Use a persistent symbol index to resolve function names

Since we are loading symbols for the object file mapped into the process we
are tracing anyway, it is more efficient if we map the stack traces to
function names ourselves, rather than having libunwind do it.

This speeds up tracing by about 15%.

Author: matt-kimball

allocscope-trace/src/breakpoint.rs

@@ -17,7 +17,6 @@
 */
 
 use crate::context;
-use crate::process_map;
 use crate::ptrace;
 use crate::symbol_index;
 use crate::trace;
@@ -233,25 +232,25 @@ impl BreakpointSet {
 
     // Resolve all loosely bound breakpoint using the current process map of
     // the traced process.
-    pub fn resolve_breakpoints(&mut self, pid: u32) -> Result<(), Box<dyn Error>> {
-        let process_map = process_map::ProcessMap::new(pid)?;
-        let mut symbol_index = symbol_index::SymbolIndex::new();
-        symbol_index.add_symbols(&process_map);
-
+    pub fn resolve_breakpoints(
+        &mut self,
+        pid: u32,
+        symbol_index: &symbol_index::SymbolIndex,
+    ) -> Result<(), Box<dyn Error>> {
         for binding in self.bindings.iter() {
-            match symbol_index.symbols.get(&binding.function_name) {
-                Some(entry) => {
+            match symbol_index.symbols_by_name.get(&binding.function_name) {
+                Some(entry_vec) => {
                     // For each address of the function, set a breakpoint.
                     // Multiple addresses might be necessary, because there
                     // might be multiple linked copies of a function with the
                     // same name.  (Consider multiple linked copies of libc
                     // in the same process.)
-                    for address in &entry.addresses {
-                        if !self.breakpoints.contains_key(address) {
+                    for entry in entry_vec {
+                        if !self.breakpoints.contains_key(&entry.address) {
                             add_breakpoint(
                                 &mut self.breakpoints,
                                 pid,
-                                *address,
+                                entry.address,
                                 binding.callback,
                                 true,
                             )?;

allocscope-trace/src/context.rs

@@ -19,6 +19,7 @@
 use crate::breakpoint;
 use crate::process_map;
 use crate::record;
+use crate::symbol_index;
 use crate::unwind;
 use std::collections::HashMap;
 use std::error::Error;
@@ -47,6 +48,10 @@ pub struct TraceContext<'trace_lifetime> {
     // address space.
     pub process_map: process_map::ProcessMap,
 
+    // Bookkeeping for the symbols from the binaries mmap-ed into the
+    // process's address space.
+    pub symbol_index: symbol_index::SymbolIndex,
+
     // Address space structure used by libunwind.
     pub unwind_address_space: unwind::AddressSpace,
 
@@ -66,6 +71,7 @@ impl<'trace_lifetime> TraceContext<'trace_lifetime> {
             breakpoint_set,
             transaction,
             process_map: process_map::ProcessMap::new(pid)?,
+            symbol_index: symbol_index::SymbolIndex::new(),
             unwind_address_space: unwind::AddressSpace::new_upt()?,
             thread_context: HashMap::new(),
         })
@@ -103,4 +109,17 @@ impl<'trace_lifetime> TraceContext<'trace_lifetime> {
             .get(&pid)
             .ok_or("missing thread context".into())
     }
+
+    // The memory map of the process we are tracing has changed, so update
+    // the process map with all current memory mappings and reindex the
+    // the symbols of the process as new code may have been mapped in.
+    pub fn update_process_map(&mut self, pid: u32) -> Result<(), Box<dyn Error>> {
+        self.process_map = process_map::ProcessMap::new(pid)?;
+        self.symbol_index = symbol_index::SymbolIndex::new();
+        self.symbol_index.add_symbols(&self.process_map);
+        self.breakpoint_set
+            .resolve_breakpoints(pid, &self.symbol_index)?;
+
+        Ok(())
+    }
 }

allocscope-trace/src/hooks.rs

@@ -18,7 +18,6 @@
 
 use crate::breakpoint;
 use crate::context;
-use crate::process_map;
 use crate::ptrace;
 use crate::record::EventType;
 use crate::unwind;
@@ -35,6 +34,7 @@ fn collect_stack(
 
     unwind::collect_stack(
         &context.process_map,
+        &context.symbol_index,
         &context.unwind_address_space,
         &thread_context.unwind_accessors,
     )
@@ -48,8 +48,7 @@ fn on_mmap(
     complete: bool,
 ) -> Result<(), Box<dyn Error>> {
     if complete {
-        context.process_map = process_map::ProcessMap::new(pid)?;
-        context.breakpoint_set.resolve_breakpoints(pid)?;
+        context.update_process_map(pid)?;
     }
 
