pythops
diff --git a/‎oryx-common/src/lib.rs‎
Lines changed: 19 additions & 1 deletion b/‎oryx-common/src/lib.rs‎
Lines changed: 19 additions & 1 deletion
diff --git a/‎oryx-ebpf/src/main.rs‎
Lines changed: 71 additions & 43 deletions b/‎oryx-ebpf/src/main.rs‎
Lines changed: 71 additions & 43 deletions
diff --git a/‎oryx-tui/src/app.rs‎
Lines changed: 19 additions & 17 deletions b/‎oryx-tui/src/app.rs‎
Lines changed: 19 additions & 17 deletions
diff --git a/‎oryx-tui/src/ebpf/egress.rs‎
Lines changed: 4 additions & 4 deletions b/‎oryx-tui/src/ebpf/egress.rs‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎oryx-tui/src/ebpf/ingress.rs‎
Lines changed: 4 additions & 4 deletions b/‎oryx-tui/src/ebpf/ingress.rs‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎oryx-tui/src/export.rs‎
Lines changed: 1 addition & 1 deletion b/‎oryx-tui/src/export.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎oryx-tui/src/filter.rs‎
Lines changed: 2 additions & 2 deletions b/‎oryx-tui/src/filter.rs‎
Lines changed: 2 additions & 2 deletions
@@ -1,4 +1,5 @@
 #![no_std]
+#![feature(trivial_bounds)]
 
 use core::mem;
 
@@ -9,8 +10,25 @@ pub mod protocols;
 pub const MAX_FIREWALL_RULES: u32 = 32;
 pub const MAX_RULES_PORT: usize = 32;
 
+#[derive(Clone)]
 #[repr(C)]
+pub struct RawData {
+    pub frame: RawFrame,
+    pub pid: Option<u32>,
+}
+
+impl RawData {
+    pub const LEN: usize = mem::size_of::<RawData>();
+}
+
+impl From<[u8; RawData::LEN]> for RawData {
+    fn from(value: [u8; RawData::LEN]) -> Self {
+        unsafe { core::mem::transmute::<[u8; RawData::LEN], Self>(value) }
+    }
+}
+
 #[derive(Clone)]
+#[repr(C)]
 pub struct RawFrame {
     pub header: EthHdr,
     pub payload: RawPacket,
@@ -38,8 +56,8 @@ impl Clone for RawPacket {
     }
 }
 
-#[repr(C)]
 #[derive(Copy, Clone)]
+#[repr(C)]
 pub enum ProtoHdr {
     Tcp(TcpHdr),
     Udp(UdpHdr),
 
@@ -3,6 +3,7 @@
 
 use aya_ebpf::{
     bindings::{TC_ACT_PIPE, TC_ACT_SHOT},
+    helpers::bpf_get_current_pid_tgid,
     macros::{classifier, map},
     maps::{Array, HashMap, RingBuf},
     programs::TcContext,
@@ -18,7 +19,7 @@ use network_types::{
 };
 use oryx_common::{
     protocols::{LinkProtocol, NetworkProtocol, Protocol, TransportProtocol},
-    ProtoHdr, RawFrame, RawPacket, MAX_FIREWALL_RULES, MAX_RULES_PORT,
+    ProtoHdr, RawData, RawFrame, RawPacket, MAX_FIREWALL_RULES, MAX_RULES_PORT,
 };
 
 #[map]
@@ -56,9 +57,9 @@ pub fn oryx(ctx: TcContext) -> i32 {
 }
 
 #[inline]
-fn submit(frame: RawFrame) {
-    if let Some(mut buf) = DATA.reserve::<RawFrame>(0) {
-        unsafe { (*buf.as_mut_ptr()) = frame };
+fn submit(data: RawData) {
+    if let Some(mut buf) = DATA.reserve::<RawData>(0) {
+        unsafe { (*buf.as_mut_ptr()) = data };
         buf.submit(0);
     }
 }
@@ -153,6 +154,12 @@ fn filter_packet(protocol: Protocol) -> bool {
 fn process(ctx: TcContext) -> Result<i32, ()> {
     let ethhdr: EthHdr = ctx.load(0).map_err(|_| ())?;
 
+    let pid = if is_ingress() {
+        None
+    } else {
+        Some((bpf_get_current_pid_tgid() >> 32) as u32)
+    };
+
     match ethhdr.ether_type {
         EtherType::Ipv4 => {
             let header: Ipv4Hdr = ctx.load(EthHdr::LEN).map_err(|_| ())?;
@@ -183,12 +190,15 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                         return Ok(TC_ACT_PIPE);
                     }
 
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V4(header),
-                            ProtoHdr::Tcp(unsafe { *tcphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V4(header),
+                                ProtoHdr::Tcp(unsafe { *tcphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Udp => {
@@ -210,25 +220,31 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                         return Ok(TC_ACT_PIPE);
                     }
 
