rbbcc 0.9.1 → 0.11.0.pre

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 21812e821d8cced71e6942b17c96800e6ac9c8fcbb3f09abffea3dd755b41365
-  data.tar.gz: 1c9d332fd7394ba8e0b4ca027335e4a02cc39ae5d3445e2103cf23b29cca6ccf
+  metadata.gz: 1c5cbecb6f86bc56c109433915be6daea255c5578145372e7fef05e643c74f22
+  data.tar.gz: 73b4dcb08ed7882ffd905f44b3662e1f26fbc7075b9e832c29f44701304b1826
 SHA512:
-  metadata.gz: 19b29f9942f91dc22bedd627879f967dde601a864678958f4d047b79302714ba68ab9eda5b4e260f987be7dcc5792b480bc14f92ac117af7da7a79e0092cfa44
-  data.tar.gz: 3dd4df07f67f833b3e2157053ff0aa5a138dd65c907f40486845fe619553030711b5622f494142d7ca1fe66b0bebf31fa563e71e36ff9184bef71fc32bfb0116
+  metadata.gz: ce916936932a3a0bb00bf28b3bd67d55b2d2068e0d4d05308296d472306db0ffae3dd495a441189fdcfe0db0c29705a389f31781f0e3971f1ef349b1d0eb4a1f
+  data.tar.gz: 15da5d9cd65ec31dd5a3fd1b3b87ce76edf4c40805f2cb800bbb5178300ec003975aea1bff084e740a1a8820a8137701692c861188bd9b85cbd31a971caf5535

data/.github/workflows/ci-image.yml

@@ -0,0 +1,69 @@
+name: Build and Push CI Image
+
+on:
+  workflow_dispatch:
+    inputs:
+      bcc_version:
+        description: 'BCC Version (e.g., 0.35.0)'
+        required: true
+        default: '0.35.0'
+      ruby_version:
+        description: 'Ruby Version (e.g., 4.0.2)'
+        required: true
+        default: '4.0.2'
+      push_image:
+        description: 'Push image to registry?'
+        type: boolean
+        default: true
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Check user permission
+        uses: actions-cool/check-user-permission@v2
+        with:
+          require: 'write'
+
+      - name: Checkout repository
+        uses: actions/checkout@v4
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.DOCKERHUB_WRITE_TOKEN }}
+
+      - name: Build
+        run: |
+          docker buildx build \
+            --platform linux/amd64 \
+            --build-arg BCC_VERSION=${{ inputs.bcc_version }} \
+            --build-arg RUBY_VERSION=${{ inputs.ruby_version }} \
+            -t ghcr.io/udzura/rbbcc-ci-images:libbcc-${{ inputs.bcc_version }}-ruby-${{ inputs.ruby_version }} \
+            --file Dockerfile.ci \
+            --load .
+
+      - name: Push
+        if: ${{ inputs.push_image }}
+        run: |
+          docker push \
+            ghcr.io/udzura/rbbcc-ci-images:libbcc-${{ inputs.bcc_version }}-ruby-${{ inputs.ruby_version }}
+
+      - name: Build Summary
+        run: |
+          echo "### Build Completed 🚀" >> $GITHUB_STEP_SUMMARY
+          echo "- **BCC Version**: ${{ inputs.bcc_version }}" >> $GITHUB_STEP_SUMMARY
+          echo "- **Ruby Version**: ${{ inputs.ruby_version }}" >> $GITHUB_STEP_SUMMARY
+          echo "- **Pushed**: ${{ inputs.push_image }}" >> $GITHUB_STEP_SUMMARY
+          if [ "${{ inputs.push_image }}" = "true" ]; then
+            echo "- **Image URL**: \`ghcr.io/udzura/rbbcc-ci-images:libbcc-${{ inputs.bcc_version }}-ruby-${{ inputs.ruby_version }}\`" >> $GITHUB_STEP_SUMMARY
+          fi

data/.github/workflows/ci.yml

@@ -9,19 +9,21 @@ jobs:
   test:
     strategy:
       matrix:
-        libbcc_version: [0.17.0]
-        ruby_version: [3.0.0]
+        libbcc_version: [0.29.0, 0.31.0, 0.35.0]
+        ruby_version: [4.0.2]
 
