Mimic Ruby's backtrace logic in ruby interpreter and tracer, add support for ruby CMEs #907
Conversation
| rubyFlSingleton libpf.Address | ||
|
|
||
| // Is it possible to read the classpath | ||
| hasClassPath bool |
There was a problem hiding this comment.
@fabled i tried to go for the "feature" rather than "version" based approach, hopefully this is what you had in mind.
| return &rubyIseq{}, fmt.Errorf("failed to read iseq location data, %v", err) | ||
| } | ||
|
|
||
| sourceFileNamePtr := npsr.Ptr(dataBytes, uint(vms.iseq_location_struct.pathobj)) |
There was a problem hiding this comment.
I saw another opportunity to use npsr to save readv calls.
| singletonObject := r.rm.Ptr(classAddr + libpf.Address(r.r.vmStructs.rclass_and_rb_classext_t.classext+r.r.vmStructs.rb_classext_struct.as_singleton_class_attached_object)) | ||
| classpathPtr = r.rm.Ptr(singletonObject + libpf.Address(r.r.vmStructs.rclass_and_rb_classext_t.classext+r.r.vmStructs.rb_classext_struct.classpath)) | ||
|
|
||
| // TODO (dalehamel) in future PR handle anonymous classes and modules |
There was a problem hiding this comment.
I can remove my handle from this but I basically promise to submit this later, as it is, i feel the PR is big enough and this is kinda an esoteric edge case.
| record->phpUnwindState.zend_execute_data = 0; | ||
| record->rubyUnwindState.stack_ptr = 0; | ||
| record->rubyUnwindState.last_stack_frame = 0; | ||
| record->rubyUnwindState.cfunc_saved_frame = 0; |
There was a problem hiding this comment.
NB this has to be reset or coredump tests fail due to state leakage it seems.
There was a problem hiding this comment.
Minor: Since these are all structures, I wonder if it's be nicer to use the zero-initialization syntax, e.g. record->rubyUnwindState = (struct RubyUnwindState) {}; this would avoid needing to update it for every change of the structure.
| "libruby.so.2.7.8+0x216781", | ||
| "libruby.so.2.7.8+0x211485", | ||
| "libruby.so.2.7.8+0x2212d2", | ||
| "is_prime+0 in /pwd/testsources/ruby/loop.rb:10", |
There was a problem hiding this comment.
The ordering of the frames changes in a few of these examples because i fixed the bug where didn't save our state when returning back to ruby interpreter.
I also push the saved cfunc when we return, so it properly "owns" the native frames it called.
| "<main>+0 in /tmp/systemtest_sum_of_primes_1619527295051925477.rb:30", | ||
| "<main>+0 in /tmp/systemtest_sum_of_primes_1619527295051925477.rb:29", | ||
| "block (2 levels) in <main>+0 in /tmp/systemtest_sum_of_primes_1619527295051925477.rb:30", | ||
| "UNKNOWN CFUNC+0 in <cfunc>:0", |
There was a problem hiding this comment.
I think these coredumps for older rubies are stripped and missing the symbol table, so we cannot lookup the location of the global symbol table within ruby. This is the fallback dummy frame for that.
| "<main>+0 in /app/loop.rb:29", | ||
| "loop+0 in <internal:kernel>:168", | ||
| "Range#each+0 in <cfunc>:0", | ||
| "block in <main>+0 in /app/loop.rb:29", |
There was a problem hiding this comment.
Notice that a lot of these now have more context because we have conditional logic picking between "label", "base_label", and "method name" from the iseq, to match ruby's own logic for this.
| "libruby.so.2.7.8+0x202f17", | ||
| "libruby.so.2.7.8+0x215a23", | ||
| "<main>+0 in /pwd/testsources/ruby/loop.rb:29", | ||
| "each+0 in <cfunc>:0", |
There was a problem hiding this comment.