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V4(header),
-                            ProtoHdr::Udp(unsafe { *udphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V4(header),
+                                ProtoHdr::Udp(unsafe { *udphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Icmp => {
                     if filter_packet(Protocol::Network(NetworkProtocol::Icmp)) {
                         return Ok(TC_ACT_PIPE);
                     }
                     let icmphdr: *const IcmpHdr = ptr_at(&ctx, EthHdr::LEN + Ipv4Hdr::LEN)?;
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V4(header),
-                            ProtoHdr::Icmp(unsafe { *icmphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V4(header),
+                                ProtoHdr::Icmp(unsafe { *icmphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 _ => {}
@@ -261,12 +277,15 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                     {
                         return Ok(TC_ACT_PIPE);
                     }
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V6(header),
-                            ProtoHdr::Tcp(unsafe { *tcphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V6(header),
+                                ProtoHdr::Tcp(unsafe { *tcphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Udp => {
@@ -287,25 +306,31 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                     {
                         return Ok(TC_ACT_PIPE);
                     }
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V6(header),
-                            ProtoHdr::Udp(unsafe { *udphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V6(header),
+                                ProtoHdr::Udp(unsafe { *udphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 IpProto::Icmp => {
                     if filter_packet(Protocol::Network(NetworkProtocol::Icmp)) {
                         return Ok(TC_ACT_PIPE);
                     }
                     let icmphdr: *const IcmpHdr = ptr_at(&ctx, EthHdr::LEN + Ipv6Hdr::LEN)?;
-                    submit(RawFrame {
-                        header: ethhdr,
-                        payload: RawPacket::Ip(
-                            IpHdr::V6(header),
-                            ProtoHdr::Icmp(unsafe { *icmphdr }),
-                        ),
+                    submit(RawData {
+                        frame: RawFrame {
+                            header: ethhdr,
+                            payload: RawPacket::Ip(
+                                IpHdr::V6(header),
+                                ProtoHdr::Icmp(unsafe { *icmphdr }),
+                            ),
+                        },
+                        pid,
                     });
                 }
                 _ => {}
@@ -316,9 +341,12 @@ fn process(ctx: TcContext) -> Result<i32, ()> {
                 return Ok(TC_ACT_PIPE);
             }
             let header: ArpHdr = ctx.load(EthHdr::LEN).map_err(|_| ())?;
-            submit(RawFrame {
-                header: ethhdr,
-                payload: RawPacket::Arp(header),
+            submit(RawData {
+                frame: RawFrame {
+                    header: ethhdr,
+                    payload: RawPacket::Arp(header),
+                },
+                pid,
             });
         }
         _ => {}
 
@@ -2,7 +2,7 @@ use clap::ArgMatches;
 use itertools::Itertools;
 use oryx_common::{
     protocols::{LinkProtocol, NetworkProtocol, TransportProtocol},
-    RawFrame,
+    RawData, RawFrame,
 };
 use ratatui::{
     layout::{Constraint, Direction, Layout},
@@ -49,39 +49,41 @@ pub struct App {
     pub help: Help,
     pub filter: Filter,
     pub start_sniffing: bool,
-    pub frames: Arc<RwLock<Vec<AppPacket>>>,
+    pub app_packets: Arc<RwLock<Vec<AppPacket>>>,
     pub notifications: Vec<Notification>,
     pub section: Section,
-    pub data_channel_sender: kanal::Sender<([u8; RawFrame::LEN], TrafficDirection)>,
+    pub data_channel_sender: kanal::Sender<([u8; RawData::LEN], TrafficDirection)>,
     pub is_editing: bool,
     pub active_popup: Option<ActivePopup>,
     pub start_from_cli: bool,
 }
 
 impl App {
     pub fn new(cli_args: &ArgMatches) -> Self {
-        let frames = Arc::new(RwLock::new(Vec::with_capacity(RawFrame::LEN * 1024 * 1024)));
+        let app_packets = Arc::new(RwLock::new(Vec::with_capacity(
+            AppPacket::LEN * 1024 * 1024,
+        )));
 
         let (sender, receiver) = kanal::unbounded();
 
         let firewall_channels = IoChannels::new();
 
