libs/newlib-cygwin
libs
/
newlib-cygwin
mirror of git://sourceware.org/git/newlib-cygwin.git
4
0
Fork 0
Code Issues Projects Releases Wiki Activity

* ssp.c: new 

* ssp.txt: new
* Makefile.in: build ssp.exe
This commit is contained in:
DJ Delorie 2000-10-19 02:13:52 +00:00
parent 4b70969a08
commit cc55c579a3
4 changed files with 934 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
winsup/utils/ChangeLog
View File

@ -1,3 +1,9 @@
2000-10-18 DJ Delorie <dj@redhat.com>
* ssp.c: new
* ssp.txt: new
* Makefile.in: build ssp.exe
Wed Oct 18 18:57:46 2000 Christopher Faylor <cgf@cygnus.com> Wed Oct 18 18:57:46 2000 Christopher Faylor <cgf@cygnus.com>
* ps.cc (main): Add some extra space to Windows pid output for * ps.cc (main): Add some extra space to Windows pid output for

2
winsup/utils/Makefile.in
View File

@ -70,7 +70,7 @@ DUMPER_LDFLAGS:=$(ALL_LDFLAGS) $(DUMPER_LIB)
PROGS:=mount$(EXEEXT) umount$(EXEEXT) ps$(EXEEXT) kill$(EXEEXT) \ PROGS:=mount$(EXEEXT) umount$(EXEEXT) ps$(EXEEXT) kill$(EXEEXT) \
mkpasswd$(EXEEXT) mkgroup$(EXEEXT) cygpath$(EXEEXT) cygcheck$(EXEEXT) \ mkpasswd$(EXEEXT) mkgroup$(EXEEXT) cygpath$(EXEEXT) cygcheck$(EXEEXT) \
passwd$(EXEEXT) getfacl$(EXEEXT) setfacl$(EXEEXT) strace$(EXEEXT) \ passwd$(EXEEXT) getfacl$(EXEEXT) setfacl$(EXEEXT) strace$(EXEEXT) \
regtool$(EXEEXT) regtool$(EXEEXT) ssp$(EXEEXT)
CLEAN_PROGS:=$(PROGS) CLEAN_PROGS:=$(PROGS)
ifdef build_dumper ifdef build_dumper

802
winsup/utils/ssp.c Normal file
View File

@ -0,0 +1,802 @@
/*
* Copyright (c) 2000, Red Hat, Inc.
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* A copy of the GNU General Public License can be found at
* http://www.gnu.org/
*
* Written by DJ Delorie <dj@redhat.com>
*
*/
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
#include <fcntl.h>
#include <time.h>
#include <ctype.h>
#include <windows.h>
#ifdef __GNUC__
const char *help_text = "
Usage: ssp [options] low_pc high_pc command...
The SSP is a `single-step profiler' - it uses the debug API to
single-step your program, noting *everything* your program runs, not
just random places hit by random timer interrupts. You must specify
the range of EIP values to profile. For example, you could profile
just a function, or just a line of code, or the whole thing.
Use \"objdump -h\" to find the start of .text and the section following
it; this is what you want.
There are many options to ssp. Since step-profiling makes your
program run about 1,000 times slower than normal, it's best to
understand all the options so that you can narrow down the parts
of your program you need to single-step.
-v = verbose messages about debug events.
-d, -e = disable/enable single-stepping by default. Use
OutputDebugString (\"ssp on\") to enable stepping, or \"ssp off\" to
disable it. Thus, you can profile a single function call or block.
-t = trace every EIP value to a file TRACE.SSP. This gets big *fast*.
Use \"addr2line -C -f -s -e foo.exe < trace.ssp > lines.ssp\" and then
\"perl cvttrace\" to convert to symbolic traces.
-tc = trace every EIP value to the console. *Lots* slower.
-s = trace sub-threads too. Dangerous if you have race conditions.
-dll = enable dll profiling. A chart of relative DLL usage is
produced after the run.
