void sinsp::init()
{
//
// Retrieve machine information
//
m_machine_info = scap_get_machine_info(m_h);
if(m_machine_info != NULL)
{
m_num_cpus = m_machine_info->num_cpus;
}
else
{
ASSERT(false);
m_num_cpus = 0;
}
//
// Reset the thread manager
//
m_thread_manager->clear();
//
// Basic inits
//
#ifdef GATHER_INTERNAL_STATS
m_stats.clear();
#endif
m_tid_to_remove = -1;
m_lastevent_ts = 0;
#ifdef HAS_FILTERING
m_firstevent_ts = 0;
#endif
m_fds_to_remove->clear();
m_n_proc_lookups = 0;
import_ifaddr_list();
import_thread_table();
import_user_list();
#ifdef HAS_ANALYZER
//
// Notify the analyzer that we're starting
//
if(m_analyzer)
{
m_analyzer->on_capture_start();
}
#endif
//
// If m_snaplen was modified, we set snaplen now
//
if (m_snaplen != DEFAULT_SNAPLEN)
{
set_snaplen(m_snaplen);
}
}
void sinsp::init()
{
//
// Retrieve machine information
//
m_machine_info = scap_get_machine_info(m_h);
if(m_machine_info != NULL)
{
m_num_cpus = m_machine_info->num_cpus;
}
else
{
ASSERT(false);
m_num_cpus = 0;
}
//
// Attach the protocol decoders
//
add_protodecoders();
//
// Allocate the cycle writer
//
m_cycle_writer = new cycle_writer();
//
// Basic inits
//
#ifdef GATHER_INTERNAL_STATS
m_stats.clear();
#endif
m_tid_to_remove = -1;
m_lastevent_ts = 0;
#ifdef HAS_FILTERING
m_firstevent_ts = 0;
#endif
m_fds_to_remove->clear();
m_n_proc_lookups = 0;
m_n_proc_lookups_duration_ns = 0;
if(m_islive == false)
{
import_thread_table();
}
import_ifaddr_list();
import_user_list();
//
// Scan the list to create the proper parent/child dependencies
//
m_thread_manager->create_child_dependencies();
//
// Scan the list to fix the direction of the sockets
//
m_thread_manager->fix_sockets_coming_from_proc();
#ifdef HAS_ANALYZER
//
// Notify the analyzer that we're starting
//
if(m_analyzer)
{
m_analyzer->on_capture_start();
}
#endif
//
// If m_snaplen was modified, we set snaplen now
//
if(m_snaplen != DEFAULT_SNAPLEN)
{
set_snaplen(m_snaplen);
}
#if defined(HAS_CAPTURE)
if(m_islive)
{
if(scap_getpid_global(m_h, &m_sysdig_pid) != SCAP_SUCCESS)
{
ASSERT(false);
}
}
#endif
}
void sinsp::init()
{
//
// Retrieve machine information
//
m_machine_info = scap_get_machine_info(m_h);
if(m_machine_info != NULL)
{
m_num_cpus = m_machine_info->num_cpus;
}
else
{
ASSERT(false);
m_num_cpus = 0;
}
//
// Attach the protocol decoders
//
#ifndef HAS_ANALYZER
add_protodecoders();
#endif
//
// Allocate the cycle writer
//
if(m_cycle_writer)
{
delete m_cycle_writer;
m_cycle_writer = NULL;
}
m_cycle_writer = new cycle_writer(this->is_live());
//
// Basic inits
//
#ifdef GATHER_INTERNAL_STATS
m_stats.clear();
#endif
m_nevts = 0;
m_tid_to_remove = -1;
m_lastevent_ts = 0;
#ifdef HAS_FILTERING
m_firstevent_ts = 0;
#endif
m_fds_to_remove->clear();
m_n_proc_lookups = 0;
m_n_proc_lookups_duration_ns = 0;
//
// Return the tracers to the pool and clear the tracers list
//
for(auto it = m_partial_tracers_list.begin(); it != m_partial_tracers_list.end(); ++it)
{
m_partial_tracers_pool->push(*it);
}
m_partial_tracers_list.clear();
//
// If we're reading from file, we try to pre-parse the container events before
// importing the thread table, so that thread table filtering will work with
// container filters
//
if(m_islive == false)
{
uint64_t off = scap_ftell(m_h);
scap_evt* pevent;
uint16_t pcpuid;
uint32_t ncnt = 0;
//
// Count how many container events we have
//
while(true)
{
int32_t res = scap_next(m_h, &pevent, &pcpuid);
if(res == SCAP_SUCCESS)
{
if((pevent->type != PPME_CONTAINER_E) && (pevent->type != PPME_CONTAINER_JSON_E))
{
break;
}
else
{
ncnt++;
continue;
}
}
else
{
break;
}
}
//
// Rewind and consume the exact number of events
//
scap_fseek(m_h, off);
for(uint32_t j = 0; j < ncnt; j++)
{
sinsp_evt* tevt;
next(&tevt);
}
}
if(m_islive == false || m_filter_proc_table_when_saving == true)
{
import_thread_table();
}
import_ifaddr_list();
import_user_list();
//
// Scan the list to create the proper parent/child dependencies
//
m_thread_manager->create_child_dependencies();
//
// Scan the list to fix the direction of the sockets
//
m_thread_manager->fix_sockets_coming_from_proc();
#ifdef HAS_ANALYZER
//
// Notify the analyzer that we're starting
//
if(m_analyzer)
{
m_analyzer->on_capture_start();
}
#endif
//
// If m_snaplen was modified, we set snaplen now
//
if(m_snaplen != DEFAULT_SNAPLEN)
{
set_snaplen(m_snaplen);
}
#if defined(HAS_CAPTURE)
if(m_islive)
{
if(scap_getpid_global(m_h, &m_sysdig_pid) != SCAP_SUCCESS)
{
ASSERT(false);
}
}
#endif
}
