user350556
Reputation: 107
is there some way to view the stack of a particular process?
I want to view the stack of a particular process in linux. It could be any process. I know that GDB could help, but I guess you need the source code to analyse the output.
Upvotes: 1
Views: 873
Answers (1)
Evan Teran
Reputation: 90463
The only way to do it is with either a debugger or the debugging API (ptrace for linux).
Basically what you want to do is:
- attach to the process (
PTRACE_ATTACH) - get the thread context (
PTRACE_GETREGS) - from the thread context get the value of the stack pointer (likely
esporrsp) - read memory from the process using ptrace, starting at the address of the stack pointer (
PTRACE_PEEKDATAor/proc/<pid>/mem) - detach from the process (
PTRACT_DETACH)
From there, the analysis is pretty much up to you. You may want to check out my debugger edb. For more details, of course you should man ptrace
Upvotes: 2
Related Questions
- What's the linux command to get the stack of a running process without having to attach to it in a debugger?
- How can I examine the stack frame with GDB?
- print all threads stack trace of a process in c/c++ on linux platform
- How can I see the kernel stack function of a specific thread?
- Is there a Linux command to print the current stack of a running Java process
- How to get the call stack of a specified process which run on user space in android?
- access a process's kernel stack given process id in kernel debugging
- what are the commands to identify a process stack?
- See the stack of a process or what files and assemblies is calling or using
- Get stack backtrace of a running process