Examples:
ssp 0x401000 0x403000 hello.exe
ssp -v -d -dll 0x401000 0x440000 foo.exe
The output is a file \"gmon.out\" that can be read with gprof:
gprof -b foo.exe
See ssp.txt in the cygwin sources for more information.
";
#else
char *help_text = "Usage: get cygwin!\n";
#endif
#define KERNEL_ADDR 0x77000000
#define TRACE_SSP 0
#define VERBOSE 1
#define TIMES 1000
/* from winsup/gmon.h */
struct gmonhdr {
unsigned long lpc; /* base pc address of sample buffer */
unsigned long hpc; /* max pc address of sampled buffer */
int ncnt; /* size of sample buffer (plus this header) */
int version; /* version number */
int profrate; /* profiling clock rate */
int spare[3]; /* reserved */
};
#define GMONVERSION 0x00051879
#define HISTCOUNTER unsigned short
typedef struct {
unsigned int base_address;
int pcount;
int scount;
char *name;
} DllInfo;
typedef struct {
unsigned int address;
unsigned char real_byte;
} PendingBreakpoints;
int low_pc=0, high_pc=0;
unsigned int last_pc=0, pc, last_sp=0, sp;
int total_cycles, count;
char *cmd_line;
HANDLE hProcess;
PROCESS_INFORMATION procinfo;
STARTUPINFO startup;
CONTEXT context;
HISTCOUNTER *hits=0;
struct gmonhdr hdr;
int running = 1, profiling = 1;
char dll_name[1024], *dll_ptr, *cp;
int eip;
unsigned opcode_count = 0;
int stepping_enabled = 1;
int tracing_enabled = 0;
int trace_console = 0;
int trace_all_threads = 0;
int dll_counts = 0;
int verbose = 0;
#define MAXTHREADS 100
int active_thread_ids[MAXTHREADS];
HANDLE active_threads[MAXTHREADS];
int thread_step_flags[MAXTHREADS];
int thread_return_address[MAXTHREADS];
int num_active_threads = 0;
int suspended_count=0;
#define MAXDLLS 100
DllInfo dll_info[MAXDLLS];
int num_dlls=0;
#define MAXPENDS 100
PendingBreakpoints pending_breakpoints[MAXPENDS];
int num_breakpoints=0;
static void
add_breakpoint (unsigned int address)
{
int i;
DWORD rv;
static char int3[] = { 0xcc };
for (i=0; i<num_breakpoints; i++)
{
if (pending_breakpoints[i].address == address)
return;
if (pending_breakpoints[i].address == 0)
break;
}
if (i == MAXPENDS)
return;
pending_breakpoints[i].address = address;
ReadProcessMemory (hProcess,
(void *)address,
&(pending_breakpoints[i].real_byte),
1, &rv);
WriteProcessMemory (hProcess,
(void *)address,
(LPVOID)int3, 1, &rv);
if (i >= num_breakpoints)
num_breakpoints = i+1;
}
static int
remove_breakpoint (unsigned int address)
{
int i;
DWORD rv;
for (i=0; i<num_breakpoints; i++)
{
if (pending_breakpoints[i].address == address)
{
pending_breakpoints[i].address = 0;
WriteProcessMemory (hProcess,
(void *)address,
&(pending_breakpoints[i].real_byte),
1, &rv);
return 1;
}
}
return 0;
}
static HANDLE
lookup_thread_id (int threadId, int *tix)
{
int i;
for (i=0; i<num_active_threads; i++)
if (active_thread_ids[i] == threadId)
{
if (tix) *tix = i;
return active_threads[i];
}
return 0;
}
static void
set_step_threads (int threadId, int trace)
{
int rv, tix;
HANDLE thread = lookup_thread_id (threadId, &tix);
rv = GetThreadContext (thread, &context);
if (rv != -1)
{
thread_step_flags[tix] = trace;
if (trace)
