BCC - Għodod ta' Traċċar Dinamika għall-Monitoraġġ tal-Prestazzjoni tal-Linux, Netwerking u Aktar
BCC (BPF Compiler Collection) huwa sett qawwi ta' għodod xierqa u fajls ta' eżempju għall-ħolqien ta' programmi ta' traċċar u manipulazzjoni tal-qalba b'riżorsi. Hija tutilizza BPF estiż (Berkeley Packet Filters), inizjalment magħrufa bħala eBPF li kienet waħda mill-karatteristiċi ġodda fil-Linux 3.15.
Prattikament, ħafna mill-komponenti użati minn BCC jeħtieġu Linux 4.1 jew aktar, u l-karatteristiċi notevoli tiegħu jinkludu:
- Ma jeħtieġ l-ebda modulu tal-kernel ta' parti terza, peress li l-għodod kollha jaħdmu bbażati fuq BPF li huwa mibni fil-kernel u BCC juża karatteristiċi miżjuda fis-serje Linux 4.x.
- Jippermetti l-osservazzjoni tal-eżekuzzjoni tas-softwer.
- Jinkludi diversi għodod ta' analiżi tal-prestazzjoni b'fajls ta' eżempju u paġni man.
L-aktar adattat għal utenti avvanzati tal-Linux, BCC jagħmilha faċli biex tikteb programmi BPF bl-użu ta 'strumentazzjoni tal-kernel f'C, u front-ends f'Python u lua. Barra minn hekk, jappoġġja kompiti multipli bħall-analiżi tal-prestazzjoni, il-monitoraġġ, il-kontroll tat-traffiku tan-netwerk u ħafna aktar.
Kif Tinstalla BCC fis-Sistemi Linux
Ftakar li BCC juża karatteristiċi miżjuda fil-verżjoni tal-kernel Linux 4.1 jew ogħla, u bħala rekwiżit, il-kernel kellu jkun ikkumpilat bil-bnadar stabbiliti hawn taħt:
CONFIG_BPF=y CONFIG_BPF_SYSCALL=y # [optional, for tc filters] CONFIG_NET_CLS_BPF=m # [optional, for tc actions] CONFIG_NET_ACT_BPF=m CONFIG_BPF_JIT=y CONFIG_HAVE_BPF_JIT=y # [optional, for kprobes] CONFIG_BPF_EVENTS=y
Biex tiċċekkja l-bnadar tal-kernel tiegħek, ara l-fajl /proc/config.gz jew mexxi l-kmandi bħal fl-eżempji hawn taħt:
[email ~ $ grep CONFIG_BPF= /boot/config-`uname -r` CONFIG_BPF=y [email ~ $ grep CONFIG_BPF_SYSCALL= /boot/config-`uname -r` CONFIG_BPF_SYSCALL=y [email ~ $ grep CONFIG_NET_CLS_BPF= /boot/config-`uname -r` CONFIG_NET_CLS_BPF=m [email ~ $ grep CONFIG_NET_ACT_BPF= /boot/config-`uname -r` CONFIG_NET_ACT_BPF=m [email ~ $ grep CONFIG_BPF_JIT= /boot/config-`uname -r` CONFIG_BPF_JIT=y [email ~ $ grep CONFIG_HAVE_BPF_JIT= /boot/config-`uname -r` CONFIG_HAVE_BPF_JIT=y [email ~ $ grep CONFIG_BPF_EVENTS= /boot/config-`uname -r` CONFIG_BPF_EVENTS=y
Wara li tivverifika l-bnadar tal-kernel, wasal iż-żmien li tinstalla għodod BCC fis-sistemi Linux.
Il-pakketti ta 'filgħaxija biss huma maħluqa għal Ubuntu 16.04, iżda l-istruzzjonijiet ta' installazzjoni huma sempliċi ħafna. Ebda ħtieġa ta 'aġġornament tal-qalba jew jikkompilaha mis-sors.
$ echo "deb [trusted=yes] https://repo.iovisor.org/apt/xenial xenial-nightly main" | sudo tee /etc/apt/sources.list.d/iovisor.list $ sudo apt-get update $ sudo apt-get install bcc-tools
Ibda billi tinstalla kernel Linux 4.3+, minn http://kernel.ubuntu.com/~kernel-ppa/mainline.
