Re: Process Debugging questions

Jeremie Le Hen <jeremie@xxxxxxxxxx> writes:
Dag-Erling Smørgrav <des@xxxxxx> writes:
They both suck, for different reasons. In theory, ptrace sucks less
than proc, but it lacks some of proc's functionality, and fixing that
is very hard.
Would you take a little time to tell what ptrace lacks and possibly
why it is so hard, please ?

The way ptrace works, you set debugging conditions using the ptrace(2)
syscall and then use waitpid(2) and friends to wait for them to occur.
For this to work, the traced process must be reparented to the
debugger. If the traced process's real parent is waiting for its
child, it will become very confused when waitpid(2) returns -1 because
the child has vanished into thin air. For precisely the same reason,
you can't follow forks with ptrace().

The only way I can see to solve this without modifying the ptrace API
is to introduce a separate process hierarchy for traced processes.
This is hard to do because you basically have to rewrite kern_wait()
from scratch.

The best solution would be to design a new debugging API from scratch.
This is far from trivial, however, and should be done by (or in close
cooperation with) someone intimately familiar with gdb(1) and similar
tools.

DES
--
Dag-Erling Smørgrav - des@xxxxxx
_______________________________________________
freebsd-hackers@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: Process Debugging questions
    ... The way ptrace works, you set debugging conditions using the ptracesyscall and then use waitpidand friends to wait for them to occur. ... the traced process must be reparented to the debugger. ... The only way I can see to solve this without modifying the ptrace API is to introduce a separate process hierarchy for traced processes. ...
    (freebsd-hackers)
  • Re: ptrace bugs and related problems
    ... and what I thought would happen for ptrace ... A successful execve done in one ... I'm not sure utrace will be accepted. ... That's why I suggested someone design a cleaner debugging interface to ...
    (Linux-Kernel)
  • Re: utrace vs. ptrace
    ... Much of the API and usage problems of ptrace stem from its (mostly ... utrace enables something like 'transparent live debugging': ... debugging session to a developer you trust. ...
    (Linux-Kernel)
  • Re: [Patch][RFC] fcntl: add ability to stop monitored processes
    ... >> You mean add the ability to monitor directories for changes to the ptrace ... > If you are using it for debugging and tracking file accesses then ptrace ... > seems to be the right interface. ... send the line "unsubscribe linux-kernel" in ...
    (Linux-Kernel)