustInTimeCompilationHardening::Unhardened
	}
}

impl ParseNumber for JustInTimeCompilationHardening
{
	#[inline(always)]
	fn parse_number(bytes: &[u8], radix: Radix, parse_byte: impl Fn(Radix, u8) -> Result<u8, ParseNumberError>) -> Result<Self, ParseNumberError>
	{
		let raw_value = u8::parse_number(bytes, radix, parse_byte)?;
		if unlikely!(raw_value > 2)
		{
			Err(ParseNumberError::TooLarge)
		}
		else
		{
			Ok(unsafe { transmute(raw_value) })
		}
	}
}

impl JustInTimeCompilationHardening
{
	/// Value of `/proc/sys/net/core/bpf_jit_harden`.
	#[inline(always)]
	pub fn value(proc_path: &ProcPath) -> io::Result<Self>
	{
		Self::sys_net_core_bpf_jit_harden_file_path(proc_path).read_value()
	}
	
	/// Set value of `/proc/sys/net/core/bpf_jit_harden`.
	#[inline(always)]
	pub fn set_value(self, proc_path: &ProcPath) -> io::Result<()>
	{
		assert_effective_user_id_is_root("write to /proc/sys/net/core/bpf_jit_harden");
	
		let file_path = Self::sys_net_core_bpf_jit_harden_file_path(proc_path);
		if file_path.exists()
		{
			file_path.write_value(UnpaddedDecimalInteger(self as u8))
		}
		else
		{
			Ok(())
		}
	}
	
	#[inline(always)]
	fn sys_net_core_bpf_jit_harden_file_path(proc_path: &ProcPath) -> PathBuf
	{
		proc_path.sys_net_core_file_path("bpf_jit_harden")
	}
}