Home Explore Help
Sign In
Rydia
/
linux-phytium
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
linux-phytium
/
tools
/
testing
/
selftests
/
bpf
/
test_get_stack_rawtp.c

test_get_stack_rawtp.c 3.1 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. // SPDX-License-Identifier: GPL-2.0
    2. 

  2. 

  3. #include <linux/bpf.h>
    4. 

  4. #include "bpf_helpers.h"
    5. 

  5. 

  6. /* Permit pretty deep stack traces */
    7. 

  7. #define MAX_STACK_RAWTP 100
    8. 

  8. struct stack_trace_t {
    9. 

  9. 	int pid;
    10. 

  10. 	int kern_stack_size;
    11. 

  11. 	int user_stack_size;
    12. 

  12. 	int user_stack_buildid_size;
    13. 

  13. 	__u64 kern_stack[MAX_STACK_RAWTP];
    14. 

  14. 	__u64 user_stack[MAX_STACK_RAWTP];
    15. 

  15. 	struct bpf_stack_build_id user_stack_buildid[MAX_STACK_RAWTP];
    16. 

  16. };
    17. 

  17. 

  18. struct bpf_map_def SEC("maps") perfmap = {
    19. 

  19. 	.type = BPF_MAP_TYPE_PERF_EVENT_ARRAY,
    20. 

  20. 	.key_size = sizeof(int),
    21. 

  21. 	.value_size = sizeof(__u32),
    22. 

  22. 	.max_entries = 2,
    23. 

  23. };
    24. 

  24. 

  25. struct bpf_map_def SEC("maps") stackdata_map = {
    26. 

  26. 	.type = BPF_MAP_TYPE_PERCPU_ARRAY,
    27. 

  27. 	.key_size = sizeof(__u32),
    28. 

  28. 	.value_size = sizeof(struct stack_trace_t),
    29. 

  29. 	.max_entries = 1,
    30. 

  30. };
    31. 

  31. 

  32. /* Allocate per-cpu space twice the needed. For the code below
    33. 

  33.  *   usize = bpf_get_stack(ctx, raw_data, max_len, BPF_F_USER_STACK);
    34. 

  34.  *   if (usize < 0)
    35. 

  35.  *     return 0;
    36. 

  36.  *   ksize = bpf_get_stack(ctx, raw_data + usize, max_len - usize, 0);
    37. 

  37.  *
    38. 

  38.  * If we have value_size = MAX_STACK_RAWTP * sizeof(__u64),
    39. 

  39.  * verifier will complain that access "raw_data + usize"
    40. 

  40.  * with size "max_len - usize" may be out of bound.
    41. 

  41.  * The maximum "raw_data + usize" is "raw_data + max_len"
    42. 

  42.  * and the maximum "max_len - usize" is "max_len", verifier
    43. 

  43.  * concludes that the maximum buffer access range is
    44. 

  44.  * "raw_data[0...max_len * 2 - 1]" and hence reject the program.
    45. 

  45.  *
    46. 

  46.  * Doubling the to-be-used max buffer size can fix this verifier
    47. 

  47.  * issue and avoid complicated C programming massaging.
    48. 

  48.  * This is an acceptable workaround since there is one entry here.
    49. 

  49.  */
    50. 

  50. struct bpf_map_def SEC("maps") rawdata_map = {
    51. 

  51. 	.type = BPF_MAP_TYPE_PERCPU_ARRAY,
    52. 

  52. 	.key_size = sizeof(__u32),
    53. 

  53. 	.value_size = MAX_STACK_RAWTP * sizeof(__u64) * 2,
    54. 

  54. 	.max_entries = 1,
    55. 

  55. };
    56. 

  56. 

  57. SEC("tracepoint/raw_syscalls/sys_enter")
    58. 

  58. int bpf_prog1(void *ctx)
    59. 

  59. {
    60. 

  60. 	int max_len, max_buildid_len, usize, ksize, total_size;
    61. 

  61. 	struct stack_trace_t *data;
    62. 

  62. 	void *raw_data;
    63. 

  63. 	__u32 key = 0;
    64. 

  64. 

  65. 	data = bpf_map_lookup_elem(&stackdata_map, &key);
    66. 

  66. 	if (!data)
    67. 

  67. 		return 0;
    68. 

  68. 

  69. 	max_len = MAX_STACK_RAWTP * sizeof(__u64);
    70. 

  70. 	max_buildid_len = MAX_STACK_RAWTP * sizeof(struct bpf_stack_build_id);
    71. 

  71. 	data->pid = bpf_get_current_pid_tgid();
    72. 

  72. 	data->kern_stack_size = bpf_get_stack(ctx, data->kern_stack,
    73. 

  73. 					      max_len, 0);
    74. 

  74. 	data->user_stack_size = bpf_get_stack(ctx, data->user_stack, max_len,
    75. 

  75. 					    BPF_F_USER_STACK);
    76. 

  76. 	data->user_stack_buildid_size = bpf_get_stack(
    77. 

  77. 		ctx, data->user_stack_buildid, max_buildid_len,
    78. 

  78. 		BPF_F_USER_STACK | BPF_F_USER_BUILD_ID);
    79. 

  79. 	bpf_perf_event_output(ctx, &perfmap, 0, data, sizeof(*data));
    80. 

  80. 

  81. 	/* write both kernel and user stacks to the same buffer */
    82. 

  82. 	raw_data = bpf_map_lookup_elem(&rawdata_map, &key);
    83. 

  83. 	if (!raw_data)
    84. 

  84. 		return 0;
    85. 

  85. 

  86. 	usize = bpf_get_stack(ctx, raw_data, max_len, BPF_F_USER_STACK);
    87. 

  87. 	if (usize < 0)
    88. 

  88. 		return 0;
    89. 

  89. 

  90. 	ksize = bpf_get_stack(ctx, raw_data + usize, max_len - usize, 0);
    91. 

  91. 	if (ksize < 0)
    92. 

  92. 		return 0;
    93. 

  93. 

  94. 	total_size = usize + ksize;
    95. 

  95. 	if (total_size > 0 && total_size <= max_len)
    96. 

  96. 		bpf_perf_event_output(ctx, &perfmap, 0, raw_data, total_size);
    97. 

  97. 

  98. 	return 0;
    99. 

  99. }
    100. 

  100. 

  101. char _license[] SEC("license") = "GPL";
    102. 

  102. __u32 _version SEC("version") = 1; /* ignored by tracepoints, required by libbpf.a */
    103. 

  103.