Highest Voted 'systemtap' Questions

0

votes

0 answers

where to find SystemTap event definition

where are the SystemTap events defined? For example, the below probe is for vfs.write.return. How do I know I could probe a component called 'vfs', it can be called 'virtualFs' as well. And there is a variable 'devname' defined. Without a document…

systemtap

asked Sep 12 '22 at 15:30

wakaka

103
2

0

votes

1 answer

The non-invasive way to Instrumentation

I'm trying to find a way to monitor Process by hooking it's function. [Process] [thirdparty] ... trigger callback pc --> myfunc(st *s, int b); ------------> …

asked May 27 '22 at 08:08

Nail Jay

267
3
9

0

votes

0 answers

How do I install kernel debug symbols on Amazon Linux AMI?

I'm trying to use System Tap for gdb-helpers (an extension of the C debugger gdb), but I get an error that I've found on Stack to be caused by not having the kernel debug symbols installed (see here: Original Answer). My problem is, I've only found…

linux amazon-web-services gdb kernel systemtap

asked May 03 '22 at 16:34

Zachary Gillette

1

0

votes

1 answer

Systemtap does not find the tapping points

I was trying to compile my own kernel through clang-13 and run systemtap on that. I have enabled the CONFIG_DEBUG_INFO, CONFIG_DEBUG_KERNEL and all other default debugging configs including CONFIG_KPROBES, CONFIG_UPROBES. Additionally I have…

linux-kernel systemtap

asked Feb 05 '22 at 19:56

anon

188
1
13

0

votes

1 answer

Debuginfo for polkit-0.115-11.el8.x86_64

I am trying to use systemtap hooks on polkit functions, but I get an error that I need to install debuginfo. I can't find debuginfo for polkit package - polkit-0.115-11.el8.x86_64. Does anyone know where can I find it? Thnaks. enter image…

systemtap probe debug-information polkit

asked Sep 10 '21 at 12:18

gal

1
2

0

votes

1 answer

Systemtap monitor child processes after parent exits

I'm using the example script here with "follow_fork" set to 1: https://sourceware.org/systemtap/examples/process/strace.stp I just have a C program that calls fork() three times called "forker". A systemtap output log is below. You can see that it…

linux linux-kernel fedora systemtap

asked Aug 31 '21 at 18:38

philipsal

21
1
4

0

votes

0 answers

Kernel module to intercept system calls causes issues in execution of userspace programs

I've been trying to write a kernel module (using SystemTap) that would intercept system calls, capture its information and add it to a system call buffer region that is kmalloc'd. I have implemented a mmap file operation so that a user space process…

c++ linux linux-kernel linux-device-driver systemtap

asked Aug 05 '21 at 08:53

InertFluid

71
5

0

votes

0 answers

Kernel Installation error: failed to write (No space left on device)

I am installing SystemTap on linux server. When I run the test script: sudo stap -v -e 'probe vfs.read {printf("read performed"); exit()}' I got the below error message. Pass 1: parsed user script and 480 library scripts using…

linux debugging linux-kernel systemtap debug-information

asked Apr 11 '21 at 19:20

raina

72
3
9

0

votes

1 answer

Measuring TCP delay from Linux kernel

TCP does not prioritize traffic like IP. When there are a lot of TCP background connections opened that are uploading data (like when BitTorrent is seeding in background) delay may occur for a particular socket because TCP will choose only one…

tcp linux-kernel hook delay systemtap

asked Jun 17 '11 at 11:45

Calin-Andrei Burloiu

1,481
2
13
25

0

votes

1 answer

Why systemTap script report a read fault near operator error?

I'm running SystemTap on CentOS Linux release 7.6.1810. The version of SystemTap is: $ stap -V Systemtap translator/driver (version 4.0/0.172/0.176, rpm 4.0-11.el7) Copyright (C) 2005-2018 Red Hat, Inc. and others This is free software; see the…

kubernetes systemtap

asked Aug 26 '20 at 10:48

visionken

65
1
7

0

votes

1 answer

Probing a userspace process with systemtap over ebpf begin probe doesn't work

I'm trying to probe a userspace process with a begin probe that doesn't seem to do anything begin.stp: probe process("a.out").begin { printf("%s %d\n", execname(), pid()) } stp output: [root@RHEL8 ~]# stap --bpf -v ~/begin.stp Pass 1: parsed…

linux ebpf systemtap

asked Jul 12 '20 at 11:48

Eytan Naim

159
14

0

votes

2 answers

SystemTap support for user space application

I want to know how to add support in the systemtap for user space applications. When I am trying to trace any user space program, it is showing that CONFIG_UTRACE not set.

linux linux-kernel systemtap

asked Jun 07 '11 at 05:24

pradeepchhetri

2,899
6
28
50

0

votes

2 answers

Internals of systemtap

I want to know what actually happens internally when the event written in the tap file occurs and how it is handled?

linux kernel systemtap

asked Jun 02 '11 at 10:14

pradeepchhetri

2,899
6
28
50

0

votes

1 answer

Kernel options required for the installation of Systemtap

I want to install kerneltap in ubuntu. I want to know whether if I need to recompile the kernel again then which options should I turn on in the kernel during recompilation.

kernel ubuntu-10.10 systemtap

asked Jun 02 '11 at 06:49

pradeepchhetri

2,899
6
28
50

0

votes

0 answers

Embedded C in SystemTap - dereferencing pointer to incomplete type

I am following this tutorial: https://blog.lexfo.fr/cve-2017-11176-linux-kernel-exploitation-part1.html As I try to see what the netlink_sock contains in state, I use this embedded C code: %{ #include #include…

c linux linux-kernel netlink systemtap

asked Apr 14 '20 at 02:53

Shahar Zelig

31
3

Questions tagged [systemtap]