ghostscope_loader/

lib.rs

//! GhostScope eBPF Loader
//!
//! This crate provides the `GhostScopeLoader` which manages the lifecycle of eBPF programs:
//! - Loading eBPF bytecode into the kernel
//! - Attaching/detaching uprobes to target binaries
//! - Reading trace events from RingBuf or PerfEventArray
//! - Managing BPF maps for process module offsets
//!
//! ## Architecture
//!
//! The loader supports two event output mechanisms:
//! - **RingBuf**: Modern kernel (>= 5.8) continuous byte stream
//! - **PerfEventArray**: Legacy kernel (< 5.8) per-CPU independent events
//!
//! Event parsing is handled by `ghostscope_protocol::StreamingTraceParser` which
//! adapts to the event source type automatically.

use aya::{
    maps::{perf::PerfEventArray, MapData, RingBuf},
    programs::{uprobe::UProbeLinkId, ProgramError, UProbe},
    Ebpf, EbpfLoader, VerifierLogLevel,
};
use ghostscope_protocol::{ParsedTraceEvent, StreamingTraceParser, TraceContext};
use log::log_enabled;
use log::Level as LogLevel;
use std::convert::TryInto;
use std::future::poll_fn;
use std::os::unix::io::AsRawFd;
use std::os::unix::io::RawFd;
use std::path::Path;
use std::task::Poll;
use tokio::io::unix::AsyncFd;
use tokio::io::Interest;
use tracing::{debug, error, info, warn};

// Export kernel capabilities detection
mod kernel_caps;
pub use kernel_caps::{KernelCapabilities, KernelCapabilityError};

// Export error types
mod error;
pub use error::{LoaderError, Result};

// Internal uprobe module
mod uprobe;
use uprobe::UprobeAttachmentParams;

// Use shared map types from ghostscope-process
use ghostscope_process::maps::{proc_offsets_pin_dir, proc_offsets_pin_path};

/// Event output map type wrapper
enum EventMap {
    RingBuf(RingBuf<MapData>),
    PerfEventArray {
        _map: PerfEventArray<MapData>,
        cpu_buffers: Vec<PerfEventCpuBuffer>,
    },
}

#[derive(Clone, Copy, Debug)]
struct PerfBufferFd(RawFd);

impl AsRawFd for PerfBufferFd {
    fn as_raw_fd(&self) -> RawFd {
        self.0
    }
}

struct PerfEventCpuBuffer {
    cpu_id: u32,
    buffer: aya::maps::perf::PerfEventArrayBuffer<MapData>,
    readiness: AsyncFd<PerfBufferFd>,
}

/// Compatibility shim that mimics Aya's newer attach location helper so we can keep
/// a single call-site regardless of which `UProbe::attach` signature we compile against.
enum UProbeAttachLocation<'a> {
    AbsoluteOffset(u64),
    Function(&'a str),
}

impl<'a> UProbeAttachLocation<'a> {
    fn attach<T: AsRef<Path>>(
        self,
        program: &mut UProbe,
        target: T,
        pid: Option<i32>,
    ) -> std::result::Result<UProbeLinkId, ProgramError> {
        match self {
            Self::AbsoluteOffset(offset) => program.attach(None, offset, target, pid),
            Self::Function(fn_name) => program.attach(Some(fn_name), 0, target, pid),
        }
    }
}

pub fn hello() -> String {
    format!("Loader: {}", ghostscope_compiler::hello())
}

/// Main eBPF program loader and manager
///
/// Manages the lifecycle of eBPF programs and provides methods for:
/// - Loading eBPF bytecode
/// - Attaching/detaching uprobes
/// - Reading trace events
/// - Managing BPF maps
pub struct GhostScopeLoader {
    /// Loaded eBPF program
    bpf: Ebpf,
    /// Event output map (RingBuf or PerfEventArray)
    event_map: Option<EventMap>,
    /// Active uprobe link
    uprobe_link: Option<UProbeLinkId>,
    /// Stored parameters for re-attaching uprobe
    attachment_params: Option<UprobeAttachmentParams>,
    /// Streaming parser for trace events
    parser: StreamingTraceParser,
    /// String table and metadata for parsing trace events
    trace_context: Option<TraceContext>,
    /// Optional override for PerfEventArray page count (per CPU buffer size in pages)
    perf_page_count: Option<usize>,
}

impl std::fmt::Debug for GhostScopeLoader {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("GhostScopeLoader")
            .field("bpf", &"<eBPF object>")
            .field("event_map", &self.event_map.is_some())
            .field("uprobe_attached", &self.uprobe_link.is_some())
            .field("attachment_params", &self.attachment_params.is_some())
            .finish()
    }
}

impl GhostScopeLoader {
    // ============================================================================
    // Lifecycle Management
    // ============================================================================

    /// Create a new loader instance from eBPF bytecode
    pub fn new(bytecode: &[u8]) -> Result<Self> {
        info!(
            "Loading eBPF program from bytecode ({} bytes)",
            bytecode.len()
        );

        // Enforce: proc_module_offsets must be provided as a pinned global map by the process layer
        let pin_path = proc_offsets_pin_path();
        if !pin_path.exists() {
            return Err(LoaderError::Generic(format!(
                "Pinned map '{}' not found. Please call ghostscope-process to create it first.",
                pin_path.display()
            )));
        }

        let mut loader = EbpfLoader::new();
        let use_verbose = cfg!(debug_assertions)
            || log_enabled!(LogLevel::Trace)
            || log_enabled!(LogLevel::Debug);
        if use_verbose {
            loader.verifier_log_level(VerifierLogLevel::VERBOSE | VerifierLogLevel::STATS);
            tracing::info!("BPF verifier logs: VERBOSE (debug build/log)");
        } else {
            loader.verifier_log_level(VerifierLogLevel::DEBUG | VerifierLogLevel::STATS);
            tracing::info!("BPF verifier logs: DEBUG (release/info)");
        }
        // Configure Aya loader to reuse pinned maps by name under our per-process pin directory.
        // This makes @proc_module_offsets in the eBPF object bind to the already pinned map
        // created by ghostscope-process instead of creating a new private map.
        let pin_dir = proc_offsets_pin_dir();
        if pin_dir.exists() {
            loader.map_pin_path(&pin_dir);
            tracing::info!(
                "Configured map pin directory for reuse: {}",
                pin_dir.display()
            );
        }
        match loader.load(bytecode) {
            Ok(bpf) => {
                info!("Successfully loaded eBPF program");
                Ok(Self {
                    bpf,
                    event_map: None,
                    uprobe_link: None,
                    attachment_params: None,
                    parser: StreamingTraceParser::new(),
                    trace_context: None,
                    perf_page_count: None,
                })
            }
            Err(e) => {
                error!("Failed to load BPF program: {:?}", e);
                // Try to provide more specific error information
                match &e {
                    aya::EbpfError::ParseError(parse_err) => {
                        error!("Parse error details: {:?}", parse_err);
                    }
                    aya::EbpfError::BtfError(btf_err) => {
                        error!("BTF error details: {:?}", btf_err);
                    }
                    _ => {
                        error!("Other BPF error: {:?}", e);
                    }
                }
                Err(LoaderError::Aya(e))
            }
        }
    }

    // ============================================================================
    // Uprobe Management
    // ============================================================================

    /// Attach to a uprobe at the specified function offset
    pub fn attach_uprobe(
        &mut self,
        target_binary: &str,
        function_name: &str,
        offset: Option<u64>,
        pid: Option<i32>,
    ) -> Result<()> {
        self.attach_uprobe_with_program_name(target_binary, function_name, offset, pid, None)
    }

    /// Set PerfEventArray page count override (applies when using Perf backend)
    pub fn set_perf_page_count(&mut self, pages: u32) {
        self.perf_page_count = Some(pages as usize);
    }