     runs-on: ubuntu-latest
     steps:
     - uses: actions/checkout@v2
     - name: Login to ghcr.io
       run: |
-        echo ${{ secrets.CR_PAT }} | docker login ghcr.io -u udzura  --password-stdin
+        echo ${{ secrets.CR_PAT }} | docker login ghcr.io -u udzura --password-stdin
     - name: Build docker container with all deps
       run: |
         docker build -t rbbcc-ci-${{ matrix.libbcc_version }}-${{ matrix.ruby_version }} \
-                     -f ci/Dockerfile.${{ matrix.libbcc_version }}-${{ matrix.ruby_version }} ci/
+                     --build-arg BCC_VERSION=${{ matrix.libbcc_version }} \
+                     --build-arg RUBY_VERSION=${{ matrix.ruby_version }} \
+                     -f ci/Dockerfile.ci_base ci/
     - name: Run test
       run: |
         /bin/bash -c \
@@ -34,5 +36,5 @@ jobs:
                    -v /usr/include/linux:/usr/include/linux:ro \
                    rbbcc-ci-${{ matrix.libbcc_version }}-${{ matrix.ruby_version }} \
                    /bin/bash -c \
-                   'cd /rbbcc && bundle install && bundle exec rake test'"
+                   'cd /rbbcc && git config --global --add safe.directory /rbbcc && bundle install && bundle exec rake test'"
     

data/Dockerfile.ci

@@ -1,98 +1,100 @@
-# ref: https://github.com/iovisor/bcc/blob/master/Dockerfile.tests
-FROM ubuntu:18.04
+# ref: https://github.com/iovisor/bcc/blob/master/docker/build/Dockerfile.ubuntu
+FROM ubuntu:24.04
 
-ENV LLVM_VERSION="9"
+ENV DEBIAN_FRONTEND=noninteractive
 
-ARG BCC_VERSION="0.16.0"
+ENV LLVM_VERSION="18"
+
+ARG BCC_VERSION="0.29.0"
 ENV BCC_VERSION=$BCC_VERSION
 
-ARG RUBY_VERSION="2.7.2"
+ARG RUBY_VERSION="4.0.2"
 ENV RUBY_VERSION=$RUBY_VERSION
 
-ARG RUBY_VERSION_ARCHIVE="ruby-${RUBY_VERSION}.tar.bz2"
-ENV RUBY_VERSION_ARCHIVE=$RUBY_VERSION_ARCHIVE
-
 ARG RUBY_EXTRA_OPTS=""
 ENV RUBY_EXTRA_OPTS=$RUBY_EXTRA_OPTS
 
