GraalVM Insight: Hacker's Handle to the Ultimate Insights Gathering Framework
GraalVM Insight is multipurpose, flexible tool that greatly reduces the effort of writing reliable microservices solutions. The dynamic nature of Insight helps everyone to selectively apply complex tracing pointcuts on already deployed applications running at full speed. Insight further blurs the difference between various DevOps tasks - code once, apply your insights anytime, anywhere!
Any moderately skilled hacker can easily create own so called Insight snippets and dynamically apply them to the actual programs. That provides ultimate insights into execution and behavior of one's application without compromising the speed of the execution. Let's get started with an obligatory Hello World example.
Create a simple source-tracing.js script with following content:
insight.on('source', function(ev) {
print(`Loading ${ev.characters.length} characters from ${ev.name}`);
});launch your GraalVM's bin/node launcher with the --insight instrument and
observe what scripts are being loaded and evaluated:
$ graalvm/bin/node --js.print --insight=source-tracing.js -e "print('The result: ' + 6 * 7)" | tail -n 10
Loading 29938 characters from url.js
Loading 345 characters from internal/idna.js
Loading 12642 characters from punycode.js
Loading 33678 characters from internal/modules/cjs/loader.js
Loading 13058 characters from vm.js
Loading 52408 characters from fs.js
Loading 15920 characters from internal/fs/utils.js
Loading 505 characters from [eval]-wrapper
Loading 29 characters from [eval]
The result: 42What has just happened? GraalVM Insight source-tracing.js script has used
the provided insight object to attach a source listener to the runtime.
As such, whenever the node.js framework loaded a script,
the listener got notified of it and could take an action - in this case
printing the length and name of processed script.
Collecting the insights information isn't limited to simple print statement.
One can perform any Turing complete computation in your language. Imagine
following function-hotness-tracing.js that counts all method invocations
and dumps the most frequent ones when the execution of your program is over:
var map = new Map();
function dumpHotness() {
print("==== Hotness Top 10 ====");
var digits = 3;
Array.from(map.entries()).sort((one, two) => two[1] - one[1]).forEach(function (entry) {
var number = entry[1].toString();
if (number.length >= digits) {
digits = number.length;
} else {
number = Array(digits - number.length + 1).join(' ') + number;
}
if (number > 10) print(`${number} calls to ${entry[0]}`);
});
print("========================");
}
insight.on('enter', function(ev) {
var cnt = map.get(ev.name);
if (cnt) {
cnt = cnt + 1;
} else {
cnt = 1;
}
map.set(ev.name, cnt);
}, {
roots: true
});
insight.on('close', dumpHotness);The map is a global variable visible for the whole Insight script that
allows the code to share data between the insight.on('enter') function and the dumpHotness
function. The latter is executed when the node process execution is over (registered via
insight.on('close', dumpHotness). Invoke as:
$ graalvm/bin/node --js.print --insight=function-hotness-tracing.js -e "print('The result: ' + 6 * 7)"
The result: 42
==== Hotness Top 10 ====
543 calls to isPosixPathSeparator
211 calls to E
211 calls to makeNodeErrorWithCode
205 calls to NativeModule
198 calls to uncurryThis
154 calls to :=>
147 calls to nativeModuleRequire
145 calls to NativeModule.compile
55 calls to internalBinding
53 calls to :anonymous
49 calls to :program
37 calls to getOptionValue
24 calls to copyProps
18 calls to validateString
13 calls to copyPrototype
13 calls to hideStackFrames
13 calls to addReadOnlyProcessAlias
========================Table with names and counts of function invocations is printed out when the
node process exits.
So far the examples used node.js, but the Insight system isn't tight
to Node.js at all - it is available in all the environments GraalVM provides.
