-
Notifications
You must be signed in to change notification settings - Fork 5
/
README
256 lines (194 loc) · 11.1 KB
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
This repository contains various NetBSD tracers.
All of the programs are designed to run on NetBSD 9.0 or newer.
picotrace
=========
picotrace is designed to be a framework for other more advanced tracers, and an
example of the canonical usage of ptrace(2). New features are not expected
unless they reflect a new feature in the kernel.
For historical reasons this repository is called picotrace, although it now
contains other software as well.
Usage:
picotrace [-i] [-o OUTPUT] [-p | command [arg ...]]
Features:
* Attach to an already running process.
* Spawn a new process.
* Inherit forks/vforks/clones/etc.
* Report process id, process name, LWP id, event (syscall, exec, fork, etc).
* Log to stdout, as an option redirect log to a file.
Example output (shortened):
$ ./picotrace echo
19964 0 echo ARGV[0] 'echo'
19964 0 echo ENV[0] '_=./picotrace'
19964 0 echo ENV[1] 'SSH_CONNECTION=192.168.0.157 65137 192.168.0.38 22'
19964 0 echo ENV[2] 'PS1=! $(whoami)@$(hostname) $PWD $ '
[...]
19964 0 echo AUXV[0] AT_PHDR=0x200040
[...]
19964 0 echo AUXV[11] AT_STACKBASE=0x7f7ffffff000
19964 0 echo AUXV[12] AT_SUN_EXECNAME='/bin/echo'
19964 1 echo SCE mmap(0,0x8000,0x3,0x1002,0xffffffff,0,0)
19964 1 echo SCX mmap = 0xf7ef7000
19964 1 echo SCE open(0x7f7ff7c0d31f,0,0x7f7ff7e12768)
19964 1 echo SCX open = 0 Err#2 ENOENT
19964 1 echo SCE open(0x7f7fffffdfd8,0,0x1)
19964 1 echo SCX open = 0 Err#2 ENOENT
19964 1 echo SCE open(0x7f7fffffdfd8,0,0x7)
19964 1 echo SCX open = 0x3
19964 1 echo SCE __fstat50(0x3,0x7f7fffffded8)
19964 1 echo SCX __fstat50 = 0
19964 1 echo SCE mmap(0,0x1000,0x1,0x1,0x3,0,0)
19964 1 echo SCX mmap = 0xf7ef6000
19964 1 echo SCE munmap(0x7f7ff7ef6000,0x1000)
19964 1 echo SCX munmap = 0
[...]
19964 1 echo SCE _lwp_self()
19964 1 echo SCX _lwp_self = 0x1
19964 1 echo SCE __sigprocmask14(0x1,0x7f7fffffe600,0x7f7fffffe6f0)
19964 1 echo SCX __sigprocmask14 = 0
19964 1 echo SCE __sigprocmask14(0x3,0x7f7fffffe6f0,0)
19964 1 echo SCX __sigprocmask14 = 0
19964 1 echo SCE exit(0)
19964 0 echo EXITED status=0
sigtracer
=========
sigtracer is a subset of picotrace with focus on signal events only.
There are no reports for syscall entry and syscall exit traps.
There are also no reports for ARG, ENV and AUX vectors.
The output of this program is the same as picotrace, except it
contains less information.
Usage:
sigtracer [-i] [-o OUTPUT] [-p | command [arg ...]]
Features:
* Attach to an already running process.
* Spawn a new process.
* Inherit forks/vforks/clones/etc.
* Report process id, process name, LWP id, event (exec, fork, etc).
* Log to stdout, as an option redirect log to a file.
singlestepper
=============
singlestepper counts the number of executed instructions in a traced program.
The underlying mechanism for recording each single step event slows down
execution of programs by orders of magnitude (approximately 1000x slowdown on
NetBSD/amd64) and thus it's not the best tool for performance analysis.
Usage:
singlestepper [-i] [-o OUTPUT] [-p | command [arg ...]]
Features:
* Attach to an already running process.
* Spawn a new process.
* Inherit forks/vforks/clones/etc.
* Log to stdout, as an option redirect log to a file.
