[v2,13/15] SUNRPC: Add RPC-with-TLS tracepoints

Message ID	165452711267.1496.9330208346164485020.stgit@oracle-102.nfsv4.dev (mailing list archive)
State	New, archived
Headers	show Return-Path: <linux-nfs-owner@kernel.org> Subject: [PATCH v2 13/15] SUNRPC: Add RPC-with-TLS tracepoints From: Chuck Lever <chuck.lever@oracle.com> To: linux-nfs@vger.kernel.org Cc: trondmy@hammerspace.com Date: Mon, 06 Jun 2022 10:51:52 -0400 Message-ID: <165452711267.1496.9330208346164485020.stgit@oracle-102.nfsv4.dev> In-Reply-To: <165452664596.1496.16204212908726904739.stgit@oracle-102.nfsv4.dev> References: <165452664596.1496.16204212908726904739.stgit@oracle-102.nfsv4.dev> User-Agent: StGit/1.5 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Precedence: bulk
Series	RPC-with-TLS client side \| expand [v2,00/15] RPC-with-TLS client side [v2,01/15] SUNRPC: Fail faster on bad verifier [v2,02/15] SUNRPC: Widen rpc_task::tk_flags [v2,03/15] SUNRPC: Replace dprintk() call site in xs_data_ready [v2,04/15] NFS: Replace fs_context-related dprintk() call sites with tracepoints [v2,05/15] SUNRPC: Plumb an API for setting transport layer security [v2,06/15] SUNRPC: Trace the rpc_create_args [v2,07/15] SUNRPC: Refactor rpc_call_null_helper() [v2,08/15] SUNRPC: Add RPC client support for the RPC_AUTH_TLS auth flavor [v2,09/15] SUNRPC: Ignore data_ready callbacks during TLS handshakes [v2,10/15] SUNRPC: Capture cmsg metadata on client-side receive [v2,11/15] SUNRPC: Add a connect worker function for TLS [v2,12/15] SUNRPC: Add RPC-with-TLS support to xprtsock.c [v2,13/15] SUNRPC: Add RPC-with-TLS tracepoints [v2,14/15] NFS: Have struct nfs_client carry a TLS policy field [v2,15/15] NFS: Add an "xprtsec=" NFS mount option

Message ID

165452711267.1496.9330208346164485020.stgit@oracle-102.nfsv4.dev (mailing list archive)

State

New, archived

Headers

Subject: [PATCH v2 13/15] SUNRPC: Add RPC-with-TLS tracepoints
From: Chuck Lever <chuck.lever@oracle.com>
To: linux-nfs@vger.kernel.org
Cc: trondmy@hammerspace.com
Date: Mon, 06 Jun 2022 10:51:52 -0400
Message-ID: <165452711267.1496.9330208346164485020.stgit@oracle-102.nfsv4.dev>
In-Reply-To: 
 <165452664596.1496.16204212908726904739.stgit@oracle-102.nfsv4.dev>
References: 
 <165452664596.1496.16204212908726904739.stgit@oracle-102.nfsv4.dev>
User-Agent: StGit/1.5
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Precedence: bulk

Series

RPC-with-TLS client side | expand

Commit Message

Chuck Lever June 6, 2022, 2:51 p.m. UTC

Auditing TLS handshakes is mandatory-to-implement for RPC-with-TLS.

Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
---
 include/trace/events/sunrpc.h |   44 +++++++++++++++++++++++++++++++++++++++++
 net/sunrpc/xprtsock.c         |   10 +++++++--
 2 files changed, 52 insertions(+), 2 deletions(-)

diff --git a/include/trace/events/sunrpc.h b/include/trace/events/sunrpc.h
index d7d07f3b850e..594e3188dfcd 100644
--- a/include/trace/events/sunrpc.h
+++ b/include/trace/events/sunrpc.h
@@ -1566,6 +1566,50 @@  TRACE_EVENT(rpcb_unregister,
 	)
 );
 
+/**
+ ** RPC-over-TLS tracepoints
+ **/
+
+DECLARE_EVENT_CLASS(rpc_tls_class,
+	TP_PROTO(
+		const struct rpc_clnt *clnt,
+		const struct rpc_xprt *xprt
+	),
+
+	TP_ARGS(clnt, xprt),
+
+	TP_STRUCT__entry(
+		__field(unsigned long, requested_policy)
+		__field(u32, version)
+		__string(servername, xprt->servername)
+		__string(progname, clnt->cl_program->name)
+	),
+
+	TP_fast_assign(
+		__entry->requested_policy = clnt->cl_xprtsec;
+		__entry->version = clnt->cl_vers;
+		__assign_str(servername, xprt->servername);
+		__assign_str(progname, clnt->cl_program->name)
+	),
+
+	TP_printk("server=%s %sv%u requested_policy=%s",
+		__get_str(servername), __get_str(progname), __entry->version,
+		rpc_show_xprtsec_policy(__entry->requested_policy)
+	)
+);
+
+#define DEFINE_RPC_TLS_EVENT(name) \
+	DEFINE_EVENT(rpc_tls_class, rpc_tls_##name, \
+			TP_PROTO( \
+				const struct rpc_clnt *clnt, \
+				const struct rpc_xprt *xprt \
+			), \
+			TP_ARGS(clnt, xprt))
+
+DEFINE_RPC_TLS_EVENT(unavailable);
+DEFINE_RPC_TLS_EVENT(not_started);
+
+
 /* Record an xdr_buf containing a fully-formed RPC message */
 DECLARE_EVENT_CLASS(svc_xdr_msg_class,
 	TP_PROTO(
diff --git a/net/sunrpc/xprtsock.c b/net/sunrpc/xprtsock.c
index 63fe97ede573..508a7698c2e4 100644
--- a/net/sunrpc/xprtsock.c
+++ b/net/sunrpc/xprtsock.c
@@ -2608,15 +2608,21 @@  static void xs_tls_connect(struct work_struct *work)
 	xs_stream_start_connect(transport);
 
 	clnt = rpc_create(&args);
-	if (IS_ERR(clnt))
+	if (IS_ERR(clnt)) {
+		trace_rpc_tls_unavailable(transport->xprtsec_clnt,
+					  &transport->xprt);
 		goto out_unlock;
+	}
 	rcu_read_lock();
 	xprt = xprt_get(rcu_dereference(clnt->cl_xprt));
 	rcu_read_unlock();
 
 	status = xs_tls_handshake_sync(xprt, transport->xprt.xprtsec);
-	if (status)
+	if (status) {
+		trace_rpc_tls_not_started(transport->xprtsec_clnt,
+					  &transport->xprt);
 		goto out_close;
+	}
 
 	status = xs_tls_finish_connecting(xprt, transport);
 	if (status)

[v2,13/15] SUNRPC: Add RPC-with-TLS tracepoints

Commit Message

Patch