context.EFlags |= 0x100; /* TRAP (single step) flag */
else
context.EFlags &= ~0x100; /* TRAP (single step) flag */
SetThreadContext (thread, &context);
}
}
static void
set_steps ()
{
int i, s;
for (i=0; i<num_active_threads; i++)
{
GetThreadContext (active_threads[i], &context);
s = context.EFlags & 0x0100;
if (!s && thread_step_flags[i])
{
set_step_threads (active_thread_ids[i], 1);
}
}
}
static int
dll_sort (const void *va, const void *vb)
{
DllInfo *a = (DllInfo *)va;
DllInfo *b = (DllInfo *)vb;
if (a->base_address < b->base_address)
return -1;
return 1;
}
static char *
addr2dllname (unsigned int addr)
{
int i;
for (i=num_dlls-1; i>=0; i--)
{
if (dll_info[i].base_address < addr)
{
return dll_info[i].name;
}
}
return (char *)"";
}
static void
dump_registers (HANDLE thread)
{
context.ContextFlags = CONTEXT_FULL;
GetThreadContext (thread, &context);
printf ("eax %08lx ebx %08lx ecx %08lx edx %08lx eip\n",
context.Eax, context.Ebx, context.Ecx, context.Edx);
printf ("esi %08lx edi %08lx ebp %08lx esp %08lx %08lx\n",
context.Esi, context.Esi, context.Ebp, context.Esp, context.Eip);
}
typedef struct Edge {
struct Edge *next;
unsigned int from_pc;
unsigned int to_pc;
unsigned int count;
} Edge;
Edge *edges[4096];
void
store_call_edge (unsigned int from_pc, unsigned int to_pc)
{
Edge *e;
unsigned int h = ((from_pc + to_pc)>>4) & 4095;
for (e=edges[h]; e; e=e->next)
if (e->from_pc == from_pc && e->to_pc == to_pc)
break;
if (!e)
{
e = (Edge *)malloc (sizeof (Edge));
e->next = edges[h];
edges[h] = e;
e->from_pc = from_pc;
e->to_pc = to_pc;
e->count = 0;
}
e->count++;
}
void
write_call_edges (FILE *f)
{
int h;
Edge *e;
for (h=0; h<4096; h++)
for (e=edges[h]; e; e=e->next)
fwrite (&(e->from_pc), 1, 3*sizeof (unsigned int), f);
}
char *
wide_strdup (char *cp)
{
unsigned short *s = (unsigned short *)cp;
int len;
char *rv;
for (len=0; s[len]; len++);
rv = (char *)malloc (len+1);
for (len=0; s[len]; len++)
rv[len] = s[len];
rv[len] = 0;
return rv;
}
void
run_program (char *cmdline)
{
FILE *tracefile = 0;
int tix, i;
HANDLE hThread;
char *string;
memset (&startup, 0, sizeof (startup));
startup.cb = sizeof (startup);
if (!CreateProcess (0, cmd_line, 0, 0, 0,
CREATE_NEW_PROCESS_GROUP
| CREATE_SUSPENDED
| DEBUG_PROCESS
| DEBUG_ONLY_THIS_PROCESS,
0, 0, &startup, &procinfo))
{
fprintf (stderr, "Can't create process: error %ld\n", GetLastError ());
exit (1);
}
hProcess = procinfo.hProcess;
#if 0
printf ("procinfo: %08x %08x %08x %08x\n",
hProcess, procinfo.hThread, procinfo.dwProcessId, procinfo.dwThreadId);
#endif
active_threads[0] = procinfo.hThread;
active_thread_ids[0] = procinfo.dwThreadId;
thread_step_flags[0] = stepping_enabled;
num_active_threads = 1;
dll_info[0].base_address = 0;
dll_info[0].pcount = 0;
dll_info[0].scount = 0;
dll_info[0].name = cmd_line;
num_dlls = 1;
SetThreadPriority (procinfo.hThread, THREAD_PRIORITY_IDLE);
context.ContextFlags = CONTEXT_FULL;
ResumeThread (procinfo.hThread);
total_cycles = 0;
if (tracing_enabled)
{
tracefile = fopen ("trace.ssp", "w");
if (!tracefile)
{
