Received: by 2002:a05:6a10:1a4d:0:0:0:0 with SMTP id nk13csp313535pxb;
        Mon, 7 Feb 2022 12:00:37 -0800 (PST)
X-Google-Smtp-Source: ABdhPJyG0I+WUJjfasv4caA/aK/XLgHzf4q2J4pTCsCx1bVs7wWMJIMYtvs9iUHxPREJUNzIZp3P
X-Received: by 2002:a17:903:18b:: with SMTP id z11mr1281515plg.59.1644264037348;
        Mon, 07 Feb 2022 12:00:37 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1644264037; cv=none;
        d=google.com; s=arc-20160816;
        b=IbbK5cE5kREzYjoi90A4/LxOFOx4ws+7qnRxcjC5Yp+tMziU8ivboWdDu+YHjpEjwy
         jD+H4AVzL66gdxlWpjmcbnGS4kgJr4weNVHQQXjHOW8ObANXK6b8/320+wN+YE3Of1QB
         YeIESW/RBT0NBluKtFon13VPejxn95CRpbNzYKaKJI4TfZAlZO3YwJQZE7gKHBpmbilB
         l1URZ5nfLsJ3uSewF+mRVtThkcthxu2W12PPdiTdWAs8v6Eo9O+xhaWVxIbMvKCwJKDQ
         K7gouyRJN+xjS7PqLqAVENxN05MVT6LGs0rVmJkwGQpki9eBaWFADOx2YwOjkDxNB10j
         ZiGw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version:dkim-signature;
        bh=3uTrKfJl0B2M1t5hjDoYw6LHu5uHngu7A4EsnOQxqAc=;
        b=q+YGxYBuRArRcv9DgGfObcQOYSzQSFSOxupug3HZMmrooLC2/lBpJn+krzp0xmgBAz
         9IpGuVN+Z0NOHL5t3BliAOXfVI8buqmCXODqyK/CqbPoYCZQfITZwkYr/Hv7vSqtP5Th
         k4caCwK7QEaTmz9juXSKgLA/Y901Zx0GCYEVfuOMlbVqWT0KGrLTi83cu7kdD1KY49HF
         J6LIBzEn8UQPFgHQEPUwKFpLCghNpV2V0WcWEeWbLGDmxmb9Jrjsofi7untsfMu76JO4
         dX6isEco+Bkh4fdwVuWiHXlf+1kDEpoLUttEZa2GekcYSa5jL8h0PL2M5XvH73RFBAd6
         ZZsQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20210112 header.b=Q0e+9Jxc;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id x16si11723473plg.384.2022.02.07.12.00.19;
        Mon, 07 Feb 2022 12:00:37 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20210112 header.b=Q0e+9Jxc;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1355854AbiBCWqV (ORCPT <rfc822;maxiaoguang2018@gmail.com>
        + 99 others); Thu, 3 Feb 2022 17:46:21 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:32950 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1355853AbiBCWqT (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 3 Feb 2022 17:46:19 -0500
Received: from mail-qv1-xf29.google.com (mail-qv1-xf29.google.com [IPv6:2607:f8b0:4864:20::f29])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 771BBC06173B
        for <linux-kernel@vger.kernel.org>; Thu,  3 Feb 2022 14:46:19 -0800 (PST)
Received: by mail-qv1-xf29.google.com with SMTP id g11so3923688qvu.3
        for <linux-kernel@vger.kernel.org>; Thu, 03 Feb 2022 14:46:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20210112;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=3uTrKfJl0B2M1t5hjDoYw6LHu5uHngu7A4EsnOQxqAc=;
        b=Q0e+9JxcmxO28HdGxidRJ+v6cvAU+j0mQY2b5Fh+9itFQ7qAX9ZdfKCVGbwPTrE9Dd
         3f8XiZMcLs6mzcx3rGTO7ProinxnMnl5KYKxzag/mm2QWawCcdIlX8aLOZ3CIL35CahY
         rE5LdrLAoHrw7OPuc7vxlsIcKsXgb2zKH0iNVSFV99qznx6g2iYtz8BcyUFLEKLjOGxB
         irMGqwMxCcOf+LpOmb4NbA/R0uEPqi8ncvZiU+NcrI56uq0vEBMBTtMJqtArx87xMftc
         b3MF7wA+dD9sfXrHEozBMJedsgwV4c7tJjTGbNMt33eBTEj0YbGhAPSz5XywO0M0YJUd
         3XPg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=3uTrKfJl0B2M1t5hjDoYw6LHu5uHngu7A4EsnOQxqAc=;
        b=z5dxhJbK1Tl43Gv7g+vXFXbhN+tFxvGBXHlTf6AvTFLKb1o3o2UenIF4EwXRswwm4e
         wAHkdPX+mer8m9RrfJAJoBPOM0EqASl4WzTsL+swqyYoUkxYxCoTTg1IRRKaCCyozHfy
         cvltHg4veQusgkxngBeDARXaDCxP1lD3lWnIIJphFhchW5wjgRxGOUP3kVu5G6RK+n8y
         tBZzYYd1KtrpMFCK3YDtp5u33gDl0Xier8UeRbSaKAVMmWM0zPmWoV9VhchL+btJoy8Y
         6vGz4QDeozDlch+4X+fs2+8seoZDaorCkBsVCvjlvaQ7q8z9y8izOheDBdjiXKcoteaN
         PDXg==
X-Gm-Message-State: AOAM531Da33LQ8P+fEsUWtlRxLcPemo6lAyUalH8a+6bBRJA5nxNFlzI
        XfZswzOJcp8UIBgrHvM1kwSJbXHB0Nz3BFchDmTz/g==
X-Received: by 2002:a05:6214:2b0c:: with SMTP id jx12mr28089qvb.17.1643928378464;
 Thu, 03 Feb 2022 14:46:18 -0800 (PST)
MIME-Version: 1.0
References: <20220201205534.1962784-1-haoluo@google.com> <20220201205534.1962784-6-haoluo@google.com>
 <20220203180414.blk6ou3ccmod2qck@ast-mbp.dhcp.thefacebook.com>
In-Reply-To: <20220203180414.blk6ou3ccmod2qck@ast-mbp.dhcp.thefacebook.com>
From:   Hao Luo <haoluo@google.com>
Date:   Thu, 3 Feb 2022 14:46:07 -0800
Message-ID: <CA+khW7jkJbvQrTx4oPJAoBZ0EOCtr3C2PKbrzhxj-7euBK8ojg@mail.gmail.com>
Subject: Re: [PATCH RFC bpf-next v2 5/5] selftests/bpf: test for pinning for
 cgroup_view link
To:     Alexei Starovoitov <alexei.starovoitov@gmail.com>
Cc:     Alexei Starovoitov <ast@kernel.org>,
        Andrii Nakryiko <andrii@kernel.org>,
        Daniel Borkmann <daniel@iogearbox.net>,
        Martin KaFai Lau <kafai@fb.com>,
        Song Liu <songliubraving@fb.com>, Yonghong Song <yhs@fb.com>,
        KP Singh <kpsingh@kernel.org>,
        Shakeel Butt <shakeelb@google.com>,
        Joe Burton <jevburton.kernel@gmail.com>,
        Stanislav Fomichev <sdf@google.com>, bpf@vger.kernel.org,
        linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Thu, Feb 3, 2022 at 10:04 AM Alexei Starovoitov
<alexei.starovoitov@gmail.com> wrote:
>
> On Tue, Feb 01, 2022 at 12:55:34PM -0800, Hao Luo wrote:
> > +
> > +SEC("iter/cgroup_view")
> > +int dump_cgroup_lat(struct bpf_iter__cgroup_view *ctx)
> > +{
> > +     struct seq_file *seq = ctx->meta->seq;
> > +     struct cgroup *cgroup = ctx->cgroup;
> > +     struct wait_lat *lat;
> > +     u64 id;
> > +
> > +     BPF_SEQ_PRINTF(seq, "cgroup_id: %8lu\n", cgroup->kn->id);
> > +     lat = bpf_map_lookup_elem(&cgroup_lat, &id);
>
> Looks like "id = cgroup->kn->id" assignment is missing here?
>