         thread::spawn({
-            let frames = frames.clone();
+            let app_packets = app_packets.clone();
             move || loop {
-                if let Ok((raw_frame, direction)) = receiver.recv() {
-                    let eth_frame = EthFrame::from(raw_frame);
-                    let network_packet = eth_frame.payload;
-                    let mut frames = frames.write().unwrap();
-                    if frames.len() == frames.capacity() {
-                        frames.reserve(1024 * 1024);
-                    }
+                if let Ok((raw_data, direction)) = receiver.recv() {
+                    let data = RawData::from(raw_data);
+                    let frame = EthFrame::from(data.frame);
+                    let pid = data.pid;
+
+                    let mut app_packets = app_packets.write().unwrap();
+
                     let app_packet = AppPacket {
-                        eth_header: eth_frame.header,
-                        packet: network_packet,
+                        frame,
                         direction,
+                        pid,
                     };
-                    frames.push(app_packet);
+                    app_packets.push(app_packet);
                 }
             }
         });
@@ -186,9 +188,9 @@ impl App {
                 direction,
             ),
             start_sniffing: false,
-            frames: frames.clone(),
+            app_packets: app_packets.clone(),
             notifications: Vec::new(),
-            section: Section::new(frames.clone(), firewall_channels.clone()),
+            section: Section::new(app_packets.clone(), firewall_channels.clone()),
             data_channel_sender: sender,
             is_editing: false,
             active_popup: None,
 
@@ -13,7 +13,7 @@ use aya::{
     EbpfLoader,
 };
 use log::error;
-use oryx_common::{protocols::Protocol, RawFrame, MAX_RULES_PORT};
+use oryx_common::{protocols::Protocol, RawData, MAX_RULES_PORT};
 
 use crate::{
     event::Event,
@@ -32,7 +32,7 @@ use super::{
 pub fn load_egress(
     iface: String,
     notification_sender: kanal::Sender<Event>,
-    data_sender: kanal::Sender<([u8; RawFrame::LEN], TrafficDirection)>,
+    data_sender: kanal::Sender<([u8; RawData::LEN], TrafficDirection)>,
     filter_channel_receiver: kanal::Receiver<FilterChannelSignal>,
     firewall_egress_receiver: kanal::Receiver<FirewallSignal>,
     terminate: Arc<AtomicBool>,
@@ -219,8 +219,8 @@ pub fn load_egress(
                             if terminate.load(std::sync::atomic::Ordering::Relaxed) {
                                 break;
                             }
-                            let frame: [u8; RawFrame::LEN] = item.to_owned().try_into().unwrap();
-                            data_sender.send((frame, TrafficDirection::Egress)).ok();
+                            let data: [u8; RawData::LEN] = item.to_owned().try_into().unwrap();
+                            data_sender.send((data, TrafficDirection::Egress)).ok();
                         }
                     }
                 }
 
@@ -13,7 +13,7 @@ use aya::{
     EbpfLoader,
 };
 use log::error;
-use oryx_common::{protocols::Protocol, RawFrame, MAX_RULES_PORT};
+use oryx_common::{protocols::Protocol, RawData, MAX_RULES_PORT};
 
 use crate::{
     event::Event,
@@ -32,7 +32,7 @@ use super::{
 pub fn load_ingress(
     iface: String,
     notification_sender: kanal::Sender<Event>,
-    data_sender: kanal::Sender<([u8; RawFrame::LEN], TrafficDirection)>,
+    data_sender: kanal::Sender<([u8; RawData::LEN], TrafficDirection)>,
     filter_channel_receiver: kanal::Receiver<FilterChannelSignal>,
     firewall_ingress_receiver: kanal::Receiver<FirewallSignal>,
     terminate: Arc<AtomicBool>,
@@ -223,8 +223,8 @@ pub fn load_ingress(
                             if terminate.load(std::sync::atomic::Ordering::Relaxed) {
                                 break;
                             }
-                            let frame: [u8; RawFrame::LEN] = item.to_owned().try_into().unwrap();
-                            data_sender.send((frame, TrafficDirection::Ingress)).ok();
+                            let data: [u8; RawData::LEN] = item.to_owned().try_into().unwrap();
+                            data_sender.send((data, TrafficDirection::Ingress)).ok();
                         }
                     }
                 }
 
@@ -39,7 +39,7 @@ pub fn export(packets: &[AppPacket]) -> AppResult<()> {
         headers.0, headers.1, headers.2, headers.3, headers.4
     )?;
     for packet in packets {
-        match packet.packet {
+        match packet.frame.payload {
             NetworkPacket::Arp(p) => {
                 writeln!(
                     file,
 
@@ -13,7 +13,7 @@ use oryx_common::{
         LinkProtocol, NetworkProtocol, Protocol, TransportProtocol, NB_LINK_PROTOCOL,
         NB_NETWORK_PROTOCOL, NB_TRANSPORT_PROTOCOL,
     },
-    RawFrame,
+    RawData,
 };
 use ratatui::{
     layout::{Alignment, Constraint, Direction, Flex, Layout, Margin, Rect},
@@ -159,7 +159,7 @@ impl Filter {
     pub fn start(
         &mut self,
         notification_sender: kanal::Sender<Event>,
-        data_sender: kanal::Sender<([u8; RawFrame::LEN], TrafficDirection)>,
+        data_sender: kanal::Sender<([u8; RawData::LEN], TrafficDirection)>,
     ) -> AppResult<()> {
         let iface = self.interface.selected_interface.name.clone();