[PATCH 05/10] lib traceevent: Handle new pointer processing of bprint strings

From: Steven Rostedt
Date: Thu Jan 11 2018 - 19:50:22 EST

Next message: Steven Rostedt: "[PATCH 04/10] lib traceevent: Simplify pointer print logic and fix %pF"
Previous message: Steven Rostedt: "[PATCH 06/10] lib traceevent: Show contents (in hex) of data of unrecognized type records"
In reply to: Steven Rostedt: "[PATCH 06/10] lib traceevent: Show contents (in hex) of data of unrecognized type records"
Next in thread: Steven Rostedt: "[PATCH 04/10] lib traceevent: Simplify pointer print logic and fix %pF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: "Steven Rostedt (VMware)" <rostedt@xxxxxxxxxxx>

The Linux kernel printf() has some extended use cases that dereference the
pointer. This is dangerouse for tracing because the pointer that is
dereferenced can change or even be unmapped. It also causes issues when the
trace data is extracted, because user space does not have access to the
contents of the pointer even if it still exists.

To handle this, the kernel was updated to process these dereferenced
pointers at the time they are recorded, and not post processed. Now they
exist in the tracing buffer, and no dereference is needed at the time of
reading the trace.

The event parsing library needs to handle this new case.

Signed-off-by: Steven Rostedt (VMware) <rostedt@xxxxxxxxxxx>
---
tools/lib/traceevent/event-parse.c | 26 ++++++++++++++++++++++++++
1 file changed, 26 insertions(+)

diff --git a/tools/lib/traceevent/event-parse.c b/tools/lib/traceevent/event-parse.c
index 8757dd64e42c..344a034a8fbc 100644
--- a/tools/lib/traceevent/event-parse.c
+++ b/tools/lib/traceevent/event-parse.c
@@ -4300,6 +4300,26 @@ static struct print_arg *make_bprint_args(char *fmt, void *data, int size, struc
goto process_again;
case 'p':
ls = 1;
+ if (isalnum(ptr[1])) {
+ ptr++;
+ /* Check for special pointers */
+ switch (*ptr) {
+ case 's':
+ case 'S':
+ case 'f':
+ case 'F':
+ break;
+ default:
+ /*
+ * Older kernels do not process
+ * dereferenced pointers.
+ * Only process if the pointer
+ * value is a printable.
+ */
+ if (isprint(*(char *)bptr))
+ goto process_string;
+ }
+ }
/* fall through */
case 'd':
case 'u':
@@ -4352,6 +4372,7 @@ static struct print_arg *make_bprint_args(char *fmt, void *data, int size, struc

break;
case 's':
+ process_string:
arg = alloc_arg();
if (!arg) {
do_warning_event(event, "%s(%d): not enough memory!",
@@ -4959,6 +4980,11 @@ static void pretty_print(struct trace_seq *s, void *data, int size, struct event
if (isalnum(ptr[1]))
ptr++;

+ if (arg->type == PRINT_BSTRING) {
+ trace_seq_puts(s, arg->string.string);
+ break;
+ }
+
if (*ptr == 'F' || *ptr == 'f' ||
*ptr == 'S' || *ptr == 's') {
show_func = *ptr;
--
2.13.2

Next message: Steven Rostedt: "[PATCH 04/10] lib traceevent: Simplify pointer print logic and fix %pF"
Previous message: Steven Rostedt: "[PATCH 06/10] lib traceevent: Show contents (in hex) of data of unrecognized type records"
In reply to: Steven Rostedt: "[PATCH 06/10] lib traceevent: Show contents (in hex) of data of unrecognized type records"
Next in thread: Steven Rostedt: "[PATCH 04/10] lib traceevent: Simplify pointer print logic and fix %pF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]