Let's try it on bin/js - pure JavaScript implementation that comes with
GraalVM. Let's define function-tracing.js script as:
var count = 0;
var next = 8;
insight.on('enter', function(ev) {
if (count++ % next === 0) {
print(`Just called ${ev.name} as ${count} function invocation`);
next *= 2;
}
}, {
roots: true
});and run it on top of sieve.js - a sample script which uses a variant of the Sieve of Erathostenes to compute one hundred thousand of prime numbers:
$ graalvm/bin/js --insight=function-tracing.js sieve.js | grep -v Computed
Just called :program as 1 function invocation
Just called Natural.next as 17 function invocation
Just called Natural.next as 33 function invocation
Just called Natural.next as 65 function invocation
Just called Natural.next as 129 function invocation
Just called Filter as 257 function invocation
Just called Natural.next as 513 function invocation
Just called Natural.next as 1025 function invocation
Just called Natural.next as 2049 function invocation
Just called Natural.next as 4097 function invocationInsight scripts are ready to be used in any environment - be it the
default node implementation, the lightweight js command line tool -
or your own application that decides to embedd GraalVM scripting
capabilities!
The previous examples were written in JavaScript, but due to the polyglot
nature of GraalVM, we can take the same instrument and use it
in a program written in the Ruby language.
Here is an example - create source-trace.js file:
insight.on('source', function(ev) {
if (ev.uri.indexOf('gems') === -1) {
let n = ev.uri.substring(ev.uri.lastIndexOf('/') + 1);
print('JavaScript instrument observed load of ' + n);
}
});and prepare your Ruby file helloworld.rb (make sure GraalVM Ruby is
installed with gu install ruby):
puts 'Hello from GraalVM Ruby!'when you apply the JavaScript instrument to the Ruby program, here is what you get:
$ graalvm/bin/ruby --polyglot --insight=source-trace.js helloworld.rb
JavaScript instrument observed load of helloworld.rb
Hello from GraalVM Ruby!It is necessary to start GraalVM's Ruby launcher with --polyglot parameter
as the source-tracing.js script remains written in JavaScript. That's all
fine - mixing languages has never been a problem for GraalVM!
It is possible to write your GraalVM Insight scripts in Python. Such insights
can be applied to programs written in Python or any other language. Here is
an example of a script that prints out value of variable n when a function
minusOne in a agent-fib.js file is called:
def onEnter(ctx, frame):
print(f"minusOne {frame.n}")
class Roots:
roots = True
def sourceFilter(self, src):
return src.name == "agent-fib.js"
def rootNameFilter(self, n):
return n == "minusOne"
insight.on("enter", onEnter, Roots())Apply such script with js --polyglot --insight=agent.py agent-fib.js.
Of course, make sure Python is installed in your GraalVM via the gu tool.
With all the power the Insight framework brings, it is fair to ask what's
the overhead when the insights are applied? The overhead of course depends
on what your scripts do. When they add and spread complex computations
all around your code base, then the price for the computation will be payed.
However, that would be overhead of your code, not of the instrumentation! Let's
thus measure overhead of a simple function-count.js script:
var count = 0;
function dumpCount() {
print(`${count} functions have been executed`);
}
insight.on('enter', function(ev) {
count++;
}, {
roots: true
});
insight.on('close', dumpCount);Let's use the script on fifty iterations of sieve.js sample which uses a variant of the Sieve of Erathostenes to compute one hundred thousand of prime numbers. Repeating the computation fifty times gives the runtime a chance to warm up and properly optimize. Here is the optimal run:
$ graalvm/bin/js sieve.js | grep -v Computed
Hundred thousand prime numbers in 75 ms
Hundred thousand prime numbers in 73 ms
Hundred thousand prime numbers in 73 msand now let's compare it to execution time when running with the Insight script enabled:
$ graalvm/bin/js --insight=function-count.js sieve.js | grep -v Computed
Hundred thousand prime numbers in 74 ms
Hundred thousand prime numbers in 74 ms
Hundred thousand prime numbers in 75 ms
72784921 functions have been executed
Two milliseconds!? Seriously? Yes, seriously. The Insight framework
blends the difference between application code and insight gathering scripts
making all the code work as one! The count++ invocation becomes natural part of
the application at all the places representing ROOT of application functions.