tracing_enabled = 0;
perror ("trace.ssp");
}
}
running = 1;
while (running)
{
int src, dest;
DWORD rv;
DEBUG_EVENT event;
int contv = DBG_CONTINUE;
event.dwDebugEventCode = -1;
if (!WaitForDebugEvent (&event, INFINITE))
{
printf ("idle...\n");
}
hThread = lookup_thread_id (event.dwThreadId, &tix);
#if 0
printf ("DE: %x/%d %d %d ",
hThread, tix,
event.dwDebugEventCode, num_active_threads);
for (src=0; src<num_active_threads; src++)
{
int sc = SuspendThread (active_threads[src]);
int rv = GetThreadContext (active_threads[src], &context);
ResumeThread (active_threads[src]);
printf (" [%x,%x,%x]",
active_threads[src], context.Eip, active_thread_ids[src]);
}
printf ("\n");
#endif
switch (event.dwDebugEventCode)
{
case CREATE_PROCESS_DEBUG_EVENT:
break;
case CREATE_THREAD_DEBUG_EVENT:
if (verbose)
printf ("create thread %08lx at %08x %s\n",
event.dwThreadId,
(int)event.u.CreateThread.lpStartAddress,
addr2dllname ((unsigned int)event.u.CreateThread.lpStartAddress));
active_thread_ids[num_active_threads] = event.dwThreadId;
active_threads[num_active_threads] = event.u.CreateThread.hThread;
thread_return_address[num_active_threads] = 0;
num_active_threads++;
if (trace_all_threads && stepping_enabled)
{
thread_step_flags[num_active_threads-1] = stepping_enabled;
add_breakpoint ((int)event.u.CreateThread.lpStartAddress);
}
break;
case EXIT_THREAD_DEBUG_EVENT:
if (verbose)
printf ("exit thread %08lx, code=%ld\n",
event.dwThreadId,
event.u.ExitThread.dwExitCode);
for (src=0, dest=0; src<num_active_threads; src++)
if (active_thread_ids[src] != event.dwThreadId)
{
active_thread_ids[dest] = active_thread_ids[src];
active_threads[dest] = active_threads[src];
dest++;
}
num_active_threads = dest;
break;
case EXCEPTION_DEBUG_EVENT:
rv = GetThreadContext (hThread, &context);
switch (event.u.Exception.ExceptionRecord.ExceptionCode)
{
case STATUS_BREAKPOINT:
if (remove_breakpoint ((int)event.u.Exception.ExceptionRecord.ExceptionAddress))
{
context.Eip --;
if (rv != -1)
SetThreadContext (hThread, &context);
if (ReadProcessMemory (hProcess, (void *)context.Esp, &rv, 4, &rv))
thread_return_address[tix] = rv;
}
set_step_threads (event.dwThreadId, stepping_enabled);
case STATUS_SINGLE_STEP:
opcode_count++;
pc = (unsigned int)event.u.Exception.ExceptionRecord.ExceptionAddress;
sp = (unsigned int)context.Esp;
if (tracing_enabled)
fprintf (tracefile, "%08x %08lx\n", pc, event.dwThreadId);
if (trace_console)
{
printf ("%d %08x\n", tix, pc);
fflush (stdout);
}
if (dll_counts)
{
int i;
for (i=num_dlls-1; i>=0; i--)
{
if (dll_info[i].base_address < context.Eip)
{
if (hThread == procinfo.hThread)
dll_info[i].pcount++;
else
dll_info[i].scount++;
break;
}
}
}
if (pc < last_pc || pc > last_pc+10)
{
static int ncalls=0;
static int qq=0;
if (++qq % 100 == 0)
fprintf (stderr, " %08x %d %d \r",
pc, ncalls, opcode_count);
if (sp == last_sp-4)
{
ncalls++;
store_call_edge (last_pc, pc);
if (last_pc < KERNEL_ADDR && pc > KERNEL_ADDR)
{
int retaddr;
DWORD rv;
ReadProcessMemory (hProcess,
(void *)sp,
(LPVOID)&(retaddr),
4, &rv);
#if 0