 ARG BCC_EXTRA_OPTS=""
 ENV BCC_EXTRA_OPTS=$BCC_EXTRA_OPTS
 
-RUN apt-get update && apt-get install -y curl gnupg && \
-    llvmRepository="\n\
-deb http://apt.llvm.org/bionic/ llvm-toolchain-bionic main\n\
-deb-src http://apt.llvm.org/bionic/ llvm-toolchain-bionic main\n\
-deb http://apt.llvm.org/bionic/ llvm-toolchain-bionic-${LLVM_VERSION} main\n\
-deb-src http://apt.llvm.org/bionic/ llvm-toolchain-bionic-${LLVM_VERSION} main\n" && \
-    echo $llvmRepository >> /etc/apt/sources.list && \
-    curl -L https://apt.llvm.org/llvm-snapshot.gpg.key | apt-key add - && \
-    apt-get update && apt-get install -y \
-      util-linux \
-      bison \
-      binutils-dev \
-      cmake \
-      flex \
-      g++ \
-      git \
-      kmod \
-      wget \
-      libelf-dev \
-      zlib1g-dev \
-      libiberty-dev \
-      libbfd-dev \
-      libedit-dev \
-      clang-${LLVM_VERSION} \
-      libclang-${LLVM_VERSION}-dev \
-      libclang-common-${LLVM_VERSION}-dev \
-      libclang1-${LLVM_VERSION} \
-      llvm-${LLVM_VERSION} \
-      llvm-${LLVM_VERSION}-dev \
-      llvm-${LLVM_VERSION}-runtime \
-      libllvm${LLVM_VERSION} \
-      systemtap-sdt-dev \
-      sudo \
-      iproute2 \
-      iputils-ping \
-      bridge-utils \
-      libtinfo5 \
-      libtinfo-dev && \
-  wget -O ruby-install-0.7.1.tar.gz \
-         https://github.com/postmodern/ruby-install/archive/v0.7.1.tar.gz && \
-  tar -xzvf ruby-install-0.7.1.tar.gz && \
-  cd ruby-install-0.7.1/ && \
-  make install && \
-  sed -i 's/^ruby_archive=.*/ruby_archive="${ruby_archive:-ruby-$ruby_version.tar.bz2}"/' /usr/local/share/ruby-install/ruby/functions.sh && \
-  env ruby_archive=$RUBY_VERSION_ARCHIVE ruby-install --system $RUBY_EXTRA_OPTS ruby $RUBY_VERSION && \
-  git config --global user.name 'udzura' && \
-  git config --global user.email 'udzura@udzura.jp' && \
-  wget -O bcc-$BCC_VERSION.tar.gz \
-         https://github.com/iovisor/bcc/releases/download/v$BCC_VERSION/bcc-src-with-submodule.tar.gz && \
-  tar -xzvf bcc-$BCC_VERSION.tar.gz && \
-  cd bcc/ && \
-  ( test "$BCC_VERSION" = "0.12.0" && curl https://github.com/iovisor/bcc/commit/977a7e3a568c4c929fabeb4a025528d9b6f1e84c.patch | patch -p1 || true ) && \
-  git init . && git add . && git commit -m 'Dummy' && git tag v$BCC_VERSION && \
-  mkdir build && cd build/ && \
-  cmake $BCC_EXTRA_OPTS -DCMAKE_BUILD_TYPE=Release .. && \
-  cd src/cc && \
-  make -j8 && make install && \
-  cd ../.. && \
-  apt-get remove --purge -y \
-      binutils-dev \
-      libelf-dev \
-      zlib1g-dev \
-      libiberty-dev \
-      libbfd-dev \
-      libedit-dev \
-      clang-${LLVM_VERSION} \
-      libclang-${LLVM_VERSION}-dev \
-      libclang-common-${LLVM_VERSION}-dev \
-      libclang1-${LLVM_VERSION} \
-      llvm-${LLVM_VERSION} \
-      llvm-${LLVM_VERSION}-dev \
-      llvm-${LLVM_VERSION}-runtime \
-      libllvm${LLVM_VERSION} \
-      systemtap-sdt-dev \
-      libtinfo-dev && \
-   apt autoremove -y && \
-   apt-get clean -y && \
-   rm -rf *.tar.gz bcc/
+RUN apt-get update && apt-get install -y \
+    curl \
+    gnupg \
+    util-linux \
+    bison \
+    cmake \
+    flex \
+    g++ \
+    make \
+    git \
+    kmod \
+    wget \
+    sudo \
+    iproute2 \
+    iputils-ping \
+    bridge-utils \
+    libncurses-dev \
+    libssl-dev \
+    libreadline-dev \
+    zlib1g-dev \
+    libyaml-dev \
+    libffi-dev \
+    libdebuginfod1 \
+    libelf1 \
+    liblzma5 \
+    binutils-dev \
+    libelf-dev \
+    libiberty-dev \
+    libbfd-dev \
+    libedit-dev \
+    libfl-dev \
+    liblzma-dev \
+    libdebuginfod-dev \
+    python3 \
+    python3-setuptools \
+    clang-${LLVM_VERSION} \
+    libclang-${LLVM_VERSION}-dev \
+    libclang-common-${LLVM_VERSION}-dev \
+    libclang1-${LLVM_VERSION} \
+    llvm-${LLVM_VERSION} \
+    llvm-${LLVM_VERSION}-dev \
+    llvm-${LLVM_VERSION}-runtime \
+    libllvm${LLVM_VERSION} \
+    libpolly-${LLVM_VERSION}-dev \
+    systemtap-sdt-dev
+
+RUN wget -O ruby-install-0.9.3.tar.gz https://github.com/postmodern/ruby-install/archive/v0.9.3.tar.gz && \
+    tar -xzvf ruby-install-0.9.3.tar.gz && \
+    cd ruby-install-0.9.3/ && make install && \
+    ruby-install --system ruby $RUBY_VERSION && \
+    cd / && rm -rf ruby-install-0.9.3*
+
+RUN git config --global user.name 'udzura' && git config --global user.email 'udzura@udzura.jp' && \
+    wget -O bcc-$BCC_VERSION.tar.gz https://github.com/iovisor/bcc/releases/download/v$BCC_VERSION/bcc-src-with-submodule.tar.gz && \
+    tar -xzvf bcc-$BCC_VERSION.tar.gz && \
+    cd bcc/ && \
+    git config --global --add safe.directory /bcc && \
+    git init . && git add . && git commit -m 'Dummy' && git tag v$BCC_VERSION && \
+    mkdir build && cd build/ && \
+    cmake -DCMAKE_BUILD_TYPE=Release .. && \
+    cd src/cc && make -j$(nproc) && make install && \
+    cd / && rm -rf bcc/ bcc-$BCC_VERSION.tar.gz
+
+RUN apt-get remove --purge -y \
+    binutils-dev \
+    libiberty-dev \
+    libbfd-dev \
+    libedit-dev \
+    libfl-dev \
+    liblzma-dev \
+    libdebuginfod-dev \
+    clang-${LLVM_VERSION} \
+    libclang-${LLVM_VERSION}-dev \
+    libclang-common-${LLVM_VERSION}-dev \
+    llvm-${LLVM_VERSION}-dev \
+    libllvm${LLVM_VERSION} \
+    libpolly-${LLVM_VERSION}-dev \
+    systemtap-sdt-dev && \
+    apt autoremove -y && \
+    apt-get clean -y && \
+    rm -rf /var/lib/apt/lists/*