Insight system gives you unlimited instrumentation power at no cost!
Not only one can instrument any GraalVM language, but also the Insight
scripts can be written in any GraalVM supported language. Take for example
Ruby and create source-tracing.rb (make sure GraalVM Ruby is installed via
gu install ruby) file:
puts("Ruby: Insight version #{insight.version} is launching")
insight.on("source", -> (env) {
puts "Ruby: observed loading of #{env.name}"
})
puts("Ruby: Hooks are ready!")
insight.on("enter", -> (ctx, frame) {
puts("minusOne #{frame.n}")
}, {
roots: true,
rootNameFilter: "minusOne",
sourceFilter: -> (src) {
return src.name == "agent-fib.js"
}
})The above is an example of a script that prints out value of variable n
when a function minusOne in a agent-fib.js file is called. Launch your
node application and instrument it with such a Ruby written script:
$ graalvm/bin/node --js.print --polyglot --insight=agent-ruby.rb agent-fib.js
Ruby: Initializing GraalVM Insight script
Ruby: Hooks are ready!
Ruby: observed loading of internal/per_context/primordials.js
Ruby: observed loading of internal/per_context/setup.js
Ruby: observed loading of internal/per_context/domexception.js
....
Ruby: observed loading of internal/modules/cjs/loader.js
Ruby: observed loading of vm.js
Ruby: observed loading of fs.js
Ruby: observed loading of internal/fs/utils.js
Ruby: observed loading of [eval]-wrapper
Ruby: observed loading of [eval]
Three is the result 3Write your Insight scripts in any language you wish! They'll be ultimatelly useful accross the whole GraalVM ecosystem.
The same instrument can be written in the R language opening tracing and
aspect based programing to our friendly statistical community. Just create
agent-r.R script:
cat("R: Initializing GraalVM Insight script\n")
insight@on('source', function(env) {
cat("R: observed loading of ", env$name, "\n")
})
cat("R: Hooks are ready!\n")and use it to trace your test.R program:
$ graalvm/bin/Rscript --insight=agent-r.R test.R
R: Initializing GraalVM Insight script
R: Hooks are ready!
R: observed loading of test.RThe only change is the R language. All the other Insight features and APIs remain the same.
Insight not only allows one to trace where the program execution is
happening, but it also offers access to values of local variables and function
arguments during execution. One can for example write instrument that shows
value of argument n in a function fib:
insight.on('enter', function(ctx, frame) {
print('fib for ' + frame.n);
}, {
roots: true,
rootNameFilter: 'fib'
});This instrument uses second function argument frame to get access to values
of local variables inside of every instrumented function.
The above Insight script also uses rootNameFilter to apply its hook only
to function named fib:
function fib(n) {
if (n < 1) return 0;
if (n < 2) return 1;
else return fib(n - 1) + fib(n - 2);
}
print("Two is the result " + fib(3));When the instrument is stored in a fib-trace.js file and the actual code
in fib.js, then invoking following command yields detailed information about
the program execution and parameters passed between function invocations:
$ graalvm/bin/node --js.print --insight=fib-trace.js fib.js
fib for 3
fib for 2
fib for 1
fib for 0
fib for 1
Two is the result 2Insight is a perfect tool for polyglot, language agnostic aspect oriented programming!
Not only that Insight can access local variables, but it can also modify them. Imagine summing an array:
function plus(a, b) {
return a + b;
}
var sum = 0;
[1, 2, 3, 4, 5, 6, 7, 8, 9].forEach((n) => sum = plus(sum, n));
print(sum);which naturally leads to printing out number 45. Let's apply following
Insight script to ''erase'' non-even numbers before adding them:
insight.on('enter', function zeroNonEvenNumbers(ctx, frame) {
if (frame.b % 2 === 1) {
frame.b = 0;
}
}, {
roots: true,
rootNameFilter: 'plus'
});When launched with js --insight=erase.js sumarray.js
only value 20 gets printed.