This frame was previously elided but is now handled.
| "libruby.so.3.5.0+0x31e2ea", | ||
| "libruby.so.3.5.0+0x325240", | ||
| "libruby.so.3.5.0+0x333b86", | ||
| "<main>+0 in /app/loop.rb:29", |
There was a problem hiding this comment.
This is an example of the repeated frame bug (#770 ) which is now fixed, hence why it doesn't repeat anymore.
| "is_prime+0 in /app/loop.rb:10", | ||
| "sum_of_primes+0 in /app/loop.rb:20", | ||
| "<main>+0 in /app/loop.rb:30", | ||
| "Object#is_prime+0 in /app/loop.rb:45481984", |
There was a problem hiding this comment.
I'm not sure the cause, but there seems to be a bug when computing the line numbers for the leaf ruby frame. (see below, found the cause and a solution) Here it is an impossibly large value, and in other spots it is 0. It seems to be a consequence of moving to the CME backed iseqs rather than just the bare one which is directly accessible.
If it's ok, i'd like to just file a follow-up issue to fix that separately.
There was a problem hiding this comment.
Looking at this a bit more, I believe the issue is that the line number is also encoded in the plain iseq directly accessible from the CFP:
I'll see if this can be passed from bpf as well to cover this case.
There was a problem hiding this comment.
Since this PR is already quite large, and my solution for passing the additional bytes is probably controversial (since I need to use the padding on Frame to send another address), I'm not pushing my solution to this branch just yet. But, I do have a fix and it is available here to get an idea of how it can be solved:
I'd like to suggest we move forward with this branch as-is, and I submit this fix as a separate PR if/when this branch lands.
There was a problem hiding this comment.
Minor: I wonder if it's worth setting the line number to 0 or -1 already in this PR, rather than having the incorrect line until the bigger fix is ready.
There was a problem hiding this comment.
Minor: I wonder if it's worth setting the line number to 0 or -1 already in this PR, rather than having the incorrect line until the bigger fix is ready.
It would be idea, yeah, but I haven't actually changed the line number calculation function at all. It seems to work correctly.
If anything, it might help to move the guard clause in C (which previously did exist in BPF but has now been removed, since we always want to push the frame) to the top of the go function. I can give that a try, it would be good to have and should be pretty simple?
Ie, this check:
EDIT - this doesn't seem to work, perhaps because we have no way of knowing if the frame is the "top" frame (they are sent to us individually, we don't know where they are in the sequence). I could perhaps flag this by jamming more information into the File bits, but i'd rather just leave this for now since there already is a fix on the table with the correct logic.
There was a problem hiding this comment.
I decided to file #931 separately, if that lands then i'll pull the code to fix the line numbers right into this PR.
There was a problem hiding this comment.
I fixed all of this in dalehamel#12 which builds on #946 which i rebased on today
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
972cfde to
a99ac63
Compare
ivoanjo
left a comment
ivoanjo
left a comment
There was a problem hiding this comment.
I'm not a contributor on this repo, but I've spent a lot of time looking at Ruby's stack trace unwinding code in backtracie and datadog's ruby profiler: All of the extra work to collect the class names + C function names in this PR looks quite reasonable.
| record->phpUnwindState.zend_execute_data = 0; | ||
| record->rubyUnwindState.stack_ptr = 0; | ||
| record->rubyUnwindState.last_stack_frame = 0; | ||
| record->rubyUnwindState.cfunc_saved_frame = 0; |
There was a problem hiding this comment.
Minor: Since these are all structures, I wonder if it's be nicer to use the zero-initialization syntax, e.g. record->rubyUnwindState = (struct RubyUnwindState) {}; this would avoid needing to update it for every change of the structure.
| // number of attempts to read Go custom labels | ||
| metricID_UnwindGoLabelsAttempts, | ||
|
|
||
| // number of failures to read Go custom labels |
There was a problem hiding this comment.