data/Gemfile

@@ -6,13 +6,13 @@ gemspec
 gem "bundler", "~> 2.0"
 gem "rake", "~> 13.0"
 gem "pry", "~> 0.12"
-gem "minitest", ">= 5"
+gem "minitest", "~> 5"
 
-group :omnibus_package do
-  gem "appbundler"
-  gem "specific_install"
-end
+#group :omnibus_package do
+#  gem "appbundler"
+#  gem "specific_install"
+#end
 
-group :plugin_dev do
-  gem "rbbcc-hello", git: "https://github.com/udzura/rbbcc-hello.git"
-end
+#group :plugin_dev do
+#  gem "rbbcc-hello", git: "https://github.com/udzura/rbbcc-hello.git"
+#end

data/Gemfile.lock

@@ -1,35 +1,17 @@
-GIT
-  remote: https://github.com/udzura/rbbcc-hello.git
-  revision: 2e1af47d22e7cc92e970dc6c058e113cf00821db
-  specs:
-    rbbcc-hello (0.1.0)
-      rbbcc
-
 PATH
   remote: .
   specs:
-    rbbcc (0.9.1)
+    rbbcc (0.11.0.pre)
+      fiddle
 
 GEM
   remote: https://rubygems.org/
   specs:
-    appbundler (0.13.4)
-      mixlib-cli (>= 1.4, < 3.0)
-      mixlib-shellout (>= 2.0, < 4.0)
-    chef-utils (19.2.12)
-      concurrent-ruby
     coderay (1.1.3)
-    concurrent-ruby (1.3.6)
-    drb (2.2.3)
+    fiddle (1.1.8)
     io-console (0.8.2)
     method_source (1.1.0)
-    minitest (6.0.2)
-      drb (~> 2.0)
-      prism (~> 1.5)
-    mixlib-cli (2.1.8)
-    mixlib-shellout (3.4.10)
-      chef-utils
-    prism (1.9.0)
+    minitest (5.27.0)
     pry (0.16.0)
       coderay (~> 1.1)
       method_source (~> 1.0)
@@ -37,22 +19,19 @@ GEM
     rake (13.3.1)
     reline (0.6.3)
       io-console (~> 0.5)
-    specific_install (0.3.8)
 