Insight enter and return hooks can only modify existing variables.
They cannot introduce new ones. Attempts to do so yield an exception.
The Insight functionality is an integral part of GraalVM since version
19.3. The compatibility of the Insight API exposed via the insight object
is treated seriously. New functionality is added in a compatible way. Old
functionality is deprecated, kept working while offering new alternatives and
only later removed.
The documentation
of the insight object properties and functions is available as part of its
javadoc.
Future versions will add new features, but whatever has once been exposed, remains functional. If your script depends on some fancy new feature, it may check version of the exposed API:
print(`GraalVM Insight version is ${insight.version}`);and act accordingly to the obtained version. New elements in the
documentation
carry associated @since tag to describe the minimimal version the associated
functionality/element is available since.
Insight can be used in any GraalVM enabled environment including GraalVM's
node implementation. However, when in node, one doesn't want to write
plain simple Insight scripts - one wants to use full power of node
ecosystem including its modules. Here is a sample agent-require.js script that does it:
let initialize = function (require) {
let http = require("http");
print(`${typeof http.createServer} http.createServer is available to the agent`);
}
let waitForRequire = function (event) {
if (typeof process === 'object' && process.mainModule && process.mainModule.require) {
insight.off('source', waitForRequire);
initialize(process.mainModule.require.bind(process.mainModule));
}
};
insight.on('source', waitForRequire, { roots: true });The script solves an important problem: Insight scripts are
initialized as soon as possible and at that moment the require function isn't
yet ready. As such the script first attaches a listener on loaded scripts and when
the main user script is being loaded, it obtains its process.mainModule.require
function. Then it removes the probes using insight.off and invokes the actual
initialize function to perform the real initialization while having
access to all the node modules. The script can be used as
$ graalvm/bin/node --js.print --insight=agent-require.js yourScript.jsThis initialization sequence is known to work on GraalVM's node v12.10.0
launched with a main yourScript.js parameter.
The Insight agents can throw exceptions which are then propagated to the
surrounding user scripts. Imagine you have a program seq.js
logging various messages:
function log(msg) {
print(msg);
}
log('Hello GraalVM Insight!');
log('How');
log('are');
log('You?');You can register an instrument term.js and terminate the execution in the middle
of the seq.js program execution based on observing the logged message:
insight.on('enter', (ev, frame) => {
if (frame.msg === 'are') {
throw 'great you are!';
}
}, {
roots: true,
rootNameFilter: 'log'
});The term.js instrument waits for a call to log function with message 'are'
and at that moment it emits its own exception effectively interrupting the user
program execution. As a result one gets:
$ graalvm/bin/js --polyglot --insight=term.js seq.js
Hello GraalVM Insight!
How
great you are!
at <js> :=>(term.js:3:75-97)
at <js> log(seq.js:1-3:18-36)
at <js> :program(seq.js:7:74-83)The exceptions emitted by Insight instruments are treated as regular language
exceptions. The seq.js program could use regular try { ... } catch (e) { ... }
block to catch them and deal with them as if they were emitted by the regular
user code.
GraalVM Insight is capable to alter the execution of a program. It can
skip certain computations and replace them with own alternatives. Imagine
simple plus function:
function plus(a, b) {
return a + b;
}it is quite easy to change the behavior of the plus method. Following
Insight script replaces the + operation with multiplication by using
the ctx.returnNow functionality.
insight.on('enter', function(ctx, frame) {
ctx.returnNow(frame.a * frame.b);
}, {
roots: true,
rootNameFilter: 'plus'
});The returnNow method immediatelly stops execution and returns to the
caller of the plus function. The body of the plus method isn't executed
at all because we applied the insight on('enter', ...) - e.g. before the
actual body of the function was executed.
