[v2,13/27] NFSD: Add tracepoint for nfsd_access()

Message ID	160071191856.1468.8300898542888761435.stgit@klimt.1015granger.net (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=laZk=C6=vger.kernel.org=linux-nfs-owner@kernel.org> Sender: Chuck Lever <chucklever@gmail.com> Subject: [PATCH v2 13/27] NFSD: Add tracepoint for nfsd_access() From: Chuck Lever <chuck.lever@oracle.com> To: bfields@fieldses.org, Bill.Baker@oracle.com Cc: linux-nfs@vger.kernel.org Date: Mon, 21 Sep 2020 14:11:58 -0400 Message-ID: <160071191856.1468.8300898542888761435.stgit@klimt.1015granger.net> In-Reply-To: <160071167664.1468.1365570508917640511.stgit@klimt.1015granger.net> References: <160071167664.1468.1365570508917640511.stgit@klimt.1015granger.net> User-Agent: StGit/0.23 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Precedence: bulk
Series	NFSD operation monitoring tracepoints \| expand [v2,00/27] NFSD operation monitoring tracepoints [v2,01/27] NFS: Move generic FS show macros to global header [v2,02/27] NFS: Move NFS protocol display macros to global header [v2,03/27] NFSD: Add SPDX header for fs/nfsd/trace.c [v2,04/27] SUNRPC: Move the svc_xdr_recvfrom() tracepoint [v2,05/27] SUNRPC: Add svc_xdr_authenticate tracepoint [v2,06/27] lockd: Replace PROC() macro with open code [v2,07/27] NFSACL: Replace PROC() macro with open code [v2,08/27] SUNRPC: Make trace_svc_process() display the RPC procedure symbolically [v2,09/27] NFSD: Clean up the show_nf_may macro [v2,10/27] NFSD: Remove extra "0x" in tracepoint format specifier [v2,11/27] NFSD: Constify @fh argument of knfsd_fh_hash() [v2,12/27] NFSD: Add tracepoint in nfsd_setattr() [v2,13/27] NFSD: Add tracepoint for nfsd_access() [v2,14/27] NFSD: nfsd_compound_status tracepoint should record XID [v2,15/27] NFSD: Add client ID lifetime tracepoints [v2,16/27] NFSD: Add tracepoints to report NFSv4 session state [v2,17/27] NFSD: Add a tracepoint to report the current filehandle [v2,18/27] NFSD: Add GETATTR tracepoint [v2,19/27] NFSD: Add tracepoint in nfsd4_stateid_preprocess() [v2,20/27] NFSD: Add tracepoint to report arguments to NFSv4 OPEN [v2,21/27] NFSD: Add a tracepoint for DELEGRETURN [v2,22/27] NFSD: Add a lookup tracepoint [v2,23/27] NFSD: Add lock and locku tracepoints [v2,24/27] NFSD: Add tracepoints to record the result of TEST_STATEID and FREE_STATEID [v2,25/27] NFSD: Rename nfsd_ tracepoints to nfsd4_ [v2,26/27] NFSD: Add tracepoints in the NFS dispatcher [v2,27/27] NFSD: Replace dprintk callsites in fs/nfsd/nfsfh.c

Message ID

160071191856.1468.8300898542888761435.stgit@klimt.1015granger.net (mailing list archive)

State

New, archived

Headers

Sender: Chuck Lever <chucklever@gmail.com>
Subject: [PATCH v2 13/27] NFSD: Add tracepoint for nfsd_access()
From: Chuck Lever <chuck.lever@oracle.com>
To: bfields@fieldses.org, Bill.Baker@oracle.com
Cc: linux-nfs@vger.kernel.org
Date: Mon, 21 Sep 2020 14:11:58 -0400
Message-ID: 
 <160071191856.1468.8300898542888761435.stgit@klimt.1015granger.net>
In-Reply-To: 
 <160071167664.1468.1365570508917640511.stgit@klimt.1015granger.net>
References: 
 <160071167664.1468.1365570508917640511.stgit@klimt.1015granger.net>
User-Agent: StGit/0.23
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Precedence: bulk

Series

NFSD operation monitoring tracepoints | expand

Commit Message

Chuck Lever Sept. 21, 2020, 6:11 p.m. UTC

It is possible to use this tracepoint for several purposes,
including troubleshooting export permission problems and auditing
accesses to files.

nfsd-1025  [002]   256.807403: nfsd_permission:      xid=0x12147d7a \
	type=REG access=WRITE|SATTR|OWNER_OVERRIDE owner=1046/100 \
	user=1046/100 name=.clang-format status=OK

Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
---
 fs/nfsd/trace.h           |   45 +++++++++++++++++++++++++++++++++++++++++++++
 fs/nfsd/vfs.c             |    1 +
 include/trace/events/fs.h |   10 ++++++++++
 3 files changed, 56 insertions(+)

diff --git a/fs/nfsd/trace.h b/fs/nfsd/trace.h
index b4c773530aa8..15b97275b3b4 100644
--- a/fs/nfsd/trace.h
+++ b/fs/nfsd/trace.h
@@ -10,6 +10,7 @@ 
 
 #include <linux/tracepoint.h>
 #include <trace/events/fs.h>
+#include <trace/events/nfs.h>
 
 #include "export.h"
 #include "nfsfh.h"
@@ -30,6 +31,50 @@ 
 		{ NFSD_MAY_READ_IF_EXEC,	"READ_IF_EXEC" },	\
 		{ NFSD_MAY_64BIT_COOKIE,	"64BIT_COOKIE" })
 
+TRACE_EVENT(nfsd_access,
+	TP_PROTO(
+		const struct svc_rqst *rqstp,
+		const struct dentry *dentry,
+		int access,
+		__be32 status
+	),
+	TP_ARGS(rqstp, dentry, access, status),
+	TP_STRUCT__entry(
+		__field(u32, xid)
+		__field(unsigned long, type)
+		__field(unsigned long, access)
+		__field(uid_t, owner)
+		__field(gid_t, owner_group)
+		__field(uid_t, user)
+		__field(gid_t, user_group)
+		__field(int, status)
+		__dynamic_array(unsigned char, name, dentry->d_name.len + 1)
+	),
+	TP_fast_assign(
+		const struct inode *inode = d_inode(dentry);
+
+		__entry->xid = be32_to_cpu(rqstp->rq_xid);
+		__entry->type = inode->i_mode & S_IFMT;
+		__entry->access = access;
+		__entry->owner = __kuid_val(inode->i_uid);
+		__entry->owner_group = __kgid_val(inode->i_gid);
+		__entry->user = __kuid_val(current_fsuid());
+		__entry->user_group = __kgid_val(current_fsgid());
+		__entry->status = be32_to_cpu(status);
+		memcpy(__get_str(name), dentry->d_name.name,
+		       dentry->d_name.len);
+		__get_str(name)[dentry->d_name.len] = '\0';
+	),
+	TP_printk("xid=0x%08x type=%s access=%s owner=%u/%u user=%u/%u name=%s status=%s",
+		__entry->xid,
+		show_inode_type(__entry->type),
+		show_nfsd_may_flags(__entry->access),
+		__entry->owner, __entry->owner_group,
+		__entry->user, __entry->user_group,
+		__get_str(name), show_nfs_status(__entry->status)
+	)
+);
+
 TRACE_EVENT(nfsd_setattr_args,
 	TP_PROTO(
 		const struct svc_rqst *rqstp,
diff --git a/fs/nfsd/vfs.c b/fs/nfsd/vfs.c
index a311593ac976..0d354531ed19 100644
--- a/fs/nfsd/vfs.c
+++ b/fs/nfsd/vfs.c
@@ -687,6 +687,7 @@  nfsd_access(struct svc_rqst *rqstp, struct svc_fh *fhp, u32 *access, u32 *suppor
 			sresult |= map->access;
 
 			err2 = nfsd_permission(rqstp, export, dentry, map->how);
+			trace_nfsd_access(rqstp, dentry, map->how, err2);
 			switch (err2) {
 			case nfs_ok:
 				result |= map->access;
diff --git a/include/trace/events/fs.h b/include/trace/events/fs.h
index 2b185d81d9a5..49d3dde471ad 100644
--- a/include/trace/events/fs.h
+++ b/include/trace/events/fs.h
@@ -165,3 +165,13 @@ 
 		{ ATTR_OPEN,		"OPEN" }, \
 		{ ATTR_TIMES_SET,	"TIMES_SET" }, \
 		{ ATTR_TOUCH,		"TOUCH" })
+
+#define show_inode_type(x) \
+	__print_symbolic(x, \
+		{ S_IFIFO,		"FIFO" }, \
+		{ S_IFCHR,		"CHR" }, \
+		{ S_IFDIR,		"DIR" }, \
+		{ S_IFBLK,		"BLK" }, \
+		{ S_IFREG,		"REG" }, \
+		{ S_IFLNK,		"LNK" }, \
+		{ S_IFSOCK,		"SOCK" })

[v2,13/27] NFSD: Add tracepoint for nfsd_access()

Commit Message

Patch