⬆️ Minor: I think you forgot to update the metricID_UnwindRubyErrReadIseqEncoded/metricID_UnwindRubyErrReadIseqSize above as well.
(Although I wonder -- pardon the basic question -- why keep the old metrics around instead of removing them?)
There was a problem hiding this comment.
good catch, i'll fix this.
There was a problem hiding this comment.
Although I wonder -- pardon the basic question -- why keep the old metrics around instead of removing them?
I figured since the metrics (and errors) rely on unique IDs, leaving them there increases the potential that they get reused, and it is possible that metrics (or errors) could be misidentified. It might make sense to reuse them in the future, but for now leaving them as-is and deprecating them avoids this possibility
| "is_prime+0 in /app/loop.rb:10", | ||
| "sum_of_primes+0 in /app/loop.rb:20", | ||
| "<main>+0 in /app/loop.rb:30", | ||
| "Object#is_prime+0 in /app/loop.rb:45481984", |
There was a problem hiding this comment.
Minor: I wonder if it's worth setting the line number to 0 or -1 already in this PR, rather than having the incorrect line until the bigger fix is ready.
There was a problem hiding this comment.
Definitely not for this PR, and I guess that would require regenerating the core dumps, but I while going through these I was left thinking "I wish we had Ruby's exact actual output of the backtrace as a golden reference to compare here".
E.g. without that info it looks to me we can only tell the current stack looks better/matches what seems to be happening in gdb, but it's unclear if there's some weird corner case that's still missing or not.
There was a problem hiding this comment.
Definitely not for this PR, and I guess that would require regenerating the core dumps, but I while going through these I was left thinking "I wish we had Ruby's exact actual output of the backtrace as a golden reference to compare here".
Yes that would be good, locally i have versions of the script where I run stackprof to ensure what I'm getting looks sane. It would be quite an effort though, and it is difficult to even get the older rubies to compile (I guess you could use docker with an older OS? Modern toolchains won't build anything 3.0.0 or older)
Also with the coredump tests it is a bit tricky to know that the native frames are correct since of course it doesn't symbolize them.
There was a problem hiding this comment.
Yes that would be good, locally i have versions of the script where I run stackprof to ensure what I'm getting looks sane. It would be quite an effort though, and it is difficult to even get the older rubies to compile (I guess you could use docker with an older OS? Modern toolchains won't build anything 3.0.0 or older)
It may be harder on macOS than on Linux; I just got a new laptop running Ubuntu 24.04 and I was able to get even Ruby 2.2 going without too much mucking (although I did need some).
So I guess if this would be an interesting (separate) contribution, I could look into it...
Also with the coredump tests it is a bit tricky to know that the native frames are correct since of course it doesn't symbolize them.
Yes, I think ideally we'd have both sets of stacks -- the Ruby ones I'd expect would be a strict subset of the complete symbolized stacks.
| typedef struct rb_control_frame_struct { | ||
| const void *pc; // cfp[0] | ||
| void *sp; // cfp[1] | ||
| const void *iseq; // cfp[2] | ||
| void *self; // cfp[3] / block[0] | ||
| const void *ep; // cfp[4] / block[1] | ||
| const void *block_code; // cfp[5] / block[2] -- iseq, ifunc, or forwarded block handler | ||
| void *jit_return; // cfp[6] -- return address for JIT code | ||
| } rb_control_frame_t; |
There was a problem hiding this comment.
Minor: I wonder if it's worth introducing a typedef for VALUE, to keep the closer alignment with the types used on the Ruby VM (rather than replacing them with a void *)
felixge
left a comment
felixge
left a comment
There was a problem hiding this comment.
Thank you so much for this contribution @dalehamel . I don't have the expertise to review this, but I've added an agenda item to the next profiling SIG meeting notes to discuss a planning for getting this reviewed and landed.