     Ok(())

allocscope-trace/src/symbol_index.rs

@@ -17,71 +17,115 @@
 */
 
 use crate::process_map;
-use object::{Object, ObjectSymbol};
-use std::collections::HashMap;
+use object::{Object, ObjectSegment, ObjectSymbol};
+use std::collections::{BTreeMap, HashMap};
 
-// A list of addresses to which a particular symbol name resolves.
-#[derive(Debug)]
-pub struct SymbolEntry {
-    // The addresses.
-    pub addresses: Vec<u64>,
+// A reference to a function mapped into the traced process.
+#[derive(Debug, Clone)]
+pub struct SymbolInfo {
+    // The name of the function.
+    pub name: String,
+
+    // The address in the traced process's address space.
+    pub address: u64,
+
+    // The length of the function in bytes.
+    pub size: u64,
 }
 
 // An index of symbol names and addresses to which those symbols resolve.
 #[derive(Debug)]
 pub struct SymbolIndex {
-    // The map from symbol name to list of addresses.
-    pub symbols: HashMap<String, SymbolEntry>,
+    // The map from symbol name to information about the symbol.
+    pub symbols_by_name: HashMap<String, Vec<SymbolInfo>>,
+
+    // A map from address to symbol info.
+    pub symbols_by_address: BTreeMap<u64, SymbolInfo>,
 }
 
 impl SymbolIndex {
     // Start a new empty symbol index.
     pub fn new() -> SymbolIndex {
-        let symbols = HashMap::new();
-        SymbolIndex { symbols }
+        SymbolIndex {
+            symbols_by_name: HashMap::new(),
+            symbols_by_address: BTreeMap::new(),
+        }
     }
 
     // Check whether a particular symbol falls within the address range
     // mapped by a ProcessMapEntry, and if so, then store the relevant
     // address in the symbol map.
-    fn add_symbol(&mut self, entry: &process_map::ProcessMapEntry, symbol: &object::Symbol) {
+    fn add_symbol(
+        &mut self,
+        entry: &process_map::ProcessMapEntry,
+        address_offset: i64,
+        symbol: &object::Symbol,
+    ) {
         match symbol.name() {
             Ok(name) => {
-                if symbol.address() >= entry.offset
-                    && symbol.address() < entry.offset + (entry.end - entry.begin)
+                let sym_address = (symbol.address() as i64 - address_offset) as u64;
+                let size = symbol.size();
+
+                if sym_address >= entry.offset
+                    && sym_address < entry.offset + (entry.end - entry.begin)
                 {
-                    let address = entry.begin + symbol.address() - entry.offset;
-                    if !self.symbols.contains_key(name) {
-                        let addresses = Vec::new();
-                        self.symbols
-                            .insert(name.to_owned(), SymbolEntry { addresses });
+                    let address = entry.begin + sym_address - entry.offset;
+                    let symbol_info = SymbolInfo {
+                        name: name.to_owned(),
+                        address,
+                        size,
+                    };
+
+                    if !self.symbols_by_name.contains_key(name) {
+                        self.symbols_by_name.insert(name.to_owned(), Vec::new());
                     }
-                    let entry = self.symbols.get_mut(name).unwrap();
-                    entry.addresses.push(address);
+                    let entry = self.symbols_by_name.get_mut(name).unwrap();
+                    entry.push(symbol_info.clone());
+
+                    self.symbols_by_address.insert(address, symbol_info);
                 }
             }
             Err(_) => (),
         }
     }
 
