Inicio Explorar Ayuda
Iniciar sesión
wkz
/
ply
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Pull Requests 1 Commits 33 Releases 0 Wiki

A dynamic tracer for Linux

Árbol: 4b28f9ab92
Ramas Etiquetas
ply
/
kprobe.c

kprobe.c 2.8KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. #include <assert.h>
    2. 

  2. #include <errno.h>
    3. 

  3. #include <stdlib.h>
    4. 

  4. #include <string.h>
    5. 

  5. 

  6. #include <linux/ptrace.h>
    7. 

  7. 

  8. #include "arch.h"
    9. 

  9. #include "func.h"
    10. 

  10. #include "ir.h"
    11. 

  11. #include "node.h"
    12. 

  12. #include "ply.h"
    13. 

  13. #include "sym.h"
    14. 

  14. #include "type.h"
    15. 

  15. 

  16. struct kprobe {
    17. 

  17. };
    18. 

  18. 

  19. /* regs */
    20. 

  20. 

  21. static struct type t_pt_regsp = {
    22. 

  22. 	.ttype = T_POINTER,
    23. 

  23. 

  24. 	.ptr.type = &t_pt_regs,
    25. 

  25. };
    26. 

  26. 

  27. static const struct func kprobe_regs_func = {
    28. 

  28. 	.name = "regs",
    29. 

  29. 

  30. 	.type = &t_pt_regsp,
    31. 

  31. 	.static_ret = 1,
    32. 

  32. };
    33. 

  33. 

  34. 

  35. /* argN */
    36. 

  36. 

  37. static inline int is_arg(const char *name)
    38. 

  38. {
    39. 

  39. 	return (strstr(name, "arg") == name)
    40. 

  40. 		&& (strlen(name) == 4)
    41. 

  41. 		&& (name[3] >= '0' && name[3] <= '9');
    42. 

  42. }
    43. 

  43. 

  44. static int kprobe_arg_rewrite(const struct func *func, struct node *n,
    45. 

  45. 			      struct prog *prog)
    46. 

  46. {
    47. 

  47. 	struct node *new;
    48. 

  48. 	const char *reg;
    49. 

  49. 	int arg;
    50. 

  50. 

  51. 	arg = n->ident.name[3] - '0';
    52. 

  52. 	reg = arch_register_argument(arg);
    53. 

  53. 	if (!reg) {
    54. 

  54. 		_e("%#N: the location of %N is unknown\n", n, n);
    55. 

  55. 

  56. 		/* TODO: add ABI mappings for specifying arguments
    57. 

  57. 		 * passed on the stack. */
    58. 

  58. 		return -EINVAL;
    59. 

  59. 	}
    60. 

  60. 

  61. 	/* argN => (*regs).REG */
    62. 

  62. 	new = node_expr(".",
    63. 

  63. 			node_expr(":deref", node_ident("regs"), NULL),
    64. 

  64. 			node_string((char *)reg),
    65. 

  65. 			NULL);
    66. 

  66. 

  67. 	node_replace(n, new);
    68. 

  68. 	return 0;
    69. 

  69. }
    70. 

  70. 

  71. static const struct func kprobe_arg_func = {
    72. 

  72. 	.name = "argN",
    73. 

  73. 

  74. 	/* for now, in the future we could read dwarf symbols to
    75. 

  75. 	 * figure out the real type. */
    76. 

  76. 	.type = &t_ulong,
    77. 

  77. 	.static_ret = 1,
    78. 

  78. 

  79. 	.rewrite = kprobe_arg_rewrite,
    80. 

  80. };
    81. 

  81. 

  82. 

  83. /*  */
    84. 

  84. 

  85. static int kprobe_ir_pre(struct prog *prog)
    86. 

  86. {
    87. 

  87. 	struct sym **sym;
    88. 

  88. 

  89. 	symtab_foreach(prog->locals, sym) {
    90. 

  90. 		if ((*sym)->name && !strcmp((*sym)->name, "regs")) {
    91. 

  91. 			irs_alloc_register(&(*sym)->irs, prog->ir);
    92. 

  92. 

  93. 			/* kernel sets r1 to the address of the
    94. 

  94. 			 * pt_regs struct, which ply denotes as
    95. 

  95. 			 * 'regs'. if we're using it we need to get a
    96. 

  96. 			 * reference to it before it is clobbered. */
    97. 

  97. 			ir_emit_insn(prog->ir, MOV(0, 0),
    98. 

  98. 				     (*sym)->irs.reg, BPF_REG_1);
    99. 

  99. 		}
    100. 

  100. 	}
    101. 

  101. 

  102. 	return 0;
    103. 

  103. }
    104. 

  104. 

  105. static int kprobe_sym_alloc(struct prog *prog, struct node *n)
    106. 

  106. {
    107. 

  107. 	const struct func *func = NULL;
    108. 

  108. 	int err;
    109. 

  109. 

  110. 	switch (n->ntype) {
    111. 

  111. 	case N_EXPR:
    112. 

  112. 		break;
    113. 

  113. 	case N_IDENT:
    114. 

  114. 		if (!strcmp(n->ident.name, "regs"))
    115. 

  115. 			func = &kprobe_regs_func;
    116. 

  116. 		else if (is_arg(n->ident.name))
    117. 

  117. 			func = &kprobe_arg_func;
    118. 

  118. 		break;
    119. 

  119. 	default:
    120. 

  120. 		break;
    121. 

  121. 	}
    122. 

  122. 

  123. 	if (!func)
    124. 

  124. 		return -ENOENT;
    125. 

  125. 

  126. 	err = func_static_validate(func, n);
    127. 

  127. 	if (err)
    128. 

  128. 		return err;
    129. 

  129. 

  130. 	n->sym = sym_alloc(prog->locals, n, func);
    131. 

  131. 

  132. 	if (func->static_ret)
    133. 

  133. 		n->sym->type = func_return_type(func);
    134. 

  134. 	return 0;
    135. 

  135. }
    136. 

  136. 

  137. static int kprobe_probe(struct prog *prog)
    138. 

  138. {
    139. 

  139. 	struct kprobe *kp;
    140. 

  140. 

  141. 	kp = calloc(1, sizeof(*kp));
    142. 

  142. 	assert(kp);
    143. 

  143. 

  144. 	prog->provider_data = kp;
    145. 

  145. 	return 0;
    146. 

  146. }
    147. 

  147. 

  148. struct provider kprobe = {
    149. 

  149. 	.name = "kprobe",
    150. 

  150. 

  151. 	.ir_pre = kprobe_ir_pre,
    152. 

  152. 	/* .rewrite_node = kprobe_rewrite_node, */
    153. 

  153. 	/* .resolve = kprobe_resolve, */
    154. 

  154. 	.sym_alloc = kprobe_sym_alloc,
    155. 

  155. 	.probe = kprobe_probe,
    156. 

  156. };
    157. 

  157. 

  158. __attribute__((constructor))
    159. 

  159. static void kprobe_init(void)
    160. 

  160. {
    161. 

  161. 	provider_register(&kprobe);
    162. 

  162. }
    163. 

  163.