From owner-freebsd-dtrace@FreeBSD.ORG Mon Sep 16 18:20:13 2013 Return-Path: Delivered-To: freebsd-dtrace@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id D3E0FB30; Mon, 16 Sep 2013 18:20:13 +0000 (UTC) (envelope-from nico@cryptonector.com) Received: from homiemail-a32.g.dreamhost.com (caiajhbdccah.dreamhost.com [208.97.132.207]) by mx1.freebsd.org (Postfix) with ESMTP id AAFFB225E; Mon, 16 Sep 2013 18:20:13 +0000 (UTC) Received: from homiemail-a32.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a32.g.dreamhost.com (Postfix) with ESMTP id D516558406A; Mon, 16 Sep 2013 11:20:01 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type; s=cryptonector.com; bh=JePi91bZ+SeBbhE69Ho7 R6fhYr8=; b=Rl3R4cgLBjb1G/Hb+d1Gi5GTwFXv8ae4Aocjt7igTsgN/0pdh6ou 9OV4L+fSHEPIsXu7WBuJnZS7/vGfEVLTpU2h2ksKdujBnCi+RQvIa09ZlMohVWub xWuRAB7ODsWyDFenpo8tgQQlmwvlkwW/SHlXjjg11zKz12Djl+76Its= Received: from mail-we0-f169.google.com (mail-we0-f169.google.com [74.125.82.169]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a32.g.dreamhost.com (Postfix) with ESMTPSA id BDDDF584064; Mon, 16 Sep 2013 11:19:58 -0700 (PDT) Received: by mail-we0-f169.google.com with SMTP id t60so4116000wes.14 for ; Mon, 16 Sep 2013 11:19:57 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=9Eu9AEkTLHPn7RhabmPnSN+par7+7OFZMREe3lD0HfI=; b=L+vYPnVV4qrmkzogrrnxYdpW9E62YDBO6AZgOYPukbBBRVZoQZiWUOhkhJ/XnHl/F4 qlP9D7gra+gIeGghMVJJhnrVu6cZiPWX+Hi94kHfhkPyjWGv+RAnIGXtj2/2boXpE5MV xQWwahncSVmZwkdOlk/VAcxT2vbaDsfcP8a5uEYD08hnKZcJAri+yEj+F+LhjLIPId3E Q+rWfG1XJhmjTd06CQg/UeJYJNLDbFmcIGYbYfa19b2o3rSxvfUVzm6kHHqaMv0o7Cck JrPcBcIWtOGQW50UYaSbjP4e/W/T/wymhe6G/8BjytTRT+7Il5xWe7LPAfymOaPILz+K rtYA== MIME-Version: 1.0 X-Received: by 10.194.11.67 with SMTP id o3mr24180161wjb.0.1379355597222; Mon, 16 Sep 2013 11:19:57 -0700 (PDT) Received: by 10.216.240.70 with HTTP; Mon, 16 Sep 2013 11:19:57 -0700 (PDT) In-Reply-To: <20130915221622.GA2981@raichu> References: <20130915221622.GA2981@raichu> Date: Mon, 16 Sep 2013 13:19:57 -0500 Message-ID: Subject: Re: [dtrace-discuss] pr_psargs on FreeBSD From: Nico Williams To: Mark Johnston Content-Type: text/plain; charset=UTF-8 Cc: dtrace-discuss@lists.dtrace.org, freebsd-dtrace@freebsd.org X-BeenThere: freebsd-dtrace@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "A discussion list for developers working on DTrace in FreeBSD." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Sep 2013 18:20:13 -0000 On Sun, Sep 15, 2013 at 5:16 PM, Mark Johnston wrote: > Hi! > > One of the problems with FreeBSD's DTrace implementation is that it > doesn't have a good way of getting the arguments of a given process. > This is because of the way that they're stored, which is as a single > buffer with null-terminator between consecutive arguments. In > particular, there is no way within DTrace to convert such a buffer to a > single string (say by replacing all but the last terminator with > spaces). So scripts like execsnoop will only print the first element of > a process' argv on FreeBSD, which isn't particularly helpful for > interpreted programs. > > You can get a fixed number of arguments