printf ("call last_pc = %08x pc = %08x rv = %08x\n",
last_pc, pc, retaddr);
/* experimental - try to skip kernel calls for speed */
add_breakpoint (retaddr);
set_step_threads (event.dwThreadId, 0);
#endif
}
}
}
total_cycles++;
last_sp = sp;
last_pc = pc;
if (pc >= low_pc && pc < high_pc)
hits[(pc - low_pc)/2] ++;
break;
default:
if (verbose)
{
printf ("exception %ld, ", event.u.Exception.dwFirstChance);
printf ("code: %lx flags: %lx\n",
event.u.Exception.ExceptionRecord.ExceptionCode,
event.u.Exception.ExceptionRecord.ExceptionFlags);
if (event.u.Exception.dwFirstChance == 1)
dump_registers (hThread);
}
contv = DBG_EXCEPTION_NOT_HANDLED;
running = 0;
break;
}
if (rv != -1)
{
if (pc == thread_return_address[tix])
{
if (context.EFlags & 0x100)
{
context.EFlags &= ~0x100; /* TRAP (single step) flag */
SetThreadContext (hThread, &context);
}
}
else if (stepping_enabled)
{
if (!(context.EFlags & 0x100))
{
context.EFlags |= 0x100; /* TRAP (single step) flag */
SetThreadContext (hThread, &context);
}
}
}
break;
case OUTPUT_DEBUG_STRING_EVENT:
string = (char *)malloc (event.u.DebugString.nDebugStringLength+1);
i = ReadProcessMemory (hProcess,
event.u.DebugString.lpDebugStringData,
(LPVOID)string,
event.u.DebugString.nDebugStringLength,
&rv);
if (!i)
{
printf ("error reading memory: %ld %ld\n", rv, GetLastError ());
}
if (verbose)
printf ("ODS: %x/%d \"%s\"\n",
(int)hThread, tix, string);
if (strcmp (string, "ssp on") == 0)
{
stepping_enabled = 1;
set_step_threads (event.dwThreadId, 1);
}
if (strcmp (string, "ssp off") == 0)
{
stepping_enabled = 0;
set_step_threads (event.dwThreadId, 0);
}
break;
case LOAD_DLL_DEBUG_EVENT:
if (verbose)
printf ("load dll %08x:",
(int)event.u.LoadDll.lpBaseOfDll);
dll_ptr = (char *)"( u n k n o w n ) \0\0";
if (event.u.LoadDll.lpImageName)
{
ReadProcessMemory (hProcess,
event.u.LoadDll.lpImageName,
(LPVOID)&src,
sizeof (src),
&rv);
if (src)
{
ReadProcessMemory (hProcess,
(void *)src,
(LPVOID)dll_name,
sizeof (dll_name),
&rv);
dll_name[rv] = 0;
dll_ptr = dll_name;
for (cp=dll_name; *cp; cp++)
{
if (*cp == '\\' || *cp == '/')
{
dll_ptr = cp+1;
}
*cp = tolower (*cp);
}
}
}
dll_info[num_dlls].base_address
= (unsigned int)event.u.LoadDll.lpBaseOfDll;
dll_info[num_dlls].pcount = 0;
dll_info[num_dlls].scount = 0;
dll_info[num_dlls].name = wide_strdup (dll_ptr);
if (verbose)
printf (" %s\n", dll_info[num_dlls].name);
num_dlls++;
qsort (dll_info, num_dlls, sizeof (DllInfo), dll_sort);
break;
case UNLOAD_DLL_DEBUG_EVENT:
if (verbose)
printf ("unload dll\n");
break;
case EXIT_PROCESS_DEBUG_EVENT:
if (verbose)
printf ("process %08lx %08lx exit %ld\n",
event.dwProcessId, event.dwThreadId,
event.u.ExitProcess.dwExitCode);
running = 0;
break;
}
set_steps ();
ContinueDebugEvent (event.dwProcessId, event.dwThreadId, contv);
}
count = 0;
for (pc=low_pc; pc<high_pc; pc+=2)
{
count += hits[(pc - low_pc)/2];
}
printf ("total cycles: %d, counted cycles: %d\n", total_cycles, count);
if (tracing_enabled)
fclose (tracefile);
}
#define WHITE(s) while (isspace (*s)) s++
int
main (int argc, char **argv)