 PLATFORMS
   aarch64-linux
   arm64-darwin-21
+  arm64-darwin-24
   arm64-darwin-25
 
 DEPENDENCIES
-  appbundler
   bundler (~> 2.0)
-  minitest (>= 5)
+  minitest (~> 5)
   pry (~> 0.12)
   rake (~> 13.0)
   rbbcc!
-  rbbcc-hello!
-  specific_install
 
 BUNDLED WITH
    2.3.16

data/Makefile

@@ -0,0 +1,15 @@
+ci-base-all:
+	@docker buildx build --platform linux/amd64/v3 -t ghcr.io/udzura/rbbcc-ci-images:libbcc-0.29.0-ruby-4.0.2 --file Dockerfile.ci --load .
+	@docker buildx build --platform linux/amd64/v3 --build-arg RUBY_VERSION=3.4.9 -t ghcr.io/udzura/rbbcc-ci-images:libbcc-0.29.0-ruby-3.4.9 --file Dockerfile.ci --load .
+	@docker buildx build --platform linux/amd64/v3 --build-arg BCC_VERSION=0.31.0 -t ghcr.io/udzura/rbbcc-ci-images:libbcc-0.31.0-ruby-4.0.2 --file Dockerfile.ci --load .
+	@docker buildx build --platform linux/amd64/v3 --build-arg BCC_VERSION=0.31.0 --build-arg RUBY_VERSION=3.4.9 -t ghcr.io/udzura/rbbcc-ci-images:libbcc-0.31.0-ruby-3.4.9 --file Dockerfile.ci --load .
+	@docker buildx build --platform linux/amd64/v3 --build-arg BCC_VERSION=0.35.0 -t ghcr.io/udzura/rbbcc-ci-images:libbcc-0.35.0-ruby-4.0.2 --file Dockerfile.ci --load .
+	@docker buildx build --platform linux/amd64/v3 --build-arg BCC_VERSION=0.35.0 --build-arg RUBY_VERSION=3.4.9 -t ghcr.io/udzura/rbbcc-ci-images:libbcc-0.35.0-ruby-3.4.9 --file Dockerfile.ci --load .
+
+push-base-all:
+	@docker push ghcr.io/udzura/rbbcc-ci-images:libbcc-0.29.0-ruby-4.0.2
+	@docker push ghcr.io/udzura/rbbcc-ci-images:libbcc-0.29.0-ruby-3.4.9
+	@docker push ghcr.io/udzura/rbbcc-ci-images:libbcc-0.31.0-ruby-4.0.2
+	@docker push ghcr.io/udzura/rbbcc-ci-images:libbcc-0.31.0-ruby-3.4.9
+	@docker push ghcr.io/udzura/rbbcc-ci-images:libbcc-0.35.0-ruby-4.0.2
+	@docker push ghcr.io/udzura/rbbcc-ci-images:libbcc-0.35.0-ruby-3.4.9

data/ci/Dockerfile.ci_base

@@ -0,0 +1,4 @@
+ARG BCC_VERSION="0.29.0"
+ARG RUBY_VERSION="4.0.2"
+
+FROM ghcr.io/udzura/rbbcc-ci-images:libbcc-${BCC_VERSION}-ruby-${RUBY_VERSION}

