Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: limit i/o related events #153

Merged
merged 6 commits into from
Dec 13, 2024
Merged

feat: limit i/o related events #153

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
6c34388
rework(common): Path structure
qjerome Dec 10, 2024
f33e0cc
feat: implement i/o event limit
qjerome Dec 10, 2024
51bad68
change(common): move path::MapKey out of bpf module
qjerome Dec 11, 2024
a826a8c
change: make io limit per CPU + split task/global limits in ebpf
qjerome Dec 13, 2024
3179447
doc(common): change wrong comment
qjerome Dec 13, 2024
d7e9abf
refactor(main): less verbose event loss error
qjerome Dec 13, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 12 additions & 1 deletion kunai-common/src/co_re/c/shim.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -115,13 +115,24 @@ _SHIM_GETTER_BPF_CORE_READ(gid_t, shim_cred_gid(struct cred *pcred), pcred, gid.

struct qstr
{
__u64 hash_len;
union
{
__u64 hash_len;
struct
{
u32 hash;
u32 len;
};
};

const unsigned char *name;
}
__attribute__((preserve_access_index));

SHIM(qstr, name);
SHIM(qstr, hash_len);
SHIM(qstr, hash);
SHIM(qstr, len);

struct vfsmount
{
Expand Down
13 changes: 2 additions & 11 deletions kunai-common/src/co_re/core_fs.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -93,17 +93,8 @@ pub type qstr = CoRe<gen::qstr>;
impl qstr {
rust_shim_kernel_impl!(pub, qstr, name, *const u8);
rust_shim_kernel_impl!(pub, qstr, hash_len, u64);

#[inline(always)]
pub unsafe fn hash(&self) -> Option<u32> {
Some(self.hash_len()? as u32)
}

#[inline(always)]
pub unsafe fn len(&self) -> Option<u32> {
//(shim_qstr_hash_len(self.as_ptr_mut()) >> 32) as u32
Some((self.hash_len()? >> 32) as u32)
}
rust_shim_kernel_impl!(pub, qstr, hash, u32);
rust_shim_kernel_impl!(pub, qstr, len, u32);
}

#[allow(non_camel_case_types)]
Expand Down
37 changes: 34 additions & 3 deletions kunai-common/src/co_re/gen.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
pub type __u64 = ::core::ffi::c_ulonglong;
pub type u64_ = __u64;
pub type __u32 = ::core::ffi::c_uint;
pub type u32_ = __u32;
pub type __u16 = ::core::ffi::c_ushort;
pub type u16_ = __u16;
pub type __u8 = ::core::ffi::c_uchar;
Expand Down Expand Up @@ -42,11 +43,23 @@ extern "C" {
pub fn shim_cred_gid(pcred: *mut cred) -> gid_t;
}
#[repr(C)]
#[derive(Debug, Copy, Clone)]
#[derive(Copy, Clone)]
pub struct qstr {
pub hash_len: __u64,
pub __bindgen_anon_1: qstr__bindgen_ty_1,
pub name: *const ::core::ffi::c_uchar,
}
#[repr(C)]
#[derive(Copy, Clone)]
pub union qstr__bindgen_ty_1 {
pub hash_len: __u64,
pub __bindgen_anon_1: qstr__bindgen_ty_1__bindgen_ty_1,
}
#[repr(C)]
#[derive(Debug, Copy, Clone)]
pub struct qstr__bindgen_ty_1__bindgen_ty_1 {
pub hash: u32_,
pub len: u32_,
}
extern "C" {
pub fn shim_qstr_name(qstr: *mut qstr) -> *const ::core::ffi::c_uchar;
}
Expand All @@ -65,6 +78,24 @@ extern "C" {
extern "C" {
pub fn shim_qstr_hash_len_exists(qstr: *mut qstr) -> bool;
}
extern "C" {
pub fn shim_qstr_hash(qstr: *mut qstr) -> ::core::ffi::c_uint;
}
extern "C" {
pub fn shim_qstr_hash_user(qstr: *mut qstr) -> ::core::ffi::c_uint;
}
extern "C" {
pub fn shim_qstr_hash_exists(qstr: *mut qstr) -> bool;
}
extern "C" {
pub fn shim_qstr_len(qstr: *mut qstr) -> ::core::ffi::c_uint;
}
extern "C" {
pub fn shim_qstr_len_user(qstr: *mut qstr) -> ::core::ffi::c_uint;
}
extern "C" {
pub fn shim_qstr_len_exists(qstr: *mut qstr) -> bool;
}
#[repr(C)]
#[derive(Debug, Copy, Clone)]
pub struct vfsmount {
Expand Down Expand Up @@ -141,7 +172,7 @@ extern "C" {
pub fn shim_super_block_s_root_exists(super_block: *mut super_block) -> bool;
}
#[repr(C)]
#[derive(Debug, Copy, Clone)]
#[derive(Copy, Clone)]
pub struct dentry {
pub d_flags: ::core::ffi::c_uint,
pub d_parent: *mut dentry,
Expand Down
2 changes: 2 additions & 0 deletions kunai-common/src/config.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -67,5 +67,7 @@ impl Filter {
pub struct BpfConfig {
pub loader: Loader,
pub filter: Filter,
pub glob_max_eps_io: Option<u64>,
pub task_max_eps_io: Option<u64>,
pub send_data_min_len: u64,
}
69 changes: 48 additions & 21 deletions kunai-common/src/path.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,8 +33,6 @@ pub const MAX_NAME: usize = u8::MAX as usize;
#[repr(C)]
#[derive(BpfError, Debug, Clone, Copy, PartialEq, Eq)]
pub enum Error {
#[error("should not happen")]
ShouldNotHappen,
#[error("filename is too long")]
FileNameTooLong,
#[error("filepath is too long")]
Expand Down Expand Up @@ -81,6 +79,8 @@ pub enum Error {
DNameNameMissing,
#[error("d_name.len field missing")]
DNameLenMissing,
#[error("d_name.hash_len field missing")]
DNameHashLenMissing,
#[error("failed to get path ino")]
PathInoFailure,
#[error("failed to get path sb ino")]
Expand Down Expand Up @@ -125,6 +125,34 @@ pub struct Metadata {
pub ctime: Time,
}