    /// Attach to a uprobe with a specific eBPF program name
    pub fn attach_uprobe_with_program_name(
        &mut self,
        target_binary: &str,
        function_name: &str,
        offset: Option<u64>,
        pid: Option<i32>,
        program_name: Option<&str>,
    ) -> Result<()> {
        info!("attach_uprobe called with offset: {:?}", offset);
        if let Some(offset) = offset {
            info!(
                "Using offset-based attachment: {} at 0x{:x} ({}) (pid: {:?})",
                target_binary, offset, function_name, pid
            );
        } else {
            info!(
                "Using function name-based attachment: {}:{} (pid: {:?})",
                target_binary, function_name, pid
            );
        }

        // Collect all available program names first to avoid borrowing conflicts
        let available_programs: Vec<String> = self
            .bpf
            .programs()
            .map(|(name, _)| name.to_string())
            .collect();

        // Debug: Print all available programs
        info!("Available programs:");
        for name in &available_programs {
            info!("  - {}", name);
        }

        // Get the program from the BPF object
        let program_name: String = if let Some(name) = program_name {
            // Use the specified program name
            info!("Using specified program name: {}", name);
            if available_programs.contains(&name.to_string()) {
                name.to_string()
            } else {
                return Err(LoaderError::Generic(format!(
                    "Specified program '{name}' not found in eBPF object"
                )));
            }
        } else {
            // Try different program names: section name first, then function name, then any program
            let program_names = ["uprobe", "main"];
            let mut found_program_name: Option<String> = None;

            for name in &program_names {
                info!("Checking if program exists: {}", name);
                if available_programs.contains(&name.to_string()) {
                    info!("Found program: {}", name);
                    found_program_name = Some(name.to_string());
                    break;
                }
            }

            // If no standard names found, use the first available program
            if found_program_name.is_none() {
                if let Some(first_name) = available_programs.first() {
                    info!(
                        "No standard program names found, using first available: {}",
                        first_name
                    );
                    found_program_name = Some(first_name.clone());
                }
            }

            found_program_name
                .ok_or_else(|| LoaderError::Generic("No suitable program found".to_string()))?
        };

        info!("Attempting to load program: {}", program_name);

        let program_ref = self
            .bpf
            .program_mut(&program_name)
            .ok_or_else(|| LoaderError::Generic(format!("Program '{program_name}' not found")))?;

        info!("Found program, attempting to convert to UProbe");
        info!("Program type: {:?}", program_ref.prog_type());

        // Check what type of program this actually is
        match program_ref {
            aya::programs::Program::UProbe(_) => {
                info!("Program is correctly recognized as UProbe");
            }
            aya::programs::Program::KProbe(_) => {
                error!("Program is incorrectly recognized as KProbe, should be UProbe");
            }
            ref _other => {
                error!("Program is unexpected type (not UProbe or KProbe)");
            }
        }

        let program: &mut UProbe = program_ref.try_into().map_err(|e| {
            LoaderError::Generic(format!("Program '{program_name}' is not a UProbe: {e:?}"))
        })?;

        // Load the program
        info!("About to load eBPF program");
        match program.load() {
            Ok(()) => {
                info!("Program loaded successfully");
            }
            Err(e) => {
                error!("eBPF program load failed: {}", e);
                error!("This typically indicates eBPF verifier rejection");

                // Check for specific verifier errors
                if let ProgramError::SyscallError(syscall_error) = &e {
                    error!(
                        "Syscall '{}' failed: {}",
                        syscall_error.call, syscall_error.io_error
                    );

                    // Check for common error codes
                    if let Some(errno) = syscall_error.io_error.raw_os_error() {
                        match errno {
                            22 => error!(
                                "EINVAL (22): Invalid argument - likely eBPF verifier rejection"
                            ),
                            7 => error!("E2BIG (7): Program too large"),
                            13 => error!("EACCES (13): Permission denied"),
                            95 => error!("EOPNOTSUPP (95): Operation not supported"),
                            _ => error!("Unknown errno: {}", errno),
                        }
                    }
                }