Hey that is awesome, thanks @felixge . Perhaps I can attend the meeting. FYI I am opening a couple of additional issues today to reference some work that depends on this, and give an overall view to the Ruby interpreter improvements we are using internally that I would like to contribute back :) EDIT: here it is #941, see also #936 and #937 which build on this PR. |
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
e4e1ffb to
5374137
Compare
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
5374137 to
ed21fd2
Compare
|
I've rebased with #946 in dalehamel#12 which I've staged to update so that once that PR lands, I can update this PR to include the line number fixes. |
fabled
left a comment
fabled
left a comment
There was a problem hiding this comment.
Thanks for this! And apologies for the delay. First glance done, mostly mechanical. I need to study the Ruby VM also a bit to understand the split what needs to be in ebpf, and what can be done in Go side. Can you also rebase now that the variable length frame PR is merged?
interpreter/ruby/ruby.go
Outdated
| // regex to extract a version from a string | ||
| rubyVersionRegex = regexp.MustCompile(`^(\d)\.(\d)\.(\d)$`) | ||
|
|
||
| unknownCfunc = libpf.Intern("UNKNOWN CFUNC") |
There was a problem hiding this comment.
Typically these have been in the style <unknown> or similar. Is the string suggested here also used by Ruby in its backtraces?
There was a problem hiding this comment.
Is the string suggested here also used by Ruby in its backtraces?
No, ruby should always be able to read this label internally so there is no case that needs to be handled for not having a cfunc id.
We should also be able to reliably determine this, unless if:
- We are on a super old version of ruby
- We are on a new version of ruby that the bpf profiler doesn't handle yet
- Ruby was built with non-standard settings and the offsets we use to find the values in the id table are scewed.
This value here is mostly to indicate specifically that we know it was a c function ,but couldn't resolve its id.
Typically these have been in the style or similar.
I'll switch it to use this convention
interpreter/ruby/ruby.go
Outdated
| classFlags := r.rm.Ptr(classAddr) | ||
| classMask := classFlags & rubyTMask | ||
|
|
||
| classpathPtr = r.rm.Ptr(classAddr + libpf.Address(r.r.vmStructs.rclass_and_rb_classext_t.classext+r.r.vmStructs.rb_classext_struct.classpath)) | ||
| if classMask == rubyTIClass { | ||
| //https://github.com/ruby/ruby/blob/b627532/vm_backtrace.c#L1931-L1933 | ||
|
|
||
| if klassAddr := r.rm.Ptr(classAddr + libpf.Address(r.r.vmStructs.rbasic_struct.klass)); klassAddr != 0 { |
There was a problem hiding this comment.
There are several reads based on classAddr. Could these be merged into one read to buffer sized to hold the full data?
There was a problem hiding this comment.
I think we can reasonably do this for the flags and klass as they are reliably at the start of the struct and at fixed offsets.
For singleton and classpath though they are much further down in the struct (currently ~100 bytes) so unless we read the whole object i'm not sure that makes sense. How expensive is a large read vs multiple smaller reads?
There was a problem hiding this comment.
I decided to do a large read that will encompass rbasic + classext + classpath + size of value, so that we can get the entire object up to and including classpath pointer in the first read.
We'll still need to do additional reads if the object is an iclass or a singleton, as we need to get a different base classaddr to the classpath in those cases.
| singletonObject := r.rm.Ptr(classAddr + libpf.Address(r.r.vmStructs.rclass_and_rb_classext_t.classext+r.r.vmStructs.rb_classext_struct.as_singleton_class_attached_object)) | ||
| classpathPtr = r.rm.Ptr(singletonObject + libpf.Address(r.r.vmStructs.rclass_and_rb_classext_t.classext+r.r.vmStructs.rb_classext_struct.classpath)) | ||
|
|
||
| // TODO (dalehamel) in future PR handle anonymous classes and modules |
interpreter/ruby/ruby.go
Outdated
| // RUBY_ID_SCOPE_SHIFT = 4 | ||
| // https://github.com/ruby/ruby/blob/797a4115bbb249c4f5f11e1b4bacba7781c68cee/template/id.h.tmpl#L30 | ||
| rubyIdScopeShift := 4 | ||
|
|
||
| // ID_ENTRY_UNIT | ||
| // https://github.com/ruby/ruby/blob/v3_4_5/symbol.c#L77 | ||
| idEntryUnit := uint64(512) | ||
|
|
||
| // ID_ENTRY_SIZE | ||
| // https://github.com/ruby/ruby/blob/980e18496e1aafc642b199d24c81ab4a8afb3abb/symbol.c#L93 | ||
| idEntrySize := uint64(2) |
There was a problem hiding this comment.
