dtrace_kernel Privilege - Oracle® Solaris 11.2 Dynamic Tracing Guide

Oracle^® Solaris 11.2 Dynamic Tracing Guide

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Oracle^® Solaris 11.2 Dynamic ... » Security » dtrace_kernel Privilege

Updated: July 2014

Oracle^® Solaris 11.2 Dynamic Tracing Guide

Document Information

Using This Documentation

Chapter 1 About DTrace

Chapter 2 D Programming Language

Chapter 3 Aggregations

Chapter 4 Actions and Subroutines

Chapter 5 Buffers and Buffering

Chapter 6 Output Formatting

Chapter 7 Speculative Tracing

Chapter 8 dtrace(1M) Utility

Chapter 9 Scripting

Chapter 10 Options and Tunables

Chapter 11 Providers

Chapter 12 User Process Tracing

Chapter 13 Statically Defined Tracing for User Applications

Chapter 14 Security

Privileged Use of DTrace

dtrace_proc Privilege

dtrace_user Privilege

dtrace_kernel Privilege

Super User Privileges

Chapter 15 Anonymous Tracing

Chapter 16 Postmortem Tracing

Chapter 17 Performance Considerations

Chapter 18 Stability

Chapter 19 Translators

Chapter 20 Versioning

Language:

`dtrace_kernel` Privilege

The dtrace_kernel privilege permits the use of every provider except for the use of the pid and fasttrap providers on processes not owned by the user. This privilege also permits the use of all actions and variables except for kernel destructive actions (breakpoint, panic, chill). This privilege permits complete visibility into kernel and user state. The facilities enabled by the dtrace_user privilege are a strict subset of those enabled by dtrace_kernel.

Providers	All with above restrictions
Actions	All but destructive actions
Variables	All
Address Spaces	User	Kernel

Note - All functionalities of DTrace are not available if you are running DTrace in a non-global zone. For more information, see Running DTrace in a Non-Global Zone in Creating and Using Oracle Solaris Zones .

Copyright © 2011, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices