2 * SPDX-License-Identifier: BSD-2-Clause-FreeBSD
4 * Copyright (c) 2002 Jake Burkholder
5 * Copyright (c) 2004 Robert Watson
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30 #include <sys/cdefs.h>
31 __FBSDID("$FreeBSD$");
33 #include <sys/types.h>
34 #include <sys/capsicum.h>
39 #include <capsicum_helpers.h>
54 "usage: ktrdump [-cflqrtH] [-i ktrfile] [-M core] [-N system] [-o outfile]\n"
56 static void usage(void);
58 static struct nlist nl[] = {
77 static char corefile[PATH_MAX];
78 static char execfile[PATH_MAX];
79 static char outfile[PATH_MAX] = "stdout";
81 static char desc[SBUFLEN];
82 static char errbuf[_POSIX2_LINE_MAX];
83 static char fbuf[PATH_MAX];
84 static char obuf[PATH_MAX];
85 static char sbuf[KTR_PARMS][SBUFLEN];
88 * Reads the ktr trace buffer from kernel memory and prints the trace entries.
91 main(int ac, char **av)
93 u_long parms[KTR_PARMS];
94 struct ktr_entry *buf;
95 uintmax_t tlast, tnow;
112 * Parse commandline arguments.
115 while ((c = getopt(ac, av, "cflqrtHe:i:m:M:N:o:")) != -1)
122 if (strlcpy(execfile, optarg, sizeof(execfile))
124 errx(1, "%s: File name too long", optarg);
132 if ((in = open(optarg, O_RDONLY)) == -1)
133 err(1, "%s", optarg);
134 cap_rights_init(&rights, CAP_FSTAT, CAP_MMAP_R);
135 if (cap_rights_limit(in, &rights) < 0 &&
137 err(1, "unable to limit rights for %s",
145 if (strlcpy(corefile, optarg, sizeof(corefile))
147 errx(1, "%s: File name too long", optarg);
151 if ((out = fopen(optarg, "w")) == NULL)
152 err(1, "%s", optarg);
153 strlcpy(outfile, optarg, sizeof(outfile));
176 if (caph_limit_stream(fileno(out), CAPH_WRITE) < 0)
177 err(1, "unable to limit rights for %s", outfile);
178 if (caph_limit_stderr() < 0)
179 err(1, "unable to limit rights for stderr");
182 * Open our execfile and corefile, resolve needed symbols and read in
185 if ((kd = kvm_openfiles(Nflag ? execfile : NULL,
186 Mflag ? corefile : NULL, NULL, O_RDONLY, errbuf)) == NULL)
187 errx(1, "%s", errbuf);
190 * Cache NLS data, for strerror, for err(3), before entering capability
193 caph_cache_catpages();
195 count = kvm_nlist(kd, nl);
197 errx(1, "%s", kvm_geterr(kd));
199 errx(1, "failed to resolve ktr symbols");
200 if (kvm_read(kd, nl[0].n_value, &version, sizeof(version)) == -1)
201 errx(1, "%s", kvm_geterr(kd));
202 if (version != KTR_VERSION)
203 errx(1, "ktr version mismatch");
206 * Enter Capsicum sandbox.
208 * kvm_nlist() above uses kldsym(2) for native kernels, and that isn't
209 * allowed in the sandbox.
211 if (caph_enter() < 0)
212 err(1, "unable to enter capability mode");
215 if (fstat(in, &sb) == -1)
217 entries = sb.st_size / sizeof(*buf);
219 buf = mmap(NULL, sb.st_size, PROT_READ, MAP_SHARED, in, 0);
220 if (buf == MAP_FAILED)
223 if (kvm_read(kd, nl[1].n_value, &entries, sizeof(entries))
225 errx(1, "%s", kvm_geterr(kd));
226 if ((buf = malloc(sizeof(*buf) * entries)) == NULL)
228 if (kvm_read(kd, nl[2].n_value, &index, sizeof(index)) == -1 ||
229 kvm_read(kd, nl[3].n_value, &bufptr,
230 sizeof(bufptr)) == -1 ||
231 kvm_read(kd, bufptr, buf, sizeof(*buf) * entries) == -1 ||
232 kvm_read(kd, nl[2].n_value, &index2, sizeof(index2)) == -1)
233 errx(1, "%s", kvm_geterr(kd));
237 * Print a nice header.
