Successfully reported this slideshow.
Your SlideShare is downloading. ×

LPC2019 BPF Tracing Tools

Sep. 23, 2019
11 likes 1,772 views
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Upcoming SlideShare
BPF Internals (eBPF)
BPF Internals (eBPF)
Loading in …3
×

Check these out next

ATO Linux Performance 2018
Brendan Gregg
Tuning parallelcodeonsolaris005
dflexer
eBPF Trace from Kernel to Userspace
SUSE Labs Taipei
Low Overhead System Tracing with eBPF
Akshay Kapoor
Performance Wins with eBPF: Getting Started (2021)
Brendan Gregg
Linux kernel-rootkit-dev - Wonokaerun
idsecconf
bcc/BPF tools - Strategy, current tools, future challenges
IO Visor Project
YOW2020 Linux Systems Performance
Brendan Gregg
1 of 9 Ad

LPC2019 BPF Tracing Tools

Sep. 23, 2019
11 likes 1,772 views

Download to read offline

Technology

Slides for the Linux Plumber's 2019 discussion on BPF tracing tools and future work

Slides for the Linux Plumber's 2019 discussion on BPF tracing tools and future work

Technology
Advertisement

Recommended

BPF Internals (eBPF)
Brendan Gregg
15.1k views
122 slides
UM2019 Extended BPF: A New Type of Software
Brendan Gregg
32.9k views
48 slides
Performance Wins with BPF: Getting Started
Brendan Gregg
2k views
24 slides
Kernel development
Nuno Martins
927 views
9 slides
LSFMM 2019 BPF Observability
Brendan Gregg
8.2k views
67 slides
Linux kernel tracing superpowers in the cloud
Andrea Righi
385 views
36 slides
re:Invent 2019 BPF Performance Analysis at Netflix
Brendan Gregg
5.5k views
65 slides
eBPF Perf Tools 2019
Brendan Gregg
8.4k views
39 slides
Advertisement

More Related Content

Slideshows for you (20)

ATO Linux Performance 2018
Brendan Gregg
3.3k views
Tuning parallelcodeonsolaris005
dflexer
517 views
eBPF Trace from Kernel to Userspace
SUSE Labs Taipei
8.3k views
Low Overhead System Tracing with eBPF
Akshay Kapoor
839 views
Performance Wins with eBPF: Getting Started (2021)
Brendan Gregg
1.4k views
Linux kernel-rootkit-dev - Wonokaerun
idsecconf
2.5k views
bcc/BPF tools - Strategy, current tools, future challenges
IO Visor Project
992 views
YOW2020 Linux Systems Performance
Brendan Gregg
1.9k views
Security Monitoring with eBPF
Alex Maestretti
6.9k views
Tracing MariaDB server with bpftrace - MariaDB Server Fest 2021
Valeriy Kravchuk
312 views
Linux 4.x Tracing: Performance Analysis with bcc/BPF
Brendan Gregg
10.6k views
Velocity 2017 Performance analysis superpowers with Linux eBPF
Brendan Gregg
685.6k views
eBPF Workshop
Michael Kehoe
1.3k views
Performance Tuning EC2 Instances
Brendan Gregg
170k views
Systems@Scale 2021 BPF Performance Getting Started
Brendan Gregg
1.4k views
Bpf performance tools chapter 4 bcc
Viller Hsiao
353 views
Understanding eBPF in a Hurry!
Ray Jenkins
1.3k views
Debugging Hung Python Processes With GDB
bmbouter
456 views
LISA2019 Linux Systems Performance
Brendan Gregg
314.9k views
Spying on the Linux kernel for fun and profit
Andrea Righi
147 views
ATO Linux Performance 2018
Brendan Gregg
3.3k views
26 slides
Tuning parallelcodeonsolaris005
dflexer
517 views
39 slides
eBPF Trace from Kernel to Userspace
SUSE Labs Taipei
8.3k views
74 slides
Low Overhead System Tracing with eBPF
Akshay Kapoor
839 views
26 slides
Performance Wins with eBPF: Getting Started (2021)
Brendan Gregg
1.4k views
30 slides
Linux kernel-rootkit-dev - Wonokaerun
idsecconf
2.5k views
35 slides

Similar to LPC2019 BPF Tracing Tools (20)