Bħala eżempju, ikteb script shell żgħir bcc-install.sh bil-kontenut hawn taħt.
Nota: aġġorna l-valur PREFIX għall-aħħar data, u wkoll ibbrawżja l-fajls fl-url PREFIX ipprovdut biex tikseb il-valur REL attwali, ibdelhom fl-iskrittura tal-qoxra.
#!/bin/bash
VER=4.5.1-040501
PREFIX=http://kernel.ubuntu.com/~kernel-ppa/mainline/v4.5.1-wily/
REL=201604121331
wget ${PREFIX}/linux-headers-${VER}-generic_${VER}.${REL}_amd64.deb
wget ${PREFIX}/linux-headers-${VER}_${VER}.${REL}_all.deb
wget ${PREFIX}/linux-image-${VER}-generic_${VER}.${REL}_amd64.deb
sudo dpkg -i linux-*${VER}.${REL}*.deb
Issejvja l-fajl u oħroġ. Agħmilha eżekutibbli, imbagħad mexxiha kif muri:
$ chmod +x bcc-install.sh $ sh bcc-install.sh
Wara, reboot is-sistema tiegħek.
$ reboot
Sussegwentement, mexxi l-kmandi hawn taħt biex tinstalla pakketti BCC iffirmati:
$ sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys D4284CDD $ echo "deb https://repo.iovisor.org/apt trusty main" | sudo tee /etc/apt/sources.list.d/iovisor.list $ sudo apt-get update $ sudo apt-get install binutils bcc bcc-tools libbcc-examples python-bcc
Installa kernel 4.2+ minn http://alt.fedoraproject.org/pub/alt/rawhide-kernel-nodebug, jekk is-sistema tiegħek għandha verżjoni aktar baxxa minn dik meħtieġa. Hawn taħt hawn eżempju ta 'kif tagħmel dan:
$ sudo dnf config-manager --add-repo=http://alt.fedoraproject.org/pub/alt/rawhide-kernel-nodebug/fedora-rawhide-kernel-nodebug.repo $ sudo dnf update $ reboot
Wara dan, żid ir-repożitorju tal-għodod tal-BBC, aġġorna s-sistema tiegħek u installa l-għodda billi tesegwixxi s-serje ta 'kmandi li jmiss:
$ echo -e '[iovisor]\nbaseurl=https://repo.iovisor.org/yum/nightly/f23/$basearch\nenabled=1\ngpgcheck=0' | sudo tee /etc/yum.repos.d/iovisor.repo $ sudo dnf update $ sudo dnf install bcc-tools
Għandek tibda billi taġġorna l-kernel tiegħek għall-inqas għall-verżjoni 4.3.1-1, sussegwentement tinstalla l-pakketti hawn taħt billi tuża kwalunkwe maniġer tal-pakketti Arch bħal pacaur, yaourt, cower, eċċ.
bcc bcc-tools python-bcc python2-bcc
Kif tuża Għodod BCC fis-Sistemi Linux
L-għodod kollha tal-BCC huma installati taħt id-direttorju /usr/share/bcc/tools. Madankollu, tista' alternattivament tmexxihom mir-repożitorju tal-BCC Github taħt /tools fejn jispiċċaw b'estensjoni .py.
$ ls /usr/share/bcc/tools argdist capable filetop offwaketime stackcount vfscount bashreadline cpudist funccount old stacksnoop vfsstat biolatency dcsnoop funclatency oomkill statsnoop wakeuptime biosnoop dcstat gethostlatency opensnoop syncsnoop xfsdist biotop doc hardirqs pidpersec tcpaccept xfsslower bitesize execsnoop killsnoop profile tcpconnect zfsdist btrfsdist ext4dist mdflush runqlat tcpconnlat zfsslower btrfsslower ext4slower memleak softirqs tcpretrans cachestat filelife mysqld_qslower solisten tplist cachetop fileslower offcputime sslsniff trace
Aħna ser inkopru ftit eżempji taħt – monitoraġġ tal-prestazzjoni ġenerali tas-sistema Linux u n-netwerking.
