[RFC] pwru: Support --output-skb-metadata #509
Draft
+9,654
−7
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Leon Hwang <[email protected]>
Asphaltt
force-pushed
the
feature/output-skb-meta
branch
from
126daa9 to
565250b
Compare
It's really useful to output specified metadatas of skb instead of outputing the whole skb btf data. However, it's not easy to `--output-skb-metadata 'skb->mark'` because the metadata is provided by users. Here're the steps to achieve it: 1. Parse the text to C AST. 2. Convert the C AST to bpf insns with `skb` btf type info. 3. Inject the `set_skb_metadata` stub with the generated insns. 4. Output the metadata with the provided field's btf type info. e.g. ```bash $ sudo ./pwru --filter-func 'icmp_rcv' --output-skb-metadata 'skb->hash' --output-skb-metadata 'skb->sw_hash' --output-skb-metadata 'skb->l4_hash' --output-skb-metadata 'skb->mark' host 1.1.1.1 2025/03/19 16:27:18 Attaching kprobes (via kprobe-multi)... 1 / 1 [----------------------------------------------------------------------------------------------------------------------------------------] 100.00% ? p/s 2025/03/19 16:27:18 Attached (ignored 0) 2025/03/19 16:27:18 Listening for events.. SKB CPU PROCESS NETNS MARK/x IFACE PROTO MTU LEN TUPLE FUNC 0xffff991f3ec49600 6 <empty>:0 4026531840 0 ens33:2 0x0800 65536 64 1.1.1.1:0->192.168.241.133:0(icmp) icmp_rcv hash=0 sw_hash=0 l4_hash=0 mark=0 ^C2025/03/19 16:32:56 Received signal, exiting program.. 2025/03/19 16:32:56 Detaching kprobes... 1 / 1 [----------------------------------------------------------------------------------------------------------------------------------------] 100.00% ? p/s ``` Signed-off-by: Leon Hwang <[email protected]>
Asphaltt
force-pushed
the
feature/output-skb-meta
branch
from
565250b to
e97a6da
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #502
I'm porting such feature from btrace's
--output-arg 'skb->hash'.It's really useful to output specified metadatas of skb instead of outputing the whole skb btf data.
However, it's not easy to
--output-skb-metadata 'skb->mark'because the metadata is provided by users.Here're the steps to achieve it:
skbbtf type info.set_skb_metadatastub with the generated insns.e.g.