{
int i, n;
int total_pcount, total_scount;
FILE *gmon;
setbuf (stdout, 0);
cmd_line = GetCommandLine ();
/* strip off the program part */
n = sscanf (cmd_line, "%*s%n", &i);
cmd_line += i;
WHITE (cmd_line);
/* parse arguments. Ugly, but we need to preserve the tail of the line */
while (*cmd_line == '-')
{
char opt[100];
n = sscanf (cmd_line, " %s%n", opt, &i);
cmd_line += i;
WHITE (cmd_line);
if (strcmp (opt, "-d") == 0)
{
printf ("stepping disabled; enable via OutputDebugString (\"ssp on\")\n");
stepping_enabled = 0;
}
if (strcmp (opt, "-e") == 0)
{
printf ("stepping enabled; disable via OutputDebugString (\"ssp off\")\n");
stepping_enabled = 1;
}
if (strcmp (opt, "-t") == 0)
{
printf ("tracing all $eip to trace.ssp\n");
tracing_enabled = 1;
}
if (strcmp (opt, "-tc") == 0)
{
printf ("tracing *all* $eip to the console\n");
trace_console = 1;
}
if (strcmp (opt, "-s") == 0)
{
printf ("tracing all sub-threads too, not just the main one\n");
trace_all_threads = 1;
}
if (strcmp (opt, "-dll") == 0)
{
printf ("profiling dll usage\n");
dll_counts = 1;
}
if (strcmp (opt, "-v") == 0)
{
printf ("verbose messages enabled\n");
verbose = 1;
}
}
n = sscanf (cmd_line, " %i %i %n", &low_pc, &high_pc, &i);
if (n < 2)
{
fputs (help_text, stderr);
exit (1);
}
cmd_line += i;
if (low_pc > high_pc-8)
{
fprintf (stderr, "Hey, low_pc must be lower than high_pc\n");
exit (1);
}
hits = (HISTCOUNTER *)malloc (high_pc-low_pc+4);
memset (hits, 0, high_pc-low_pc+4);
fprintf (stderr, "prun: [%08x,%08x] Running `%s'\n",
low_pc, high_pc, cmd_line);
run_program (cmd_line);
hdr.lpc = low_pc;
hdr.hpc = high_pc;
hdr.ncnt = high_pc-low_pc + sizeof (hdr);
hdr.version = GMONVERSION;
hdr.profrate = 100;
gmon = fopen ("gmon.out", "wb");
fwrite (&hdr, 1, sizeof (hdr), gmon);
fwrite (hits, 1, high_pc-low_pc, gmon);
write_call_edges (gmon);
fclose (gmon);
if (dll_counts)
{
/* 1234567 123% 1234567 123% 12345678 xxxxxxxxxxx */
printf (" Main-Thread Other-Thread BaseAddr DLL Name\n");
total_pcount = 0;
total_scount = 0;
for (i=0; i<num_dlls; i++)
{
total_pcount += dll_info[i].pcount;
total_scount += dll_info[i].scount;
}
if (total_pcount == 0) total_pcount++;
if (total_scount == 0) total_scount++;
for (i=0; i<num_dlls; i++)
if (dll_info[i].pcount || dll_info[i].scount)
{
printf ("%7d %3d%% %7d %3d%% %08x %s\n",
dll_info[i].pcount,
(dll_info[i].pcount*100)/opcode_count,
dll_info[i].scount,
(dll_info[i].scount*100)/opcode_count,
dll_info[i].base_address,
dll_info[i].name);
}
}
exit (0);
}

125
winsup/utils/ssp.txt Normal file
View File

@ -0,0 +1,125 @@
SSP - The Single Step Profiler
Original Author: DJ Delorie <dj@redhat.com>
The SSP is a program that uses the Win32 debug API to run a program
one ASM instruction at a time. It records the location of each
instruction used, how many times that instruction is used, and all
function calls. The results are saved in a format that is usable by
the profiling program "gprof", although gprof will claim the values
are seconds, they really are instruction counts. More on that later.