Nibdew billi ntraċċaw is-syscalls kollha open() billi tuża opensnoop. Dan jippermettilna għidilna kif jaħdmu diversi applikazzjonijiet billi nidentifikaw il-fajls tad-dejta tagħhom, il-fajls tal-konfigurazzjoni u ħafna aktar:
$ cd /usr/share/bcc/tools $ sudo ./opensnoop PID COMM FD ERR PATH 1 systemd 35 0 /proc/self/mountinfo 2797 udisksd 13 0 /proc/self/mountinfo 1 systemd 35 0 /sys/devices/pci0000:00/0000:00:0d.0/ata3/host2/target2:0:0/2:0:0:0/block/sda/sda1/uevent 1 systemd 35 0 /run/udev/data/b8:1 1 systemd -1 2 /etc/systemd/system/sys-kernel-debug-tracing.mount 1 systemd -1 2 /run/systemd/system/sys-kernel-debug-tracing.mount 1 systemd -1 2 /run/systemd/generator/sys-kernel-debug-tracing.mount 1 systemd -1 2 /usr/local/lib/systemd/system/sys-kernel-debug-tracing.mount 2247 systemd 15 0 /proc/self/mountinfo 1 systemd -1 2 /lib/systemd/system/sys-kernel-debug-tracing.mount 1 systemd -1 2 /usr/lib/systemd/system/sys-kernel-debug-tracing.mount 1 systemd -1 2 /run/systemd/generator.late/sys-kernel-debug-tracing.mount 1 systemd -1 2 /etc/systemd/system/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /etc/systemd/system/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /run/systemd/system/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /run/systemd/system/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /run/systemd/generator/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /run/systemd/generator/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /usr/local/lib/systemd/system/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /usr/local/lib/systemd/system/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /lib/systemd/system/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /lib/systemd/system/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /usr/lib/systemd/system/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /usr/lib/systemd/system/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /run/systemd/generator.late/sys-kernel-debug-tracing.mount.wants 1 systemd -1 2 /run/systemd/generator.late/sys-kernel-debug-tracing.mount.requires 1 systemd -1 2 /etc/systemd/system/sys-kernel-debug-tracing.mount.d 1 systemd -1 2 /run/systemd/system/sys-kernel-debug-tracing.mount.d 1 systemd -1 2 /run/systemd/generator/sys-kernel-debug-tracing.mount.d ....
F'dan l-eżempju, juri distribuzzjoni fil-qosor tal-latency tal-I/O tad-disk bl-użu tal-biolatecncy. Wara li tesegwixxi l-kmand, stenna għal ftit minuti u agħfas Ctrl-C biex ittemmha u tara l-output.
$ sudo ./biolatecncy
Tracing block device I/O... Hit Ctrl-C to end.
^C
usecs : count distribution
0 -> 1 : 0 | |
2 -> 3 : 0 | |
4 -> 7 : 0 | |
8 -> 15 : 0 | |
16 -> 31 : 0 | |
32 -> 63 : 0 | |
64 -> 127 : 0 | |
128 -> 255 : 3 |****************************************|
256 -> 511 : 3 |****************************************|
512 -> 1023 : 1 |************* |
F'din it-taqsima, se nimxu biex intraċċaw proċessi ġodda fl-eżekuzzjoni bl-użu tal-għodda execsnoop. Kull darba li proċess jiġi forked minn syscalls fork() u exec(), jidher fl-output. Madankollu, mhux il-proċessi kollha jinqabdu.
$ sudo ./execsnoop PCOMM PID PPID RET ARGS gnome-screensho 14882 14881 0 /usr/bin/gnome-screenshot --gapplication-service systemd-hostnam 14892 1 0 /lib/systemd/systemd-hostnamed nautilus 14897 2767 -2 /home/tecmint/bin/net usershare info nautilus 14897 2767 -2 /home/tecmint/.local/bin/net usershare info nautilus 14897 2767 -2 /usr/local/sbin/net usershare info nautilus 14897 2767 -2 /usr/local/bin/net usershare info nautilus 14897 2767 -2 /usr/sbin/net usershare info nautilus 14897 2767 -2 /usr/bin/net usershare info nautilus 14897 2767 -2 /sbin/net usershare info nautilus 14897 2767 -2 /bin/net usershare info nautilus 14897 2767 -2 /usr/games/net usershare info nautilus 14897 2767 -2 /usr/local/games/net usershare info nautilus 14897 2767 -2 /snap/bin/net usershare info compiz 14899 14898 -2 /home/tecmint/bin/libreoffice --calc compiz 14899 14898 -2 /home/tecmint/.local/bin/libreoffice --calc compiz 14899 14898 -2 /usr/local/sbin/libreoffice --calc compiz 14899 14898 -2 /usr/local/bin/libreoffice --calc compiz 14899 14898 -2 /usr/sbin/libreoffice --calc libreoffice 14899 2252 0 /usr/bin/libreoffice --calc dirname 14902 14899 0 /usr/bin/dirname /usr/bin/libreoffice basename 14903 14899 0 /usr/bin/basename /usr/bin/libreoffice ...