data/examples/dns_blocker.rb

@@ -0,0 +1,133 @@
+#!/usr/bin/env ruby
+#
+# dns_blocker.rb  Block DNS queries for a specified domain using TC/eBPF.
+#
+# Uses TC clsact qdisc and attaches a SCHED_CLS BPF program to the
+# egress path.  Because pyroute2 is unavailable in Ruby, the BPF
+# program is pinned to /sys/fs/bpf and attached via the `tc` shell
+# command.
+#
+# Usage (must be run as root):
+#   ruby dns_blocker.rb -i eth0 -d ruby-lang.org
+#
+
+require 'rbbcc'
+require 'optparse'
+
+include RbBCC
+
+def domain_to_payload_check_code(domain)
+  # Convert a domain name to DNS wire format (length-prefixed labels)
+  # For example, "example.com" becomes "\\x07example\\x03com\\x00"
+  dns_expression = domain.split('.').map { |label| "#{label.length.chr}#{label}" }.join + "\x00"
+  c_check_code = dns_expression.chars.map.with_index { |c, i| "payload[offset+#{i}] == #{c.ord}" }.join(" &&\n  ")
+  c_check_code
+end
+
+BPF_TEXT = ->(domain) {
+  <<~CLANG
+  // Some Hack :(
+  #define BPF_LOAD_ACQ -1
+  #define BPF_STORE_REL -2
+
+  #include <uapi/linux/bpf.h>
+  #include <uapi/linux/pkt_cls.h>
+  #include <linux/if_ether.h>
+  #include <linux/ip.h>
+  #include <linux/udp.h>
+
+  int block_dns(struct __sk_buff *skb) {
+      void *data     = (void *)(long)skb->data;
+      void *data_end = (void *)(long)skb->data_end;
+
+      // Ethernet header check
+      struct ethhdr *eth = data;
+      if ((void *)(eth + 1) > data_end) return TC_ACT_OK;
+      if (eth->h_proto != bpf_htons(ETH_P_IP)) return TC_ACT_OK;
+
+      // IP header check
+      struct iphdr *ip = (void *)(eth + 1);
+      if ((void *)(ip + 1) > data_end) return TC_ACT_OK;
+      if (ip->protocol != IPPROTO_UDP) return TC_ACT_OK;
+
+      // UDP header check
+      struct udphdr *udp = (void *)ip + (ip->ihl * 4);
+      if ((void *)(udp + 1) > data_end) return TC_ACT_OK;
+
+      // Only care about port 53 (DNS) egress queries
+      if (udp->dest != bpf_htons(53)) return TC_ACT_OK;
+
+      // DNS payload boundary check: DNS header (12 bytes) + "example.com" wire format (13 bytes)
+      unsigned char *payload = (unsigned char *)(udp + 1);
+      if ((void *)(payload + 12 + 13) > data_end) return TC_ACT_OK;
+
+      // "example.com" in DNS wire format: \\x07example\\x03com\\x00
+      int offset = 12;
+      if (#{domain_to_payload_check_code(domain)}) {
+          bpf_trace_printk("Blocked DNS query for #{domain}\\n");
+          return TC_ACT_SHOT;
+      }
+
+      return TC_ACT_OK;
+  }
+  CLANG
+  }
+
+PIN_PATH = "/sys/fs/bpf/dns_blocker_prog"
+
+def setup_tc(interface)
+  # Run idempotently
+  system("sudo tc qdisc add dev #{interface} clsact 2>/dev/null")
+end
+
+def attach_tc(interface)
+  system(
+    "sudo `tc filter add dev #{interface} egress" +
+    " bpf pinned #{PIN_PATH} da",
+    exception: true
+  )
+end
+
+def cleanup_tc(interface)
+  system("sudo tc qdisc del dev #{interface} clsact", exception: true)
+  File.unlink(PIN_PATH) if File.exist?(PIN_PATH)
+end
+
+options = {domain: "example.com"}
+OptionParser.new { |opts|
+  opts.banner = "Usage: #{$0} -i INTERFACE"
+  opts.on("-i", "--interface IFACE", "Network interface to monitor (e.g. eth0)") do |v|
+    options[:interface] = v
+  end
+  opts.on("-d", "--domain DOMAIN", "Domain to block (default: example.com)") do |v|
+    options[:domain] = v
+  end
+}.parse!
+
+iface = options[:interface] || abort("Error: Interface name is required")
+
+# Clean up any leftover state from a previous run
+cleanup_tc(iface)
+
+puts "[*] Compiling BPF program..."
+b = BCC.new(text: BPF_TEXT.call(options[:domain]))
+fn = b.load_func("block_dns", BPF::SCHED_CLS)
+
+# Pin the loaded BPF program so that `tc` can reference it by path
+puts "[*] Pinning BPF program to #{PIN_PATH} ..."
+BCC.pin!(fn, PIN_PATH)
+
+# Set up clsact qdisc and attach the pinned program to egress
+puts "[*] Attaching TC filter to #{iface} (egress) ..."
+setup_tc(iface)
+attach_tc(iface)
+
+puts "[*] Blocking DNS queries for #{options[:domain]} on #{iface}. Press Ctrl+C to stop."
+begin
+  b.trace_print
+rescue Interrupt
+  puts "\n[*] Shutting down..."
+ensure
+  cleanup_tc(iface)
+  puts "[*] Cleanup done."
+end

