Commit 329409ae authored by Akinobu Mita's avatar Akinobu Mita Committed by Linus Torvalds

[PATCH] fault injection: stacktrace filtering

This patch provides stacktrace filtering feature.

The stacktrace filter allows failing only for the caller you are
interested in.

For example someone may want to inject kmalloc() failures into
only e100 module. they want to inject not only direct kmalloc() call,
but also indirect allocation, too.

- e100_poll --> netif_receive_skb --> packet_rcv_spkt --> skb_clone
  --> kmem_cache_alloc

This patch enables to detect function calls like this by stacktrace
and inject failures. The script Documentaion/fault-injection/failmodule.sh
helps it.

The range of text section of loaded e100 is expected to be
[/sys/module/e100/sections/.text, /sys/module/e100/sections/.exit.text)

So failmodule.sh stores these values into /debug/failslab/address-start
and /debug/failslab/address-end. The maximum stacktrace depth is specified
by /debug/failslab/stacktrace-depth.

Please see the example that demonstrates how to inject slab allocation
failures only for a specific module
in Documentation/fault-injection/fault-injection.txt

[dwm@meer.net: reject failure if any caller lies within specified range]
Signed-off-by: default avatarAkinobu Mita <akinobu.mita@gmail.com>
Signed-off-by: default avatarDon Mullis <dwm@meer.net>
Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
Signed-off-by: default avatarLinus Torvalds <torvalds@osdl.org>
parent f4f154fd
...@@ -73,13 +73,17 @@ configuration of fault-injection capabilities. ...@@ -73,13 +73,17 @@ configuration of fault-injection capabilities.
Any positive value limits failures to only processes indicated by Any positive value limits failures to only processes indicated by
/proc/<pid>/make-it-fail==1. /proc/<pid>/make-it-fail==1.
- /debug/*/address-start: - /debug/*/require-start:
- /debug/*/address-end: - /debug/*/require-end:
- /debug/*/reject-start:
- /debug/*/reject-end:
specifies the range of virtual addresses tested during specifies the range of virtual addresses tested during
stacktrace walking. Failure is injected only if some caller stacktrace walking. Failure is injected only if some caller
in the walked stacktrace lies within this range. in the walked stacktrace lies within the required range, and
Default is [0,ULONG_MAX) (whole of virtual address space). none lies within the rejected range.
Default required range is [0,ULONG_MAX) (whole of virtual address space).
Default rejected range is [0,0).
- /debug/*/stacktrace-depth: - /debug/*/stacktrace-depth:
......
...@@ -18,6 +18,11 @@ struct fault_attr { ...@@ -18,6 +18,11 @@ struct fault_attr {
atomic_t space; atomic_t space;
unsigned long verbose; unsigned long verbose;
u32 task_filter; u32 task_filter;
unsigned long stacktrace_depth;
unsigned long require_start;
unsigned long require_end;
unsigned long reject_start;
unsigned long reject_end;
unsigned long count; unsigned long count;
...@@ -32,6 +37,11 @@ struct fault_attr { ...@@ -32,6 +37,11 @@ struct fault_attr {
struct dentry *space_file; struct dentry *space_file;
struct dentry *verbose_file; struct dentry *verbose_file;
struct dentry *task_filter_file; struct dentry *task_filter_file;
struct dentry *stacktrace_depth_file;
struct dentry *require_start_file;
struct dentry *require_end_file;
struct dentry *reject_start_file;
struct dentry *reject_end_file;
} dentries; } dentries;
#endif #endif
...@@ -40,6 +50,8 @@ struct fault_attr { ...@@ -40,6 +50,8 @@ struct fault_attr {
#define FAULT_ATTR_INITIALIZER { \ #define FAULT_ATTR_INITIALIZER { \
.interval = 1, \ .interval = 1, \
.times = ATOMIC_INIT(1), \ .times = ATOMIC_INIT(1), \
.require_end = ULONG_MAX, \
.stacktrace_depth = 32, \
} }
#define DECLARE_FAULT_ATTR(name) struct fault_attr name = FAULT_ATTR_INITIALIZER #define DECLARE_FAULT_ATTR(name) struct fault_attr name = FAULT_ATTR_INITIALIZER
......
...@@ -416,6 +416,11 @@ config LKDTM ...@@ -416,6 +416,11 @@ config LKDTM
config FAULT_INJECTION config FAULT_INJECTION
bool bool
select STACKTRACE
select FRAME_POINTER
help
Provide fault-injection framework.
For more details, see Documentation/fault-injection/.
config FAILSLAB config FAILSLAB
bool "Fault-injection capabilitiy for kmalloc" bool "Fault-injection capabilitiy for kmalloc"
......
...@@ -6,6 +6,9 @@ ...@@ -6,6 +6,9 @@
#include <linux/fs.h> #include <linux/fs.h>
#include <linux/module.h> #include <linux/module.h>
#include <linux/interrupt.h> #include <linux/interrupt.h>
#include <linux/unwind.h>
#include <linux/stacktrace.h>
#include <linux/kallsyms.h>
#include <linux/fault-inject.h> #include <linux/fault-inject.h>
/* /*
...@@ -50,6 +53,86 @@ static int fail_task(struct fault_attr *attr, struct task_struct *task) ...@@ -50,6 +53,86 @@ static int fail_task(struct fault_attr *attr, struct task_struct *task)