Should be const. Potentially in the vmStruct to make these configurable if there's risk that these change.
interpreter/ruby/ruby.go
Outdated
| // rb_iseq_constant_body | ||
| // https://github.com/ruby/ruby/blob/5445e0435260b449decf2ac16f9d09bae3cafe72/vm_core.h#L311 | ||
| iseqBody := libpf.Address(frame.File) | ||
| lastId := r.rm.Uint32(r.globalSymbolsAddr) |
There was a problem hiding this comment.
Is the lastId here volatile? Perhaps we could still cache it, and re-read it only if the serial is larger then the cached lastId?
There was a problem hiding this comment.
Any time a string is interned, this value can change https://github.com/ruby/ruby/blob/20cda200d3ce092571d0b5d342dadca69636cb0f/symbol.c#L795, so yes I'd say that this is potentially volatile.
Perhaps we could still cache it, and re-read it only if the serial is larger then the cached lastId?
Yes this is probably ok, since it is only being used for the check. We would need to do the check twice but I guess that is cheaper than unconditionally re-reading the same value.
There was a problem hiding this comment.
This is now cached
| &stack_ptr_current, | ||
| sizeof(stack_ptr_current), | ||
| (void *)(current_ctx_addr + rubyinfo->vm_stack))) { | ||
| DEBUG_PRINT("ruby: failed to read current stack pointer"); |
There was a problem hiding this comment.
Are these removed to just reduce ebpf byte code size?
There was a problem hiding this comment.
Yes because the debug prints add a lot of byte code, and we can communicate the same thing with return codes / metrics.
| error = read_ruby_frame(record, rubyinfo, stack_ptr, next_unwinder); | ||
| if (error != ERR_OK) | ||
| return error; |
There was a problem hiding this comment.
Semi related, we are trying to adjust the unwinders to not abort on non-fatal errors. Would it be reasonable to do it in this PR while at it?
The idea would be to emit error frame (and potentially mark the HLL unwinder as "done") if an error is encountered, and then continue with the native unwinder.
There was a problem hiding this comment.
I noticed the PR that added this in the last couple of months and think it mostly makes sense. However, in the case of ruby jit (a subsequent PR), we know that if we have a JIT PC, we explicitly DO want to end unwinding when we are done unwinding ruby, as the native unwinder cannot proceed further. So there is some nuance here we'll need to deal with.
We can probably just emit the error frame as you say though and use a better mechanism to say to stop unwinding further, i'll just need to study what the other interpreters are doing.
There was a problem hiding this comment.
I couldn't find an example of other unwinders doing this, but maybe i'm looking for the wrong thing.
Either way, perhaps I could follow up with another PR to make continuing with unwinding more robust once this and the other ruby PRs i have queued up have been reviewed and hopefully merged.
support/ebpf/ruby_tracer.ebpf.c
Outdated
| if (rubyinfo->version < 0x30100) | ||
| cf_size -= sizeof(control_frame.jit_return); | ||
|
|
||
| read_cfp: |
There was a problem hiding this comment.
yes it was used an in earlier version. Replacing the label with a comment.
support/ebpf/ruby_tracer.ebpf.c
Outdated
| // Next iteration of the loop, or error out if we have hit the maximum as we | ||
| // couldn't find the method entry | ||
| next_ep: | ||
| if (ep_check++ < MAX_EP_CHECKS && (!((u64)vm_env.flags & VM_ENV_FLAG_LOCAL))) { |
There was a problem hiding this comment.
