From patchwork Wed Mar  1 18:40:23 2023
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Patchwork-Submitter: =?utf-8?q?Daniel_M=C3=BCller?= <deso@posteo.net>
X-Patchwork-Id: 13156313
Return-Path: <bpf-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 18DC3C64ED6
	for <bpf@archiver.kernel.org>; Wed,  1 Mar 2023 18:40:53 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229817AbjCASkv (ORCPT <rfc822;bpf@archiver.kernel.org>);
        Wed, 1 Mar 2023 13:40:51 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:49336 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229579AbjCASkt (ORCPT <rfc822;bpf@vger.kernel.org>);
        Wed, 1 Mar 2023 13:40:49 -0500
Received: from mout02.posteo.de (mout02.posteo.de [185.67.36.66])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 43EB0D30B
        for <bpf@vger.kernel.org>; Wed,  1 Mar 2023 10:40:31 -0800 (PST)
Received: from submission (posteo.de [185.67.36.169])
        by mout02.posteo.de (Postfix) with ESMTPS id 58A782407C0
        for <bpf@vger.kernel.org>; Wed,  1 Mar 2023 19:40:29 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=posteo.net; s=2017;
        t=1677696029; bh=nkBq15ll/fh7Okt/AAVz8eXvfYAdFfn/A/7TfBiIKT8=;
        h=From:To:Subject:Date:From;
        b=CKaMrlF//7bvsk+H7rYM5TXemgla9Lc6Idhd231tyWbgryANGtNO++hiytoBEneg8
         BkXStCy02rkTEU5Z1YA1xlwBguFzHyZZuDigq4ayiCvTzVfXQQN+jDMGChzGLU04Zp
         tcep1y7OcR/rcewMIzoOFV/FwJBE3BASEk0y23Z94FUyDdqeDlZvosPXjdqY9kl7b+
         IUgKNcZ77D+ZeEHMGw4Mw2rBN8iNYUOxOQzoDCn0Ge37YCg039FBek+4cfuOvdgBrH
         47g8asOeVR004DS1I/mBb+H7TSyDYTNOi/TulSyRZh2dG59L9ue7agETPB4hdlOspB
         w6i9Dj8zyBZ4g==
Received: from customer (localhost [127.0.0.1])
        by submission (posteo.de) with ESMTPSA id 4PRjj82By4z9rxK;
        Wed,  1 Mar 2023 19:40:28 +0100 (CET)
From: =?utf-8?q?Daniel_M=C3=BCller?= <deso@posteo.net>
To: bpf@vger.kernel.org, ast@kernel.org, andrii@kernel.org,
        daniel@iogearbox.net, kafai@meta.com, kernel-team@meta.com
Subject: [PATCH bpf-next v3 0/3] Make uprobe attachment APK aware
Date: Wed,  1 Mar 2023 18:40:23 +0000
Message-Id: <20230301184026.800691-1-deso@posteo.net>
MIME-Version: 1.0
Precedence: bulk
List-ID: <bpf.vger.kernel.org>
X-Mailing-List: bpf@vger.kernel.org
X-Patchwork-Delegate: bpf@iogearbox.net

On Android, APKs (android packages; zip packages with somewhat
prescriptive contents) are first class citizens in the system: the
shared objects contained in them don't exist in unpacked form on the
file system. Rather, they are mmaped directly from within the archive
and the archive is also what the kernel is aware of.

For users that complicates the process of attaching a uprobe to a
function contained in a shared object in one such APK: they'd have to
find the byte offset of said function from the beginning of the archive.
That is cumbersome to do manually and can be fragile, because various
changes could invalidate said offset.

That is why for uprobes inside ELF files (not inside an APK), commit
d112c9ce249b ("libbpf: Support function name-based attach uprobes") added
support for attaching to symbols by name. On Android, that mechanism
currently does not work, because this logic is not APK aware.

This patch set introduces first class support for attaching uprobes to
functions inside ELF objects contained in APKs via function names. We
add support for recognizing the following syntax for a binary path:
  <archive>!/<binary-in-archive>

  (e.g., /system/app/test-app.apk!/lib/arm64-v8a/libc++.so)

This syntax is common in the Android eco system and used by tools such
as simpleperf. It is also what is being proposed for bcc [0].

If the user provides such a binary path, we find <binary-in-archive>
(lib/arm64-v8a/libc++.so in the example) inside of <archive>
(/system/app/test-app.apk). We perform the regular ELF offset search
inside the binary and add that to the offset within the archive itself,
to retrieve the offset at which to attach the uprobe.

[0] https://github.com/iovisor/bcc/pull/4440

Changelog
---------
v2->v3:
- adjusted zip_archive_open() to report errno
- fixed provided libbpf_strlcpy() buffer size argument
- adjusted find_cd() to handle errors better
- use fewer local variables in get_entry_at_offset()

v1->v2:
- removed unaligned_* types
- switched to using __u32 and __u16
- switched to using errno constants instead of hard-coded negative values
- added another pr_debug() message
- shortened central_directory_* to cd_*
- inlined cd_file_header_at_offset() function
- bunch of syntactical changes

Daniel Müller (3):
  libbpf: Implement basic zip archive parsing support
  libbpf: Introduce elf_find_func_offset_from_file() function
  libbpf: Add support for attaching uprobes to shared objects in APKs

 tools/lib/bpf/Build    |   2 +-
 tools/lib/bpf/libbpf.c | 147 ++++++++++++++----
 tools/lib/bpf/zip.c    | 328 +++++++++++++++++++++++++++++++++++++++++
 tools/lib/bpf/zip.h    |  47 ++++++
 4 files changed, 496 insertions(+), 28 deletions(-)
 create mode 100644 tools/lib/bpf/zip.c
 create mode 100644 tools/lib/bpf/zip.h