data/lib/rbbcc/bcc.rb

@@ -180,7 +180,7 @@ module RbBCC
         end
         orig_name = c.inspect
         c.define_singleton_method :inspect do
-          orig_name.sub /(?=>$)/, " original_desc=#{desc.inspect}" rescue super
+          orig_name.sub(/(?=>$)/, " original_desc=#{desc.inspect}") rescue super
         end
         c
       end
@@ -218,6 +218,23 @@ module RbBCC
         fn[:sock] = sock
         fn
       end
+
+      #: (Integer | Hash[Symbol, untyped] fd, String path) -> String
+      def pin!(fd, path)
+        fd = fd[:fd] if fd.is_a?(Hash)
+        unless fd.is_a?(Integer) && fd >= 0
+          raise ArgumentError, "fd must exist and be a non-negative Integer"
+        end
+        unless path.is_a?(String) && !path.empty?
+          raise ArgumentError, "path must be a non-empty String"
+        end
+
+        res = Clib.bpf_obj_pin(fd, path)
+        if res < 0
+          raise SystemCallError.new("Failed to pin BPF object to %s" % path, Fiddle.last_error)
+        end
+        path
+      end
     end
 
     def initialize(text: "", src_file: nil, hdr_file: nil, debug: 0, cflags: [], usdt_contexts: [], allow_rlimit: 0, dev_name: nil)
@@ -279,7 +296,6 @@ module RbBCC
 
     def gen_args_from_usdt
       ptr = Clib.bcc_usdt_genargs(@usdt_contexts.map(&:context).pack('J*'), @usdt_contexts.size)
-      code = ""
       if !ptr || ptr.null?
         return nil
       end

data/lib/rbbcc/clib.rb

@@ -25,7 +25,7 @@ module RbBCC
     end
 
     def self.system_libbcc_versions
-      paths = ['/usr/lib', '/usr/lib64', '/usr/local/lib', '/usr/lib/x86_64-linux-gnu'].freeze
+      paths = ['/lib', '/usr/lib', '/usr/lib64', '/usr/local/lib', '/usr/lib/x86_64-linux-gnu', '/usr/lib/aarch64-linux-gnu'].freeze
       candidates = paths.flat_map do |path|
         Dir.glob("#{path}/libbcc.so.[0-9]*")
       end
@@ -192,6 +192,7 @@ module RbBCC
 
     extern 'int bpf_open_raw_sock(const char *name)'
     extern 'int bpf_attach_socket(int sockfd, int progfd)'
+    extern 'int bpf_obj_pin(int fd, const char *pathname)'
   end
 end
 

data/lib/rbbcc/version.rb

@@ -1,3 +1,3 @@
 module RbBCC
-  VERSION = "0.9.1"
+  VERSION = "0.11.0.pre"
 end

data/rbbcc.gemspec

@@ -21,4 +21,6 @@ Gem::Specification.new do |spec|
   spec.bindir        = "exe"
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
+
+  spec.add_dependency "fiddle"
 end