with something like > > printf("%s %s %s", cupsinfo->pr_psargs, > curpsinfo->pr_psargs + strlen(curpsinfo->pr_psargs) + 1, > curpsinfo->pr_psargs + strlen(curpsinfo->pr_psargs) + 1 + > strlen(curpsinfo->pr_psargs + strlen(curpsinfo->pr_psargs) + 1) + 1); > > but this is less than ideal. :) > > Apparently OS X has the same problem, but I don't have a machine to test > with, so I'm not completely sure. > > It seems to me that there are two ways to solve this problem: change the > format that FreeBSD uses to store process arguments, or add a function > to DTrace which can convert the argument buffer to a string. I'm not too > keen on the former approach, so here's a proposal for the latter. It'd > be great to get some feedback on it and find out whether anyone thinks > it's a terrible idea. :) > > It's kind of a strong-armed approach, but the problem's been around for a > while and I can't think of any clever solutions - I'd love to see an > alternative solution. > > My patch against FreeBSD (pasted below) adds a function called memstr() > to DTrace. memstr() takes three arguments: addr, c, and len, and returns > a copy of addr of length len with all null-terminators replaced by c, > and with the last byte replaced by a null-terminator. In particular, > memstr() always returns a string of length len - 1, unless len == 0, in > which case we return the empty string. > > With this function, the translator for the pr_psargs fields becomes > > translator psinfo_t < struct proc *T > { > ... > pr_psargs = memstr(T->p_args->ar_args, ' ', T->p_args->ar_length); > ... > }; > > and execsnoop works properly. Any thoughts on this function? Have I missed > a better solution? A patch for FreeBSD is below. > > Thanks, > -Mark > > diff --git a/cddl/contrib/opensolaris/lib/libdtrace/common/dt_open.c b/cddl/contrib/opensolaris/lib/libdtrace/common/dt_open.c > index 9c9b2a6..83c81e5 100644 > --- a/cddl/contrib/opensolaris/lib/libdtrace/common/dt_open.c > +++ b/cddl/contrib/opensolaris/lib/libdtrace/common/dt_open.c > @@ -122,8 +122,9 @@ > #define DT_VERS_1_8_1 DT_VERSION_NUMBER(1, 8, 1) > #define DT_VERS_1_9 DT_VERSION_NUMBER(1, 9, 0) > #define DT_VERS_1_9_1 DT_VERSION_NUMBER(1, 9, 1) > -#define DT_VERS_LATEST DT_VERS_1_9_1 > -#define DT_VERS_STRING "Sun D 1.9.1" > +#define DT_VERS_1_9_2 DT_VERSION_NUMBER(1, 9, 2) > +#define DT_VERS_LATEST DT_VERS_1_9_2 > +#define DT_VERS_STRING "Sun D 1.9.2" > > const dt_version_t _dtrace_versions[] = { > DT_VERS_1_0, /* D API 1.0.0 (PSARC 2001/466) Solaris 10 FCS */ > @@ -145,6 +146,7 @@ const dt_version_t _dtrace_versions[] = { > DT_VERS_1_8_1, /* D API 1.8.1 */ > DT_VERS_1_9, /* D API 1.9 */ > DT_VERS_1_9_1, /* D API 1.9.1 */ > + DT_VERS_1_9_2, /* D API 1.9.2 */ > 0 > }; > > @@ -311,6 +313,8 @@ static const dt_ident_t _dtrace_globals[] = { > &dt_idops_func, "void(@)" }, > { "memref", DT_IDENT_FUNC, 0, DIF_SUBR_MEMREF, DT_ATTR_STABCMN, DT_VERS_1_1, > &dt_idops_func, "uintptr_t *(void *, size_t)" }, > +{ "memstr", DT_IDENT_FUNC, 0, DIF_SUBR_MEMSTR, DT_ATTR_STABCMN, DT_VERS_1_0, > + &dt_idops_func, "string(void *, char, size_t)" }, > { "min", DT_IDENT_AGGFUNC, 