Multiplying instead of adding two numbers may not sound very tempting, but
the same approach is useful in providing add-on caching (e.g. memoization)
of repeating function invocations.
It is also possible to let the original function code run and just alter
its result. Let's alter the result of plus function to be always non-negative:
insight.on('return', function(ctx, frame) {
let result = ctx.returnValue(frame);
ctx.returnNow(Math.abs(result));
}, {
roots: true,
rootNameFilter: 'plus'
});The Insight hook is executed on return of the plus function and is
using returnValue helper function to obtain the computed return value
from the current frame object. Then it can alter the value and
returnNow the new result instead. The returnValue function is always
available on the provided ctx object, but it only returns meaningful
value when used in on('return', ...) hooks.
The polyglot capabilities of GraalVM know no limits. Not only it is possible to interpret dynamic languages, but with the help of the lli launcher one can mix in even statically compiled programs written in C, C++, Fortran, Rust, etc.
Imagine you have a long running program just like
sieve.c
(which contains never-ending for loop in main method) and you'd like to give
it some execution quota. That is quite easy to do with GraalVM Insight! First
of all execute the program on GraalVM:
$ export TOOLCHAIN_PATH=`graalvm/bin/lli --print-toolchain-path`
$ ${TOOLCHAIN_PATH}/clang agent-sieve.c -lm -o sieve
$ graalvm/bin/lli sieveWhy toolchain? The GraalVM clang wrapper adds special options
instructing the regular clang to keep the LLVM bitcode information in the sieve
executable along the normal native code.
The GraalVM's lli interpreter can then use the bitcode to interpret the program
at full speed. Btw. compare the result of direct native execution via ./sieve
and interpreter speed of graalvm/bin/lli sieve - quite good result for an
interpreter, right?
Anyway let's focus on breaking the endless loop. You can do it with a JavaScript
agent-limit.js Insight script:
var counter = 0;
insight.on('enter', function(ctx, frame) {
if (++counter === 1000) {
throw `GraalVM Insight: ${ctx.name} method called ${counter} times. enough!`;
}
}, {
roots: true,
rootNameFilter: 'nextNatural'
});The script counts the number of invocations of the C nextNatural function
and when the function gets invoked a thousand times, it emits an error
to terminate the sieve execution. Just run the program as:
$ graalvm/bin/lli --polyglot --insight=agent-limit.js sieve
Computed 97 primes in 181 ms. Last one is 509
GraalVM Insight: nextNatural method called 1000 times. enough!
at <js> :anonymous(<eval>:7:117-185)
at <llvm> nextNatural(agent-sieve.c:14:186-221)
at <llvm> nextPrime(agent-sieve.c:74:1409)
at <llvm> measure(agent-sieve.c:104:1955)
at <llvm> main(agent-sieve.c:123:2452)It is possible to access primitive local variables from the native code. Replace the above Insight script with
insight.on('enter', function(ctx, frame) {
print(`found new prime number ${frame.n}`);
}, {
roots: true,
rootNameFilter: (n) => n === 'newFilter'
});and print out a message everytime a new prime is added into the filter list:
$ graalvm/bin/lli --polyglot --insight=agent-limit.js sieve | head -n 3
found new prime number 2
found new prime number 3
found new prime number 5The mixture of lli, polyglot and Insight opens enormous possibilities in tracing,
controlling and interactive or batch debugging of native programs. Write in
C, C++, Fortran, Rust and inspect with JavaScript, Ruby & co.!
GraalVM Insight is capable to access local variables. Moreover it is almost for free. Insight code accessing local variables blends with the actual function code defining them and there is no visible slowdown.
