(14 intermediate revisions by 2 users not shown) | |||
Line 12: | Line 12: | ||
== Current status == | == Current status == | ||
* Targeted release: Fedora 18 | * Targeted release: Fedora 18 | ||
* Last updated: 2012- | * Last updated: 2012-10-09 | ||
* Percentage of completion: | * Percentage of completion: 100% | ||
* Systemtap 2.0 is built in koji. | |||
== Detailed Description == | == Detailed Description == | ||
Line 30: | Line 31: | ||
== Scope == | == Scope == | ||
Direct impact is limited to this package. However, the '''<sys/sdt.h>''' markers embedded in several Fedora libraries and binaries become accessible to more users than before. | |||
== How To Test == | == How To Test == | ||
Line 45: | Line 46: | ||
== Dependencies == | == Dependencies == | ||
Systemtap upstream needs to release 2.0, though by F18 beta, we could package a pre-release snapshot. | |||
The [http://www.dyninst.org/dyninst DynInst] library is now packaged for Fedora rawhide. | The [http://www.dyninst.org/dyninst DynInst] library is now packaged for Fedora rawhide. | ||
Line 50: | Line 52: | ||
If the pure-userspace work is not completed in time, the then-newest upstream systemtap | If the pure-userspace work is not completed in time, the then-newest upstream systemtap | ||
can be issued for Fedora 18. | can be issued for Fedora 18 (version 1.8, already in fedora-updates), and a later dyninst-capable version would be issued as a future update. | ||
== Documentation == | == Documentation == | ||
TBD. | TBD. | ||
[http://sourceware.org/ml/systemtap/2012-q3/msg00090.html early build/testing instructions] | |||
== Release Notes == | == Release Notes == | ||
"Systemtap 2.0 includes a new prototype backend, which uses DynInst to instrument a user's own binaries at runtime. This optional alternative backend does not use kernel modules, and does not require root privileges, but is restricted with respect to the kinds of probes and other constructs that a script may use." | |||
== Comments and Discussion == | == Comments and Discussion == | ||
* See [[Talk:Features/Systemtap2]] | * See [[Talk:Features/Systemtap2]] | ||
[[Category: | [[Category:FeatureAcceptedF18]] | ||
<!-- When your feature page is completed and ready for review --> | <!-- When your feature page is completed and ready for review --> | ||
<!-- remove Category:FeaturePageIncomplete and change it to Category:FeatureReadyForWrangler --> | <!-- remove Category:FeaturePageIncomplete and change it to Category:FeatureReadyForWrangler --> | ||
<!-- After review, the feature wrangler will move your page to Category:FeatureReadyForFesco... if it still needs more work it will move back to Category:FeaturePageIncomplete--> | <!-- After review, the feature wrangler will move your page to Category:FeatureReadyForFesco... if it still needs more work it will move back to Category:FeaturePageIncomplete--> | ||
<!-- A pretty picture of the page category usage is at: https://fedoraproject.org/wiki/Features/Policy/Process --> | <!-- A pretty picture of the page category usage is at: https://fedoraproject.org/wiki/Features/Policy/Process --> |
Latest revision as of 00:40, 10 October 2012
Feature Name: Systemtap 2.0
Summary
A major new version of systemtap.
Owner
- Name: Frank Ch. Eigler
- Email: fche@redhat.com
Current status
- Targeted release: Fedora 18
- Last updated: 2012-10-09
- Percentage of completion: 100%
- Systemtap 2.0 is built in koji.
Detailed Description
For this next major release of systemtap, the team is hoping to deliver an optional new backend that allows unprivileged users to instrument their programs, without any kernel module building or root privileges.
Benefit to Fedora
Reduction of security attack surface, by less reliance on setuid / kernel facilities. Increased process introspection capability. Higher performance process introspection. Usability by completely unprivileged users.
Scope
Direct impact is limited to this package. However, the <sys/sdt.h> markers embedded in several Fedora libraries and binaries become accessible to more users than before.
How To Test
The packaged testsuite should cover the general capabilities of the tool, to avoid regressions.
User Experience
User experience from prior versions should not change. Completely unprivileged users should become able to instrument their own programs without any kernel- or root-dependent machinations.
Dependencies
Systemtap upstream needs to release 2.0, though by F18 beta, we could package a pre-release snapshot. The DynInst library is now packaged for Fedora rawhide.
Contingency Plan
If the pure-userspace work is not completed in time, the then-newest upstream systemtap can be issued for Fedora 18 (version 1.8, already in fedora-updates), and a later dyninst-capable version would be issued as a future update.
Documentation
TBD. early build/testing instructions
Release Notes
"Systemtap 2.0 includes a new prototype backend, which uses DynInst to instrument a user's own binaries at runtime. This optional alternative backend does not use kernel modules, and does not require root privileges, but is restricted with respect to the kinds of probes and other constructs that a script may use."