+    // Add symbols from a parsed object file to the symbol index.
+    fn add_elf_symbols(&mut self, entry: &process_map::ProcessMapEntry, elf: &object::File) {
+        let mut address_offset: Option<i64> = None;
+
+        for segment in elf.segments() {
+            let range = segment.file_range();
+
+            if range.0 == entry.offset {
+                address_offset = Some((segment.address() - range.0) as i64);
+            }
+        }
+
+        if address_offset == None {
+            return;
+        }
+
+        // Iterate through all symbols in the binary, adding
+        // them to the symbol map if they are in the mmap
+        // range.
+        for symbol in elf.symbols() {
+            self.add_symbol(entry, address_offset.unwrap(), &symbol);
+        }
+
+        // Similarly, but for dynamic symbols.
+        for symbol in elf.dynamic_symbols() {
+            self.add_symbol(entry, address_offset.unwrap(), &symbol);
+        }
+    }
+
     // Add all the symbols for a particluar mmaped range of an executable
     // which has been mapped into a traced process.
     pub fn add_entry_symbols(&mut self, entry: &process_map::ProcessMapEntry) {
         match &entry.filename {
             Some(filename) => match std::fs::read(filename.clone()) {
                 Ok(elf_data) => match object::File::parse(&*elf_data) {
                     Ok(elf) => {
-                        // Iterate through all symbols in the binary, adding
-                        // them to the symbol map if they are in the mmap
-                        // range.
-                        for symbol in elf.symbols() {
-                            self.add_symbol(entry, &symbol);
-                        }
-
-                        // Similarly, but for dynamic symbols.
-                        for symbol in elf.dynamic_symbols() {
-                            self.add_symbol(entry, &symbol);
-                        }
+                        self.add_elf_symbols(entry, &elf);
                     }
                     Err(_) => (),
                 },
@@ -98,4 +142,24 @@ impl SymbolIndex {
             self.add_entry_symbols(&entry);
         }
     }
+
+    // Get function name by address.  We'll try a few symbols which start
+    // proir to the address we are checking, as glibc likes to leave GLIBC
+    // symbols near the function name.
+    pub fn get_function_by_address(&self, address: u64) -> Option<SymbolInfo> {
+        let mut tries = 0;
+        let mut symbols_by_range = self.symbols_by_address.range(..address + 1);
+        while let Some((_, info)) = symbols_by_range.next_back() {
+            if address - info.address <= info.size {
+                return Some(info.clone());
+            }
+
+            tries += 1;
+            if tries >= 4 {
+                break;
+            }
+        }
+
+        return None;
+    }
 }

allocscope-trace/src/trace.rs

@@ -208,14 +208,14 @@ fn detach_from_tracee(context: &mut context::TraceContext) -> Result<(), Box<dyn
 fn trace_attached_pid(record: record::TraceRecord, pid: u32) -> Result<(), Box<dyn Error>> {
     let mut breakpoint_set = breakpoint::BreakpointSet::new();
     hooks::add_hooks(&mut breakpoint_set)?;
-    breakpoint_set.resolve_breakpoints(pid)?;
-    ptrace::setoptions(pid, libc::PTRACE_O_TRACECLONE)?;
-
-    // Now that we have set breakpoints, resume execution.
-    ptrace::syscall(pid, 0)?;
 
     let transaction = record::Transaction::new(&record)?;
     let mut context = context::TraceContext::new(pid, breakpoint_set, transaction)?;
+    context.update_process_map(pid)?;
+
+    // Now that we have set breakpoints, resume execution.
+    ptrace::setoptions(pid, libc::PTRACE_O_TRACECLONE)?;
+    ptrace::syscall(pid, 0)?;
 
     ptrace::block_term_signals()?;
     match trace_loop(&mut context, pid) {

allocscope-trace/src/unwind.rs

@@ -17,6 +17,7 @@
 */
 
 use crate::process_map;
+use crate::symbol_index;
 use libunwind_sys;
 use std::error::Error;
 use std::path;
@@ -104,6 +105,7 @@ impl Drop for UPTAccessors {
 // Collect the current stack from a stopped traced thread using libunwind.
 pub fn collect_stack(
     process_map: &process_map::ProcessMap,
+    symbol_index: &symbol_index::SymbolIndex,
     address_space: &AddressSpace,
     upt: &UPTAccessors,
 ) -> Result<Vec<StackEntry>, Box<dyn Error>> {
@@ -130,18 +132,10 @@ pub fn collect_stack(
             }
 
             let mut offset: libunwind_sys::unw_word_t = 0;
-            let mut name_vec: Vec<libc::c_char> = vec![0; 1024];
             let mut name: String = "".to_string();
-            if libunwind_sys::unw_get_proc_name(
-                &mut cursor,
-                name_vec.as_mut_ptr(),
-                1024,
-                &mut offset,
-            ) == 0
-            {
-                name = std::ffi::CStr::from_ptr(name_vec.as_mut_ptr())
-                    .to_string_lossy()
-                    .into_owned();
+            if let Some(symbol) = symbol_index.get_function_by_address(address) {
+                name = symbol.name.clone();
+                offset = address - symbol.address;
             } else {
                 // If we can't resolve the address to a function, instead use
                 // the filename from which the instructions are mapped.
@@ -151,7 +145,7 @@ pub fn collect_stack(
                         if let Some(basename) = path.file_name() {
                             if let Some(basename_str) = basename.to_str() {
                                 name = format!("[{}]", basename_str);
-                                offset = address - entry.begin;
+                                offset = address - entry.begin + entry.offset;
                             }
                         }
                     }