Ah, yes. I'll fix it.

> Thanks a lot for this test. It explains the motivation well.
>
> It seems that the patches 1-4 are there to automatically
> supply cgroup pointer into bpf_iter__cgroup_view.
>
> Since user space needs to track good part of cgroup dir opreations
> can we task it with the job of patches 1-4 as well?
> It can register notifier for cgroupfs operations and
> do mkdir in bpffs similarly _and_ parametrize 'view' bpf program
> with corresponding cgroup_id.
> Ideally there is no new 'view' program and it's a subset of 'iter'
> bpf program. They're already parametrizable.
> When 'iter' is pinned the user space can tell it which object it should
> iterate on. The 'view' will be an interator of one element and
> argument to it can be cgroup_id.
> When user space pins the same 'view' program in a newly created bpffs
> directory it will parametrize it with a different cgroup_id.
> At the end the same 'view' program will be pinned in multiple directories
> with different cgroup_id arguments.
> This patch 5 will look very much the same, but patches 1-4 will not be
> necessary.
> Of course there are races between cgroup create/destroy and bpffs
> mkdir, prog pin operatiosn, but they will be there regardless.
> The patch 1-4 approach is not race free either.

Right. I tried to minimize the races between cgroupfs and bpffs in
this patchset. The cgroup and kernfs APIs called in this patchset
guarantee that the cgroup and kernfs objects are alive once get. Some
states in the objects such as 'id' should be valid at least.

> Will that work?

Thanks Alexei for the idea.

The parameterization part sounds good. By 'parametrize', do you mean a
variable in iter prog (like the 'pid' variable in bpf_iter_task_vma.c
[1])? or some metadata of the program? I assume it's program's
metadata. Either parameterizing with cgroup_id or passing cgroup
object to the prog should work. The problem is at pinning.

In our use case, we can't ask the users who create cgroups to do the
pinning. Pinning requires root privilege. In our use case, we have
non-root users who can create cgroup directories and still want to
read bpf stats. They can't do pinning by themselves. This is why
inheritance is a requirement for us. With inheritance, they only need
to mkdir in cgroupfs and bpffs (unprivileged operations), no pinning
operation is required. Patch 1-4 are needed to implement inheritance.

It's also not a good idea in our use case to add a userspace
privileged process to monitor cgroupfs operations and perform the
pinning. It's more complex and has a higher maintenance cost and
runtime overhead, compared to the solution of asking whoever makes
cgroups to mkdir in bpffs. The other problem is: if there are nodes in
the data center that don't have the userspace process deployed, the
stats will be unavailable, which is a no-no for some of our users.

[1] tools/testing/selftests/bpf/progs/bpf_iter_task_vma.c