#[allow(dead_code)]
#[repr(C)]
#[derive(Default, Debug, Clone, Copy, Hash, PartialEq, Eq)]
pub struct MapKey {
hash: u64,
// depth is a u32 to force structure alignment
// without this kernel 5.4 fails at using this
// struct
depth: u32,
len: u32,
ino: u64,
sb_ino: u64,
}

impl From<&Path> for MapKey {
#[inline(always)]
fn from(p: &Path) -> Self {
let meta = p.metadata.unwrap_or_default();
MapKey {
hash: p.hash,
depth: p.depth as u32,
len: p.len,
ino: meta.ino,
sb_ino: meta.sb_ino,
}
}
}

#[repr(C)]
#[derive(Debug, Clone, Copy, Eq)]
pub struct Path {
Expand All @@ -133,38 +161,31 @@ pub struct Path {
len: u32,
depth: u16,
real: bool, // flag if path is a realpath
pub hash: u64,
pub metadata: Option<Metadata>,
pub mode: Mode,
pub error: Option<Error>,
}

impl PartialEq for Path {
fn eq(&self, other: &Self) -> bool {
let meta_eq = {
if self.metadata.is_none() && other.metadata.is_none() {
return true;
}

if let Some(sm) = self.metadata {
if let Some(om) = other.metadata {
// we don't consider atime (access time)
// as being relevant for path Eq checking
return sm.ino == om.ino
&& sm.sb_ino == om.sb_ino
&& sm.size == om.size
&& sm.mtime == om.mtime
&& sm.ctime == om.ctime;
}
let meta_eq = match (self.metadata, other.metadata) {
(Some(sm), Some(om)) => {
sm.ino == om.ino
&& sm.sb_ino == om.sb_ino
&& sm.size == om.size
&& sm.mtime == om.mtime
&& sm.ctime == om.ctime
}

false
(None, None) => true,
_ => false,
};

self.buffer == other.buffer
meta_eq
&& self.len == other.len
&& self.depth == other.depth
&& self.real == other.real
&& meta_eq
&& self.buffer == other.buffer
}
}

Expand All @@ -175,6 +196,7 @@ impl Default for Path {
null: 0,
len: 0,
depth: 0,
hash: 0,
real: false,
metadata: None,
mode: Mode::Append,
Expand All @@ -185,6 +207,11 @@ impl Default for Path {

// common implementation
impl Path {
#[inline(always)]
pub fn map_key(&self) -> MapKey {
MapKey::from(self)
}

pub fn copy_from_str<T: AsRef<str>>(
&mut self,
s: T,
Expand Down
Loading
Loading