                // Log additional debugging info
                error!("Program name: {}", program_name);
                error!("Program type: {:?}", program_ref.prog_type());

                return Err(LoaderError::Program(e));
            }
        }

        // Attach the uprobe using Aya API via a compatibility helper
        // so argument ordering stays explicit regardless of Aya version.
        let attach_location = match offset {
            Some(offset) => UProbeAttachLocation::AbsoluteOffset(offset),
            None => UProbeAttachLocation::Function(function_name),
        };
        let attach_result = attach_location.attach(program, target_binary, pid);

        match attach_result {
            Ok(link) => {
                if let Some(offset) = offset {
                    info!(
                        "Uprobe attached successfully to {} at offset 0x{:x}",
                        target_binary, offset
                    );
                } else {
                    info!(
                        "Uprobe attached successfully to {}:{}",
                        target_binary, function_name
                    );
                }

                // Store the link handle and attachment parameters for later use
                self.uprobe_link = Some(link);
                self.attachment_params = Some(UprobeAttachmentParams {
                    target_binary: target_binary.to_string(),
                    function_name: function_name.to_string(),
                    offset,
                    pid,
                    program_name,
                });
            }
            Err(e) => {
                if let Some(offset) = offset {
                    error!(
                        "Failed to attach uprobe to {} at offset 0x{:x}: {}",
                        target_binary, offset, e
                    );
                    error!("Detailed error: {:#?}", e);
                } else {
                    error!(
                        "Failed to attach uprobe to {}:{}: {}",
                        target_binary, function_name, e
                    );
                    error!("Detailed error: {:#?}", e);
                }

                // Try to provide more helpful error information
                if let ProgramError::SyscallError(syscall_error) = &e {
                    error!(
                        "Syscall '{}' failed: {}",
                        syscall_error.call, syscall_error.io_error
                    );
                    if let Some(13) = syscall_error.io_error.raw_os_error() {
                        error!("Permission denied - make sure to run with sudo");
                    }
                }

                return Err(LoaderError::Program(e));
            }
        }

        // Initialize event map after successful attachment
        // Try RingBuf first, fall back to PerfEventArray
        let event_map = if let Some(map) = self.bpf.take_map("ringbuf") {
            info!("Initializing RingBuf event map");
            let ringbuf: RingBuf<_> = map
                .try_into()
                .map_err(|e| LoaderError::Generic(format!("Failed to convert ringbuf map: {e}")))?;
            EventMap::RingBuf(ringbuf)
        } else if let Some(map) = self.bpf.take_map("events") {
            info!("Initializing PerfEventArray event map");
            let mut perf_array: PerfEventArray<_> = map.try_into().map_err(|e| {
                LoaderError::Generic(format!("Failed to convert perf event array map: {e}"))
            })?;

            // Get online CPUs
            let online_cpus = aya::util::online_cpus().map_err(|(_, e)| {
                LoaderError::Generic(format!("Failed to get online CPUs: {e}"))
            })?;

            info!(
                "Opening PerfEventArray buffers for {} online CPUs",
                online_cpus.len()
            );

            // Open buffers for all online CPUs
            let mut cpu_buffers = Vec::new();

            for cpu_id in online_cpus {
                let pages = self.perf_page_count;
                match perf_array.open(cpu_id, pages) {
                    Ok(buffer) => {
                        if let Some(p) = pages {
                            info!(
                                "Opened PerfEventArray buffer for CPU {} with {} pages",
                                cpu_id, p
                            );
                        } else {
                            info!(
                                "Opened PerfEventArray buffer for CPU {} (default pages)",
                                cpu_id
                            );
                        }
                        let fd = buffer.as_raw_fd();
                        let readiness =
                            AsyncFd::with_interest(PerfBufferFd(fd), Interest::READABLE).map_err(
                                |err| {
                                    LoaderError::Generic(format!(
                                        "Failed to register perf buffer fd for CPU {cpu_id}: {err}"
                                    ))
                                },
                            )?;
                        cpu_buffers.push(PerfEventCpuBuffer {
                            cpu_id,
                            buffer,
                            readiness,
                        });
                    }
                    Err(e) => {
                        warn!("Failed to open perf buffer for CPU {}: {}", cpu_id, e);
                    }
                }
            }

            if cpu_buffers.is_empty() {
                return Err(LoaderError::Generic(
                    "Failed to open any perf event buffers".to_string(),
                ));
            }