Efficient System Monitoring in Cloud Native Environments
Gergely Szabó
113 views
IETF 104 Hackathon VPP Prototyping Stateless SRv6/GTP-U Translation
Kentaro Ebisawa
1.2k views
Aplicações realtime com gRPC
Leandro Lugaresi
291 views
Apache CarbonData:New high performance data format for faster data analysis
liang chen
3.6k views
[Paper Reading]Orca: A Modular Query Optimizer Architecture for Big Data
PingCAP
89 views
DISTRIBUTED PERFORMANCE ANALYSIS USING INFLUXDB AND THE LINUX EBPF VIRTUAL MA...
InfluxData
414 views
JPA Week3 Entity Mapping / Hexagonal Architecture
Covenant Ko
1.3k views
KubeCon EU 2016: Kubernetes and the Potential for Higher Level Interfaces
KubeAcademy
604 views
Hyperspace for Delta Lake
Databricks
498 views
Twitter's Data Replicator for Google Cloud Storage
lohitvijayarenu
389 views
A Physical Units Library for the Next C++
Mateusz Pusz
263 views
Jboss World 2011 Infinispan
cbo_
1.6k views
Spring5 New Features - Nov, 2017
VMware Tanzu Korea
2.5k views
Data Engineering with Protobuf
Thiago Baldim
157 views
Ceph Performance Profiling and Reporting
Ceph Community
630 views
eBPF Debugging Infrastructure - Current Techniques
Netronome
492 views
Bd siit i pv4-ipv6
Prof.Dr.Hanumanthappa J
412 views
Introduction to SDshare
Lars Marius Garshol
1.5k views
Knetminer Backend Training, Nov 2018
Rothamsted Research, UK
126 views
Introducing Apache Carbon Data - Hadoop Native Columnar Data Format
Vimal Das Kammath
1.4k views
Efficient System Monitoring in Cloud Native Environments
Gergely Szabó
113 views
56 slides
IETF 104 Hackathon VPP Prototyping Stateless SRv6/GTP-U Translation
Kentaro Ebisawa
1.2k views
20 slides
Aplicações realtime com gRPC
Leandro Lugaresi
291 views
21 slides
Apache CarbonData:New high performance data format for faster data analysis
liang chen
3.6k views
28 slides
[Paper Reading]Orca: A Modular Query Optimizer Architecture for Big Data
PingCAP
89 views
30 slides
DISTRIBUTED PERFORMANCE ANALYSIS USING INFLUXDB AND THE LINUX EBPF VIRTUAL MA...
InfluxData
414 views
17 slides
Advertisement

More from Brendan Gregg (18)

YOW2021 Computing Performance
Brendan Gregg
2k views
IntelON 2021 Processor Benchmarking
Brendan Gregg
979 views
Computing Performance: On the Horizon (2021)
Brendan Gregg
75.8k views
YOW2018 CTO Summit: Working at netflix
Brendan Gregg
3.5k views
YOW2018 Cloud Performance Root Cause Analysis at Netflix
Brendan Gregg
125.5k views
BPF Tools 2017
Brendan Gregg
2.4k views
NetConf 2018 BPF Observability
Brendan Gregg
2.7k views
FlameScope 2018
Brendan Gregg
2.7k views
Linux Performance 2018 (PerconaLive keynote)
Brendan Gregg
373.4k views
How Netflix Tunes EC2 Instances for Performance
Brendan Gregg
505.5k views
LISA17 Container Performance Analysis
Brendan Gregg
9.3k views
Kernel Recipes 2017: Using Linux perf at Netflix
Brendan Gregg
1.4M views
Kernel Recipes 2017: Performance Analysis with BPF
Brendan Gregg
5.2k views
EuroBSDcon 2017 System Performance Analysis Methodologies
Brendan Gregg
15.7k views
OSSNA 2017 Performance Analysis Superpowers with Linux BPF
Brendan Gregg
5.1k views
USENIX ATC 2017 Performance Superpowers with Enhanced BPF
Brendan Gregg
7.1k views
USENIX ATC 2017: Visualizing Performance with Flame Graphs
Brendan Gregg
588k views
Container Performance Analysis
Brendan Gregg
447k views
YOW2021 Computing Performance
Brendan Gregg
2k views
108 slides
IntelON 2021 Processor Benchmarking
Brendan Gregg
979 views
17 slides
Computing Performance: On the Horizon (2021)
Brendan Gregg
75.8k views
113 slides
YOW2018 CTO Summit: Working at netflix
Brendan Gregg
3.5k views
21 slides
YOW2018 Cloud Performance Root Cause Analysis at Netflix
Brendan Gregg
125.5k views
101 slides
BPF Tools 2017
Brendan Gregg
2.4k views
44 slides

Recently uploaded (20)

Business is War: What Tech Gives You the Advantage
Advanced Technology Consulting (ATC)
0 views
Hello to Amazing Phone Experiences Within MS Teams
Advanced Technology Consulting (ATC)
0 views
NS-CUK Seminar: V.T.Hoang, Review on "Graph Neural Networks Go Forward-Forwar...
Network Science Lab, The Catholic University of Korea
0 views
Blockchain Developer Geography 2023 by Electric Capital
MariaShen2
0 views
AngularJS (1).pptx
JonasFlores17
0 views
灯油タンク内の液面高計測を用いた 灯油残量推定システムに関する研究
harmonylab
0 views
CTI Training on Intelligence Requirements
Andreas Sfakianakis
0 views
NS-CUK Seminar: S.T.Nguyen, Review on "Do Transformers Really Perform Bad for...
Network Science Lab, The Catholic University of Korea
0 views
Ch 1-Non-functional Requirements.ppt
balewayalew
0 views
AI-CUK Joint Journal Club: V.T.Hoang, Review on "Global self-attention as a r...
Network Science Lab, The Catholic University of Korea
0 views
Post-COVID EdTech Landscape
Stella Lee
0 views
NS-CUK Seminar: S.T.Nguyen, Review on "On Generalized Degree Fairness in Grap...
Network Science Lab, The Catholic University of Korea
0 views
artificialintelligenceingaming-221113091057-b894cc20.pdf
ArghyaGayen2
0 views
Solar heater manufacturers in India
Farmson Solar
0 views
Empowering People to do Their Best
Advanced Technology Consulting (ATC)
0 views
Enhancing Safety and Security with Queue Management Software - Qwaiting
Qwaiting
0 views
Cyber Defined! MDR, XDR, EDR, NDR
Advanced Technology Consulting (ATC)
0 views
Teals-blockchain.pptx
sumitsengupta
0 views
Optimizing and Securing Your Network
Advanced Technology Consulting (ATC)
0 views
Cloud Modernization: Everything as a Service (XaaS)
Advanced Technology Consulting (ATC)
0 views
Business is War: What Tech Gives You the Advantage
Advanced Technology Consulting (ATC)
0 views
14 slides
Hello to Amazing Phone Experiences Within MS Teams
Advanced Technology Consulting (ATC)
0 views
17 slides
NS-CUK Seminar: V.T.Hoang, Review on "Graph Neural Networks Go Forward-Forwar...
Network Science Lab, The Catholic University of Korea
0 views
14 slides
Blockchain Developer Geography 2023 by Electric Capital
MariaShen2
0 views
26 slides
AngularJS (1).pptx
JonasFlores17
0 views
9 slides
灯油タンク内の液面高計測を用いた 灯油残量推定システムに関する研究
harmonylab
0 views
25 slides
Advertisement

LPC2019 BPF Tracing Tools

  1. 1. BPF Tracing Tools Brendan Gregg
  2. 2. The Tracing Landscape, Sep 2019 Scope & Capability Easeofuse sysdig perf ftrace C/BPF stap Stage of Development (my opinion) (brutal)(lessbrutal) (alpha) (mature) bcc/BPF ply/BPF Raw BPF LTTng (hist triggers,synthetic events) recent changes (many) bpftrace (eBPF) (0.9.2)
  3. 3. BPF Perf Tools
  4. 4. BPF Perf Tools Example: readahead # readahead.bt Attaching 5 probes... ^C Readahead unused pages: 128 Readahead used page age (ms): @age_ms: [1] 2455 |@@@@@@@@@@@@@@@ | [2, 4) 8424 |@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@| [4, 8) 4417 |@@@@@@@@@@@@@@@@@@@@@@@@@@@ | [8, 16) 7680 |@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ | [16, 32) 4352 |@@@@@@@@@@@@@@@@@@@@@@@@@@ | [32, 64) 0 | | [64, 128) 0 | | [128, 256) 384 |@@ | Is readahead polluting the cache?
  5. 5. #!/usr/local/bin/bpftrace kprobe:__do_page_cache_readahead { @in_readahead[tid] = 1; } kretprobe:__do_page_cache_readahead { @in_readahead[tid] = 0; } kretprobe:__page_cache_alloc /@in_readahead[tid]/ { @birth[retval] = nsecs; @rapages++; } kprobe:mark_page_accessed /@birth[arg0]/ { @age_ms = hist((nsecs - @birth[arg0]) / 1000000); delete(@birth[arg0]); @rapages--; } END { printf("nReadahead unused pages: %dn", @rapages); printf("nReadahead used page age (ms):n"); print(@age_ms); clear(@age_ms); clear(@birth); clear(@in_readahead); clear(@rapages); }
  6. 6. Discussion: Desired Tracepoints ● VFS ● socket send/recv, skb alloc to pair with skb:consume_skb/kfree_sub ● tcp send/recv, udp send/recv ● IP ECN ● genl, bql ● block:block_rq_issue/… add request pointer for use as unique ID ● locks
  7. 7. Discussion: Desired BPF Helpers ● struct file to pathname (like path_lookupat()) ● FD to struct file / pathname / file type (DF_SOCK etc) ● bpf_get_current_pcomm() ● clock_gettime(CLOCK_PROCESS_CPUTIME_ID, …) ● other timestamps ● more string functions
  8. 8. Discussion: Bigger Capabilities ● BTF (already there, thanks Yonghong Song etc) ● unprivileged BPF ● probe multi-attach (Ftrace is faster (__fentry__)) ● faster uprobes (LTTng-style) ● bpf_probe_read_user/kernel split
  9. 9. Discussion: Challenges ● libc no frame pointer – LBR+FP stack walking (but no LBR on the cloud (mostly)) ● JIT function tracing Broken off-cpu flame graph (no frame pointer) update: user-level ORC a solution

×