metadata

@@ -1,14 +1,28 @@
 --- !ruby/object:Gem::Specification
 name: rbbcc
 version: !ruby/object:Gem::Version
-  version: 0.9.1
+  version: 0.11.0.pre
 platform: ruby
 authors:
 - Uchio Kondo
 bindir: exe
 cert_chain: []
 date: 1980-01-02 00:00:00.000000000 Z
-dependencies: []
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: fiddle
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: BCC port for MRI. See https://github.com/iovisor/bcc
 email:
 - udzura@udzura.jp
@@ -18,6 +32,7 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".dockerignore"
+- ".github/workflows/ci-image.yml"
 - ".github/workflows/ci.yml"
 - ".gitignore"
 - Dockerfile
@@ -26,6 +41,7 @@ files:
 - Gemfile
 - Gemfile.lock
 - LICENSE
+- Makefile
 - README.md
 - Rakefile
 - bin/console
@@ -36,6 +52,7 @@ files:
 - ci/Dockerfile.0.16.0-3.0.0
 - ci/Dockerfile.0.17.0-2.7.2
 - ci/Dockerfile.0.17.0-3.0.0
+- ci/Dockerfile.ci_base
 - docs/README.md
 - docs/answers/01-hello-world.rb
 - docs/answers/02-sys_sync.rb
@@ -67,6 +84,7 @@ files:
 - examples/collectsyscall.rb
 - examples/dddos.rb
 - examples/disksnoop.rb
+- examples/dns_blocker.rb
 - examples/example.gif
 - examples/extract_arg.rb
 - examples/hello_fields.rb
@@ -106,7 +124,6 @@ files:
 - lib/rbbcc/version.rb
 - misc/rbbcc-dfm-ruby
 - rbbcc.gemspec
-- semaphore.sh
 homepage: https://github.com/udzura/rbbcc
 licenses:
 - Apache-2.0
@@ -125,7 +142,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 4.0.6
+rubygems_version: 3.6.9
 specification_version: 4
 summary: BCC port for MRI
 test_files: []

data/semaphore.sh

@@ -1,73 +0,0 @@
-#!/bin/bash
-
-# packages
-
-sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 4052245BD4284CDD
-echo "deb https://repo.iovisor.org/apt/$(lsb_release -cs) $(lsb_release -cs) main" | sudo tee /etc/apt/sources.list.d/iovisor.list
-sudo apt -y update
-sudo apt -y install libbcc
-
-# build libbcc 0.11/0.12
-ORIG_DIR=$(pwd)
-sudo mkdir -p /opt/bcc
-
-cd /
-sudo chown $(whoami) /opt/bcc
-cache has_key libbcc-so && cache restore libbcc-so
-sudo chown -R root /opt/bcc
-cd -
-
-if test "$(ls /opt/bcc | wc -l)" -le "0"; then
-  sudo apt -y install bison build-essential cmake flex git libedit-dev \
-    libllvm6.0 llvm-6.0-dev libclang-6.0-dev python zlib1g-dev libelf-dev
-
-  sudo mkdir -p /opt/bcc-work
-  sudo chown $(whoami) /opt/bcc-work
-  cd /opt/bcc-work
-  git clone https://github.com/iovisor/bcc.git
-  mkdir bcc/build
-  cd bcc
-
-  git checkout v0.11.0
-  git submodule init
-  git submodule sync
-  git submodule update
-  cd build
-  cmake .. -DCMAKE_INSTALL_PREFIX=/opt/bcc
-  make -j$(nproc)
-  sudo make install
-  make clean
-  cd ..
-
-  V0_12_HASH=2d099cd8c5cb1598d6e911c0b389132ebc7c101b
-  git checkout $V0_12_HASH
-  git submodule init
-  git submodule sync
-  git submodule update
-  cd build
-  cmake .. -DCMAKE_INSTALL_PREFIX=/opt/bcc
-  make -j$(nproc)
-  sudo make install
-
-  cd /
-  cache has_key libbcc-so && cache clear libbcc-so
-  cache store libbcc-so opt/bcc
-  cd -
-fi
-cd $ORIG_DIR
-
-# link all tha objects under /lib from /opt/bcc
-sudo ln -sf /opt/bcc/lib/libbcc.so.0.11.0 /opt/bcc/lib/libbcc.so.0.12.0 /usr/lib/x86_64-linux-gnu/
-
-# Doing tests
-set -e
-
-bundle install --path vendor/bundle
-
-bundle exec ruby -e "require 'rbbcc'; puts 'Using rbbcc: %s && libbcc: %s' % [RbBCC::VERSION, RbBCC::Clib.libbcc_version.to_s]"
-if test "$(bundle exec ruby -e 'require %q(rbbcc); print RbBCC::Clib.libbcc_version.to_s')" != "${LIBBCC_VERSION}"; then
-  echo "Test target mismatch"
-  exit 127
-fi
-
-sudo -E env PATH=$PATH bundle exec rake test