L-użu ta 'ext4slower biex jintraċċa l-operazzjonijiet komuni tas-sistema tal-fajls ext4 li huma aktar bil-mod minn 10ms, biex tgħinna nidentifikaw I/O tad-diska bil-mod b'mod indipendenti permezz tas-sistema tal-fajls.
Jipproduċi biss dawk l-operazzjonijiet li jaqbżu limitu:
$ sudo ./execslower Tracing ext4 operations slower than 10 ms TIME COMM PID T BYTES OFF_KB LAT(ms) FILENAME 11:59:13 upstart 2252 W 48 1 10.76 dbus.log 11:59:13 gnome-screensh 14993 R 144 0 10.96 settings.ini 11:59:13 gnome-screensh 14993 R 28 0 16.02 gtk.css 11:59:13 gnome-screensh 14993 R 3389 0 18.32 gtk-main.css 11:59:25 rs:main Q:Reg 1826 W 156 60 31.85 syslog 11:59:25 pool 15002 R 208 0 14.98 .xsession-errors 11:59:25 pool 15002 R 644 0 12.28 .ICEauthority 11:59:25 pool 15002 R 220 0 13.38 .bash_logout 11:59:27 dconf-service 2599 S 0 0 22.75 user.BHDKOY 11:59:33 compiz 2548 R 4096 0 19.03 firefox.desktop 11:59:34 compiz 15008 R 128 0 27.52 firefox.sh 11:59:34 firefox 15008 R 128 0 36.48 firefox 11:59:34 zeitgeist-daem 2988 S 0 0 62.23 activity.sqlite-wal 11:59:34 zeitgeist-fts 2996 R 8192 40 15.67 postlist.DB 11:59:34 firefox 15008 R 140 0 18.05 dependentlibs.list 11:59:34 zeitgeist-fts 2996 S 0 0 25.96 position.tmp 11:59:34 firefox 15008 R 4096 0 10.67 libplc4.so 11:59:34 zeitgeist-fts 2996 S 0 0 11.29 termlist.tmp ...
Wara, ejja nipprintjaw linja għal kull disk I/O kull sekonda, b'dettalji bħal ID tal-proċess, settur, bytes, latency fost oħrajn bl-użu ta 'biosnoop:
$ sudo ./biosnoop TIME(s) COMM PID DISK T SECTOR BYTES LAT(ms) 0.000000000 ? 0 R -1 8 0.26 2.047897000 ? 0 R -1 8 0.21 3.280028000 kworker/u4:0 14871 sda W 30552896 4096 0.24 3.280271000 jbd2/sda1-8 545 sda W 29757720 12288 0.40 3.298318000 jbd2/sda1-8 545 sda W 29757744 4096 0.14 4.096084000 ? 0 R -1 8 0.27 6.143977000 ? 0 R -1 8 0.27 8.192006000 ? 0 R -1 8 0.26 8.303938000 kworker/u4:2 15084 sda W 12586584 4096 0.14 8.303965000 kworker/u4:2 15084 sda W 25174736 4096 0.14 10.239961000 ? 0 R -1 8 0.26 12.292057000 ? 0 R -1 8 0.20 14.335990000 ? 0 R -1 8 0.26 16.383798000 ? 0 R -1 8 0.17 ...
