From: Ingo Molnar <mingo@elte.hu>
To: Mathieu Desnoyers <mathieu.desnoyers@polymtl.ca>
Cc: linux-kernel@vger.kernel.org, systemtap@sources.redhat.com,
"Frank Ch. Eigler" <fche@redhat.com>
Subject: Re: System call instrumentation
Date: Mon, 5 May 2008 08:55:59 +0200 [thread overview]
Message-ID: <20080505065559.GD3350@elte.hu> (raw)
In-Reply-To: <20080504134838.GA21487@Krystal>
* Mathieu Desnoyers <mathieu.desnoyers@polymtl.ca> wrote:
> Hi Ingo,
>
> I looked at the system call instrumentation present in LTTng lately. I
> tried different solutions, e.g. hooking a kernel-wide syscall trace in
> do_syscall_trace, but it appears that I ended up re-doing another
> syscall table, which consists of specialized functions which extracts
> the string and data structure parameters from user-space. Since code
> duplication is not exactly wanted, I think that the original approach
> taken in my patchset, which is to instrument the kernel code at the
> sys_* level (e.g. sys_open), which is the earliest level where the
> parameter information is made available to the kernel, is still the
> best way to go.
hm, i'm not sure about this. I've implemented system call tracing in -rt
[embedded in the latency tracer] and it only needed changes in entry.S,
not in every system call site. Now, granted, that tracer was simpler
than what LTTng tries to do, but do we _really_ need more complexity? A
trace point that simply expresses:
sys_call_event(int sysno, long param1, long param2, long param3,
long param4, long param5, long param6);
would be more than enough in 99% of the cases. If you want to extract
the strings from the system call table, to make the filtering of these
syscall events easier, do it during build time (by for example modifying
the __SYSCALL() macros in unistd.h), instead of a parallel syscall
table.
OTOH, as long as it's just one simple nonintrusive line per syscall,
it's not a big deal - as long as it only traces the parameters as they
come from the syscall ABI - we wont change them anyway. I.e. hide the
ugly string portion, just turn them into a simple:
trace_sys_getpid();
trace_sys_time(tloc);
trace_sys_gettimeofday(tz, tv);
(although even such a solution would still need a general policy level
buy-in i guess - we dont want half of the syscalls traced, the other
half objected to by maintainers. So it's either all or nothing.)
and the question also arises: why not do this on a debuginfo level? This
information can be extracted from the debuginfo. We could change
'asmlinkage' to 'syscall_linkage' to make it clear which functions are
syscalls.
Ingo
next prev parent reply other threads:[~2008-05-05 6:56 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-05-04 13:48 System call instrumentation Mathieu Desnoyers
2008-05-05 6:55 ` Ingo Molnar [this message]
2008-05-05 10:59 ` Mathieu Desnoyers
2008-05-05 11:10 ` Ingo Molnar
2008-05-05 11:30 ` Mathieu Desnoyers
2008-05-05 12:28 ` Ingo Molnar
2008-05-06 20:52 ` Masami Hiramatsu
2008-05-20 3:44 ` Mathieu Desnoyers
2008-05-20 14:18 ` Arjan van de Ven
2008-05-22 12:47 ` Mathieu Desnoyers
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20080505065559.GD3350@elte.hu \
--to=mingo@elte.hu \
--cc=fche@redhat.com \
--cc=linux-kernel@vger.kernel.org \
--cc=mathieu.desnoyers@polymtl.ca \
--cc=systemtap@sources.redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox