diff options
| author | hunt <hunt> | 2006-03-13 20:14:39 +0000 |
|---|---|---|
| committer | hunt <hunt> | 2006-03-13 20:14:39 +0000 |
| commit | 62efd5e271d742d082975a3775b63d65df0dfd4e (patch) | |
| tree | 0a8ee92ac4987518b4da5ef681000b2deed88ec9 | |
| parent | 3fd08858f53e9506a43e85597871867f717b16b5 (diff) | |
| download | systemtap-steved-62efd5e271d742d082975a3775b63d65df0dfd4e.tar.gz systemtap-steved-62efd5e271d742d082975a3775b63d65df0dfd4e.tar.xz systemtap-steved-62efd5e271d742d082975a3775b63d65df0dfd4e.zip | |
*** empty log message ***
| -rw-r--r-- | tapset/errno.stp | 2 | ||||
| -rw-r--r-- | tapset/i686/syscalls.stp | 80 | ||||
| -rw-r--r-- | tapset/syscalls.stp | 180 | ||||
| -rw-r--r-- | tapset/syscalls2.stp | 280 | ||||
| -rw-r--r-- | tapset/x86_64/syscalls.stp | 70 |
5 files changed, 295 insertions, 317 deletions
diff --git a/tapset/errno.stp b/tapset/errno.stp index d0f8b94a..d3ab90e3 100644 --- a/tapset/errno.stp +++ b/tapset/errno.stp @@ -351,7 +351,7 @@ function errno_str:string (err:long) %{ strlcpy (THIS->__retvalue, errlist[e], MAXSTRINGLEN); %} -/* for syscall tapset. set returnp = 2 for hex */ +/* for syscall tapset. set returnp = 1 for decimal, 2 for hex */ function returnstr:string (returnp:long) %{ long ret; diff --git a/tapset/i686/syscalls.stp b/tapset/i686/syscalls.stp index 51e51b3c..42f069d4 100644 --- a/tapset/i686/syscalls.stp +++ b/tapset/i686/syscalls.stp @@ -9,7 +9,7 @@ probe syscall.fstat = kernel.function("sys_fstat") { } probe syscall.fstat.return = kernel.function("sys_fstat").return { name = "fstat" - returnp = 1 + retstr = returnstr(1) } # getegid16 __________________________________________________ @@ -19,7 +19,7 @@ probe syscall.getegid16 = kernel.function("sys_getegid16") { } probe syscall.getegid16.return = kernel.function("sys_getegid16").return { name = "getegid16" - returnp = 1 + retstr = returnstr(1) } # geteuid16 __________________________________________________ @@ -29,7 +29,7 @@ probe syscall.geteuid16 = kernel.function("sys_geteuid16") { } probe syscall.geteuid16.return = kernel.function("sys_geteuid16").return { name = "geteuid16" - returnp = 1 + retstr = returnstr(1) } # getgid16 ___________________________________________________ @@ -39,7 +39,7 @@ probe syscall.getgid16 = kernel.function("sys_getgid16") { } probe syscall.getgid16.return = kernel.function("sys_getgid16").return { name = "getgid16" - returnp = 1 + retstr = returnstr(1) } # getgroups16 ________________________________________________ @@ -52,7 +52,7 @@ probe syscall.getgroups16 = kernel.function("sys_getgroups16") { } probe syscall.getgroups16.return = kernel.function("sys_getgroups16").return { name = "getgroups16" - returnp = 1 + retstr = returnstr(1) } # getuid16 ___________________________________________________ @@ -62,7 +62,7 @@ probe syscall.getuid16 = kernel.function("sys_getuid16") { } probe syscall.getuid16.return = kernel.function("sys_getuid16").return { name = "getuid16" - returnp = 1 + retstr = returnstr(1) } # lstat ______________________________________________________ @@ -75,7 +75,7 @@ probe syscall.lstat = kernel.function("sys_lstat") { } probe syscall.lstat.return = kernel.function("sys_lstat").return { name = "lstat.return" - returnp = 1 + retstr = returnstr(1) } # mmap2 @@ -96,7 +96,7 @@ probe syscall.mmap2 = kernel.function("sys_mmap2") { } probe syscall.mmap2.return = kernel.function("sys_mmap2").return { name = "mmap2" - returnp = 1 + retstr = returnstr(2) } # setgroups16 ________________________________________________ @@ -113,7 +113,7 @@ probe syscall.setgroups16 = kernel.function("sys_setgroups16") { } probe syscall.setgroups16.return = kernel.function("sys_setgroups16").return { name = "setgroups16" - returnp = 1 + retstr = returnstr(1) } # stat _______________________________________________________ @@ -131,7 +131,7 @@ probe syscall.stat = kernel.function("sys_stat") { } probe syscall.stat.return = kernel.function("sys_stat").return { name = "stat" - returnp = 1 + retstr = returnstr(1) } # acct _______________________________________________________ @@ -143,7 +143,7 @@ probe syscall.acct = kernel.function("sys_acct") { } probe syscall.acct.return = kernel.function("sys_acct").return { name = "acct" - returnp = 1 + retstr = returnstr(1) } # add_key ____________________________________________________ @@ -163,7 +163,7 @@ probe syscall.add_key = kernel.function("sys_add_key") { } probe syscall.add_key.return = kernel.function("sys_add_key").return { name = "add_key" - returnp = 1 + retstr = returnstr(1) } # quotactl ___________________________________________________ @@ -186,7 +186,7 @@ probe syscall.quotactl = kernel.function("sys_quotactl") { } probe syscall.quotactl.return = kernel.function("sys_quotactl").return { name = "quotactl" - returnp = 1 + retstr = returnstr(1) } # request_key ________________________________________________ # @@ -207,7 +207,7 @@ probe syscall.request_key = kernel.function("sys_request_key") { } probe syscall.request_key.return = kernel.function("sys_request_key").return { name = "request_key" - returnp = 1 + retstr = returnstr(1) } # fcntl64 ____________________________________________________ @@ -227,7 +227,7 @@ name = "fcntl64" } probe syscall.fcntl64.return = kernel.function("sys_fcntl64").return { name = "fcntl64" - returnp = 1 + retstr = returnstr(1) } # fstat64 ____________________________________________________ /* @@ -243,7 +243,7 @@ probe syscall.fstat64 = kernel.function("sys_fstat64") { } probe syscall.fstat64.return = kernel.function("sys_fstat64").return { name = "fstat64" - returnp = 1 + retstr = returnstr(1) } # get_thread_area ____________________________________________ /* @@ -258,7 +258,7 @@ probe syscall.get_thread_area = kernel.function("sys_get_thread_area") { probe syscall.get_thread_area.return = kernel.function("sys_get_thread_area").return { name = "get_thread_area" - returnp = 1 + retstr = returnstr(1) } # inotify_add_watch __________________________________________ /* @@ -279,7 +279,7 @@ probe syscall.inotify_add_watch = probe syscall.inotify_add_watch.return = kernel.function("sys_inotify_add_watch").return { name = "inotify_add_watch" - returnp = 1 + retstr = returnstr(1) } # inotify_init _______________________________________________ /* @@ -293,7 +293,7 @@ probe syscall.inotify_init = kernel.function("sys_inotify_init") { probe syscall.inotify_init.return = kernel.function("sys_inotify_init").return { name = "inotify_init" - returnp = 1 + retstr = returnstr(1) } # inotify_rm_watch ___________________________________________ /* @@ -311,7 +311,7 @@ probe syscall.inotify_rm_watch = probe syscall.inotify_rm_watch.return = kernel.function("sys_inotify_rm_watch").return { name = "inotify_rm_watch" - returnp = 1 + retstr = returnstr(1) } # iopl _______________________________________________________ /* @@ -325,7 +325,7 @@ probe syscall.iopl = kernel.function("sys_iopl") { } probe syscall.iopl.return = kernel.function("sys_iopl").return { name = "iopl" - returnp = 1 + retstr = returnstr(1) } # ioprio_get _________________________________________________ /* @@ -342,7 +342,7 @@ probe syscall.ioprio_get = kernel.function("sys_ioprio_get") { probe syscall.ioprio_get.return = kernel.function("sys_ioprio_get").return { name = "ioprio_get" - returnp = 1 + retstr = returnstr(1) } # ioprio_set _________________________________________________ /* @@ -361,7 +361,7 @@ probe syscall.ioprio_set = kernel.function("sys_ioprio_set") { probe syscall.ioprio_set.return = kernel.function("sys_ioprio_set").return { name = "ioprio_set" - returnp = 1 + retstr = returnstr(1) } # ipc ________________________________________________________ /* @@ -386,7 +386,7 @@ probe syscall.ipc = kernel.function("sys_ipc") { } probe syscall.ipc.return = kernel.function("sys_ipc").return { name = "ipc" - returnp = 1 + retstr = returnstr(1) } # lstat64 ____________________________________________________ /* @@ -404,7 +404,7 @@ probe syscall.lstat64 = kernel.function("sys_lstat64") { probe syscall.lstat64.return = kernel.function("sys_lstat64").return { name = "lstat64" - returnp = 1 + retstr = returnstr(1) } # olduname ___________________________________________________ /* @@ -418,7 +418,7 @@ probe syscall.olduname = kernel.function("sys_olduname") { } probe syscall.olduname.return = kernel.function("sys_olduname").return { name = "olduname" - returnp = 1 + retstr = returnstr(1) } # rt_sigreturn _______________________________________________ /* @@ -433,7 +433,7 @@ probe syscall.rt_sigreturn = kernel.function("sys_rt_sigreturn") { probe syscall.rt_sigreturn.return = kernel.function("sys_rt_sigreturn").return { name = "rt_sigreturn" - returnp = 1 + retstr = returnstr(1) } # sched_setaffinity __________________________________________ /* @@ -456,7 +456,7 @@ probe syscall.sched_setaffinity = probe syscall.sched_setaffinity.return = kernel.function("sys_sched_setaffinity").return { name = "sched_setaffinity" - returnp = 1 + retstr = returnstr(1) } # sched_setparam _____________________________________________ /* @@ -474,7 +474,7 @@ probe syscall.sched_setparam = probe syscall.sched_setparam.return = kernel.function("do_sched_setscheduler").return { name = "sched_setparam" - returnp = 1 + retstr = returnstr(1) } # sched_setscheduler _________________________________________ /* @@ -495,7 +495,7 @@ probe syscall.sched_setscheduler = probe syscall.sched_setscheduler.return = kernel.function("do_sched_setscheduler").return { name = "sched_setscheduler" - returnp = 1 + retstr = returnstr(1) } # set_thread_area ____________________________________________ /* @@ -511,7 +511,7 @@ probe syscall.set_thread_area = probe syscall.set_thread_area.return = kernel.function("sys_set_thread_area").return { name = "set_thread_area" - returnp = 1 + retstr = returnstr(1) } # set_zone_reclaim ___________________________________________ /* @@ -532,7 +532,7 @@ probe syscall.set_zone_reclaim = probe syscall.set_zone_reclaim.return = kernel.function("sys_set_zone_reclaim").return { name = "set_zone_reclaim" - returnp = 1 + retstr = returnstr(1) } %) # shmat ______________________________________________________ @@ -553,7 +553,7 @@ probe syscall.shmat = probe syscall.shmat.return = kernel.function("sys_shmat").return { name = "shmat" - returnp = 1 + retstr = returnstr(1) } # sigaction __________________________________________________ /* @@ -574,7 +574,7 @@ probe syscall.sigaction = probe syscall.sigaction.return = kernel.function("sys_sigaction").return { name = "sigaction" - returnp = 1 + retstr = returnstr(1) } # sigaltstack ________________________________________________ /* @@ -590,7 +590,7 @@ probe syscall.sigaltstack = probe syscall.sigaltstack.return = kernel.function("sys_sigaltstack").return { name = "sigaltstack" - returnp = 1 + retstr = returnstr(1) } # sigreturn __________________________________________________ /* @@ -625,7 +625,7 @@ probe syscall.sigsuspend = probe syscall.sigsuspend.return = kernel.function("sys_sigsuspend").return { name = "sigsuspend" - returnp = 1 + retstr = returnstr(1) } # stat64 _____________________________________________________ /* @@ -642,7 +642,7 @@ probe syscall.stat64 = kernel.function("sys_stat64") { } probe syscall.stat64.return = kernel.function("sys_stat64").return { name = "stat64" - returnp = 1 + retstr = returnstr(1) } # umask ______________________________________________________ /* @@ -657,7 +657,7 @@ probe syscall.umask = kernel.function("sys_umask") { probe syscall.umask.return = kernel.function("sys_umask").return { name = "umask" - returnp = 1 + retstr = returnstr(1) } # vm86 _______________________________________________________ /* @@ -673,7 +673,7 @@ probe syscall.vm86 = kernel.function("sys_vm86") { } probe syscall.vm86.return = kernel.function("sys_vm86").return { name = "vm86" - returnp = 1 + retstr = returnstr(1) } # vm86old ____________________________________________________ /* @@ -689,6 +689,6 @@ probe syscall.vm86old = kernel.function("sys_vm86old") { } probe syscall.vm86old.return = kernel.function("sys_vm86old").return { name = "vm86old" - returnp = 1 + retstr = returnstr(1) } diff --git a/tapset/syscalls.stp b/tapset/syscalls.stp index 2f5de7df..c80015c5 100644 --- a/tapset/syscalls.stp +++ b/tapset/syscalls.stp @@ -8,7 +8,6 @@ // later version. - /* Each syscall returns the calls parameters. In addition, the following * variables are set: * @@ -16,11 +15,13 @@ * * argstr - a string containing the decoded args in an easy-to-read format. * It doesn't need to contain everything, but should have all the -* important args. +* important args. Set in entry probes only. * -* returnp - set to 1 if return probe +* retstr - a string containing the return value in an easy-to-read format. +* Set in return probes only. */ + # accept _____________________________________________________ # long sys_accept(int fd, struct sockaddr __user *upeer_sockaddr, # int __user *upeer_addrlen) @@ -33,7 +34,7 @@ probe syscall.accept = kernel.function("sys_accept") { } probe syscall.accept.return = kernel.function("sys_accept").return { name = "accept" - returnp = 1 + retstr = returnstr(1) } # access _____________________________________________________ @@ -47,7 +48,7 @@ probe syscall.access = kernel.function("sys_access") { } probe syscall.access.return = kernel.function("sys_access").return { name = "access" - returnp = 1 + retstr = returnstr(1) } # adjtimex ___________________________________________________ @@ -76,7 +77,7 @@ probe syscall.adjtimex = kernel.function("sys_adjtimex") { } probe syscall.adjtimex.return = kernel.function("sys_adjtimex").return { name = "adjtimex" - returnp = 1 + retstr = returnstr(1) } # alarm ______________________________________________________ @@ -88,7 +89,7 @@ probe syscall.alarm = kernel.function("sys_alarm") { } probe syscall.alarm.return = kernel.function("sys_alarm").return { name = "alarm" - returnp = 1 + retstr = returnstr(1) } # bdflush ____________________________________________________ @@ -101,7 +102,7 @@ probe syscall.bdflush = kernel.function("sys_bdflush") { } probe syscall.bdflush.return = kernel.function("sys_bdflush").return { name = "bdflush" - returnp = 1 + retstr = returnstr(1) } # bind _______________________________________________________ @@ -115,7 +116,7 @@ probe syscall.bind = kernel.function("sys_bind") { } probe syscall.bind.return = kernel.function("sys_bind").return { name = "bind" - returnp = 1 + retstr = returnstr(1) } # brk ________________________________________________________ @@ -127,7 +128,7 @@ probe syscall.brk = kernel.function("sys_brk") { } probe syscall.brk.return = kernel.function("sys_brk").return { name = "brk" - returnp = 1 + retstr = returnstr(1) } # capget _____________________________________________________ @@ -217,7 +218,7 @@ probe syscall.chdir = kernel.function("sys_chdir") { } probe syscall.chdir.return = kernel.function("sys_chdir").return { name = "chdir" - returnp = 1 + retstr = returnstr(1) } # chmod ______________________________________________________ @@ -230,7 +231,7 @@ probe syscall.chmod = kernel.function("sys_chmod") { } probe syscall.chmod.return = kernel.function("sys_chmod").return { name = "chmod" - returnp = 1 + retstr = returnstr(1) } # chown ______________________________________________________ @@ -244,7 +245,7 @@ probe syscall.chown = kernel.function("sys_chown") { } probe syscall.chown.return = kernel.function("sys_chown").return { name = "chown" - returnp = 1 + retstr = returnstr(1) } # chroot _____________________________________________________ @@ -256,7 +257,7 @@ probe syscall.chroot = kernel.function("sys_chroot") { } probe syscall.chroot.return = kernel.function("sys_chroot").return { name = "chroot" - returnp = 1 + retstr = returnstr(1) } # clock_getres _______________________________________________ /* @@ -341,7 +342,7 @@ probe syscall.close = kernel.function("sys_close") { } probe syscall.close.return = kernel.function("sys_close").return { name = "close" - returnp = 1 + retstr = returnstr(1) } # connect ____________________________________________________ # long sys_connect(int fd, struct sockaddr __user *uservaddr, int addrlen) @@ -354,7 +355,7 @@ probe syscall.connect = kernel.function("sys_connect") { } probe syscall.connect.return = kernel.function("sys_connect").return { name = "connect" - returnp = 1 + retstr = returnstr(1) } # delete_module ______________________________________________ @@ -367,7 +368,7 @@ probe syscall.delete_module = kernel.function("sys_delete_module") { } probe syscall.delete_module.return = kernel.function("sys_delete_module").return { name = "delete_module" - returnp = 1 + retstr = returnstr(1) } # dup ________________________________________________________ @@ -379,7 +380,7 @@ probe syscall.dup = kernel.function("sys_dup") { } probe syscall.dup.return = kernel.function("sys_dup").return { name = "dup" - returnp = 1 + retstr = returnstr(1) } # dup2 _______________________________________________________ @@ -392,7 +393,7 @@ probe syscall.dup2 = kernel.function("sys_dup2") { } probe syscall.dup2.return = kernel.function("sys_dup2").return { name = "dup2" - returnp = 1 + retstr = returnstr(1) } # epoll_create _______________________________________________ @@ -404,7 +405,7 @@ probe syscall.epoll_create = kernel.function("sys_epoll_create") { } probe syscall.epoll_create.return = kernel.function("sys_epoll_create").return { name = "epoll_create" - returnp = 1 + retstr = returnstr(1) } # epoll_ctl __________________________________________________ @@ -466,7 +467,7 @@ probe syscall.execve = kernel.function("do_execve") { # another reason to probe on do_execve probe syscall.execve.return = kernel.function("do_execve").return { name = "execve" - returnp = 1 + retstr = returnstr(1) } # exit _______________________________________________________ @@ -478,7 +479,7 @@ probe syscall.exit = kernel.function("do_exit") { } probe syscall.exit.return = kernel.function("do_exit").return { name = "exit" - returnp = 1 + retstr = returnstr(1) } # exit_group _________________________________________________ @@ -545,7 +546,7 @@ probe syscall.fchdir = kernel.function("sys_fchdir") { } probe syscall.fchdir.return = kernel.function("sys_fchdir").return { name = "fchdir" - returnp = 1 + retstr = returnstr(1) } # fchmod _____________________________________________________ @@ -558,7 +559,7 @@ probe syscall.fchmod = kernel.function("sys_fchmod") { } probe syscall.fchmod.return = kernel.function("sys_fchmod").return { name = "fchmod" - returnp = 1 + retstr = returnstr(1) } # fchown _____________________________________________________ @@ -572,7 +573,7 @@ probe syscall.fchown = kernel.function("sys_fchown") { } probe syscall.fchown.return = kernel.function("sys_fchown").return { name = "fchown" - returnp = 1 + retstr = returnstr(1) } # fchown16 ___________________________________________________ @@ -586,7 +587,7 @@ probe syscall.fchown16 = kernel.function("sys_fchown") { } probe syscall.fchown16.return = kernel.function("sys_fchown").return { name = "fchown16" - returnp = 1 + retstr = returnstr(1) } # fcntl ______________________________________________________ @@ -618,7 +619,7 @@ probe syscall.fdatasync = kernel.function("sys_fdatasync") { } probe syscall.fdatasync.return = kernel.function("sys_fdatasync").return { name = "fdatasync" - returnp = 1 + retstr = returnstr(1) } # fgetxattr __________________________________________________ @@ -636,7 +637,7 @@ probe syscall.fgetxattr = kernel.function("sys_fgetxattr") { } probe syscall.fgetxattr.return = kernel.function("sys_fgetxattr").return { name = "fgetxattr" - returnp = 1 + retstr = returnstr(1) } # flistxattr _________________________________________________ # ssize_t sys_flistxattr(int fd, char __user *list, size_t size) @@ -649,7 +650,7 @@ probe syscall.flistxattr = kernel.function("sys_flistxattr") { } probe syscall.flistxattr.return = kernel.function("sys_flistxattr").return { name = "flistxattr" - returnp = 1 + retstr = returnstr(1) } # flock ______________________________________________________ @@ -662,7 +663,7 @@ probe syscall.flock = kernel.function("sys_flock") { } probe syscall.flock.return = kernel.function("sys_flock").return { name = "flock" - returnp = 1 + retstr = returnstr(1) } # fork _______________________________________________________ @@ -694,7 +695,7 @@ probe syscall.fork = kernel.function("do_fork") { } probe syscall.fork.return = kernel.function("do_fork").return { name = "fork" - returnp = 1 + retstr = returnstr(1) } # fremovexattr _______________________________________________ # long sys_fremovexattr(int fd, char __user *name) @@ -706,7 +707,7 @@ probe syscall.fremovexattr = kernel.function("sys_fremovexattr") { } probe syscall.fremovexattr.return = kernel.function("sys_fremovexattr").return { name = "fremovexattr" - returnp = 1 + retstr = returnstr(1) } # fsetxattr __________________________________________________ @@ -731,7 +732,7 @@ probe syscall.fsetxattr = kernel.function("sys_fsetxattr") { } probe syscall.fsetxattr.return = kernel.function("sys_fsetxattr").return { name = "fsetxattr" - returnp = 1 + retstr = returnstr(1) } # fstatfs ____________________________________________________ @@ -757,7 +758,7 @@ probe syscall.fstatfs64 = kernel.function("sys_fstatfs64") { } probe syscall.fstatfs64.return = kernel.function("sys_fstatfs64").return { name = "fstatfs64.return" - returnp = 1 + retstr = returnstr(1) } # fsync ______________________________________________________ @@ -769,7 +770,7 @@ probe syscall.fsync = kernel.function("sys_fsync") { } probe syscall.fsync.return = kernel.function("sys_fsync").return { name = "fsync.return" - returnp = 1 + retstr = returnstr(1) } # ftruncate __________________________________________________ # long sys_ftruncate(unsigned int fd, unsigned long length) @@ -781,7 +782,7 @@ probe syscall.ftruncate = kernel.function("sys_ftruncate") { } probe syscall.ftruncate.return = kernel.function("sys_ftruncate").return { name = "ftruncate" - returnp = 1 + retstr = returnstr(1) } # ftruncate64 ________________________________________________ @@ -794,7 +795,7 @@ probe syscall.ftruncate64 = kernel.function("sys_ftruncate") { } probe syscall.ftruncate64.return = kernel.function("sys_ftruncate").return { name = "ftruncate64" - returnp = 1 + retstr = returnstr(1) } # futex ______________________________________________________ @@ -822,7 +823,7 @@ probe syscall.futex = kernel.function("sys_futex") { } probe syscall.futex.return = kernel.function("sys_futex").return { name = "futex.return" - returnp = 1 + retstr = returnstr(1) } # getcwd _____________________________________________________ @@ -835,7 +836,7 @@ probe syscall.getcwd = kernel.function("sys_getcwd") { } probe syscall.getcwd.return = kernel.function("sys_getcwd").return { name = "getcwd" - returnp = 1 + retstr = returnstr(1) } # getdents ___________________________________________________ @@ -851,7 +852,7 @@ probe syscall.getdents = kernel.function("sys_getdents") { } probe syscall.getdents.return = kernel.function("sys_getdents").return { name = "getdents" - returnp = 1 + retstr = returnstr(1) } # getdents64 _________________________________________________ @@ -867,7 +868,7 @@ probe syscall.getdents64 = kernel.function("sys_getdents64") { } probe syscall.getdents64.return = kernel.function("sys_getdents64").return { name = "getdents64" - returnp = 1 + retstr = returnstr(1) } # getegid ____________________________________________________ @@ -877,7 +878,7 @@ probe syscall.getegid = kernel.function("sys_getegid") { } probe syscall.getegid.return = kernel.function("sys_getegid").return { name = "getegid" - returnp = 1 + retstr = returnstr(1) } # geteuid ____________________________________________________ @@ -887,7 +888,7 @@ probe syscall.geteuid = kernel.function("sys_geteuid") { } probe syscall.geteuid.return = kernel.function("sys_geteuid").return { name = "geteuid" - returnp = 1 + retstr = returnstr(1) } # getgid _____________________________________________________ @@ -897,7 +898,7 @@ probe syscall.getgid =kernel.function("sys_getgid") { } probe syscall.getgid.return = kernel.function("sys_getgid").return { name = "getgid" - returnp = 1 + retstr = returnstr(1) } # getgroups __________________________________________________ @@ -910,7 +911,7 @@ probe syscall.getgroups = kernel.function("sys_getgroups") { } probe syscall.getgroups.return = kernel.function("sys_getgroups").return { name = "getgroups" - returnp = 1 + retstr = returnstr(1) } # gethostname ________________________________________________ @@ -923,7 +924,7 @@ probe syscall.gethostname = kernel.function("sys_gethostname") { } probe syscall.gethostname.return = kernel.function("sys_gethostname").return { name = "gethostname" - returnp = 1 + retstr = returnstr(1) } # getitimer __________________________________________________ @@ -936,7 +937,7 @@ probe syscall.getitimer = kernel.function("sys_getitimer") { } probe syscall.getitimer.return = kernel.function("sys_getitimer").return { name = "getitimer" - returnp = 1 + retstr = returnstr(1) } # getpeername ________________________________________________ @@ -965,7 +966,7 @@ probe syscall.getpgid = kernel.function("sys_getpgid") { } probe syscall.getpgid.return = kernel.function("sys_getpgid").return { name = "getpgid" - returnp = 1 + retstr = returnstr(1) } # getpgrp ____________________________________________________ @@ -975,7 +976,7 @@ probe syscall.getpgrp = kernel.function("sys_getpgrp") { } probe syscall.getpgrp.return = kernel.function("sys_getpgrp").return { name = "getpgrp" - returnp = 1 + retstr = returnstr(1) } # getpid _____________________________________________________ @@ -985,7 +986,7 @@ probe syscall.getpid = kernel.function("sys_getpid") { } probe syscall.getpid.return = kernel.function("sys_getpid").return { name = "getpid" - returnp = 1 + retstr = returnstr(1) } # getppid ____________________________________________________ @@ -1007,7 +1008,7 @@ probe syscall.getpriority = kernel.function("sys_getpriority") { } probe syscall.getpriority.return = kernel.function("sys_getpriority").return { name = "getpriority" - returnp = 1 + retstr = returnstr(1) } # getresgid __________________________________________________ @@ -1023,7 +1024,7 @@ probe syscall.getresgid = kernel.function("sys_getresgid") { } probe syscall.getresgid.return = kernel.function("sys_getresgid").return { name = "getresgid" - returnp = 1 + retstr = returnstr(1) } # getresgid16 ________________________________________________ @@ -1039,7 +1040,7 @@ probe syscall.getresgid16 = kernel.function("sys_getresgid") { } probe syscall.getresgid16.return = kernel.function("sys_getresgid").return { name = "getresgid16" - returnp = 1 + retstr = returnstr(1) } # getresuid __________________________________________________ @@ -1055,7 +1056,7 @@ probe syscall.getresuid = kernel.function("sys_getresuid") { } probe syscall.getresuid.return = kernel.function("sys_getresuid").return { name = "getresuid" - returnp = 1 + retstr = returnstr(1) } # getresuid16 ________________________________________________ @@ -1071,7 +1072,7 @@ probe syscall.getresuid16 = kernel.function("sys_getresuid") { } probe syscall.getresuid16.return = kernel.function("sys_getresuid").return { name = "getresuid16" - returnp = 1 + retstr = returnstr(1) } # getrlimit __________________________________________________ @@ -1084,7 +1085,7 @@ probe syscall.getrlimit = kernel.function("sys_getrlimit") { } probe syscall.getrlimit.return = kernel.function("sys_getrlimit").return { name = "getrlimit" - returnp = 1 + retstr = returnstr(1) } # getrusage __________________________________________________ @@ -1097,7 +1098,7 @@ probe syscall.getrusage = kernel.function("sys_getrusage") { } probe syscall.getrusage.return = kernel.function("sys_getrusage").return { name = "getrusage" - returnp = 1 + retstr = returnstr(1) } # getsid _____________________________________________________ @@ -1109,7 +1110,7 @@ probe syscall.getsid = kernel.function("sys_getsid") { } probe syscall.getsid.return = kernel.function("sys_getsid").return { name = "getsid" - returnp = 1 + retstr = returnstr(1) } # getsockname ________________________________________________ @@ -1160,7 +1161,7 @@ probe syscall.gettid = kernel.function("sys_gettid") { } probe syscall.gettid.return = kernel.function("sys_gettid").return { name = "gettid" - returnp = 1 + retstr = returnstr(1) } # gettimeofday _______________________________________________ @@ -1174,7 +1175,7 @@ probe syscall.gettimeofday = kernel.function("sys_gettimeofday") { } probe syscall.gettimeofday.return = kernel.function("sys_gettimeofday").return { name = "gettimeofday" - returnp = 1 + retstr = returnstr(1) } # getuid _____________________________________________________ @@ -1184,7 +1185,7 @@ probe syscall.getuid = kernel.function("sys_getuid") { } probe syscall.getuid.return = kernel.function("sys_getuid").return { name = "getuid" - returnp = 1 + retstr = returnstr(1) } # getxattr ___________________________________________________ @@ -1202,7 +1203,7 @@ probe syscall.getxattr = kernel.function("sys_getxattr") { } probe syscall.getxattr.return = kernel.function("sys_getxattr").return { name = "getxattr" - returnp = 1 + retstr = returnstr(1) } # init_module ________________________________________________ @@ -1218,7 +1219,7 @@ probe syscall.init_module = kernel.function("sys_init_module") { } probe syscall.init_module.return = kernel.function("sys_init_module").return { name = "init_module" - returnp = 1 + retstr = returnstr(1) } # io_cancel __________________________________________________ @@ -1234,7 +1235,7 @@ probe syscall.io_cancel = kernel.function("sys_io_cancel") { } probe syscall.io_cancel.return = kernel.function("sys_io_cancel").return { name = "io_cancel" - returnp = 1 + retstr = returnstr(1) } # ioctl ______________________________________________________ @@ -1249,7 +1250,7 @@ probe syscall.ioctl = kernel.function("sys_ioctl") { } probe syscall.ioctl.return = kernel.function("sys_ioctl").return { name = "ioctl" - returnp = 1 + retstr = returnstr(1) } # io_destroy _________________________________________________ @@ -1261,7 +1262,7 @@ probe syscall.io_destroy = kernel.function("sys_io_destroy") { } probe syscall.io_destroy.return = kernel.function("sys_io_destroy").return { name = "io_destroy" - returnp = 1 + retstr = returnstr(1) } # io_getevents _______________________________________________ @@ -1282,7 +1283,7 @@ probe syscall.io_getevents = kernel.function("sys_io_getevents") { } probe syscall.io_getevents.return = kernel.function("sys_io_getevents").return { name = "io_getevents" - returnp = 1 + retstr = returnstr(1) } # ioperm _____________________________________________________ @@ -1392,7 +1393,7 @@ probe syscall.kill = kernel.function("sys_kill") { } probe syscall.kill.return = kernel.function("sys_kill").return { name = "kill" - returnp = 1 + retstr = returnstr(1) } # lchown _____________________________________________________ @@ -1671,25 +1672,22 @@ probe kernel.syscall.mkdir.return = kernel.function("sys_mkdir").return { name = "mkdir.return" } -# mknod ______________________________________________________ -/* - * asmlinkage long - * sys_mknod(const char __user * filename, - * int mode, - * unsigned dev) - */ -probe kernel.syscall.mknod = - kernel.function("sys_mknod") { - name = "mknod" - pathname_uaddr = $filename - mode = $mode - mode_str = _mknod_mode_str($mode) - dev = $dev - } -probe kernel.syscall.mknod.return = - kernel.function("sys_mknod").return { - name = "mknod.return" - } + +# mknod +# long sys_mknod(const char __user * filename, int mode, unsigned dev) +probe syscall.mknod = kernel.function("sys_mknod") { + name = "mknod" + pathname = user_string($filename) + mode = $mode + dev = $dev + argstr = sprintf("%s, %s, 0x%x", pathname, _mknod_mode_str($mode), dev) +} + +probe syscall.mknod.return = kernel.function("sys_mknod").return { + name = "mknod" + retstr = returnstr(1) +} + # mlock ______________________________________________________ /* * asmlinkage long @@ -2006,7 +2004,7 @@ probe syscall.msync = kernel.function("sys_msync") { } probe syscall.msync.return = kernel.function("sys_msync").return { name = "msync.return" - returnp = 1 + retstr = returnstr(1) } # munlock ____________________________________________________ @@ -2019,7 +2017,7 @@ probe syscall.munlock = kernel.function("sys_munlock") { } probe syscall.munlock.return = kernel.function("sys_munlock").return { name = "munlock" - returnp = 1 + retstr = returnstr(1) } # munlockall _________________________________________________ @@ -2029,7 +2027,7 @@ probe syscall.munlockall = kernel.function("sys_munlockall") { } probe syscall.munlockall.return = kernel.function("sys_munlockall").return { name = "munlockall" - returnp = 1 + retstr = returnstr(1) } # munmap _____________________________________________________ @@ -2042,5 +2040,5 @@ probe syscall.munmap = kernel.function("sys_munmap") { } probe syscall.munmap.return = kernel.function("sys_munmap").return { name = "munmap" - returnp = 1 + retstr = returnstr(1) } diff --git a/tapset/syscalls2.stp b/tapset/syscalls2.stp index e61c5bdb..428dc42c 100644 --- a/tapset/syscalls2.stp +++ b/tapset/syscalls2.stp @@ -13,10 +13,11 @@ * name - generally the syscall name minus the "sys_". * * argstr - a string containing the decoded args in an easy-to-read format. -* It doesn't need to contain everything, but should have all the -* important args. +* It doesn't need to contain everything, but should have all the +* important args. Set in entry probes only. * -* returnp - set to 1 if return probe +* retstr - a string containing the return value in an easy-to-read format. +* Set in return probes only. */ # open _______________________________________________________ @@ -33,7 +34,7 @@ probe syscall.open = kernel.function("sys_open") { } probe syscall.open.return = kernel.function("sys_open").return { name = "open" - returnp = 1 + retstr = returnstr(1) } # read _______________________________________________________ @@ -47,7 +48,7 @@ probe syscall.read = kernel.function("sys_read") { } probe syscall.read.return = kernel.function("sys_read").return { name = "read" - returnp = 1 + retstr = returnstr(1) } ####################################################################### @@ -68,7 +69,7 @@ probe syscall.nanosleep = kernel.function("sys_nanosleep") { } probe syscall.nanosleep.return = kernel.function("sys_nanosleep").return { name = "nanosleep" - returnp = 1 + retstr = returnstr(1) } # newfstat ___________________________________________________ # @@ -84,7 +85,7 @@ probe syscall.newfstat = kernel.function("sys_newfstat") { } probe syscall.newfstat.return = kernel.function("sys_newfstat").return { name = "newfstat" - returnp = 1 + retstr = returnstr(1) } # newlstat ___________________________________________________ # @@ -100,7 +101,7 @@ probe syscall.newlstat = kernel.function("sys_newlstat") { } probe syscall.newlstat.return = kernel.function("sys_newlstat").return { name = "newlstat" - returnp = 1 + retstr = returnstr(1) } # newstat ____________________________________________________ # @@ -116,7 +117,7 @@ probe syscall.newstat = kernel.function("sys_newstat") { } probe syscall.newstat.return = kernel.function("sys_newstat").return { name = "newstat" - returnp = 1 + retstr = returnstr(1) } # newuname ___________________________________________________ # @@ -130,7 +131,7 @@ probe syscall.newuname = kernel.function("sys_newuname") { } probe syscall.newuname.return = kernel.function("sys_newuname").return { name = "newuname" - returnp = 1 + retstr = returnstr(1) } # nfsservctl _________________________________________________ # @@ -148,7 +149,7 @@ probe syscall.nfsservctl = kernel.function("sys_nfsservctl") { } probe syscall.nfsservctl.return = kernel.function("sys_nfsservctl").return { name = "nfsservctl" - returnp = 1 + retstr = returnstr(1) } # nice _______________________________________________________ # @@ -163,7 +164,7 @@ probe syscall.nice = } probe syscall.nice.return = kernel.function("sys_nice").return { name = "nice" - returnp = 1 + retstr = returnstr(1) } # ni_syscall _________________________________________________ # @@ -176,7 +177,7 @@ probe syscall.ni_syscall = kernel.function("sys_ni_syscall") { } probe syscall.ni_syscall.return = kernel.function("sys_ni_syscall").return { name = "ni_syscall" - returnp = 1 + retstr = returnstr(1) } # old_getrlimit ______________________________________________ # @@ -193,7 +194,7 @@ probe syscall.old_getrlimit = kernel.function("sys_old_getrlimit") { } probe syscall.old_getrlimit.return = kernel.function("sys_old_getrlimit").return { name = "old_getrlimit" - returnp = 1 + retstr = returnstr(1) } # oldumount __________________________________________________ # @@ -209,7 +210,7 @@ probe syscall.oldumount = kernel.function("sys_umount") { } probe syscall.oldumount.return = kernel.function("sys_umount").return { name = "oldumount" - returnp = 1 + retstr = returnstr(1) } # pause ______________________________________________________ # @@ -221,7 +222,7 @@ probe syscall.pause = kernel.function("sys_pause") { } probe syscall.pause.return = kernel.function("sys_pause").return { name = "pause" - returnp = 1 + retstr = returnstr(1) } # pciconfig_iobase ___________________________________________ # @@ -240,7 +241,7 @@ probe syscall.pause.return = kernel.function("sys_pause").return { #} #probe syscall.pciconfig_iobase.return = kernel.function("sys_pciconfig_iobase").return { # name = "pciconfig_iobase" -# returnp = 1 +# retstr = returnstr(1) #} # pciconfig_read _____________________________________________ # @@ -266,7 +267,7 @@ probe syscall.pause.return = kernel.function("sys_pause").return { #probe syscall.pciconfig_read.return = # kernel.function("sys_pciconfig_read").return { # name = "pciconfig_read" -# returnp = 1 +# retstr = returnstr(1) #} # pciconfig_write ____________________________________________ # @@ -291,7 +292,7 @@ probe syscall.pause.return = kernel.function("sys_pause").return { #probe syscall.pciconfig_write.return = # kernel.function("sys_pciconfig_write").return { # name = "pciconfig_write" -# returnp = 1 +# retstr = returnstr(1) #} # personality ________________________________________________ # @@ -305,7 +306,7 @@ probe syscall.personality = kernel.function("sys_personality") { } probe syscall.personality.return = kernel.function("sys_personality").return { name = "personality" - returnp = 1 + retstr = returnstr(1) } # pipe _______________________________________________________ # @@ -319,7 +320,7 @@ probe syscall.pipe = kernel.function("sys_pipe") { } probe syscall.pipe.return = kernel.function("sys_pipe").return { name = "pipe" - returnp = 1 + retstr = returnstr(1) } # pivot_root _________________________________________________ # @@ -335,7 +336,7 @@ probe syscall.pivot_root = kernel.function("sys_pivot_root") { } probe syscall.pivot_root.return = kernel.function("sys_pivot_root").return { name = "pivot_root" - returnp = 1 + retstr = returnstr(1) } # poll _______________________________________________________ # @@ -348,7 +349,7 @@ probe syscall.poll = kernel.function("sys_poll") { name = "poll" ufds_uaddr = $ufds nfds = $nfds -%( kernel_v > "2.6.15" %? +%( kernel_vr > "2.6.15-1.1831" %? timeout = $timeout_msecs %: timeout = $timeout @@ -357,7 +358,7 @@ probe syscall.poll = kernel.function("sys_poll") { } probe syscall.poll.return = kernel.function("sys_poll").return { name = "poll" - returnp = 1 + retstr = returnstr(1) } # prctl ______________________________________________________ # @@ -380,7 +381,7 @@ probe syscall.prctl = kernel.function("sys_prctl") { } probe syscall.prctl.return = kernel.function("sys_prctl").return { name = "prctl" - returnp = 1 + retstr = returnstr(1) } # pread64 ____________________________________________________ # @@ -401,7 +402,7 @@ probe syscall.pread64 = kernel.function("sys_pread64") { } probe syscall.pread64.return = kernel.function("sys_pread64").return { name = "pread64" - returnp = 1 + retstr = returnstr(1) } # ptrace _____________________________________________________ # @@ -422,7 +423,7 @@ probe syscall.ptrace = kernel.function("sys_ptrace") { } probe syscall.ptrace.return = kernel.function("sys_ptrace").return { name = "ptrace" - returnp = 1 + retstr = returnstr(1) } # pwrite64 ___________________________________________________ # @@ -443,7 +444,7 @@ probe syscall.pwrite64 = kernel.function("sys_pwrite64") { } probe syscall.pwrite64.return = kernel.function("sys_pwrite64").return { name = "pwrite64" - returnp = 1 + retstr = returnstr(1) } # readahead __________________________________________________ # @@ -461,7 +462,7 @@ probe syscall.readahead = kernel.function("sys_readahead") { } probe syscall.readahead.return = kernel.function("sys_readahead").return { name = "readahead" - returnp = 1 + retstr = returnstr(1) } # readlink ___________________________________________________ # @@ -480,7 +481,7 @@ probe syscall.readlink = kernel.function("sys_readlink") { } probe syscall.readlink.return = kernel.function("sys_readlink").return { name = "readlink" - returnp = 1 + retstr = returnstr(1) } # readv ______________________________________________________ # @@ -503,7 +504,7 @@ probe syscall.readv = kernel.function("sys_readv") { } probe syscall.readv.return = kernel.function("sys_readv").return { name = "readv" - returnp = 1 + retstr = returnstr(1) } # reboot _____________________________________________________ # @@ -527,7 +528,7 @@ probe syscall.reboot = kernel.function("sys_reboot") { } probe syscall.reboot.return = kernel.function("sys_reboot").return { name = "reboot" - returnp = 1 + retstr = returnstr(1) } # recv _______________________________________________________ # @@ -554,7 +555,7 @@ probe syscall.recv = kernel.function("sys_recvfrom") { } probe syscall.recv.return = kernel.function("sys_recvfrom").return { name = "recv" - returnp = 1 + retstr = returnstr(1) } # recvfrom ___________________________________________________ # @@ -581,7 +582,7 @@ probe syscall.recvfrom = kernel.function("sys_recvfrom") { } probe syscall.recvfrom.return = kernel.function("sys_recvfrom").return { name = "recvfrom" - returnp = 1 + retstr = returnstr(1) } # recvmsg ____________________________________________________ # @@ -600,7 +601,7 @@ probe syscall.recvmsg = kernel.function("sys_recvmsg") { } probe syscall.recvmsg.return = kernel.function("sys_recvmsg").return { name = "recvmsg" - returnp = 1 + retstr = returnstr(1) } # remap_file_pages ___________________________________________ # @@ -624,7 +625,7 @@ probe syscall.remap_file_pages = kernel.function("sys_remap_file_pages") { probe syscall.remap_file_pages.return = kernel.function("sys_remap_file_pages").return { name = "remap_file_pages" - returnp = 1 + retstr = returnstr(1) } # removexattr ________________________________________________ # @@ -640,7 +641,7 @@ probe syscall.removexattr = kernel.function("sys_removexattr") { } probe syscall.removexattr.return = kernel.function("sys_removexattr").return { name = "removexattr" - returnp = 1 + retstr = returnstr(1) } # rename _____________________________________________________ # @@ -656,7 +657,7 @@ probe syscall.rename = kernel.function("sys_rename") { } probe syscall.rename.return = kernel.function("sys_rename").return { name = "rename" - returnp = 1 + retstr = returnstr(1) } # restart_syscall ____________________________________________ # @@ -670,7 +671,7 @@ probe syscall.restart_syscall = kernel.function("sys_restart_syscall") { probe syscall.restart_syscall.return = kernel.function("sys_restart_syscall").return { name = "restart_syscall" - returnp = 1 + retstr = returnstr(1) } # rmdir ______________________________________________________ # @@ -684,7 +685,7 @@ probe syscall.rmdir = kernel.function("sys_rmdir") { } probe syscall.rmdir.return = kernel.function("sys_rmdir").return { name = "rmdir" - returnp = 1 + retstr = returnstr(1) } # rt_sigaction _______________________________________________ # @@ -706,7 +707,7 @@ probe syscall.rt_sigaction = kernel.function("sys_rt_sigaction") { } probe syscall.rt_sigaction.return = kernel.function("sys_rt_sigaction").return { name = "rt_sigaction" - returnp = 1 + retstr = returnstr(1) } # rt_sigpending ______________________________________________ # @@ -722,7 +723,7 @@ probe syscall.rt_sigpending = kernel.function("do_sigpending") { } probe syscall.rt_sigpending.return = kernel.function("do_sigpending").return { name = "rt_sigpending" - returnp = 1 + retstr = returnstr(1) } # rt_sigprocmask _____________________________________________ # @@ -745,7 +746,7 @@ probe syscall.rt_sigprocmask = kernel.function("sys_rt_sigprocmask") { probe syscall.rt_sigprocmask.return = kernel.function("sys_rt_sigprocmask").return { name = "rt_sigprocmask" - returnp = 1 + retstr = returnstr(1) } # rt_sigqueueinfo ____________________________________________ # @@ -764,7 +765,7 @@ probe syscall.rt_sigqueueinfo = kernel.function("sys_rt_sigqueueinfo") { probe syscall.rt_sigqueueinfo.return = kernel.function("sys_rt_sigqueueinfo").return { name = "rt_sigqueueinfo" - returnp = 1 + retstr = returnstr(1) } # rt_sigsuspend ______________________________________________ # @@ -778,7 +779,7 @@ probe syscall.rt_sigsuspend = kernel.function("sys_rt_sigsuspend") { } probe syscall.rt_sigsuspend.return = kernel.function("sys_rt_sigsuspend").return { name = "rt_sigsuspend" - returnp = 1 + retstr = returnstr(1) } # rt_sigtimedwait ____________________________________________ # @@ -800,7 +801,7 @@ probe syscall.rt_sigtimedwait = kernel.function("sys_rt_sigtimedwait") { probe syscall.rt_sigtimedwait.return = kernel.function("sys_rt_sigtimedwait").return { name = "rt_sigtimedwait" - returnp = 1 + retstr = returnstr(1) } # sched_getaffinity __________________________________________ # @@ -819,7 +820,7 @@ probe syscall.sched_getaffinity = kernel.function("sys_sched_getaffinity") { probe syscall.sched_getaffinity.return = kernel.function("sys_sched_getaffinity").return { name = "sched_getaffinity" - returnp = 1 + retstr = returnstr(1) } # sched_getparam _____________________________________________ # @@ -836,7 +837,7 @@ probe syscall.sched_getparam = kernel.function("sys_sched_getparam") { probe syscall.sched_getparam.return = kernel.function("sys_sched_getparam").return { name = "sched_getparam" - returnp = 1 + retstr = returnstr(1) } # sched_get_priority_max _____________________________________ # @@ -852,7 +853,7 @@ probe syscall.sched_get_priority_max = probe syscall.sched_get_priority_max.return = kernel.function("sys_sched_get_priority_max").return { name = "sched_get_priority_max" - returnp = 1 + retstr = returnstr(1) } # sched_get_priority_min _____________________________________ # @@ -868,7 +869,7 @@ probe syscall.sched_get_priority_min = probe syscall.sched_get_priority_min.return = kernel.function("sys_sched_get_priority_min").return { name = "sched_get_priority_min" - returnp = 1 + retstr = returnstr(1) } # sched_getscheduler _________________________________________ # @@ -883,7 +884,7 @@ probe syscall.sched_getscheduler = kernel.function("sys_sched_getscheduler") { probe syscall.sched_getscheduler.return = kernel.function("sys_sched_getscheduler").return { name = "sched_getscheduler" - returnp = 1 + retstr = returnstr(1) } # sched_rr_get_interval ______________________________________ # @@ -901,7 +902,7 @@ probe syscall.sched_rr_get_interval = probe syscall.sched_rr_get_interval.return = kernel.function("sys_sched_rr_get_interval").return { name = "sched_rr_get_interval" - returnp = 1 + retstr = returnstr(1) } # sched_yield ________________________________________________ # @@ -914,7 +915,7 @@ probe syscall.sched_yield = kernel.function("sys_sched_yield") { } probe syscall.sched_yield.return = kernel.function("sys_sched_yield").return { name = "sched_yield" - returnp = 1 + retstr = returnstr(1) } # select _____________________________________________________ # @@ -939,7 +940,7 @@ probe syscall.select = kernel.function("sys_select") { } probe syscall.select.return = kernel.function("sys_select").return { name = "select" - returnp = 1 + retstr = returnstr(1) } # semctl _____________________________________________________ # @@ -962,7 +963,7 @@ probe syscall.semctl = kernel.function("sys_semctl") { } probe syscall.semctl.return = kernel.function("sys_semctl").return { name = "semctl" - returnp = 1 + retstr = returnstr(1) } # semget _____________________________________________________ # @@ -980,7 +981,7 @@ probe syscall.semget = kernel.function("sys_semget") { } probe syscall.semget.return = kernel.function("sys_semget").return { name = "semget" - returnp = 1 + retstr = returnstr(1) } # semop ______________________________________________________ # @@ -998,7 +999,7 @@ probe syscall.semop = kernel.function("sys_semtimedop") { } probe syscall.semop.return = kernel.function("sys_semtimedop").return { name = "semop" - returnp = 1 + retstr = returnstr(1) } # semtimedop _________________________________________________ # @@ -1019,7 +1020,7 @@ probe syscall.semtimedop = kernel.function("sys_semtimedop") { } probe syscall.semtimedop.return = kernel.function("sys_semtimedop").return { name = "semtimedop" - returnp = 1 + retstr = returnstr(1) } # send _______________________________________________________ # @@ -1045,7 +1046,7 @@ probe syscall.send = kernel.function("sys_sendto") { } probe syscall.send.return = kernel.function("sys_sendto").return { name = "send" - returnp = 1 + retstr = returnstr(1) } # sendfile ___________________________________________________ # @@ -1066,7 +1067,7 @@ probe syscall.sendfile = kernel.function("sys_sendfile") { } probe syscall.sendfile.return = kernel.function("sys_sendfile").return { name = "sendfile" - returnp = 1 + retstr = returnstr(1) } # sendfile64 _________________________________________________ # @@ -1087,7 +1088,7 @@ probe syscall.sendfile64 = kernel.function("sys_sendfile64") { } probe syscall.sendfile64.return = kernel.function("sys_sendfile64").return { name = "sendfile64" - returnp = 1 + retstr = returnstr(1) } # sendmsg ____________________________________________________ # @@ -1106,7 +1107,7 @@ probe syscall.sendmsg = kernel.function("sys_sendmsg") { } probe syscall.sendmsg.return = kernel.function("sys_sendmsg").return { name = "sendmsg" - returnp = 1 + retstr = returnstr(1) } # sendto _____________________________________________________ # @@ -1132,7 +1133,7 @@ probe syscall.sendto = kernel.function("sys_sendto") { } probe syscall.sendto.return = kernel.function("sys_sendto").return { name = "sendto" - returnp = 1 + retstr = returnstr(1) } # setdomainname ______________________________________________ # @@ -1149,7 +1150,7 @@ probe syscall.setdomainname = kernel.function("sys_setdomainname") { probe syscall.setdomainname.return = kernel.function("sys_setdomainname").return { name = "setdomainname" - returnp = 1 + retstr = returnstr(1) } # setfsgid ___________________________________________________ # @@ -1163,7 +1164,7 @@ probe syscall.setfsgid = kernel.function("sys_setfsgid") { } probe syscall.setfsgid.return = kernel.function("sys_setfsgid").return { name = "setfsgid" - returnp = 1 + retstr = returnstr(1) } # setfsgid16 _________________________________________________ # @@ -1177,7 +1178,7 @@ probe syscall.setfsgid16 = kernel.function("sys_setfsgid") { } probe syscall.setfsgid16.return = kernel.function("sys_setfsgid").return { name = "setfsgid16" - returnp = 1 + retstr = returnstr(1) } # setfsuid ___________________________________________________ # @@ -1191,7 +1192,7 @@ probe syscall.setfsuid = kernel.function("sys_setfsuid") { } probe syscall.setfsuid.return = kernel.function("sys_setfsuid").return { name = "setfsuid" - returnp = 1 + retstr = returnstr(1) } # setfsuid16 _________________________________________________ # @@ -1205,7 +1206,7 @@ probe syscall.setfsuid16 = kernel.function("sys_setfsuid") { } probe syscall.setfsuid16.return = kernel.function("sys_setfsuid").return { name = "setfsuid16" - returnp = 1 + retstr = returnstr(1) } # setgid _____________________________________________________ # @@ -1219,7 +1220,7 @@ probe syscall.setgid = kernel.function("sys_setgid") { } probe syscall.setgid.return = kernel.function("sys_setgid").return { name = "setgid" - returnp = 1 + retstr = returnstr(1) } # setgid16 ___________________________________________________ # @@ -1233,7 +1234,7 @@ probe syscall.setgid16 = kernel.function("sys_setgid") { } probe syscall.setgid16.return = kernel.function("sys_setgid").return { name = "setgid16" - returnp = 1 + retstr = returnstr(1) } # setgroups __________________________________________________ # @@ -1257,7 +1258,7 @@ probe syscall.setgroups = kernel.function("sys_setgroups") { } probe syscall.setgroups.return = kernel.function("sys_setgroups").return { name = "setgroups" - returnp = 1 + retstr = returnstr(1) } # sethostname ________________________________________________ @@ -1275,7 +1276,7 @@ probe syscall.sethostname = kernel.function("sys_sethostname") { } probe syscall.sethostname.return = kernel.function("sys_sethostname").return { name = "sethostname" - returnp = 1 + retstr = returnstr(1) } # setitimer __________________________________________________ # @@ -1294,7 +1295,7 @@ probe syscall.setitimer = kernel.function("sys_setitimer") { } probe syscall.setitimer.return = kernel.function("sys_setitimer").return { name = "setitimer" - returnp = 1 + retstr = returnstr(1) } # setpgid ____________________________________________________ # @@ -1310,7 +1311,7 @@ probe syscall.setpgid = kernel.function("sys_setpgid") { } probe syscall.setpgid.return = kernel.function("sys_setpgid").return { name = "setpgid" - returnp = 1 + retstr = returnstr(1) } # setpriority ________________________________________________ # @@ -1329,7 +1330,7 @@ probe syscall.setpriority = kernel.function("sys_setpriority") { } probe syscall.setpriority.return = kernel.function("sys_setpriority").return { name = "setpriority" - returnp = 1 + retstr = returnstr(1) } # setregid ___________________________________________________ # @@ -1345,7 +1346,7 @@ probe syscall.setregid = kernel.function("sys_setregid") { } probe syscall.setregid.return = kernel.function("sys_setregid").return { name = "setregid" - returnp = 1 + retstr = returnstr(1) } # setregid16 _________________________________________________ # @@ -1361,7 +1362,7 @@ probe syscall.setregid16 = kernel.function("sys_setregid") { } probe syscall.setregid16.return = kernel.function("sys_setregid").return { name = "setregid16" - returnp = 1 + retstr = returnstr(1) } # setresgid __________________________________________________ # @@ -1379,7 +1380,7 @@ probe syscall.setresgid = kernel.function("sys_setresgid") { } probe syscall.setresgid.return = kernel.function("sys_setresgid").return { name = "setresgid" - returnp = 1 + retstr = returnstr(1) } # setresgid16 ________________________________________________ # @@ -1397,7 +1398,7 @@ probe syscall.setresgid16 = kernel.function("sys_setresgid") { } probe syscall.setresgid16.return = kernel.function("sys_setresgid").return { name = "setresgid16" - returnp = 1 + retstr = returnstr(1) } # setresuid __________________________________________________ # @@ -1415,7 +1416,7 @@ probe syscall.setresuid = kernel.function("sys_setresuid") { } probe syscall.setresuid.return = kernel.function("sys_setresuid").return { name = "setresuid" - returnp = 1 + retstr = returnstr(1) } # setresuid16 ________________________________________________ # @@ -1433,7 +1434,7 @@ probe syscall.setresuid16 = kernel.function("sys_setresuid") { } probe syscall.setresuid16.return = kernel.function("sys_setresuid").return { name = "setresuid16" - returnp = 1 + retstr = returnstr(1) } # setreuid ___________________________________________________ # @@ -1449,7 +1450,7 @@ probe syscall.setreuid = kernel.function("sys_setreuid") { } probe syscall.setreuid.return = kernel.function("sys_setreuid").return { name = "setreuid" - returnp = 1 + retstr = returnstr(1) } # setreuid16 _________________________________________________ # @@ -1465,7 +1466,7 @@ probe syscall.setreuid16 = kernel.function("sys_setreuid") { } probe syscall.setreuid16.return = kernel.function("sys_setreuid").return { name = "setreuid16" - returnp = 1 + retstr = returnstr(1) } # setrlimit __________________________________________________ # @@ -1482,7 +1483,7 @@ probe syscall.setrlimit = kernel.function("sys_setrlimit") { } probe syscall.setrlimit.return = kernel.function("sys_setrlimit").return { name = "setrlimit" - returnp = 1 + retstr = returnstr(1) } # setsid _____________________________________________________ # @@ -1495,7 +1496,7 @@ probe syscall.setsid = kernel.function("sys_setsid") { } probe syscall.setsid.return = kernel.function("sys_setsid").return { name = "setsid" - returnp = 1 + retstr = returnstr(1) } # setsockopt _________________________________________________ # @@ -1520,7 +1521,7 @@ probe syscall.setsockopt = kernel.function("sys_setsockopt") { } probe syscall.setsockopt.return = kernel.function("sys_setsockopt").return { name = "setsockopt" - returnp = 1 + retstr = returnstr(1) } # set_tid_address ____________________________________________ # @@ -1535,7 +1536,7 @@ probe syscall.set_tid_address = kernel.function("sys_set_tid_address") { probe syscall.set_tid_address.return = kernel.function("sys_set_tid_address").return { name = "set_tid_address" - returnp = 1 + retstr = returnstr(1) } # settimeofday _______________________________________________ # @@ -1560,7 +1561,7 @@ probe syscall.settimeofday = kernel.function("sys_settimeofday") { probe syscall.settimeofday.return = kernel.function("sys_settimeofday").return { name = "settimeofday" - returnp = 1 + retstr = returnstr(1) } # setuid _____________________________________________________ # @@ -1574,7 +1575,7 @@ probe syscall.setuid = kernel.function("sys_setuid") { } probe syscall.setuid.return = kernel.function("sys_setuid").return { name = "setuid" - returnp = 1 + retstr = returnstr(1) } # setuid16 ___________________________________________________ # @@ -1588,7 +1589,7 @@ probe syscall.setuid16 = kernel.function("sys_setuid") { } probe syscall.setuid16.return = kernel.function("sys_setuid").return { name = "setuid16" - returnp = 1 + retstr = returnstr(1) } # setxattr ___________________________________________________ # @@ -1613,7 +1614,7 @@ probe syscall.setxattr = kernel.function("sys_setxattr") { } probe syscall.setxattr.return = kernel.function("sys_setxattr").return { name = "setxattr" - returnp = 1 + retstr = returnstr(1) } # sgetmask ___________________________________________________ # @@ -1625,7 +1626,7 @@ probe syscall.sgetmask = kernel.function("sys_sgetmask") { } probe syscall.sgetmask.return = kernel.function("sys_sgetmask").return { name = "sgetmask" - returnp = 1 + retstr = returnstr(1) } # shmctl _____________________________________________________ # @@ -1644,7 +1645,7 @@ probe syscall.shmctl = kernel.function("sys_shmctl") { } probe syscall.shmctl.return = kernel.function("sys_shmctl").return { name = "shmctl" - returnp = 1 + retstr = returnstr(1) } # shmdt ______________________________________________________ # @@ -1658,7 +1659,7 @@ probe syscall.shmdt = kernel.function("sys_shmdt") { } probe syscall.shmdt.return = kernel.function("sys_shmdt").return { name = "shmdt" - returnp = 1 + retstr = returnstr(1) } # shmget _____________________________________________________ # @@ -1676,7 +1677,7 @@ probe syscall.shmget = kernel.function("sys_shmget") { } probe syscall.shmget.return = kernel.function("sys_shmget").return { name = "shmget" - returnp = 1 + retstr = returnstr(1) } # shutdown ___________________________________________________ # @@ -1693,7 +1694,7 @@ probe syscall.shutdown = kernel.function("sys_shutdown") { } probe syscall.shutdown.return = kernel.function("sys_shutdown").return { name = "shutdown" - returnp = 1 + retstr = returnstr(1) } # signal _____________________________________________________ # @@ -1709,7 +1710,7 @@ probe syscall.signal = kernel.function("sys_signal") { } probe syscall.signal.return = kernel.function("sys_signal").return { name = "signal" - returnp = 1 + retstr = returnstr(1) } # sigpending _________________________________________________ # @@ -1735,7 +1736,7 @@ probe syscall.sigpending = kernel.function("do_sigpending") { } probe syscall.sigpending.return = kernel.function("do_sigpending").return { name = "sigpending" - returnp = 1 + retstr = returnstr(1) } # sigprocmask ________________________________________________ # @@ -1764,9 +1765,9 @@ probe syscall.sigprocmask = kernel.function("sys_sigprocmask") { argstr = sprintf("%s, [0x%x], [0x%x]", how_str, set_uaddr, oldset_uaddr) } -probe syscall.sigprocmask.return = kernel.function("sigprocmask").return { +probe syscall.sigprocmask.return = kernel.function("sys_sigprocmask").return { name = "sigprocmask" - returnp = 1 + retstr = returnstr(1) } # socket _____________________________________________________ # @@ -1786,7 +1787,7 @@ probe syscall.socket = kernel.function("sys_socket") { } probe syscall.socket.return = kernel.function("sys_socket").return { name = "socket" - returnp = 1 + retstr = returnstr(1) } # socketcall _________________________________________________ # @@ -1802,7 +1803,7 @@ probe syscall.socketcall = kernel.function("sys_socketcall") { } probe syscall.socketcall.return = kernel.function("sys_socketcall").return { name = "socketcall" - returnp = 1 + retstr = returnstr(1) } # socketpair _________________________________________________ # @@ -1825,7 +1826,7 @@ probe syscall.socketpair = kernel.function("sys_socketpair") { } probe syscall.socketpair.return = kernel.function("sys_socketpair").return { name = "socketpair" - returnp = 1 + retstr = returnstr(1) } # ssetmask ___________________________________________________ # @@ -1839,7 +1840,7 @@ probe syscall.ssetmask = kernel.function("sys_ssetmask") { } probe syscall.ssetmask.return = kernel.function("sys_ssetmask").return { name = "ssetmask" - returnp = 1 + retstr = returnstr(1) } # statfs _____________________________________________________ @@ -1857,7 +1858,7 @@ probe syscall.statfs = kernel.function("sys_statfs") { } probe syscall.statfs.return = kernel.function("sys_statfs").return { name = "statfs" - returnp = 1 + retstr = returnstr(1) } # statfs64 ___________________________________________________ # @@ -1876,7 +1877,7 @@ probe syscall.statfs64 = kernel.function("sys_statfs64") { } probe syscall.statfs64.return = kernel.function("sys_statfs64").return { name = "statfs64" - returnp = 1 + retstr = returnstr(1) } # stime ______________________________________________________ # @@ -1892,7 +1893,7 @@ probe syscall.stime = kernel.function("sys_stime") { } probe syscall.stime.return = kernel.function("sys_stime").return { name = "stime" - returnp = 1 + retstr = returnstr(1) } # swapoff ____________________________________________________ # @@ -1906,7 +1907,7 @@ probe syscall.swapoff = kernel.function("sys_swapoff") { } probe syscall.swapoff.return = kernel.function("sys_swapoff").return { name = "swapoff" - returnp = 1 + retstr = returnstr(1) } # swapon _____________________________________________________ # @@ -1922,7 +1923,7 @@ probe syscall.swapon = kernel.function("sys_swapon") { } probe syscall.swapon.return = kernel.function("sys_swapon").return { name = "swapon" - returnp = 1 + retstr = returnstr(1) } # symlink ____________________________________________________ # @@ -1938,7 +1939,7 @@ probe syscall.symlink = kernel.function("sys_symlink") { } probe syscall.symlink.return = kernel.function("sys_symlink").return { name = "symlink" - returnp = 1 + retstr = returnstr(1) } # sync _______________________________________________________ # @@ -1952,7 +1953,7 @@ probe syscall.sync = kernel.function("do_sync") { } probe syscall.sync.return = kernel.function("do_sync").return { name = "sync" - returnp = 1 + retstr = returnstr(1) } # sysctl _____________________________________________________ # @@ -1966,7 +1967,7 @@ probe syscall.sysctl = kernel.function("sys_sysctl") { } probe syscall.sysctl.return = kernel.function("sys_sysctl").return { name = "sysctl" - returnp = 1 + retstr = returnstr(1) } # sysfs ______________________________________________________ # @@ -1984,7 +1985,7 @@ probe syscall.sysfs = kernel.function("sys_sysfs") { } probe syscall.sysfs.return = kernel.function("sys_sysfs").return { name = "sysfs" - returnp = 1 + retstr = returnstr(1) } # sysinfo ____________________________________________________ # @@ -1998,7 +1999,7 @@ probe syscall.sysinfo = kernel.function("sys_sysinfo") { } probe syscall.sysinfo.return = kernel.function("sys_sysinfo").return { name = "sysinfo" - returnp = 1 + retstr = returnstr(1) } # syslog _____________________________________________________ # @@ -2016,7 +2017,7 @@ probe syscall.syslog = kernel.function("do_syslog") { } probe syscall.syslog.return = kernel.function("do_syslog").return { name = "syslog" - returnp = 1 + retstr = returnstr(1) } # tgkill _____________________________________________________ # @@ -2034,7 +2035,7 @@ probe syscall.tgkill = kernel.function("sys_tgkill") { } probe syscall.tgkill.return = kernel.function("sys_tgkill").return { name = "tgkill" - returnp = 1 + retstr = returnstr(1) } # time _______________________________________________________ # @@ -2049,7 +2050,7 @@ probe syscall.time = kernel.function("sys_time") { } probe syscall.time.return = kernel.function("sys_time").return { name = "time" - returnp = 1 + retstr = returnstr(1) } # timer_create _______________________________________________ # @@ -2074,7 +2075,7 @@ probe syscall.timer_create = kernel.function("sys_timer_create") { probe syscall.timer_create.return = kernel.function("sys_timer_create").return { name = "timer_create" - returnp = 1 + retstr = returnstr(1) } # timer_delete _______________________________________________ # @@ -2088,7 +2089,7 @@ probe syscall.timer_delete = kernel.function("sys_timer_delete") { } probe syscall.timer_delete.return = kernel.function("sys_timer_delete").return { name = "timer_delete" - returnp = 1 + retstr = returnstr(1) } # timer_getoverrun ___________________________________________ # @@ -2103,7 +2104,7 @@ probe syscall.timer_getoverrun = kernel.function("sys_timer_getoverrun") { probe syscall.timer_getoverrun.return = kernel.function("sys_timer_getoverrun").return { name = "timer_getoverrun" - returnp = 1 + retstr = returnstr(1) } # timer_gettime ______________________________________________ # @@ -2121,7 +2122,7 @@ probe syscall.timer_gettime = kernel.function("sys_timer_gettime") { probe syscall.timer_gettime.return = kernel.function("sys_timer_gettime").return { name = "timer_gettime" - returnp = 1 + retstr = returnstr(1) } # timer_settime ______________________________________________ # @@ -2144,7 +2145,7 @@ probe syscall.timer_settime = kernel.function("sys_timer_settime") { probe syscall.timer_settime.return = kernel.function("sys_timer_settime").return { name = "timer_settime" - returnp = 1 + retstr = returnstr(1) } # times ______________________________________________________ # @@ -2165,7 +2166,7 @@ probe syscall.times = kernel.function("sys_times") { } probe syscall.times.return = kernel.function("sys_times").return { name = "times" - returnp = 1 + retstr = returnstr(1) } # tkill ______________________________________________________ # @@ -2181,7 +2182,7 @@ probe syscall.tkill = kernel.function("sys_tkill") { } probe syscall.tkill.return = kernel.function("sys_tkill").return { name = "tkill" - returnp = 1 + retstr = returnstr(1) } # truncate ___________________________________________________ # @@ -2198,7 +2199,7 @@ probe syscall.truncate = kernel.function("sys_truncate") { } probe syscall.truncate.return = kernel.function("sys_truncate").return { name = "truncate" - returnp = 1 + retstr = returnstr(1) } # truncate64 _________________________________________________ # @@ -2215,7 +2216,7 @@ probe syscall.truncate64 = kernel.function("sys_truncate") { } probe syscall.truncate64.return = kernel.function("sys_truncate").return { name = "truncate64" - returnp = 1 + retstr = returnstr(1) } # umount _____________________________________________________ # @@ -2233,7 +2234,7 @@ probe syscall.umount = kernel.function("sys_umount") { } probe syscall.umount.return = kernel.function("sys_umount").return { name = "umount" - returnp = 1 + retstr = returnstr(1) } # uname ______________________________________________________ # @@ -2248,7 +2249,7 @@ probe syscall.uname = kernel.function("sys_uname") { } probe syscall.uname.return = kernel.function("sys_uname").return { name = "uname" - returnp = 1 + retstr = returnstr(1) } # unlink _____________________________________________________ # @@ -2263,7 +2264,7 @@ probe syscall.unlink = kernel.function("sys_unlink") { } probe syscall.unlink.return = kernel.function("sys_unlink").return { name = "unlink" - returnp = 1 + retstr = returnstr(1) } # uselib _____________________________________________________ # @@ -2278,7 +2279,7 @@ probe syscall.uselib = kernel.function("sys_uselib") { } probe syscall.uselib.return = kernel.function("sys_uselib").return { name = "uselib" - returnp = 1 + retstr = returnstr(1) } # ustat ______________________________________________________ # @@ -2294,7 +2295,7 @@ probe syscall.ustat = kernel.function("sys_ustat") { } probe syscall.ustat.return = kernel.function("sys_ustat").return { name = "ustat" - returnp = 1 + retstr = returnstr(1) } # utime ______________________________________________________ # @@ -2311,7 +2312,7 @@ probe syscall.utime = kernel.function("sys_utime") { } probe syscall.utime.return = kernel.function("sys_utime").return { name = "utime" - returnp = 1 + retstr = returnstr(1) } # utimes _____________________________________________________ # @@ -2328,7 +2329,7 @@ probe syscall.utimes = kernel.function("sys_utimes") { } probe syscall.utimes.return = kernel.function("sys_utimes").return { name = "utimes" - returnp = 1 + retstr = returnstr(1) } # vhangup ____________________________________________________ # @@ -2341,7 +2342,7 @@ probe syscall.vhangup = kernel.function("sys_vhangup") { } probe syscall.vhangup.return = kernel.function("sys_vhangup").return { name = "vhangup" - returnp = 1 + retstr = returnstr(1) } # wait4 ______________________________________________________ # @@ -2364,7 +2365,7 @@ probe syscall.wait4 = kernel.function("sys_wait4") { } probe syscall.wait4.return = kernel.function("sys_wait4").return { name = "wait4" - returnp = 1 + retstr = returnstr(1) } # waitid _____________________________________________________ # @@ -2389,7 +2390,7 @@ probe syscall.waitid = kernel.function("sys_waitid") { } probe syscall.waitid.return = kernel.function("sys_waitid").return { name = "waitid" - returnp = 1 + retstr = returnstr(1) } # waitpid ____________________________________________________ # @@ -2411,7 +2412,7 @@ probe syscall.waitpid = kernel.function("sys_wait4") { } probe syscall.waitpid.return = kernel.function("sys_wait4").return { name = "waitpid" - returnp = 1 + retstr = returnstr(1) } # write ______________________________________________________ # @@ -2429,7 +2430,7 @@ probe syscall.write = kernel.function("sys_write") { } probe syscall.write.return = kernel.function("sys_write").return { name = "write" - returnp = 1 + retstr = returnstr(1) } # writev _____________________________________________________ # @@ -2452,6 +2453,5 @@ probe syscall.writev = kernel.function("sys_writev") { } probe syscall.writev.return = kernel.function("sys_writev").return { name = "writev" - returnp = 1 + retstr = returnstr(1) } - diff --git a/tapset/x86_64/syscalls.stp b/tapset/x86_64/syscalls.stp index 20f22c66..5f751d16 100644 --- a/tapset/x86_64/syscalls.stp +++ b/tapset/x86_64/syscalls.stp @@ -8,7 +8,7 @@ probe syscall.fstat = kernel.function("sys_fstat") { } probe syscall.fstat.return = kernel.function("sys_fstat").return { name = "fstat" - returnp = 1 + retstr = returnstr(1) } # getegid16 __________________________________________________ @@ -18,7 +18,7 @@ probe syscall.getegid16 = kernel.function("sys_getegid16") { } probe syscall.getegid16.return = kernel.function("sys_getegid16").return { name = "getegid16" - returnp = 1 + retstr = returnstr(1) } # geteuid16 __________________________________________________ @@ -28,7 +28,7 @@ probe syscall.geteuid16 = kernel.function("sys_geteuid16") { } probe syscall.geteuid16.return = kernel.function("sys_geteuid16").return { name = "geteuid16" - returnp = 1 + retstr = returnstr(1) } # getgid16 ___________________________________________________ @@ -38,7 +38,7 @@ probe syscall.getgid16 = kernel.function("sys_getgid16") { } probe syscall.getgid16.return = kernel.function("sys_getgid16").return { name = "getgid16" - returnp = 1 + retstr = returnstr(1) } # getgroups16 ________________________________________________ @@ -51,7 +51,7 @@ probe syscall.getgroups16 = kernel.function("sys_getgroups16") { } probe syscall.getgroups16.return = kernel.function("sys_getgroups16").return { name = "getgroups16" - returnp = 1 + retstr = returnstr(1) } # getuid16 ___________________________________________________ @@ -61,7 +61,7 @@ probe syscall.getuid16 = kernel.function("sys_getuid16") { } probe syscall.getuid16.return = kernel.function("sys_getuid16").return { name = "getuid16" - returnp = 1 + retstr = returnstr(1) } # lstat ______________________________________________________ @@ -74,29 +74,9 @@ probe syscall.lstat = kernel.function("sys_lstat") { } probe syscall.lstat.return = kernel.function("sys_lstat").return { name = "lstat.return" - returnp = 1 + retstr = returnstr(1) } -# mmap2 -# long sys_mmap2(unsigned long addr, unsigned long len, -# unsigned long prot, unsigned long flags, -# unsigned long fd, unsigned long pgoff) -probe syscall.mmap2 = kernel.function("sys_mmap2") { - name = "mmap2" - start = $addr - length = $len - prot = $prot - flags = $flags - fd = $fd - pgoffset = $pgoff - argstr = sprintf("0x%x, %d, %s, %s, %d, 0x%x", start, - length, _mprotect_prot_str(prot), _mmap_flags(flags), - fd, pgoffset) -} -probe syscall.mmap2.return = kernel.function("sys_mmap2").return { - name = "mmap2" - returnp = 1 -} # setgroups16 ________________________________________________ # @@ -112,7 +92,7 @@ probe syscall.setgroups16 = kernel.function("sys_setgroups16") { } probe syscall.setgroups16.return = kernel.function("sys_setgroups16").return { name = "setgroups16" - returnp = 1 + retstr = returnstr(1) } # stat _______________________________________________________ @@ -130,7 +110,7 @@ probe syscall.stat = kernel.function("sys_stat") { } probe syscall.stat.return = kernel.function("sys_stat").return { name = "stat" - returnp = 1 + retstr = returnstr(1) } # acct _______________________________________________________ @@ -142,7 +122,7 @@ probe syscall.acct = kernel.function("sys_acct") { } probe syscall.acct.return = kernel.function("sys_acct").return { name = "acct" - returnp = 1 + retstr = returnstr(1) } # add_key ____________________________________________________ @@ -162,7 +142,7 @@ probe syscall.add_key = kernel.function("sys_add_key") { } probe syscall.add_key.return = kernel.function("sys_add_key").return { name = "add_key" - returnp = 1 + retstr = returnstr(1) } # quotactl ___________________________________________________ @@ -185,7 +165,7 @@ probe syscall.quotactl = kernel.function("sys_quotactl") { } probe syscall.quotactl.return = kernel.function("sys_quotactl").return { name = "quotactl" - returnp = 1 + retstr = returnstr(1) } # request_key ________________________________________________ # @@ -206,7 +186,7 @@ probe syscall.request_key = kernel.function("sys_request_key") { } probe syscall.request_key.return = kernel.function("sys_request_key").return { name = "request_key" - returnp = 1 + retstr = returnstr(1) } # @@ -227,7 +207,7 @@ probe kernel.syscall.arch_prctl = probe kernel.syscall.arch_prctl.return = kernel.function("sys_arch_prctl").return { name = "arch_prctl" - returnp = 1 + retstr = returnstr(1) } # get_mempolicy ______________________________________________ /* @@ -252,7 +232,7 @@ probe kernel.syscall.get_mempolicy = probe kernel.syscall.get_mempolicy.return = kernel.function("sys_get_mempolicy").return { name = "get_mempolicy" - returnp = 1 + retstr = returnstr(1) } # iopl _______________________________________________________ /* @@ -266,7 +246,7 @@ probe kernel.syscall.iopl = kernel.function("sys_iopl") { } probe kernel.syscall.iopl.return = kernel.function("sys_iopl").return { name = "iopl" - returnp = 1 + retstr = returnstr(1) } # mbind ______________________________________________________ /* @@ -291,7 +271,7 @@ probe kernel.syscall.mbind = kernel.function("sys_mbind") { } probe kernel.syscall.mbind.return = kernel.function("sys_mbind").return { name = "mbind" - returnp = 1 + retstr = returnstr(1) } # mmap _______________________________________________________ /* @@ -316,7 +296,7 @@ probe kernel.syscall.mmap = kernel.function("sys_mmap") { } probe kernel.syscall.mmap.return = kernel.function("sys_mmap").return { name = "mmap" - returnp = 1 + retstr = returnstr(2) } # rt_sigreturn _______________________________________________ /* @@ -331,7 +311,7 @@ probe kernel.syscall.rt_sigreturn = kernel.function("sys_rt_sigreturn") { probe kernel.syscall.rt_sigreturn.return = kernel.function("sys_rt_sigreturn").return { name = "rt_sigreturn" - returnp = 1 + retstr = returnstr(1) } # sched_setaffinity __________________________________________ /* @@ -354,7 +334,7 @@ probe kernel.syscall.sched_setaffinity = probe kernel.syscall.sched_setaffinity.return = kernel.function("sys_sched_setaffinity").return { name = "sched_setaffinity" - returnp = 1 + retstr = returnstr(1) } # set_mempolicy ______________________________________________ /* @@ -373,7 +353,7 @@ probe kernel.syscall.set_mempolicy = kernel.function("sys_set_mempolicy") { probe kernel.syscall.set_mempolicy.return = kernel.function("sys_set_mempolicy").return { name = "set_mempolicy" - returnp = 1 + retstr = returnstr(1) } # sigaltstack ________________________________________________ /* @@ -390,7 +370,7 @@ probe kernel.syscall.sigaltstack = kernel.function("sys_sigaltstack") { probe kernel.syscall.sigaltstack.return = kernel.function("sys_sigaltstack").return { name = "sigaltstack" - returnp = 1 + retstr = returnstr(1) } # time64 _____________________________________________________ /* @@ -404,7 +384,7 @@ probe kernel.syscall.time64 = kernel.function("sys_time64") { } probe kernel.syscall.time64.return = kernel.function("sys_time64").return { name = "time64" - returnp = 1 + retstr = returnstr(1) } # tux ________________________________________________________ /* @@ -420,7 +400,7 @@ probe kernel.syscall.tux = kernel.function("sys_tux") { } probe kernel.syscall.tux.return = kernel.function("sys_tux").return { name = "tux" - returnp = 1 + retstr = returnstr(1) } # umask ______________________________________________________ /* @@ -436,5 +416,5 @@ probe kernel.syscall.umask = kernel.function("sys_umask") { } probe kernel.syscall.umask.return = kernel.function("sys_umask").return { name = "umask" - returnp = 1 + retstr = returnstr(1) } |