File Manager

003 File Manager

Current Path: /usr/libexec/dwatch

📁 ..
📄 chmod(1.65 KB)
📄 errno(1.22 KB)
📄 fchmodat(1.65 KB)
📄 io(3.09 KB)
📄 io-done(3.09 KB)
📄 io-start(3.09 KB)
📄 ip(1.76 KB)
📄 ip-receive(1.76 KB)
📄 ip-send(1.76 KB)
📄 kill(1.19 KB)
📄 lchmod(1.65 KB)
📄 nanosleep(1.44 KB)
📄 open(1.48 KB)
📄 openat(1.48 KB)
📄 proc(3.88 KB)
📄 proc-create(3.88 KB)
📄 proc-exec(3.88 KB)
📄 proc-exec-failure(3.88 KB)
📄 proc-exec-success(3.88 KB)
📄 proc-exit(3.88 KB)
📄 proc-signal(3.88 KB)
📄 proc-signal-clear(3.88 KB)
📄 proc-signal-discard(3.88 KB)
📄 proc-signal-send(3.88 KB)
📄 proc-status(3.88 KB)
📄 read(1.8 KB)
📄 recv(6.32 KB)
📄 recvfrom(6.32 KB)
📄 recvmsg(6.32 KB)
📄 rw(1.8 KB)
📄 sched(2.9 KB)
📄 sched-change-pri(2.9 KB)
📄 sched-cpu(2.9 KB)
📄 sched-dequeue(2.9 KB)
📄 sched-enqueue(2.9 KB)
📄 sched-exec(2.9 KB)
📄 sched-lend-pri(2.9 KB)
📄 sched-load-change(2.9 KB)
📄 sched-off-cpu(2.9 KB)
📄 sched-on-cpu(2.9 KB)
📄 sched-preempt(2.9 KB)
📄 sched-pri(2.9 KB)
📄 sched-queue(2.9 KB)
📄 sched-remain-cpu(2.9 KB)
📄 sched-sleep(2.9 KB)
📄 sched-surrender(2.9 KB)
📄 sched-tick(2.9 KB)
📄 sched-wakeup(2.9 KB)
📄 send(6.32 KB)
📄 sendmsg(6.32 KB)
📄 sendrecv(6.32 KB)
📄 sendto(6.32 KB)
📄 systop(2.22 KB)
📄 tcp(5.37 KB)
📄 tcp-accept(5.37 KB)
📄 tcp-accept-established(5.37 KB)
📄 tcp-accept-refused(5.37 KB)
📄 tcp-connect(5.37 KB)
📄 tcp-connect-established(5.37 KB)
📄 tcp-connect-refused(5.37 KB)
📄 tcp-connect-request(5.37 KB)
📄 tcp-established(5.37 KB)
📄 tcp-init(5.37 KB)
📄 tcp-io(5.37 KB)
📄 tcp-receive(5.37 KB)
📄 tcp-refused(5.37 KB)
📄 tcp-send(5.37 KB)
📄 tcp-state-change(5.37 KB)
📄 tcp-status(5.37 KB)
📄 udp(2.29 KB)
📄 udp-receive(2.29 KB)
📄 udp-send(2.29 KB)
📄 udplite(2.35 KB)
📄 udplite-receive(2.35 KB)
📄 udplite-send(2.35 KB)
📄 vop_create(4.96 KB)
📄 vop_lookup(4.96 KB)
📄 vop_mkdir(4.96 KB)
📄 vop_mknod(4.96 KB)
📄 vop_readdir(4.71 KB)
📄 vop_remove(4.96 KB)
📄 vop_rename(8.11 KB)
📄 vop_rmdir(4.96 KB)
📄 vop_symlink(5.04 KB)
📄 write(1.8 KB)

Editing: tcp-init

# -*- tab-width: 4 -*- ;; Emacs
# vi: set filetype=sh tabstop=8 shiftwidth=8 noexpandtab :: Vi/ViM
############################################################ IDENT(1)
#
# $Title: dwatch(8) module for dtrace_tcp(4) connections $
# $Copyright: 2014-2018 Devin Teske. All rights reserved. $
# $FreeBSD$
#
############################################################ DESCRIPTION
#
# Display local/remote TCP addresses/ports and bytes sent/received for TCP I/O
#
############################################################ PROBE

case "$PROFILE" in
tcp)
	: ${PROBE:=$( echo \
		tcp:::accept-established, \
		tcp:::accept-refused, \
		tcp:::connect-established, \
		tcp:::connect-refused, \
		tcp:::connect-request, \
		tcp:::receive, \
		tcp:::send, \
		tcp:::state-change )} ;;
tcp-accept)
	: ${PROBE:=tcp:::accept-established, tcp:::accept-refused} ;;
tcp-connect)
	: ${PROBE:=$( echo \
		tcp:::connect-established, \
		tcp:::connect-refused, \
		tcp:::connect-request )} ;;
tcp-established)
	: ${PROBE:=tcp:::accept-established, tcp:::connect-established} ;;
tcp-init)
	: ${PROBE:=$( echo \
		tcp:::accept-established, \
		tcp:::accept-refused, \
		tcp:::connect-established, \
		tcp:::connect-refused, \
		tcp:::connect-request )} ;;
tcp-io)
	: ${PROBE:=tcp:::send, tcp:::receive} ;;
tcp-refused)
	: ${PROBE:=tcp:::accept-refused, tcp:::connect-refused} ;;
tcp-status)
	: ${PROBE:=$( echo \
		tcp:::accept-established, \
		tcp:::accept-refused, \
		tcp:::connect-established, \
		tcp:::connect-refused, \
		tcp:::connect-request, \
		tcp:::state-change )} ;;
*)
	: ${PROBE:=tcp:::${PROFILE#tcp-}}
esac

############################################################ ACTIONS

exec 9<<EOF
this int32_t	from_state;
this int32_t	to_state;
this string	details;
this string	flow;
this string	local;
this string	remote;
this u_char	local6;
this u_char	remote6;
this u_char	slocal;
this uint16_t	lport;
this uint16_t	rport;
this uint32_t	length;

inline string probeflow[string name] =
	name == "accept-established" ?	"<-" :
	name == "accept-refused" ?	"X-" :
	name == "connect-refused" ?	"-X" :
	name == "connect-request" ?	"-?" :
	name == "receive" ?		"<-" :
	"->";

inline u_char srclocal[string name] =
	name == "accept-refused" ?	1 :
	name == "connect-request" ?	1 :
	name == "send" ?		1 :
	0;

/*
 * TCPSTATES from <sys/netinet/tcp_fsm.h> used by netstat(1)
 */
inline string tcpstate[int32_t state] =
        state == TCPS_CLOSED ?		"CLOSED" :
        state == TCPS_LISTEN ?		"LISTEN" :
        state == TCPS_SYN_SENT ?	"SYN_SENT" :
        state == TCPS_SYN_RECEIVED ?	"SYN_RCVD" :
        state == TCPS_ESTABLISHED ?	"ESTABLISHED" :
        state == TCPS_CLOSE_WAIT ?	"CLOSE_WAIT" :
        state == TCPS_FIN_WAIT_1 ?	"FIN_WAIT_1" :
        state == TCPS_CLOSING ?		"CLOSING" :
        state == TCPS_LAST_ACK ?	"LAST_ACK" :
        state == TCPS_FIN_WAIT_2 ?	"FIN_WAIT_2" :
        state == TCPS_TIME_WAIT ?	"TIME_WAIT" :
        strjoin("UNKNOWN(", strjoin(lltostr(state), ")"));

$PROBE /* probe ID $ID */
{${TRACE:+
	printf("<$ID>");}
	this->details = "";

/*
	 * dtrace_tcp(4)
	 */
	this->flow = probeflow[probename];
}

tcp:::accept-established,
tcp:::accept-refused,
tcp:::connect-established,
tcp:::connect-refused,
tcp:::connect-request,
tcp:::receive,
tcp:::send /* probe ID $(( $ID + 1 )) */
{${TRACE:+
	printf("<$(( $ID + 1 ))>");
}
	/*
	 * dtrace_tcp(4)
	 */
	this->slocal = srclocal[probename];

/*
	 * ipinfo_t *
	 */
	this->local  = this->slocal ? args[2]->ip_saddr : args[2]->ip_daddr;
	this->remote = this->slocal ? args[2]->ip_daddr : args[2]->ip_saddr;

/*
	 * tcpinfo_t *
	 */
	this->lport = this->slocal ? args[4]->tcp_sport : args[4]->tcp_dport;
	this->rport = this->slocal ? args[4]->tcp_dport : args[4]->tcp_sport;

/*
	 * IPv6 support
	 */
	this->local6 = strstr(this->local, ":") != NULL ? 1 : 0;
	this->remote6 = strstr(this->remote, ":") != NULL ? 1 : 0;
	this->local = strjoin(strjoin(this->local6 ? "[" : "",
		this->local), this->local6 ? "]" : "");
	this->remote = strjoin(strjoin(this->remote6 ? "[" : "",
		this->remote), this->remote6 ? "]" : "");
}

tcp:::state-change /* probe ID $(( $ID + 2 )) */
{${TRACE:+
	printf("<$(( $ID + 2 ))>");
}
	/*
	 * tcpsinfo_t *
	 */
	this->local    = args[3]->tcps_laddr;
	this->lport    = (uint16_t)args[3]->tcps_lport;
	this->remote   = args[3]->tcps_raddr;
	this->rport    = (uint16_t)args[3]->tcps_rport;
	this->to_state = (int32_t)args[3]->tcps_state;

/*
	 * tcplsinfo_t *
	 */
	this->from_state = (int32_t)args[5]->tcps_state;

/* flow = "[from state]->[to state]" */
	this->flow = strjoin(tcpstate[this->from_state],
		strjoin("->", tcpstate[this->to_state]));
}

tcp:::send, tcp:::receive /* pribe ID $(( $ID + 3 )) */
{${TRACE:+
	printf("<$(( $ID + 3 ))>");}
	this->length = (uint32_t)args[2]->ip_plength -
		(uint8_t)args[4]->tcp_offset;

/* details = " <length> byte<s>" */
	this->details = strjoin(
		strjoin(" ", lltostr(this->length)),
		strjoin(" byte", this->length == 1 ? "" : "s"));
}
EOF
ACTIONS=$( cat <&9 )
ID=$(( $ID + 4 ))

############################################################ EVENT DETAILS

if [ ! "$CUSTOM_DETAILS" ]; then
exec 9<<EOF
	/*
	 * Print details
	 */
	printf("%s:%u %s %s:%u%s",
		this->local, this->lport,
		this->flow,
		this->remote, this->rport,
		this->details);
EOF
EVENT_DETAILS=$( cat <&9 )
fi

################################################################################
# END
################################################################################

003 File Manager

Editing: tcp-init

Upload File

Create Folder