0, DTRACEAGG_MIN, DT_ATTR_STABCMN, DT_VERS_1_0, > &dt_idops_func, "void(@)" }, > { "mod", DT_IDENT_ACTFUNC, 0, DT_ACT_MOD, DT_ATTR_STABCMN, > diff --git a/cddl/lib/libdtrace/psinfo.d b/cddl/lib/libdtrace/psinfo.d > index 068e72e..b2a009a 100644 > --- a/cddl/lib/libdtrace/psinfo.d > +++ b/cddl/lib/libdtrace/psinfo.d > @@ -57,7 +57,7 @@ translator psinfo_t < struct proc *T > { > pr_gid = T->p_ucred->cr_rgid; > pr_egid = T->p_ucred->cr_groups[0]; > pr_addr = 0; > - pr_psargs = stringof(T->p_args->ar_args); > + pr_psargs = memstr(T->p_args->ar_args, ' ', T->p_args->ar_length); > pr_arglen = T->p_args->ar_length; > pr_jailid = T->p_ucred->cr_prison->pr_id; > }; > diff --git a/sys/cddl/contrib/opensolaris/uts/common/dtrace/dtrace.c b/sys/cddl/contrib/opensolaris/uts/common/dtrace/dtrace.c > index babc42c4..6d991fb 100644 > --- a/sys/cddl/contrib/opensolaris/uts/common/dtrace/dtrace.c > +++ b/sys/cddl/contrib/opensolaris/uts/common/dtrace/dtrace.c > @@ -4920,6 +4920,38 @@ inetout: regs[rd] = (uintptr_t)end + 1; > break; > } > > + case DIF_SUBR_MEMSTR: { > + char *str = (char *)mstate->dtms_scratch_ptr; > + uintptr_t mem = tupregs[0].dttk_value; > + char c = tupregs[1].dttk_value; > + size_t size = tupregs[2].dttk_value; > + uint8_t n; > + int i; > + > + regs[rd] = 0; > + > + if (size == 0) > + break; > + > + if (!dtrace_canload(mem, size - 1, mstate, vstate)) > + break; > + > + if (!DTRACE_INSCRATCH(mstate, size)) { > + DTRACE_CPUFLAG_SET(CPU_DTRACE_NOSCRATCH); > + break; > + } > + > + for (i = 0; i < size - 1; i++) { > + n = dtrace_load8(mem++); > + str[i] = (n == 0) ? c : n; > + } > + str[size - 1] = 0; > + > + regs[rd] = (uintptr_t)str; > + mstate->dtms_scratch_ptr += size; > + break; > + } > + > case DIF_SUBR_TYPEREF: { > uintptr_t size = 4 * sizeof(uintptr_t); > uintptr_t *typeref = (uintptr_t *) P2ROUNDUP(mstate->dtms_scratch_ptr, sizeof(uintptr_t)); > @@ -9102,6 +9134,7 @@ dtrace_difo_validate_helper(dtrace_difo_t *dp) > subr == DIF_SUBR_NTOHL || > subr == DIF_SUBR_NTOHLL || > subr == DIF_SUBR_MEMREF || > + subr == DIF_SUBR_MEMSTR || > subr == DIF_SUBR_TYPEREF) > break; > > diff --git a/sys/cddl/contrib/opensolaris/uts/common/sys/dtrace.h b/sys/cddl/contrib/opensolaris/uts/common/sys/dtrace.h > index 8728e30..295457c 100644 > --- a/sys/cddl/contrib/opensolaris/uts/common/sys/dtrace.h > +++ b/sys/cddl/contrib/opensolaris/uts/common/sys/dtrace.h > @@ -311,8 +311,9 @@ typedef enum dtrace_probespec { > #define DIF_SUBR_SX_SHARED_HELD 48 > #define DIF_SUBR_SX_EXCLUSIVE_HELD 49 > #define DIF_SUBR_SX_ISEXCLUSIVE 50 > +#define DIF_SUBR_MEMSTR 51 > > -#define DIF_SUBR_MAX 50 /* max subroutine value */ > +#define DIF_SUBR_MAX 51 /* max subroutine value */ > > typedef uint32_t dif_instr_t; > > > > ------------------------------------------- > dtrace-discuss > Archives: https://www.listbox.com/member/archive/184261/=now > RSS Feed: https://www.listbox.com/member/archive/rss/184261/21484527-a123725d > Modify Your Subscription: https://www.listbox.com/member/?member_id=21484527&id_secret=21484527-085b137e > Powered by Listbox: http://www.listbox.com