return !in_interrupt() && task->make_it_fail; return !in_interrupt() && task->make_it_fail;
} }
#ifdef CONFIG_STACK_UNWIND
static asmlinkage int fail_stacktrace_callback(struct unwind_frame_info *info,
void *arg)
{
int depth;
struct fault_attr *attr = arg;
bool found = (attr->require_start == 0 && attr->require_end == ULONG_MAX);
for (depth = 0; depth < attr->stacktrace_depth
&& unwind(info) == 0 && UNW_PC(info); depth++) {
if (arch_unw_user_mode(info))
break;
if (attr->reject_start <= UNW_PC(info) &&
UNW_PC(info) < attr->reject_end)
return 0;
if (attr->require_start <= UNW_PC(info) &&
UNW_PC(info) < attr->require_end)
found = 1;
}
return found;
}
static int fail_stacktrace(struct fault_attr *attr)
{
struct unwind_frame_info info;
return unwind_init_running(&info, fail_stacktrace_callback, attr);
}
#elif defined(CONFIG_STACKTRACE)
#define MAX_STACK_TRACE_DEPTH 32
static int fail_stacktrace(struct fault_attr *attr)
{
struct stack_trace trace;
int depth = attr->stacktrace_depth;
unsigned long entries[MAX_STACK_TRACE_DEPTH];
int n;
bool found = (attr->require_start == 0 && attr->require_end == ULONG_MAX);
if (depth == 0)
return found;
trace.nr_entries = 0;
trace.entries = entries;
trace.max_entries = (depth < MAX_STACK_TRACE_DEPTH) ?
depth : MAX_STACK_TRACE_DEPTH;
trace.skip = 1;
trace.all_contexts = 0;
save_stack_trace(&trace, NULL);
for (n = 0; n < trace.nr_entries; n++) {
if (attr->reject_start <= entries[n] &&
entries[n] < attr->reject_end)
return 0;
if (attr->require_start <= entries[n] &&
entries[n] < attr->require_end)
found = 1;
}
return found;
}
#else
static inline int fail_stacktrace(struct fault_attr *attr)
{
static int firsttime = 1;
if (firsttime) {
printk(KERN_WARNING
"This architecture does not implement save_stack_trace()\n");
firsttime = 0;
}
return 0;
}
#endif
/* /*
* This code is stolen from failmalloc-1.0 * This code is stolen from failmalloc-1.0
* http://www.nongnu.org/failmalloc/ * http://www.nongnu.org/failmalloc/
...@@ -60,6 +143,9 @@ int should_fail(struct fault_attr *attr, ssize_t size) ...@@ -60,6 +143,9 @@ int should_fail(struct fault_attr *attr, ssize_t size)
if (attr->task_filter && !fail_task(attr, current)) if (attr->task_filter && !fail_task(attr, current))
return 0; return 0;
if (!fail_stacktrace(attr))
return 0;
if (atomic_read(&attr->times) == 0) if (atomic_read(&attr->times) == 0)
return 0; return 0;
...@@ -147,6 +233,21 @@ void cleanup_fault_attr_dentries(struct fault_attr *attr) ...@@ -147,6 +233,21 @@ void cleanup_fault_attr_dentries(struct fault_attr *attr)
debugfs_remove(attr->dentries.task_filter_file); debugfs_remove(attr->dentries.task_filter_file);
attr->dentries.task_filter_file = NULL; attr->dentries.task_filter_file = NULL;
debugfs_remove(attr->dentries.stacktrace_depth_file);
attr->dentries.stacktrace_depth_file = NULL;
debugfs_remove(attr->dentries.require_start_file);
attr->dentries.require_start_file = NULL;
debugfs_remove(attr->dentries.require_end_file);
attr->dentries.require_end_file = NULL;
debugfs_remove(attr->dentries.reject_start_file);
attr->dentries.reject_start_file = NULL;
debugfs_remove(attr->dentries.reject_end_file);
attr->dentries.reject_end_file = NULL;
if (attr->dentries.dir) if (attr->dentries.dir)
WARN_ON(!simple_empty(attr->dentries.dir)); WARN_ON(!simple_empty(attr->dentries.dir));
...@@ -184,9 +285,32 @@ int init_fault_attr_dentries(struct fault_attr *attr, const char *name) ...@@ -184,9 +285,32 @@ int init_fault_attr_dentries(struct fault_attr *attr, const char *name)
attr->dentries.task_filter_file = debugfs_create_bool("task-filter", attr->dentries.task_filter_file = debugfs_create_bool("task-filter",
mode, dir, &attr->task_filter); mode, dir, &attr->task_filter);
attr->dentries.stacktrace_depth_file =
debugfs_create_ul("stacktrace-depth", mode, dir,
&attr->stacktrace_depth);
attr->dentries.require_start_file =
debugfs_create_ul("require-start", mode, dir, &attr->require_start);
attr->dentries.require_end_file =
debugfs_create_ul("require-end", mode, dir, &attr->require_end);
attr->dentries.reject_start_file =
debugfs_create_ul("reject-start", mode, dir, &attr->reject_start);
attr->dentries.reject_end_file =
debugfs_create_ul("reject-end", mode, dir, &attr->reject_end);
if (!attr->dentries.probability_file || !attr->dentries.interval_file if (!attr->dentries.probability_file || !attr->dentries.interval_file
|| !attr->dentries.times_file || !attr->dentries.space_file || !attr->dentries.times_file || !attr->dentries.space_file
|| !attr->dentries.verbose_file || !attr->dentries.task_filter_file) || !attr->dentries.verbose_file || !attr->dentries.task_filter_file
|| !attr->dentries.stacktrace_depth_file
|| !attr->dentries.require_start_file
|| !attr->dentries.require_end_file
|| !attr->dentries.reject_start_file
|| !attr->dentries.reject_end_file
)
goto fail; goto fail;
return 0; return 0;
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment