Home Esplora Aiuto
Registrati Accedi
root
/
phbpf
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): 544a8bb369
Rami (Branch) Tag
phbpf
/
examples
/
tracing
/
uprobe.php

uprobe.php 766 B
Cronologia Originale

123456789101112131415161718192021222324252627282930313233 
  1. <?php
    2. 

  2. if ($argc < 2) {
    3. 

  3.     fwrite(STDERR, "Usage: php script.php <binary_path> <pid>\n");
    4. 

  4.     exit(1);
    5. 

  5. }
    6. 

  6. $binary = $argv[1];
    7. 

  7. $pid = intval($argv[2]);
    8. 

  8. 

  9. $bpf_text = <<<EOT
    10. 

  10. #include <uapi/linux/ptrace.h>
    11. 

  11. 

  12. int test(struct pt_regs *ctx)
    13. 

  13. {
    14. 

  14.         bpf_trace_printk("%d---%d\\n",ctx->di,ctx->si);
    15. 

  15.         return 1;
    16. 

  16. }
    17. 

  17. EOT;
    18. 

  18. 

  19. $ebpf = new Bpf(["text" => $bpf_text]);
    20. 

  20. $opt = array("pid"=>$pid);
    21. 

  21. $ebpf->attach_uprobe($binary,"add","test",$opt);
    22. 

  22. # header
    23. 

  23. printf("%-18s %-16s %-6s %s\n", "TIME(s)", "COMM", "PID", "MESSAGE");
    24. 

  24. # format output
    25. 

  25. while (true) {
    26. 

  26.     try {
    27. 

  27.         list($task, $pid, $cpu, $flags, $ts, $msg) = $ebpf->trace_fields();
    28. 

  28.         printf("%-18.9f %-16s %-6d %s\n", $ts, $task, $pid, $msg);
    29. 

  29.         flush();
    30. 

  30.     } catch (Exception $e) {
    31. 

  31.         continue;
    32. 

  32.     }
    33. 

  33. }
    34.