blob: 97bd4c20eb2c1e4d7b431fec19f12de256ef34ba (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
.\"
.\" Copyright (c) 2025 Mateusz Piotrowski <0mp@FreeBSD.org>
.\"
.\" SPDX-License-Identifier: BSD-2-Clause
.\"
.Dd November 12, 2025
.Dt DTRACE_PRIV 4
.Os
.Sh NAME
.Nm dtrace_priv
.Nd a DTrace provider for the kernel privilege checking API
.Sh SYNOPSIS
.Nm priv Ns Cm :kernel:priv_check:priv-ok
.Nm priv Ns Cm :kernel:priv_check:priv-err
.Sh DESCRIPTION
The
.Nm priv
provider allows for tracing the
.Xr priv 9
API.
.Pp
The
.Nm priv Ns Cm :kernel:priv_check:priv-ok
probe fires upon a successful kernel privilege check.
.Pp
The
.Nm priv Ns Cm :kernel:priv_check:priv-err
probe fires upon a failed kernel privilege check.
.Pp
The only argument to the
.Nm priv
probes,
.Fa args[0] ,
is the requested privilege number
.Ft int priv .
.Sh EXAMPLES
.Ss Example 1: Tracing Kernel Privilege Check Failures
The following script captures an array of counters,
one for each stack trace leading to a failed kernel privilege check:
.Bd -literal -offset 2n
priv:::priv-err
{
@traces[stack()] = count();
}
.Ed
.Sh SEE ALSO
.Xr dtrace 1 ,
.Xr tracing 7 ,
.Xr priv 9 ,
.Xr SDT 9
.Sh AUTHORS
.An -nosplit
The
.Nm priv
provider was written by
.An Robert N. M. Watson Aq Mt rwatson@FreeBSD.org .
.Pp
This manual page was written by
.An Mateusz Piotrowski Aq Mt 0mp@FreeBSD.org .
|
