[iproute2,v9,0/3] ss: pretty-printing BPF socket-local storage

Message ID	20240221151621.166623-1-qde@naccy.de (mailing list archive)
Headers	show Received: from wflow7-smtp.messagingengine.com (wflow7-smtp.messagingengine.com [64.147.123.142]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 567FF7BB01 for <netdev@vger.kernel.org>; Wed, 21 Feb 2024 15:16:33 +0000 (UTC) Feedback-ID: i14194934:Fastmail From: Quentin Deslandes <qde@naccy.de> To: netdev@vger.kernel.org Cc: David Ahern <dsahern@gmail.com>, Martin KaFai Lau <martin.lau@kernel.org>, Stephen Hemminger <stephen@networkplumber.org>, kernel-team@meta.com, Matthieu Baerts <matttbe@kernel.org>, Quentin Deslandes <qde@naccy.de> Subject: [PATCH iproute2 v9 0/3] ss: pretty-printing BPF socket-local storage Date: Wed, 21 Feb 2024 16:16:18 +0100 Message-ID: <20240221151621.166623-1-qde@naccy.de> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	ss: pretty-printing BPF socket-local storage \| expand [iproute2,v9,0/3] ss: pretty-printing BPF socket-local storage [iproute2,v9,1/3] ss: add support for BPF socket-local storage [iproute2,v9,2/3] ss: pretty-print BPF socket-local storage [iproute2,v9,3/3] ss: update man page to document --bpf-maps and --bpf-map-id=

Message ID

20240221151621.166623-1-qde@naccy.de (mailing list archive)

Headers

Feedback-ID: i14194934:Fastmail
From: Quentin Deslandes <qde@naccy.de>
To: netdev@vger.kernel.org
Cc: David Ahern <dsahern@gmail.com>,
	Martin KaFai Lau <martin.lau@kernel.org>,
	Stephen Hemminger <stephen@networkplumber.org>,
	kernel-team@meta.com,
	Matthieu Baerts <matttbe@kernel.org>,
	Quentin Deslandes <qde@naccy.de>
Subject: [PATCH iproute2 v9 0/3] ss: pretty-printing BPF socket-local storage
Date: Wed, 21 Feb 2024 16:16:18 +0100
Message-ID: <20240221151621.166623-1-qde@naccy.de>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

ss: pretty-printing BPF socket-local storage | expand

Message

Quentin Deslandes Feb. 21, 2024, 3:16 p.m. UTC

BPF allows programs to store socket-specific data using
BPF_MAP_TYPE_SK_STORAGE maps. The data is attached to the socket itself,
and Martin added INET_DIAG_REQ_SK_BPF_STORAGES, so it can be fetched
using the INET_DIAG mechanism.

Currently, ss doesn't request the socket-local data, this patch aims to
fix this.

The first patch requests the socket-local data for the requested map ID
(--bpf-map-id=) or all the maps (--bpf-maps). It then prints the map_id
in COL_EXT.

Patch #2 uses libbpf and BTF to pretty print the map's content, like
`bpftool map dump` would do.

Patch #3 updates ss' man page to explain new options.

While I think it makes sense for ss to provide the socket-local storage
content for the sockets, it's difficult to conciliate the column-based
output of ss and having readable socket-local data. Hence, the
socket-local data is printed in a readable fashion over multiple lines
under its socket statistics, independently of the column-based approach.

Here is an example of ss' output with --bpf-maps:
[...]
ESTAB                  340116             0 [...]
    map_id: 114 [
        (struct my_sk_storage){
            .field_hh = (char)3,
            (union){
                .a = (int)17,
                .b = (int)17,
            },
        }
    ]

Changed this series to an RFC as the merging window for net-next is
closed.