I would really prefer this loop to be a for with the proper UNROLL annotation. This might end up generating unrolled code at some point (and fail verifier in the old kernels).
In general gotos like this suggest this probably should be split into more functions. While there is no rule to not use goto, I personally think they should not be used in complex way like this where it becomes readability issue.
There was a problem hiding this comment.
I would really prefer this loop to be a for with the proper UNROLL annotation. This might end up generating unrolled code at some point (and fail verifier in the old kernels).
Yeah i can try that, I think the verifier will probably treat it the same. It will bloat the number of instructions for this program, but ultimately it is basically already evaluating that much at load time anyways so shouldn't change the behaviour.
In general gotos like this suggest this probably should be split into more functions. While there is no rule to not use goto, I personally think they should not be used in complex way like this where it becomes readability issue.
I prefer not to use them to, but had to resort to it in order to try to minimize the number of instructions in the inner loop here in order to satisfy the verifier, since the algorithm in ruby itself uses a "while" loop, so the go-to seems to help the verifier understand where the execution can be short circuited. This is definitely the most finnicky part of the code and maybe could be refactored as you say, but I'd rather not change the logic in this PR as it would risk breaking things.
There was a problem hiding this comment.
Added the unroll and eliminated most of the gotos ("continue" and "break" do basically the same flow control more idiomatically here)
| frame_addr = me_or_cref; | ||
|
|
||
| if (cfunc) { | ||
| if (rubyinfo->version < 0x20600) { |
There was a problem hiding this comment.
Can this be also a feature flag in rubyinfo?
There was a problem hiding this comment.
Can this be also a feature flag in
rubyinfo?
I can add it, but note that this is how the code already runs the check on main for this branch, see
opentelemetry-ebpf-profiler/support/ebpf/ruby_tracer.ebpf.c
Lines 145 to 151 in 2e2be5a
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
1f09c90 to
2c9e061
Compare
|
@fabled I believe I've addressed all your first batch of comments with either code or conversation, apologies if I missed anything. I believe this should be ready for another look when you have the time, thanks! EDIT: woops, github hid some of them. Addressing those now. |
Co-authored-by: Timo Teräs <timo.teras@iki.fi>
Co-authored-by: Timo Teräs <timo.teras@iki.fi>
Co-authored-by: Timo Teräs <timo.teras@iki.fi>
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
6d78f87 to
6c20f21
Compare
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
6c20f21 to
14bde4d
Compare
dalehamel
force-pushed
the
ruby-read-cmes
branch
from
14bde4d to
3b0f653
Compare
| sourceFileName, err := r.getStringCached(sourceFileNamePtr, r.readPathObjRealPath) | ||
| if err != nil { | ||
| return err | ||
| log.Debugf("Failed to get source file name %v", err) |
There was a problem hiding this comment.
Is it really safe to continue at this point? Later, when reading labels, we return.
There was a problem hiding this comment.
Yes, the string read for the source file name is allowed to fail. We fail if ANY of the label reads fails, as this would lead to calculating an incorrect label since the algorithm would treat them as empty, but they are actually an "error".
The source file name isn't as critical as the method label, and we need three components to correctly compute the full label.
| "libruby.so.2.7.8+0x211485", | ||
| "libruby.so.2.7.8+0x2212d2", | ||
| "<main>+0 in /pwd/testsources/ruby/loop.rb:29", | ||
| "<=>+0 in <cfunc>:0", |
There was a problem hiding this comment.
Do you know what has happened here?
There was a problem hiding this comment.
the previous label calculation was overly simplistic. <main> here is actually block (2 levels) in <main>, it was also looking at the wrong iseq so it got the wrong line number.