Example output:
$ ./singlestepper true
Total count: 1639915
$ ./singlestepper echo
Total count: 1039124
NetBSD strace
=============
NetBSD strace is a diagnostic, debugging and instructional userspace utility.
It is used to monitor and alter interactions between processes and the kernel,
which include system calls, signal deliveries, and changes of process state.
strace was released under a Berkeley-style license at the request of Paul
Kranenburg. Paul was a long term NetBSD developer (pk@). This agreement was
broken in 2018 as the strace developers relicensed the software to GPL + LGPL.
This repository contains a fork called NetBSD strace that is developed
as part of the picotrace repository and utilizes modern NetBSD kernel
interfaces.
The Linux strace team recognizes this fork and permits to reuse the old code
and name of the program and documentation as-is. There is intention to keep
both the Linux and NetBSD versions compatible from the end-user point of view.
Port of this program to NetBSD is still not merged with this repository.
NetBSD truss
============
NetBSD truss is a diagnostic utility. It is used to monitor events in a traced
process, including system calls, signal deliveries, and changes of state.
This program is a reimplementation of FreeBSD truss. This code has been written
scratch on the top of picotrace. This version of truss implements all of the
functionality available in FreeBSD, whenever practical slightly expanding the
set of features and changing the output format.
Usage:
truss [-DHSacdefx] [-o OUTPUT] [-s #] [-p | command [arg ...]]
Features:
* Attach to an already running process.
* Spawn a new process.
* Inherit forks/vforks/clones/etc.
* Report process id, process name, LWP id, event (syscall, exec, fork, etc).
* Decode syscall arguments and return values.
* Mode of counting syscalls only (-c).
* Log to stderr, as na option redirect log to a file.
Example output (shortened):
$ ./truss -dD -Hf echo
15112 1 0.003865456 0.003865456 mmap(0x0, 32768, 0|PROT_READ|PROT_WRITE, 0|MAP_PRIVATE|MAP_ANONYMOUS, -1, 0)= 0x63572000
15112 1 0.005013185 0.000670003 open("/etc/ld.so.conf", O_RDONLY) = 0 Err#2 ENOENT
15112 1 0.005406121 0.000379247 open("/lib/libc.so.12", O_RDONLY) = 0x3
15112 1 0.005818753 0.000400130 __fstat50(3, { dev=0, mode="-r--r--r-- ", ino=8455174, nlink=1, uid=0, gid=0, rdev=-1, atime=1559125364.903678308, mtime=1557246297.000000000, ctime=1557541071.458868862, blksize=16384, blocks=4480})= 0
15112 1 0.005972198 0.000140734 mmap(0x0, 4096, 0|PROT_READ, 0|MAP_SHARED, 3, 0) = 0x63571000
15112 1 0.006171529 0.000187667 munmap(0x746763571000, 4096) = 0
15112 1 0.006312961 0.000129628 mmap(0x0, 6373376, 0|PROT_EXEC|PROT_READ, 0|MAP_PRIVATE|MAP_ALIGNED(0x15), 3, 0)= 0x62e00000
[...]