Let's demonstrate the this on sieve.js - an algorithm to compute hundred thousand of prime numbers. It keeps the so far found prime numbers in a linked list constructed via following function:
function Filter(number) {
this.number = number;
this.next = null;
this.last = this;
}First of all let's test the behavior by invoking the computation fifty times and measuring time it takes to finish the last round:
$ graalvm/bin/js -e "var count=50" --file sieve.js | grep Hundred | tail -n 1
Hundred thousand prime numbers in 73 msand now let's tease the system by observing each allocation of a new prime
number slot - e.g. the call to new Filter constructor:
var sum = 0;
var max = 0;
insight.on('enter', (ctx, frame) => {
sum += frame.number;
if (frame.number > max) {
max = frame.number;
}
}, {
roots: true,
rootNameFilter: 'Filter'
});
insight.on('return', (ctx, frame) => {
log(`Hundred thousand prime numbers from 2 to ${max} has sum ${sum}`);
sum = 0;
max = 0;
}, {
roots: true,
rootNameFilter: 'measure'
});Everytime a new Filter(number) is allocated, we capture the maximum value
of number (e.g. the highest prime number found) and also sum of all prime
numbers found so far. When the main loop in measure is over - e.g. we have
all hundred thousand prime numbers, we print the result. Let's try it:
$ graalvm/bin/js -e "var count=50" --insight=sieve-filter1.js --file sieve.js | grep Hundred | tail -n 2
Hundred thousand prime numbers from 2 to 1299709 has sum 62260698721
Hundred thousand prime numbers in 74 msNo slowdown at all. Insight gives us great instrumentation capabilities - when combined with the great inlining algorithms of GraalVM we can even access local variables with almost no performance penalty!
There is a way for Insight to access the whole execution stack. Following code snippet shows how to do that:
insight.on("return", function(ctx, frame) {
print("dumping locals");
ctx.iterateFrames((at, vars) => {
for (let p in vars) {
print(` at ${at.name} (${at.source.name}:${at.line}:${at.column}) ${p} has value ${vars[p]}`);
}
});
print("end of locals");
}, {
roots: true
});Whenever the Insight hook is triggered it prints the current execution
stack with name of the function, source.name, line and column. Moreover
it also prints values of all local vars at each frame. It is also possible to
modify values of existing variables by assigning new values to them: vars.n = 42.
Accessing whole stack is flexible, but unlike access to locals in the current
execution frame, it is not fast
operation. Use rarely, if you want your program to continue running at full speed!
Insight can be used to snapshot a region of your program heap during
the execution. Use --heap.dump=/path/to/output.hprof option together with
regular --insight one. The Insight
script is going to get access to heap object with dump function.
Place your hook whereever needed and at the right moment dump the heap:
insight.on('return', (ctx, frame) => {
heap.dump({
format: '1.0',
depth: 50, // set max depth for traversing object references
events: [
{
stack : [
{
at : ctx, // location of dump sieve.js:73
frame : {
// assemble frame content as you want
primes : frame.primes, // capture primes object
cnt : frame.cnt, // capture cnt value
},
depth : 10 // optionally override depth to ten references
}, // there can be more stack elements like this one
]
},
// there can be multiple events like the previous one
],
});
throw 'Heap dump written!';
}, {
roots: true,
rootNameFilter: 'measure'
});Save the code snippet as dump.js file.
Get the sieve.js file and
launch it as:
$ graalvm/bin/js --insight=dump.js --heap.dump=dump.hprof --file sieve.js
A dump.hprof file is going to be created at the end of measure function
capturing the state of the memory of your progam.
Inspect the generated .hprof file with regular tools like
VisualVM or NetBeans:
The previous picture shows heap dump taken at the end of measure function in the
sieve.js script. The function has just
computed one hundred thousand (count available in variable cnt) prime numbers.
The picture shows a linked list Filter holding prime numbers from 2 to 17.
The rest of the linked list is hidden (only references up to depth 10 were
requested) behind unreachable object. Last variable x shows the number of
searched natural numbers to compute all the prime numbers.