In ruby <=> is the label for "compare" operations, it is used throughout ruby but here is an example in string.c https://github.com/ruby/ruby/blob/c794a97940a36269cffcb6ad35ef7ff209fe2720/string.c#L12193-L12195
The stack frames also moved around a bit as I noted in the comment above.
Co-authored-by: Florian Lehner <florianl@users.noreply.github.com>
5 participants
What
This overhauls the ruby interpreter and unwinder to more closely mimic what ruby's own backtrace function does. In particular, it adds support for collecting and symbolizing Callable Method Entries (CMEs), which contain additional information.
This adds support for new features in symbolizing ruby frames:
It also fixes an existing bug in ruby #770
In addition to this, it changes how frames are symbolized:
Real world example
This makes the bpf ruby interpreter closer to being usable and helpful with real production workloads.
These examples are taken from a production job server using our internal job system called "Hedwig".
Before:
After:
(Note: that these are aggregated by a custom backend, and the [rb]:: prefixes are added by that.)
Notice that the names are much more descriptive, including the class name or extended label information that was previously omitted.
Notice also how
Kernel#forkowns the native frames callingrb_f_fork, and likewise forArray#eachowningrb_ary_each. Previously these frames were elided.These frames much more closely resemble what Ruby developers will be familiar with when looking at stackprof of vernier profiles, as well as backtracie. I recently submitted the same thing for rbspy following basically the same approach and algorithm but done in one process, in userspace. In fact, when placed side by side with profiles from stackprof, developers can't tell the difference between the new native profiles:
vs stackprof request profiles they are already familiar with:
But, it is also possible to get more context about what it is doing, since we can see kernel and userspace native frames in the context of the ruby:
Why
The current unwinding approach is not consistent with what ruby's own backtrace function does. This is confusing to users who are familiar with ruby profilers like stackprof and vernier, which uses's ruby's built-in profiling stack unwinding.
We also are currently missing information that makes the ruby unwinder useful for any real app in production. Knowing the class information makes it easier to see what is actually going on in the application.
The existing symbolization and recording of stack frames loses a lot of data, it doesn't handle callable method entries at all and doesn't navigate to the same instruction sequences and label values, so it can provide surprising results.
How
As much as possible, the code mimics the behaviour of ruby's own
rb_profile_framesfrom ruby'svm_backtrace.c, both for collecting the frames:check_method_entryto walk from the ep to the correct frame. We have to unroll and optimize this for it to work, since BPF doesn't allow a "while" loop.And when symbolizing:
rb_profile_frame_full_labelas much as possible, considering the class name to get the qualified method name, and using the label, base_label, and method_name labels to compose the most descriptive possible label regardless of it is a CME or bare ISEQ.id2strI also added the support for symbolizing frames that are backed by a ruby CME, this adds new code for
id2symwhich is used to look up C method identifiers from the global symbol table.For both types of CMEs, I've added the code to read the class data from
ext.classpathon ruby 3.3.0+.All frames also use the equivalent of
rb_profile_frame_full_name, regardless of if the class information is available, as this can still provide a more contextful label.Reviewer Notes
I'm aware this is a large changeset, especially after we just landed #170. I considered not including the class path and C symbolizing stuff, but decided it would be a bit silly to submit them separately since there isn't much of a point in collecting CMEs if we don't also use them. Because I'm both updating the BPF side (collection, building up frame buffer in the same way rb_profile_frames does by getting CMES), and Go side (symbolizing the results), there is a fair bit to change here.
I recommend using github's "side by side" view to review this, the intermixed one won't make much sense otherwise.
I'd recommend starting it in the BPF code
On then moving to the go side:
My apologies for the large diff, I did hold back additional stuff which I want to submit in subsequent PRs:
However, this change represents the most important, common base for all the additional work. I tried to keep the changes as small as I could, but adding tests, comments, and boiler plate has pushed the diff larger.