15112 1 0.038884833 0.000163362 _lwp_self() = 0x1
15112 1 0.039201012 0.000305284 __sigprocmask14(SIG_BLOCK, 0|HUP|INT|QUIT|ILL|ABRT|EMT|FPE|KILL|BUS|SEGV|SYS|PIPE|ALRM|TERM|URG|STOP|TSTP|CONT|CHLD|TTIN|TTOU|IO|XCPU|XFSZ|VTALRM|PROF|WINCH|INFO|USR1|USR2|PWR|RTMIN|RTMIN+1|RTMIN+2|RTMIN+3|RTMIN+4|RTMIN+5|RTMIN+6|RTMIN+7|RTMIN+8|RTMIN+9|RTMIN+10|RTMIN+11|RTMIN+12|RTMIN+13|RTMIN+14|RTMIN+15|RTMIN+16|RTMIN+17|RTMIN+18|RTMIN+19|RTMIN+20|RTMIN+21|RTMIN+22|RTMIN+23|RTMIN+24|RTMIN+25|RTMIN+26|RTMIN+27|RTMIN+28|RTMIN+29|RTMAX, 0)= 0
15112 1 0.039435125 0.000221960 __sigprocmask14(SIG_SETMASK, 0, 0x0) = 0
15112 1 0.039609593 0.000163223 _lwp_self() = 0x1
15112 1 0.039927029 0.000306680 __sigprocmask14(SIG_BLOCK, 0|HUP|INT|QUIT|ILL|ABRT|EMT|FPE|KILL|BUS|SEGV|SYS|PIPE|ALRM|TERM|URG|STOP|TSTP|CONT|CHLD|TTIN|TTOU|IO|XCPU|XFSZ|VTALRM|PROF|WINCH|INFO|USR1|USR2|PWR|RTMIN|RTMIN+1|RTMIN+2|RTMIN+3|RTMIN+4|RTMIN+5|RTMIN+6|RTMIN+7|RTMIN+8|RTMIN+9|RTMIN+10|RTMIN+11|RTMIN+12|RTMIN+13|RTMIN+14|RTMIN+15|RTMIN+16|RTMIN+17|RTMIN+18|RTMIN+19|RTMIN+20|RTMIN+21|RTMIN+22|RTMIN+23|RTMIN+24|RTMIN+25|RTMIN+26|RTMIN+27|RTMIN+28|RTMIN+29|RTMAX, 0)= 0
15112 1 0.040158139 0.000218119 __sigprocmask14(SIG_SETMASK, 0, 0x0) = 0
15112 0 0.041297976 0.001128522 process exit, rval = 0
$ ./truss -c echo
syscall seconds calls errors missed-sce missed-scx
write 0.000085558 1 0 0 0
open 0.001012234 9 1 0 0
close 0.000335666 8 0 0 0
readlink 0.000119571 1 1 0 0
munmap 0.000669024 8 0 0 0
mprotect 0.000410607 5 0 0 0
madvise 0.000033175 1 0 0 0
mmap 0.001878775 38 0 0 0
lseek 0.000073965 2 0 0 0
__sysctl 0.014389454 3 0 0 0
__sigprocmask14 0.001045269 14 0 0 0
issetugid 0.000107628 2 0 0 0
_lwp_self 0.000268546 7 0 0 0
_lwp_setprivate 0.000032896 1 0 0 0
fstatvfs1 0.000103437 1 0 0 0
__getdents30 0.000161687 2 0 0 0
__clock_gettime50 0.000226779 3 0 0 0
__fstat50 0.000638992 8 0 0 0
------------- ------- ------- ------- -------
0.021593263 114 2 0 0
coredumper
==========
coredumper traces specified processes and dumps core on crashes. Some programs
handle program crashes with signal handlers, preventing core(5) files from being
generated. coredumper bypasses their signal handlers and for each crash dumps
core, without changing the capturing mechanism in traced processes.
Usage:
coredumper [-c CORENAME] [-i] [-p | command [arg ...]]
Features:
* Attach to an already running process.
* Spawn a new process.
* Inherit forks/vforks/clones/etc.
* Optional specification of a filename where to dump a core(5) file.
INSTALL
=======
Releases of the picotrace repository are shipped with pkgsrc as devel/picotrace.
This package contains all of the programs (picotrace, NetBSD truss, coredumper
and others).
None of the current programs in this repository requires third party software.
Future programs are planned to contain external dependencies for functionality
that is not practical to reinvent.
The build rules use native NetBSD makefiles and in order to build the programs
call make(1) either in the top level directory or a directory of a selected
tool:
$ make
HISTORY
=======
* 2019-06-06 New utility singlestepper was imported.
* 2019-06-03 New utility sigtracer was imported.
* 2019-05-29 Minix mdb was imported as minixdb.
* 2019-05-23 The FreeBSD truss has been rewritten from scratch for NetBSD.
* 2019-05-13 FreeBSD truss (SVN r. 347514) was imported.
* 2019-05-12 New utility coredumper was imported.
* 2019-05-08 The last BSD-3-clause version of strace was imported.
* 2019-05-07 The first public version of picotrace was released.
AUTHORS
=======
Kamil Rytarowski <kamil @ NetBSD . org>