Because the SSP was originally designed to profile the cygwin DLL, it
does not automatically select a block of code to report statistics on.
You must specify the range of memory addresses to keep track of
manually, but it's not hard to figure out what to specify. Use the
"objdump" program to determine the bounds of the target's ".text"
section. Let's say we're profiling cygwin1.dll. Make sure you've
built it with debug symbols (else gprof won't run) and run objdump
like this:
objdump -h cygwin1.dll
It will print a report like this:
cygwin1.dll: file format pei-i386
Sections:
Idx Name Size VMA LMA File off Algn
0 .text 0007ea00 61001000 61001000 00000400 2**2
CONTENTS, ALLOC, LOAD, READONLY, CODE, DATA
1 .data 00008000 61080000 61080000 0007ee00 2**2
CONTENTS, ALLOC, LOAD, DATA
. . .
The only information we're concerned with are the VMA of the .text
section and the VMA of the section after it (sections are usually
contiguous; you can also add the Size to the VMA to get the end
address). In this case, the VMA is 0x61001000 and the ending address
is either 0x61080000 (start of .data method) or 0x0x6107fa00 (VMA+Size
method).
There are two basic ways to use SSP - either profiling a whole
program, or selectively profiling parts of the program.
To profile a whole program, just run ssp without options. By default,
it will step the whole program. Here's a simple example, using the
numbers above:
ssp 0x61001000 0x61080000 hello.exe
This will step the whole program. It will take at least 8 minutes on
a PII/300 (yes, really). When it's done, it will create a file called
"gmon.out". You can turn this data file into a readable report with
gprof:
gprof -b cygwin1.dll
The "-b" means "skip the help pages". You can omit this until you're
familiar with the report layout. The gprof documentation explains
a lot about this report, but ssp changes a few things. For example,
the first part of the report reports the amount of time spent in each
function, like this:
Each sample counts as 0.01 seconds.
% cumulative self self total
time seconds seconds calls ms/call ms/call name
10.02 231.22 72.43 46 1574.57 1574.57 strcspn
7.95 288.70 57.48 130 442.15 442.15 strncasematch
The "seconds" columns are really CPU opcodes, 1/100 second per opcode.
So, "231.22" above means 23,122 opcodes. The ms/call values are 10x
too big; 1574.57 means 157.457 opcodes per call. Similar adjustments
need to be made for the "self" and "children" columns in the second
part of the report.
OK, so now we've got a huge report that took a long time to generate,
and we've identified a spot we want to work on optimizing. Let's say
it's the time() function. We can use SSP to selectively profile this
function by using OutputDebugString() to control SSP from within the
program. Here's a sample program:
#include <windows.h>
main()
{
time_t t;
OutputDebugString("ssp on");
time(&t);
OutputDebugString("ssp off");
}
Then, add the "-d" option to ssp to default to *disabling* profiling.
The program will run at full speed until the first OutputDebugString,
then step until the second.
ssp -d 0x61001000 0x61080000 hello.exe
You can then use gprof (as usual) to see the performance profile for
just that portion of the program's execution.
OK, now for the other ssp options, and when to use them:
"-v" - verbose. This prints messages about threads starting and
stopping, OutputDebugString calls, DLLs loading, etc.
"-t" and "-tc" - tracing. With -t, *every* step's address is written
to the file "trace.ssp". This can be used to help debug functions,
since it can trace multiple threads. Clever use of scripts can match
addresses with disassembled opcodes if needed. Warning: creates
*huge* files, very quickly. "-tc" prints each address to the console,
useful for debugging key chunks of assembler.
"-s" - subthreads. Usually, you only need to trace the main thread,
but sometimes you need to trace all threads, so this enables that.
It's also needed when you want to profile a function that only a
subthread calls. However, using OutputDebugString automatically
enables profiling on the thread that called it, not the main thread.
"-dll" - dll profiling. Generates a pretty table of how much time was
spent in each dll the program used. No sense optimizing a function in
your program if most of the time is spent in the DLL.
I usually use the -v, -s, and -dll options:
ssp -v -s -dll -d 0x61001000 0x61080000 hello.exe