            EventMap::PerfEventArray {
                _map: perf_array,
                cpu_buffers,
            }
        } else {
            return Err(LoaderError::MapNotFound(
                "Neither 'ringbuf' nor 'events' map found".to_string(),
            ));
        };

        // Set parser event source based on map type
        let event_source = match &event_map {
            EventMap::RingBuf(_) => {
                info!("Using RingBuf mode for parser");
                ghostscope_protocol::EventSource::RingBuf
            }
            EventMap::PerfEventArray { .. } => {
                info!("Using PerfEventArray mode for parser");
                ghostscope_protocol::EventSource::PerfEventArray
            }
        };
        self.parser = StreamingTraceParser::with_event_source(event_source);

        self.event_map = Some(event_map);
        info!("Event map initialized");

        Ok(())
    }

    /// Detach the uprobe (disable tracing) while keeping eBPF resources loaded
    /// This allows the trace to be quickly re-enabled later
    pub fn detach_uprobe(&mut self) -> Result<()> {
        if let Some(link_id) = self.uprobe_link.take() {
            if let Some(params) = &self.attachment_params {
                info!("Detaching uprobe...");

                // Get the program to detach the link
                let program_ref = self.bpf.program_mut(&params.program_name).ok_or_else(|| {
                    let program_name = &params.program_name;
                    LoaderError::Generic(format!("Program '{program_name}' not found"))
                })?;

                let program: &mut UProbe = program_ref.try_into().map_err(|e| {
                    let program_name = &params.program_name;
                    LoaderError::Generic(format!("Program '{program_name}' is not a UProbe: {e:?}"))
                })?;

                // Detach the uprobe using the link ID
                program.detach(link_id).map_err(LoaderError::Program)?;

                info!("Uprobe detached successfully");
                Ok(())
            } else {
                error!("No attachment parameters stored");
                Err(LoaderError::Generic(
                    "No attachment parameters stored".to_string(),
                ))
            }
        } else {
            warn!("No uprobe attached, nothing to detach");
            Ok(())
        }
    }

    /// Reattach the uprobe (re-enable tracing) using previously stored parameters
    /// This requires that attach_uprobe was called previously to store the parameters
    pub fn reattach_uprobe(&mut self) -> Result<()> {
        if self.uprobe_link.is_some() {
            info!("Uprobe already attached");
            return Ok(());
        }

        let params = self
            .attachment_params
            .as_ref()
            .ok_or_else(|| {
                LoaderError::Generic(
                    "No attachment parameters stored. Call attach_uprobe first.".to_string(),
                )
            })?
            .clone();

        info!("Reattaching uprobe with stored parameters...");

        // Get the program directly (it's already loaded)
        let program_ref = self.bpf.program_mut(&params.program_name).ok_or_else(|| {
            LoaderError::Generic(format!("Program '{}' not found", params.program_name))
        })?;

        let program: &mut UProbe = program_ref.try_into().map_err(|e| {
            LoaderError::Generic(format!(
                "Program '{}' is not a UProbe: {:?}",
                params.program_name, e
            ))
        })?;

        // Attach the uprobe directly (don't load - it's already loaded)
        let attach_location = match params.offset {
            Some(offset) => UProbeAttachLocation::AbsoluteOffset(offset),
            None => UProbeAttachLocation::Function(params.function_name.as_str()),
        };
        let attach_result = attach_location.attach(program, &params.target_binary, params.pid);

        match attach_result {
            Ok(link) => {
                if let Some(offset) = params.offset {
                    info!(
                        "Uprobe reattached successfully to {} at offset 0x{:x}",
                        params.target_binary, offset
                    );
                } else {
                    info!(
                        "Uprobe reattached successfully to {}:{}",
                        params.target_binary, params.function_name
                    );
                }

