DTrace: pid provider

最新推荐文章于 2024-07-22 15:46:54 发布
最新推荐文章于 2024-07-22 15:46:54 发布
阅读量849 收藏 1
点赞数
分类专栏: solaris 文章标签: firing list system each command class

转载自:http://solaris.reys.net/english/archives/55-DTrace-pid-provider.html

Quite ofter we'd like to know what happens to a particular process on a
system, and if we're using DTrace for our investigation, we'd probably
use the $target variable (I've already spoked about it
in the past) or simply specify the process identifier (pid) in some
predicates of our probes, thus pointing to DTrace that we're after only
a certain process. $target variable still can and should be used when creating our probes with pid provider.





For DTrace beginners it's quite a common and good practice. But there is a better way: using the pid provider.



As it's explained in the official DTrace guide, pid provider
isn't just a provider, but in fact is a whole class of providers. And,
as the name suggests, it provides us with probes related to a certain
process.



For instance, pid737 provider allows us to trace everything happening
within a process with pid of 737. What's really cool about this provide
- it's not only easier to scope our interest, but it also gets much
easier to see how where certain probes originate from (what libraries
provide certain functions used by our process, read on - I'll explain
it a bit later).



Such a way of looking at a certain process, in contrast to using predicates like /pid == $target/,
is more correct. Instead of enabling all the specified probes by
default, and then using predicates for each probe firing for each
process on the system only to see whether we're interested in a given
process, DTrace won't even look at other processes - and pid737 will
make sure that all the probes specified will be enabled and possibly
fired only for the specified process.



We already know how to get the list of all the probes known to DTrace. I've explained
it a while ago. The thing you need to remember about the pid provider
is this: after you've used pid provider in some probes for a process, dtrace -l
will start reporting you these probes at the end of all the available
probes. They've been dynamically allocated just for you. If the process
in question dies or finishes, all the dynamically allocated probes for
its pid provider will disappear.



One more thing I really like about pid provider - modules used in
probes are in fact libraries used for the execution of the process
you're looking at. This gives you a wonderful opportunity of observing
only what's been done in your process by functions of a particular
library. Very useful.



Right, enough of theory - here's an example. First, we create a simple bit of "Hello, world!" code in C:



CODE:
void main() {

        printf("Hello, world!
");

}




After you compile it, let's get going with out DTrace script:



CODE:
#!/usr/sbin/dtrace -s

#pragma D option quiet



BEGIN {

printf("Target pid: %d
", $target);

}



pid$target:::entry {

printf("%s:%s:%s:%s
", probeprov, probemod, probefunc, probename);

}




Save the script, make it executable, and start it, specifying our hello as a command to start:



CODE:
$ ./pid-global.d -c ./hello | more

Target pid: 1059

Hello, world!

pid1059:LM1`ld.so.1:call_array:entry

pid1059:LM1`ld.so.1:call_init:entry

pid1059:LM1`ld.so.1:leave:entry

pid1059:LM1`ld.so.1:fmap_setup:entry

pid1059:LM1`ld.so.1:munmap:entry

pid1059:LM1`ld.so.1:rt_bind_clear:entry

pid1059:LM1`ld.so.1:_rt_bind_clear:entry

pid1059:LM1`ld.so.1:rt_mutex_unlock:entry

pid1059:LM1`ld.so.1:_rt_null:entry

pid1059:LM1`ld.so.1:rt_bind_clear:entry

pid1059:LM1`ld.so.1:_rt_bind_clear:entry

pid1059:libc.so.1:libc_init:entry

pid1059:libc.so.1:__amd64id:entry

pid1059:libc.so.1:atexit:entry

pid1059:libc.so.1:lmalloc:entry

pid1059:libc.so.1:getbucketnum:entry

...




You see this list of probes? I won't give you the full list - it's
going to be almost a 1000 lines, but I hope you get the idea. It's also
a perfect opportunity to see how easy it's going to be for you to track
probes of a particular library.



Back to our example, it's obvious what I'm going to do now: I'd like to get our printf caught with a probe.



CODE:
#!/usr/sbin/dtrace -s

#pragma D option quiet



BEGIN {

printf("Target pid: %d
", $target);

}



pid$target::printf:entry {

printf("%s:%s:%s:%s
", probeprov, probemod, probefunc, probename);

printf("Argument: %s
", copyinstr(arg0));

}




If we start tihs script, here's what you'll get:



CODE:
$ ./pid-printf.d -c ./hello

Target pid: 1201

Hello, world!

pid1201:libc.so.1:printf:entry

Argument: Hello, world!

           

silvbb
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
DTrace
fishmai的专栏
06-04 2950
很少有人听过 DTrace,它是隐藏在 OS 中的小宝藏。DTrace 是强大的 debug 工具 - 因为它拥有极其灵活的特性,并且因为与其它工具差异很大而可能相对不那么有名。 许多时候你的 app 的真正的用户或测试人员会看到一些意外的行为。DTrace 可以让你无需重启 app 就能够在生产版本上回答关于 app 的任何问题。 动态追踪 大概 10 年前,Sun Micro
easy_dtrace:包装脚本,用于FreeBSD的DTrace脚本集合
05-03
DTrace:列表探针 DTrace:文件打开 DTrace:系统调用按进程计数 DTrace:read()字节的分布 DTrace:定时read()Syscall DTrace:在read()中测量CPU时间 DTrace:计数流程级事件 DTrace:配置文件CPU内核堆栈...
node-dtrace-provider:适用于node.js应用程序的本机DTrace探针
04-13
dtrace-provider-Node.js应用程序的本机DTrace提供程序。 通过此扩展,您可以为Node.js应用程序创建本机DTrace提供程序。 也就是说,创建提供程序和探针以提供特定于您的应用程序的信息,而不是有关节点运行时的信息。 您可以使用它来公开有关应用程序内部工作的高级信息,或者创建一个特定的上下文来查看来自其他运行时或系统级提供程序的信息。 提供程序不是通过通常的方式创建的,而是先声明它,然后更改构建过程以使其包括在内,而是在运行时动态创建。 这完全在进程内完成,没有后台编译器或调用。 创建提供程序的过程无需以root用户身份运行。 安装 $ npm install dtrace-provider 例子 这是创建提供程序的简单示例: var d = require ( 'dtrace-provider' ) ; var dtp = d . createDTr
浅谈动态跟踪技术之DTrace
kwame211的博客
12-03 4519
什么是动态追踪(Dynamic Tracing) 举个简单例子,一个人正在健身房里跑步,我们用摄像机
MAC OS 内核跟踪监视工具dtrace 使用示例说明
momo9831的博客
05-07 1690
////////////////// syscall dtrace -ln 'syscall::write*:' //显示可使用的probe dtrace -ln 'syscall::*read*:entry' //显示可使用的probe dtrace -n 'syscall::write:entry {@dist[execname] = quantize(arg0)}' //之后C...
selenium使用中遇到的问题
热门推荐
funi16的专栏
06-06 8万+
1、Exception in thread "main" org.openqa.selenium.WebDriverException: Cannot find firefox binary in PATH. Make sure firefox is installed. OS appears to be: XP Build info: version: '2.16.1', revision:
MySQL Query Latency with the DTrace pid Provider
weixin_30547797的博客
10-30 46
http://dtrace.org/blogs/brendan/2011/03/14/mysql-query-latency-with-the-dtrace-pid-provider/ 转载于:https://www.cnblogs.com/WCFGROUP/p/6013128.html
python-dtrace:使用libdtrace的Python DTrace使用者-现在可以将Python用作DTrace提供者和使用者。
05-07
Python作为DTrace使用者 这是研究如何启动并运行类似Python的第一枪。 注意:这还远远没有准备好-编写自己的DTrace使用者的文档非常少见:-/ ...SCRIPT = 'dtrace:::BEGIN {trace("Hello World");}' consu
dtrace-tools:用于OS X的基于DTrace的工具
05-25
**DTrace工具在OS X中的应用** DTrace是一种强大的系统诊断和性能分析工具,最初由Sun Microsystems开发,并被集成到Solaris操作系统中。随着时间的推移,DTrace也被引入到其他Unix-like系统,包括Apple的OS X。...
freebsd-dtrace-tools:与FreeBSD兼容的DTrace脚本的集合
05-08
该集合包含与FreeBSD兼容的通用DTrace脚本版本。bsdrwsnoop 输出有关进程的读/写调用的信息。 还提供了按特定过程名称或PID过滤输出的可能性。例子: ./bsdrwsnoop./bsdrwsnoop -p 1773./bsdrwsnoop -n ...
C++基础语法:STL之容器(5)--序列容器中的list(二)
jllws1的博客
07-19 1184
"打牢基础,万事不愁" .C++的基础语法的学习。
Java8两个集合(List)取交集、并集、差集、去重并集
billzhen的博客
07-19 605
**
Censot7 使用 yum 报错:Could not resolve host: mirrorlist.centos.org
骑着蚂蚁追大象的博客
07-20 250
解决方案:替换成阿里的镜像地址。
【Oracle】Oracle中的LISTAGG函数
低调做人,低调编码,神码都是浮云
07-18 1259
Oracle中的LISTAGG函数-聚合函数
C++STL初阶(7):list的运用与初步了解
2301_79501467的博客
07-19 1021
在学习vector之后快速上手list
qml 实现一个listview
foxgod的专栏
07-18 530
通过qml实现listview的主要功能,菜单,滚动条,拖动改变内容等
组合数学+费用背包+刷表,G2 - Playlist for Polycarp (hard version)
EQUINOX1的博客
07-19 626
然后 (f(i, j, k, 0) + f(i, j, k, 1) f(i, j, k, 2)) * g(j, k, p) * h(i, T - p) * fac(i) * fac(j) * fac(k) 就是一组方案数。考虑转换一下,g(j, k, p) 为 j个 类型2,k 个类型3 总费用为t方案数,h(i, T - p)为i个类型1,总费用为t的方案数,乘法原理二者相乘可得。f(i, j, k, x) 为 选取 i 个类型1,j个 类型2,k 个类型3,并且以类型x结尾,且无相同相邻项的方案数。
HarmonyOS几种列表方式,List列表容器、Grid网格容器、Swiper轮播图
最新发布
张雨的博客
07-22 287
【代码】HarmonyOS几种列表方式,List列表容器、Grid网格容器、Swiper轮播图。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值