Minn hemm 'il quddiem, nipproċedu biex nużaw il-cachestat biex turi linja waħda ta' statistika fil-qosor mill-cache tas-sistema kull sekonda. Dan jippermetti operazzjonijiet ta' rfinar tas-sistema billi jindika proporzjon baxx ta' hit tal-cache u rata għolja ta' miss:
$ sudo ./cachestat
HITS MISSES DIRTIES READ_HIT% WRITE_HIT% BUFFERS_MB CACHED_MB
0 0 0 0.0% 0.0% 19 544
4 4 2 25.0% 25.0% 19 544
1321 33 4 97.3% 2.3% 19 545
7476 0 2 100.0% 0.0% 19 545
6228 15 2 99.7% 0.2% 19 545
0 0 0 0.0% 0.0% 19 545
7391 253 108 95.3% 2.7% 19 545
33608 5382 28 86.1% 13.8% 19 567
25098 37 36 99.7% 0.0% 19 566
17624 239 416 96.3% 0.5% 19 520
...
Il-monitoraġġ tal-konnessjonijiet TCP kull sekonda billi tuża tcpconnect. L-output tiegħu jinkludi l-indirizz tas-sors u tad-destinazzjoni, u n-numru tal-port. Din l-għodda hija utli biex jintraċċaw konnessjonijiet TCP mhux mistennija, u b'hekk tgħinna nidentifikaw ineffiċjenzi fil-konfigurazzjonijiet tal-applikazzjoni jew attakkant.
$ sudo ./tcpconnect PID COMM IP SADDR DADDR DPORT 15272 Socket Threa 4 10.0.2.15 91.189.89.240 80 15272 Socket Threa 4 10.0.2.15 216.58.199.142 443 15272 Socket Threa 4 10.0.2.15 216.58.199.142 80 15272 Socket Threa 4 10.0.2.15 216.58.199.174 443 15272 Socket Threa 4 10.0.2.15 54.200.62.216 443 15272 Socket Threa 4 10.0.2.15 54.200.62.216 443 15272 Socket Threa 4 10.0.2.15 117.18.237.29 80 15272 Socket Threa 4 10.0.2.15 216.58.199.142 80 15272 Socket Threa 4 10.0.2.15 216.58.199.131 80 15272 Socket Threa 4 10.0.2.15 216.58.199.131 443 15272 Socket Threa 4 10.0.2.15 52.222.135.52 443 15272 Socket Threa 4 10.0.2.15 216.58.199.131 443 15272 Socket Threa 4 10.0.2.15 54.200.62.216 443 15272 Socket Threa 4 10.0.2.15 54.200.62.216 443 15272 Socket Threa 4 10.0.2.15 216.58.199.132 443 15272 Socket Threa 4 10.0.2.15 216.58.199.131 443 15272 Socket Threa 4 10.0.2.15 216.58.199.142 443 15272 Socket Threa 4 10.0.2.15 54.69.17.198 443 15272 Socket Threa 4 10.0.2.15 54.69.17.198 443 ...
L-għodod kollha ta' hawn fuq jistgħu jintużaw ukoll b'diversi għażliet, biex jippermettu l-paġna ta' għajnuna għal għodda partikolari, uża l-għażla -h, pereżempju:
$ sudo ./tcpconnect -h
usage: tcpconnect [-h] [-t] [-p PID] [-P PORT]
Trace TCP connects
optional arguments:
-h, --help show this help message and exit
-t, --timestamp include timestamp on output
-p PID, --pid PID trace this PID only
-P PORT, --port PORT comma-separated list of destination ports to trace.
examples:
./tcpconnect # trace all TCP connect()s
./tcpconnect -t # include timestamps
./tcpconnect -p 181 # only trace PID 181
./tcpconnect -P 80 # only trace port 80
./tcpconnect -P 80,81 # only trace port 80 and 81
Biex tiġi rintraċċata syscalls exec()s falluti, uża l-għażla -x b'opensnoop kif hawn taħt:
$ sudo ./opensnoop -x PID COMM FD ERR PATH 15414 pool -1 2 /home/.hidden 15415 (ostnamed) -1 2 /sys/fs/cgroup/cpu/system.slice/systemd-hostnamed.service/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/cpu/system.slice/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/cpuacct/system.slice/systemd-hostnamed.service/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/cpuacct/system.slice/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/blkio/system.slice/systemd-hostnamed.service/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/blkio/system.slice/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/memory/system.slice/systemd-hostnamed.service/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/memory/system.slice/cgroup.procs 15415 (ostnamed) -1 2 /sys/fs/cgroup/pids/system.slice/systemd-hostnamed.service/cgroup.procs 2548 compiz -1 2 15416 systemd-cgroups -1 2 /run/systemd/container 15416 systemd-cgroups -1 2 /sys/fs/kdbus/0-system/bus 15415 systemd-hostnam -1 2 /run/systemd/container 15415 systemd-hostnam -1 13 /proc/1/environ 15415 systemd-hostnam -1 2 /sys/fs/kdbus/0-system/bus 1695 dbus-daemon -1 2 /run/systemd/users/0 15415 systemd-hostnam -1 2 /etc/machine-info 15414 pool -1 2 /home/tecmint/.hidden 15414 pool -1 2 /home/tecmint/Binary/.hidden 2599 dconf-service -1 2 /run/user/1000/dconf/user ...