                // Store the new link handle
                self.uprobe_link = Some(link);
                Ok(())
            }
            Err(e) => {
                error!("Failed to reattach uprobe: {:?}", e);
                Err(LoaderError::Program(e))
            }
        }
    }

    /// Check if the uprobe is currently attached
    pub fn is_uprobe_attached(&self) -> bool {
        self.uprobe_link.is_some()
    }

    /// Completely destroy this loader and all associated resources
    /// This detaches any attached uprobes and clears all eBPF resources
    /// After calling this, the loader cannot be reused
    pub fn destroy(&mut self) -> Result<()> {
        info!("Destroying GhostScopeLoader and all associated resources");

        // First detach uprobe if attached
        if self.uprobe_link.is_some() {
            if let Err(e) = self.detach_uprobe() {
                warn!("Failed to detach uprobe during destroy: {}", e);
                // Continue with destruction even if detach fails
            }
        }

        // Clear attachment parameters
        self.attachment_params = None;

        // Clear event map reference (this doesn't destroy the actual eBPF map,
        // but removes our handle to it)
        self.event_map = None;

        // Note: The eBPF programs and maps will be automatically cleaned up
        // when the `bpf` field is dropped (when this struct is dropped)

        info!("GhostScopeLoader destroyed successfully");
        Ok(())
    }

    /// Get current attachment status information
    pub fn get_attachment_info(&self) -> Option<String> {
        if let Some(params) = &self.attachment_params {
            if let Some(offset) = params.offset {
                Some(format!(
                    "{}:{} (offset: 0x{:x}, pid: {:?}) - {}",
                    params.target_binary,
                    params.function_name,
                    offset,
                    params.pid,
                    if self.is_uprobe_attached() {
                        "attached"
                    } else {
                        "detached"
                    }
                ))
            } else {
                Some(format!(
                    "{}:{} (pid: {:?}) - {}",
                    params.target_binary,
                    params.function_name,
                    params.pid,
                    if self.is_uprobe_attached() {
                        "attached"
                    } else {
                        "detached"
                    }
                ))
            }
        } else {
            None
        }
    }

    // ============================================================================
    // Event Reading
    // ============================================================================

    /// Wait for events asynchronously using AsyncFd
    pub async fn wait_for_events_async(&mut self) -> Result<Vec<ParsedTraceEvent>> {
        let trace_context = self.trace_context.as_ref().ok_or_else(|| {
            LoaderError::Generic(
                "No trace context available - cannot parse trace events".to_string(),
            )
        })?;

        let event_map = self.event_map.as_mut().ok_or_else(|| {
            LoaderError::Generic("Event map not initialized. Call attach_uprobe first.".to_string())
        })?;

        let mut events = Vec::new();

        match event_map {
            EventMap::RingBuf(ringbuf) => {
                // Create AsyncFd and wait for readable; clear readiness to avoid spin
                let async_fd = AsyncFd::new(ringbuf.as_raw_fd())
                    .map_err(|e| LoaderError::Generic(format!("Failed to create AsyncFd: {e}")))?;
                let mut guard = async_fd
                    .readable()
                    .await
                    .map_err(|e| LoaderError::Generic(format!("AsyncFd error: {e}")))?;
                guard.clear_ready();