Changes from v8:
* Remove usage of libbpf_bpf_map_type_str() which requires libbpf-1.0+
  and provide very little added value (David).
* Use ENABLE_BPF_SKSTORAGE_SUPPORT to gate the BPF socket-local storage
  support, instead of HAVE_LIBBPF. iproute2 depends on libbpf-0.1, but
  this change needs libbpf-0.5+. If the requirements are not met, ss can
  still be compiled and used without BPF socket-local storage support, but
  a warning will be printed at compile time.
Changes from v7:
* Fix comment format and checkpatch warnings (Stephen, David).
* Replaced Co-authored-by with Co-developed-by + Signed-off-by for
  Martin's contribution on patch #1 to follow checkpatch requirements,
  with Martin's approval.
Changes from v6:
* Remove column dedicated to BPF socket-local storage (COL_SKSTOR),
  use COL_EXT instead (Matthieu).
Changes from v5:
* Add support for --oneline when printing socket-local data.
* Use \t to indent instead of "  " to be consistent with other columns.
* Removed Martin's ack on patch #2 due to amount of lines changed.
Changes from v4:
* Fix return code for 2 calls.
* Fix issue when inet_show_netlink() retries a request.
* BPF dump object is created in bpf_map_opts_load_info().
Changes from v3:
* Minor refactoring to reduce number of HAVE_LIBBF usage.
* Update ss' man page.
* btf_dump structure created to print the socket-local data is cached
  in bpf_map_opts. Creation of the btf_dump structure is performed if
  needed, before printing the data.
* If a map can't be pretty-printed, print its ID and a message instead
  of skipping it.
* If show_all=true, send an empty message to the kernel to retrieve all
  the maps (as Martin suggested).
Changes from v2:
* bpf_map_opts_is_enabled is not inline anymore.
* Add more #ifdef HAVE_LIBBPF to prevent compilation error if
  libbpf support is disabled.
* Fix erroneous usage of args instead of _args in vout().
* Add missing btf__free() and close(fd).
Changes from v1:
* Remove the first patch from the series (fix) and submit it separately.
* Remove double allocation of struct rtattr.
* Close BPF map FDs on exit.
* If bpf_map_get_fd_by_id() fails with ENOENT, print an error message
  and continue to the next map ID.
* Fix typo in new command line option documentation.
* Only use bpf_map_info.btf_value_type_id and ignore
  bpf_map_info.btf_vmlinux_value_type_id (unused for socket-local storage).
* Use btf_dump__dump_type_data() instead of manually using BTF to
  pretty-print socket-local storage data. This change alone divides the size
  of the patch series by 2.

Quentin Deslandes (3):
  ss: add support for BPF socket-local storage
  ss: pretty-print BPF socket-local storage
  ss: update man page to document --bpf-maps and --bpf-map-id=

 man/man8/ss.8 |   6 +
 misc/ss.c     | 410 ++++++++++++++++++++++++++++++++++++++++++++++++--
 2 files changed, 407 insertions(+), 9 deletions(-)

--
2.43.1

Comments

patchwork-bot+netdevbpf@kernel.org Feb. 27, 2024, 4:10 a.m. UTC | #1

Hello:

This series was applied to iproute2/iproute2-next.git (main)
by David Ahern <dsahern@kernel.org>:

On Wed, 21 Feb 2024 16:16:18 +0100 you wrote:
> BPF allows programs to store socket-specific data using
> BPF_MAP_TYPE_SK_STORAGE maps. The data is attached to the socket itself,
> and Martin added INET_DIAG_REQ_SK_BPF_STORAGES, so it can be fetched
> using the INET_DIAG mechanism.
> 
> Currently, ss doesn't request the socket-local data, this patch aims to
> fix this.
> 
> [...]

Here is the summary with links:
  - [iproute2,v9,1/3] ss: add support for BPF socket-local storage
    https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=8740ca9dcd3c
  - [iproute2,v9,2/3] ss: pretty-print BPF socket-local storage
    https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=e3ecf048579a
  - [iproute2,v9,3/3] ss: update man page to document --bpf-maps and --bpf-map-id=
    https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=50763d53310c

You are awesome, thank you!