pythops
diff --git a/‎Cargo.lock
Lines changed: 79 additions & 82 deletions b/‎Cargo.lock
Lines changed: 79 additions & 82 deletions
diff --git a/‎Release.md
Lines changed: 5 additions & 0 deletions b/‎Release.md
Lines changed: 5 additions & 0 deletions
diff --git a/‎oryx-common/src/lib.rs
Lines changed: 19 additions & 1 deletion b/‎oryx-common/src/lib.rs
Lines changed: 19 additions & 1 deletion
diff --git a/‎oryx-ebpf/Cargo.lock
Lines changed: 8 additions & 8 deletions b/‎oryx-ebpf/Cargo.lock
Lines changed: 8 additions & 8 deletions
diff --git a/‎oryx-ebpf/src/main.rs
Lines changed: 71 additions & 43 deletions b/‎oryx-ebpf/src/main.rs
Lines changed: 71 additions & 43 deletions
diff --git a/‎oryx-tui/src/app.rs
Lines changed: 19 additions & 17 deletions b/‎oryx-tui/src/app.rs
Lines changed: 19 additions & 17 deletions
@@ -1,3 +1,8 @@
+## v0.6 - TBA
+
+- Show ethernet header infos
+- Show PID for egress packets
+
 ## v0.5 - 2025-03-10
 
 ### Added
 
@@ -1,4 +1,5 @@
 #![no_std]
+#![feature(trivial_bounds)]
 
 use core::mem;
 
@@ -9,8 +10,25 @@ pub mod protocols;
 pub const MAX_FIREWALL_RULES: u32 = 32;
 pub const MAX_RULES_PORT: usize = 32;
 
+#[derive(Clone)]
 #[repr(C)]
+pub struct RawData {
+    pub frame: RawFrame,
+    pub pid: Option<u32>,
+}
+
+impl RawData {
+    pub const LEN: usize = mem::size_of::<RawData>();
+}
+
+impl From<[u8; RawData::LEN]> for RawData {
+    fn from(value: [u8; RawData::LEN]) -> Self {
+        unsafe { core::mem::transmute::<[u8; RawData::LEN], Self>(value) }
+    }
+}
+
 #[derive(Clone)]
+#[repr(C)]
 pub struct RawFrame {
     pub header: EthHdr,
     pub payload: RawPacket,
@@ -38,8 +56,8 @@ impl Clone for RawPacket {
     }
 }
 
-#[repr(C)]
 #[derive(Copy, Clone)]
+#[repr(C)]
 pub enum ProtoHdr {
     Tcp(TcpHdr),
     Udp(UdpHdr),
 
@@ -3,6 +3,7 @@
 
 use aya_ebpf::{
     bindings::{TC_ACT_PIPE, TC_ACT_SHOT},
+    helpers::bpf_get_current_pid_tgid,
     macros::{classifier, map},
     maps::{Array, HashMap, RingBuf},
     programs::TcContext,
@@ -18,7 +19,7 @@ use network_types::{
 };
 use oryx_common::{
     protocols::{LinkProtocol, NetworkProtocol, Protocol, TransportProtocol},
-    ProtoHdr, RawFrame, RawPacket, MAX_FIREWALL_RULES, MAX_RULES_PORT,
+    ProtoHdr, RawData, RawFrame, RawPacket, MAX_FIREWALL_RULES, MAX_RULES_PORT,
 };
 
 #[map]
@@ -56,9 +57,9 @@ pub fn oryx(ctx: TcContext) -> i32 {
 }
 
 #[inline]
-fn submit(frame: RawFrame) {
-    if let Some(mut buf) = DATA.reserve::<RawFrame>(0) {
-        unsafe { (*buf.as_mut_ptr()) = frame };
+fn submit(data: RawData) {
+    if let Some(mut buf) = DATA.reserve::<RawData>(0) {
+        unsafe { (*buf.as_mut_ptr()) = data };
         buf.submit(0);
     }
 }
@@ -153,6 +154,12 @@ fn filter_packet(protocol: Protocol) -> bool {
 fn process(ctx: TcContext) -> Result<i32, ()> {
     let ethhdr: EthHdr = ctx.load(0).map_err(|_| ())?;
 
+    let pid = if is_ingress() {
+        None
+    } else {
+        Some((bpf_get_current_pid_tgid() >> 32) as u32)
+    };
+
     match ethhdr.ether_type {
         EtherType::Ipv4 => {
             let header: Ipv4Hdr = ctx.load(EthHdr::LEN).map_err(|_| ())?;
@@ -183,12 +190,15 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                         return Ok(TC_ACT_PIPE);
                     }
 
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V4(header),
-                            ProtoHdr::Tcp(unsafe { *tcphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V4(header),
+                                ProtoHdr::Tcp(unsafe { *tcphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Udp => {
@@ -210,25 +220,31 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                         return Ok(TC_ACT_PIPE);
                     }
 