                // Read all available events
                while let Some(item) = ringbuf.next() {
                    match self.parser.process_segment(&item, trace_context) {
                        Ok(Some(parsed_event)) => events.push(parsed_event),
                        Ok(None) => {}
                        Err(e) => {
                            return Err(LoaderError::Generic(format!(
                                "Fatal: Failed to parse trace event from RingBuf (async): {e}"
                            )));
                        }
                    }
                }
            }
            EventMap::PerfEventArray { cpu_buffers, .. } => {
                use bytes::BytesMut;

                let parser = &mut self.parser;

                let mut drain_buffer = |entry: &mut PerfEventCpuBuffer| -> Result<bool> {
                    let mut produced = false;
                    let mut read_bufs = vec![BytesMut::with_capacity(4096)];

                    match entry.buffer.read_events(&mut read_bufs) {
                        Ok(result) => {
                            if result.read > 0 {
                                produced = true;
                                info!(
                                    "Read {} events from CPU {} buffer",
                                    result.read, entry.cpu_id
                                );
                            }
                            if result.lost > 0 {
                                warn!(
                                    "Lost {} events from CPU {} buffer",
                                    result.lost, entry.cpu_id
                                );
                            }

                            for (i, data) in read_bufs.iter().enumerate().take(result.read) {
                                debug!(
                                    "PerfEvent {}: {} bytes - {:02x?}",
                                    i,
                                    data.len(),
                                    &data[..data.len().min(32)]
                                );

                                match parser.process_segment(data, trace_context) {
                                    Ok(Some(parsed_event)) => events.push(parsed_event),
                                    Ok(None) => {}
                                    Err(e) => {
                                        let cpu = entry.cpu_id;
                                        return Err(LoaderError::Generic(format!(
                                            "Fatal: Failed to parse trace event from PerfEventArray CPU {cpu}: {e}"
                                        )));
                                    }
                                }
                            }
                        }
                        Err(e) => {
                            warn!("Failed to read from CPU {} buffer: {}", entry.cpu_id, e);
                        }
                    }

                    Ok(produced)
                };

                loop {
                    // Drain any buffers that already report data without waiting.
                    let mut made_progress = false;
                    for entry in cpu_buffers.iter_mut() {
                        if entry.buffer.readable() {
                            made_progress |= drain_buffer(entry)?;
                        }
                    }

                    if made_progress {
                        break;
                    }

                    // Wait for at least one buffer to become readable.
                    let ready_idx = poll_fn(|cx| {
                        for (idx, entry) in cpu_buffers.iter().enumerate() {
                            match entry.readiness.poll_read_ready(cx) {
                                Poll::Ready(Ok(mut guard)) => {
                                    guard.clear_ready();
                                    return Poll::Ready(Ok(idx));
                                }
                                Poll::Ready(Err(e)) => return Poll::Ready(Err(e)),
                                Poll::Pending => {}
                            }
                        }
                        Poll::Pending
                    })
                    .await
                    .map_err(|e| {
                        LoaderError::Generic(format!(
                            "AsyncFd error while waiting for perf events: {e}"
                        ))
                    })?;

                    // Drain the buffer that triggered readiness.
                    made_progress |= drain_buffer(
                        cpu_buffers
                            .get_mut(ready_idx)
                            .expect("ready index should be valid"),
                    )?;

                    // Drain any other buffers now advertising data.
                    for (idx, entry) in cpu_buffers.iter_mut().enumerate() {
                        if idx == ready_idx || !entry.buffer.readable() {
                            continue;
                        }
                        made_progress |= drain_buffer(entry)?;
                    }

                    if made_progress {
                        break;
                    }
                    // No events were produced despite readiness (eg. lost event markers).
                    // Loop back and wait again.
                }
            }
        }

        Ok(events)
    }

    /// Set the trace context for parsing trace events
    pub fn set_trace_context(&mut self, trace_context: TraceContext) {
        info!("Setting trace context for trace event parsing");
        self.trace_context = Some(trace_context);
    }

    // ============================================================================
    // Information and Debugging
    // ============================================================================

    /// Get information about loaded maps
    pub fn get_map_info(&self) -> Vec<String> {
        self.bpf
            .maps()
            .map(|(name, _map)| format!("Map: {name}"))
            .collect()
    }

    /// Get information about loaded programs
    pub fn get_program_info(&self) -> Vec<String> {
        self.bpf
            .programs()
            .map(|(name, _prog)| format!("Program: {name}"))
            .collect()
    }
}