L-aħħar eżempju hawn taħt juri kif tesegwixxi operazzjoni ta 'traċċar apposta. Qed intraċċaw proċess partikolari bl-użu tal-PID tiegħu.
L-ewwel iddetermina l-ID tal-proċess:
$ pidof firefox 15437
Aktar tard, mexxi l-kmand tat-traċċa tad-dwana. Fil-kmand ta' hawn taħt: -p jispeċifika l-ID tal-proċess, do_sys_open() hija funzjoni tal-kernel li hija traċċata b'mod dinamiku inkluż it-tieni argument tagħha bħala string.
$ sudo ./trace -p 4095 'do_sys_open "%s", arg2' TIME PID COMM FUNC - 12:17:14 15437 firefox do_sys_open /run/user/1000/dconf/user 12:17:14 15437 firefox do_sys_open /home/tecmint/.config/dconf/user 12:18:07 15437 firefox do_sys_open /run/user/1000/dconf/user 12:18:07 15437 firefox do_sys_open /home/tecmint/.config/dconf/user 12:18:13 15437 firefox do_sys_open /sys/devices/system/cpu/present 12:18:13 15437 firefox do_sys_open /dev/urandom 12:18:13 15437 firefox do_sys_open /dev/urandom 12:18:14 15437 firefox do_sys_open /usr/share/fonts/truetype/liberation/LiberationSans-Italic.ttf 12:18:14 15437 firefox do_sys_open /usr/share/fonts/truetype/liberation/LiberationSans-Italic.ttf 12:18:14 15437 firefox do_sys_open /usr/share/fonts/truetype/liberation/LiberationSans-Italic.ttf 12:18:14 15437 firefox do_sys_open /sys/devices/system/cpu/present 12:18:14 15437 firefox do_sys_open /dev/urandom 12:18:14 15437 firefox do_sys_open /dev/urandom 12:18:14 15437 firefox do_sys_open /dev/urandom 12:18:14 15437 firefox do_sys_open /dev/urandom 12:18:15 15437 firefox do_sys_open /sys/devices/system/cpu/present 12:18:15 15437 firefox do_sys_open /dev/urandom 12:18:15 15437 firefox do_sys_open /dev/urandom 12:18:15 15437 firefox do_sys_open /sys/devices/system/cpu/present 12:18:15 15437 firefox do_sys_open /dev/urandom 12:18:15 15437 firefox do_sys_open /dev/urandom ....
Sommarju
BCC huwa sett ta 'għodda b'saħħtu u faċli biex jintuża għal diversi kompiti ta' amministrazzjoni tas-Sistema bħal monitoraġġ tal-prestazzjoni tas-sistema tat-traċċar, I/O tal-apparat tal-blokka tat-traċċar, funzjonijiet TCP, operazzjonijiet tas-sistema tal-fajls, syscalls, sondi Node.js, flimkien ma 'ħafna aktar. Importanti, hija tintbagħat b'bosta fajls ta 'eżempji u paġni man għall-għodda biex jiggwidak, li jagħmilha faċli għall-utent u affidabbli.
Fl-aħħar iżda mhux l-inqas, tista’ terġa’ lura magħna billi taqsam il-ħsibijiet tiegħek dwar is-suġġett, tistaqsi mistoqsijiet, tagħmel suġġerimenti utli jew kwalunkwe feedback kostruttiv permezz tat-taqsima tal-kummenti hawn taħt.
Għal aktar informazzjoni u użu żur: https://iovisor.github.io/bcc/