Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp5250927pxj; Wed, 26 May 2021 06:27:12 -0700 (PDT) X-Google-Smtp-Source: ABdhPJy1W0qmsgwQa6R9lbwFvKc/LXxDuQGwVuGwGcto0kDFqQjP2GK1GgX07OF8XUGQuVEDL6NO X-Received: by 2002:a17:906:bcd6:: with SMTP id lw22mr34303229ejb.250.1622035632398; Wed, 26 May 2021 06:27:12 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1622035632; cv=none; d=google.com; s=arc-20160816; b=PyYv75ZhiCWLy6ei1WycS6U/Gm6tTEHqoB893PuGKa4MG/yQ5t44O6hw5Itryjz2Mj +HMmCmhAycVqqTDdgEUi4+3O9b+u9/Cz+tybLq4UqKoSFR97P0k9vQjn88y7jDbMZE7C xmd2ryQ/k7TC+fa8XDoaGcViIAJ4d75fpHFTZES3dKeu2/hMOgD5ABQPLqyt8QOcjvNv 2QAJKIRsovfRjHjyEmES82DJxctHyxQgCPhXTa5nSxdBmSZjimVesw9QR2R9DKcf/vRw R6RnuLLS4pIOZeoF1mdqhkyDYZpgy1HRHbE/KlTnOGJl9/wx8nhoomTbjTfB3pM3s3lA 9arA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:dkim-signature; bh=oLkzW0dIB92hSZg3ok1rDJSxI0ZRplY6fHOohnJwpp0=; b=qEelxtt3Nut2hCIhqTe10T6PWgNln+UG7joppFeTg9IZd0hPzGFpqkvOiz/7l6w4Dy 7rZLkD6JeLOljjiWPEVzRPYWJ8IjbldgCuI/mrm+OhxGFbRXBIp5NUcSy9F64JLWb+ES 7YceifDWbD43CkzDDaZ/iwEFzcUBf96E967IDA6YclQGe7FT5nmsyBKOZQrAORZNY3zd t6/0wNTABi61lacoh0bf5EKw0WVA3gBMa5lwyx74RTrlHlGXT9tU7NxwAlbHN7iS+XJA SWoVQ9UnTqTj64ZvtAzmjrK1En0YAwMuGe3XwqngwxqGrCgTTsAdYonyMYvYEUtCCAMU rB/w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b="hrG02/zI"; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id 11si6893762ejn.267.2021.05.26.06.26.48; Wed, 26 May 2021 06:27:12 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b="hrG02/zI"; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234540AbhEZM6O (ORCPT + 99 others); Wed, 26 May 2021 08:58:14 -0400 Received: from mail.kernel.org ([198.145.29.99]:60310 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230416AbhEZM6E (ORCPT ); Wed, 26 May 2021 08:58:04 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id E66106113D; Wed, 26 May 2021 12:56:32 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1622033793; bh=BU2KIUgfRoozWhN1t4TRUNq5wUrjTiGPlUFwyMpO0CI=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=hrG02/zIf7iNrFOJIlMjc7tm1//pNrNMJ1ktvhgcPd4iS4YNfxE4IBsapTz23M/Fg 899+fTNr/GJHxwBUcRXRTZf9xLXUi2KacLLxJTO0HAuJwbTatRWNDEnLiP4qFmTTFd WYKswdwG1q4bGGLgNIld2V+xONx1TzDSMPlFMy+CRMHooemZx6Hm4CG1XVEz9E1Hqz 0RfKyg6PhodBAgKAFn7MMWMxSYmIA4Lq0yNLagRrqnSIFot9sJWbyTTnC36NY4KdFO PpCbNfxucvVZHsVxY+czAcneCHPsFgU4UZgyp8zYkAX1raf1QXITa1gih9sbEBRZae mt7jve2jc240w== Received: by quaco.ghostprotocols.net (Postfix, from userid 1000) id D2D514011C; Wed, 26 May 2021 09:56:29 -0300 (-03) Date: Wed, 26 May 2021 09:56:29 -0300 From: Arnaldo Carvalho de Melo To: Masami Hiramatsu Cc: Ravi Bangoria , Jiri Olsa , linux-kernel@vger.kernel.org, aneesh.kumar@linux.ibm.com, Peter Zijlstra , Ingo Molnar , Namhyung Kim , Ian Rogers Subject: Re: [PATCH] perf probe: Provide more detail with relocation warning Message-ID: References: <20210525043744.193297-1-ravi.bangoria@linux.ibm.com> <20210525214858.33a66846ac09e499c3268a63@kernel.org> <05e32c82-1009-03ba-d973-8b1bc0582ce2@linux.ibm.com> <20210526153340.a49ba8292f201493990f210c@kernel.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20210526153340.a49ba8292f201493990f210c@kernel.org> X-Url: http://acmel.wordpress.com Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Em Wed, May 26, 2021 at 03:33:40PM +0900, Masami Hiramatsu escreveu: > On Wed, 26 May 2021 10:23:18 +0530 Ravi Bangoria wrote: > > On 5/25/21 6:18 PM, Masami Hiramatsu wrote: > > > On Tue, 25 May 2021 10:07:44 +0530 Ravi Bangoria wrote: > > >> When run as normal user with default sysctl kernel.kptr_restrict=0 > > >> and kernel.perf_event_paranoid=2, perf probe fails with: > > >> $ ./perf probe move_page_tables > > >> Relocated base symbol is not found! > > >> The warning message is not much informative. The reason perf > > >> fails is because /proc/kallsyms is restricted by > > >> perf_event_paranoid=2 for normal user and thus perf fails to read > > >> relocated address of the base symbol. > > >> Tweaking kptr_restrict and perf_event_paranoid can change the > > >> behavior of perf probe. Also, running as root or privileged user > > >> works too. Add these details in the warning message. > > >> Plus, kmap->ref_reloc_sym might not be always set even if > > >> host_machine is initialized. Above is the example of the same. > > >> Remove that comment. > > > Yes, those are restricted in some cases. Anyway without priviledged > > > (super) user, perf probe can not set the probe in ftrace. > > > Hmm, I think it should check the effective user-id at first. If it > > > is not super user and the action will access tracefs and kallsyms, > > > it should warn at that point. > > If kptr_restrict=2, perf probe fails with same error even for root user. > > That's why I thought to just change this warning message. > Ah, yes. In that case, perf probe must not use the base symbol. > (like -D option) > OK, then, let's merge this fix. > Acked-by: Masami Hiramatsu Thanks, applied as it improves the current situation. But as a follow up, to further improve this, we can reuse what 'perf trace' has: $ perf trace sleep 1 Error: No permissions to read /sys/kernel/tracing/events/raw_syscalls/sys_(enter|exit) Hint: Try 'sudo mount -o remount,mode=755 /sys/kernel/tracing/' $ sudo mount -o remount,mode=755 /sys/kernel/tracing/ $ perf trace sleep 1 Error: Permission denied. Hint: Check /proc/sys/kernel/perf_event_paranoid setting. Hint: For your workloads it needs to be <= 1 Hint: For system wide tracing it needs to be set to -1. Hint: Try: 'sudo sh -c "echo -1 > /proc/sys/kernel/perf_event_paranoid"' Hint: The current value is 2. $ I.e. go the extra step and show what the current value is and what it needs to be to achieve what is being attempted. IOW combine error message with relevant documentation, to save steps. See what 'perf top' does for an unpriv user: $ perf top --stdio Error: Access to performance monitoring and observability operations is limited. Enforced MAC policy settings (SELinux) can limit access to performance monitoring and observability operations. Inspect system audit records for more perf_event access control information and adjusting the policy. Consider adjusting /proc/sys/kernel/perf_event_paranoid setting to open access to performance monitoring and observability operations for processes without CAP_PERFMON, CAP_SYS_PTRACE or CAP_SYS_ADMIN Linux capability. More information can be found at 'Perf events and tool security' document: https://www.kernel.org/doc/html/latest/admin-guide/perf-security.html perf_event_paranoid setting is 2: -1: Allow use of (almost) all events by all users Ignore mlock limit after perf_event_mlock_kb without CAP_IPC_LOCK >= 0: Disallow raw and ftrace function tracepoint access >= 1: Disallow CPU event access >= 2: Disallow kernel profiling To make the adjusted perf_event_paranoid setting permanent preserve it in /etc/sysctl.conf (e.g. kernel.perf_event_paranoid = ) $ - Arnaldo > > > > > Different combinations of privilege, perf_event_paranoid, kptr_restrict: > > > > Normal/Root user > > | perf_event_paranoid > > V V kptr_restrict perf probe error > > ---------------------------------------------------------------- > > N -1 0 Failed to open kprobe_events: Permission denied > > N 0 0 Failed to open kprobe_events: Permission denied > > N 1 0 Failed to open kprobe_events: Permission denied > > N 2 0 Relocated base symbol is not found! > > > > N -1 1 Relocated base symbol is not found! > > N 0 1 Relocated base symbol is not found! > > N 1 1 Relocated base symbol is not found! > > N 2 1 Relocated base symbol is not found! > > > > N -1 2 Relocated base symbol is not found! > > N 0 2 Relocated base symbol is not found! > > N 1 2 Relocated base symbol is not found! > > N 2 2 Relocated base symbol is not found! > > > > R -1 0 No error. > > R 0 0 No error. > > R 1 0 No error. > > R 2 0 No error. > > > > R -1 1 No error. > > R 0 1 No error. > > R 1 1 No error. > > R 2 1 No error. > > > > R -1 2 Relocated base symbol is not found! > > R 0 2 Relocated base symbol is not found! > > R 1 2 Relocated base symbol is not found! > > R 2 2 Relocated base symbol is not found! > > > > Ravi > > > -- > Masami Hiramatsu -- - Arnaldo