240 fprintf(out, "%-6s ", "index");
242 fprintf(out, "%-3s ", "cpu");
244 fprintf(out, "%-16s ", "timestamp");
246 fprintf(out, "%-40s ", "file and line");
248 fprintf(out, "%-18s ", "tid");
249 fprintf(out, "%s", "trace");
252 fprintf(out, "------ ");
254 fprintf(out, "--- ");
256 fprintf(out, "---------------- ");
259 "---------------------------------------- ");
261 fprintf(out, "------------------ ");
262 fprintf(out, "----- ");
268 * Now tear through the trace buffer.
270 * In "live" mode, find the oldest entry (first non-NULL entry
271 * after index2) and walk forward. Otherwise, start with the
272 * most recent entry and walk backwards.
276 i = index2 + 1 % entries;
277 while (buf[i].ktr_desc == NULL && i != index) {
290 if (buf[i].ktr_desc == NULL)
292 if (kvm_read(kd, (u_long)buf[i].ktr_desc, desc,
294 errx(1, "%s", kvm_geterr(kd));
295 desc[sizeof(desc) - 1] = '\0';
297 for (p = desc; (c = *p++) != '\0';) {
300 next: if ((c = *p++) == '\0')
302 if (parm == KTR_PARMS)
303 errx(1, "too many parameters in \"%s\"", desc);
305 case '0': case '1': case '2': case '3': case '4':
306 case '5': case '6': case '7': case '8': case '9':
307 case '#': case '-': case ' ': case '+': case '\'':
308 case 'h': case 'l': case 'j': case 't': case 'z':
309 case 'q': case 'L': case '.':
312 if (kvm_read(kd, (u_long)buf[i].ktr_parms[parm],
313 sbuf[parm], sizeof(sbuf[parm])) == -1)
314 strcpy(sbuf[parm], "(null)");
315 sbuf[parm][sizeof(sbuf[0]) - 1] = '\0';
316 parms[parm] = (u_long)sbuf[parm];
320 parms[parm] = buf[i].ktr_parms[parm];
325 fprintf(out, "%6d ", i);
327 fprintf(out, "%3d ", buf[i].ktr_cpu);
329 tnow = (uintmax_t)buf[i].ktr_timestamp;
333 fprintf(out, "%16ju ", !iflag ? tlast - tnow :
337 fprintf(out, "%16ju ", tnow);
340 if (kvm_read(kd, (u_long)buf[i].ktr_file, fbuf,
342 strcpy(fbuf, "(null)");
343 snprintf(obuf, sizeof(obuf), "%s:%d", fbuf,
345 fprintf(out, "%-40s ", obuf);
348 fprintf(out, "%p ", buf[i].ktr_thread);
349 fprintf(out, desc, parms[0], parms[1], parms[2], parms[3],
354 * 'index' and 'index2' are the values of 'ktr_idx'
355 * before and after the KTR buffer was copied into
356 * 'buf'. Since the KTR entries between 'index' and
357 * 'index2' were in flux while the KTR buffer was
358 * being copied to userspace we don't dump them.
378 * In "live" mode, poll 'ktr_idx' periodically and dump any
379 * new entries since our last pass through the ring.
381 if (lflag && !iflag) {
382 while (index == index2) {
384 if (kvm_read(kd, nl[2].n_value, &index2,
385 sizeof(index2)) == -1)
386 errx(1, "%s", kvm_geterr(kd));
390 if (kvm_read(kd, bufptr, buf, sizeof(*buf) * entries) == -1 ||
391 kvm_read(kd, nl[2].n_value, &index2, sizeof(index2)) == -1)
392 errx(1, "%s", kvm_geterr(kd));
403 fprintf(stderr, USAGE);
projects / FreeBSD / FreeBSD.git / blob