Wednesday June 16, 2004 Bill Sommerfeld's Weblog
Still Under Construction. Watch for falling objects
Wednesday June 16, 2004 dtrace for reverse engineering. Since Bryan was so kind to list me as a "Friend of DTrace"..
Lately I've been prototyping some extensions to our IPsec implementation. While shaking them out, I've twice had the experience of the system not even getting to the new code when I was expecting it to..
In the pre-dtrace era, finding the point where we went astray was often a frustrating exercise in single-stepping, psychic breakpoint insertion, or iterated debug-by-printf.
With dtrace, it's a matter of running a truss to get the relevant syscall arguments and then doing something along the lines of:
#! /usr/sbin/dtrace -Fs
syscall::so_socket:entry
/arg0 == 29/
{
self->traceme = 1;
}
fbt:::
/self->traceme/
{}
syscall::so_socket:return
/self->traceme/
{
self->traceme = 0;
}
Drop the above in a file, chmod +x, run it, watch dtrace insert 45000 probes into the live system in a second or two..
.. and I quickly discovered that the reason I wasn't getting to the spdsock open routine was due to overly conservative device policy, which turned out to be easy to fix. Same deal for a new socket option -- whoops, added it to the wrong switch().. (2004-06-16 14:46:22.0) Permalink
Comments:
Post a Comment:
Comments are closed for this entry.
Calendar
| « November 2009 | ||||||
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
1 | 2 | 3 | 4 | 5 | 6 | 7 |
8 | 9 | 10 | 11 | 12 | 13 | 14 |
15 | 16 | 17 | 18 | 19 | 20 | 21 |
22 | 23 | 24 | 25 | 26 | 27 | 28 |
29 | 30 | |||||
| Today | ||||||
RSS Feeds
All
/General
/IETF
/IPsec
/Music
/OpenSolaris
/Solaris
Search
Links
- Team IPsec
- Bill Sommerfeld
- Dan McDonald