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V4(header),
-                            ProtoHdr::Udp(unsafe { *udphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V4(header),
+                                ProtoHdr::Udp(unsafe { *udphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Icmp => {
                     if filter_packet(Protocol::Network(NetworkProtocol::Icmp)) {
                         return Ok(TC_ACT_PIPE);
                     }
                     let icmphdr: *const IcmpHdr = ptr_at(&ctx, EthHdr::LEN + Ipv4Hdr::LEN)?;
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V4(header),
-                            ProtoHdr::Icmp(unsafe { *icmphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V4(header),
+                                ProtoHdr::Icmp(unsafe { *icmphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 _ => {}
@@ -261,12 +277,15 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                     {
                         return Ok(TC_ACT_PIPE);
                     }
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V6(header),
-                            ProtoHdr::Tcp(unsafe { *tcphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V6(header),
+                                ProtoHdr::Tcp(unsafe { *tcphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Udp => {
@@ -287,25 +306,31 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                     {
                         return Ok(TC_ACT_PIPE);
                     }
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V6(header),
-                            ProtoHdr::Udp(unsafe { *udphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V6(header),
+                                ProtoHdr::Udp(unsafe { *udphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Icmp => {
                     if filter_packet(Protocol::Network(NetworkProtocol::Icmp)) {
                         return Ok(TC_ACT_PIPE);
                     }
                     let icmphdr: *const IcmpHdr = ptr_at(&ctx, EthHdr::LEN + Ipv6Hdr::LEN)?;
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V6(header),
-                            ProtoHdr::Icmp(unsafe { *icmphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V6(header),
+                                ProtoHdr::Icmp(unsafe { *icmphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 _ => {}
@@ -316,9 +341,12 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                 return Ok(TC_ACT_PIPE);
             }
             let header: ArpHdr = ctx.load(EthHdr::LEN).map_err(|_| ())?;
-            submit(RawFrame {
-                header: ethhdr,
-                payload: RawPacket::Arp(header),
+            submit(RawData {
+                frame: RawFrame {
+                    header: ethhdr,
+                    payload: RawPacket::Arp(header),
+                },
+                pid,
             });
         }
         _ => {}
 
@@ -2,7 +2,7 @@ use clap::ArgMatches;
 use itertools::Itertools;
 use oryx_common::{
     protocols::{LinkProtocol, NetworkProtocol, TransportProtocol},
-    RawFrame,
+    RawData, RawFrame,
 };
 use ratatui::{
     layout::{Constraint, Direction, Layout},
@@ -49,39 +49,41 @@ pub struct App {
     pub help: Help,
     pub filter: Filter,
     pub start_sniffing: bool,
-    pub frames: Arc<RwLock<Vec<AppPacket>>>,
+    pub app_packets: Arc<RwLock<Vec<AppPacket>>>,
     pub notifications: Vec<Notification>,
     pub section: Section,
-    pub data_channel_sender: kanal::Sender<([u8; RawFrame::LEN], TrafficDirection)>,
+    pub data_channel_sender: kanal::Sender<([u8; RawData::LEN], TrafficDirection)>,
     pub is_editing: bool,
     pub active_popup: Option<ActivePopup>,
     pub start_from_cli: bool,
 }
 
 impl App {
     pub fn new(cli_args: &ArgMatches) -> Self {
-        let frames = Arc::new(RwLock::new(Vec::with_capacity(RawFrame::LEN * 1024 * 1024)));
+        let app_packets = Arc::new(RwLock::new(Vec::with_capacity(
+            AppPacket::LEN * 1024 * 1024,
+        )));
 
         let (sender, receiver) = kanal::unbounded();
 
         let firewall_channels = IoChannels::new();
 
         thread::spawn({
-            let frames = frames.clone();
+            let app_packets = app_packets.clone();
             move || loop {
-                if let Ok((raw_frame, direction)) = receiver.recv() {
-                    let eth_frame = EthFrame::from(raw_frame);
-                    let network_packet = eth_frame.payload;
-                    let mut frames = frames.write().unwrap();
-                    if frames.len() == frames.capacity() {
-                        frames.reserve(1024 * 1024);
-                    }
+                if let Ok((raw_data, direction)) = receiver.recv() {
+                    let data = RawData::from(raw_data);
+                    let frame = EthFrame::from(data.frame);
+                    let pid = data.pid;
+
+                    let mut app_packets = app_packets.write().unwrap();
+
                     let app_packet = AppPacket {
-                        eth_header: eth_frame.header,
-                        packet: network_packet,
+                        frame,
                         direction,
+                        pid,
                     };
-                    frames.push(app_packet);
+                    app_packets.push(app_packet);
                 }
             }
         });
@@ -186,9 +188,9 @@ impl App {
                 direction,
             ),
             start_sniffing: false,
-            frames: frames.clone(),
+            app_packets: app_packets.clone(),
             notifications: Vec::new(),
-            section: Section::new(frames.clone(), firewall_channels.clone()),
+            section: Section::new(app_packets.clone(), firewall_channels.clone()),
             data_channel_sender: sender,
             is_editing: false,
             active_popup: None,