O'Reilly logo

Trace and Log Analysis: A Pattern Reference for Diagnostics and Anomaly Detection by Software Diagnostics Institute, Dmitry Vostokov

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

R

 

Random Data

Trace and log message text consists of constant, unchanging Message Invariants and some varying data. The latter can be classified into Random Data such as memory addresses, especially when ASLR106 is enabled, Counter Values, and variable data but constants, such as error values and NULL pointers. Individual values from Signals are not considered random, but their sequence can be. This analysis pattern is depicted in the following diagram (adapted from Data Association analysis pattern):

 

Recovered Messages

If we analyze ETW-based traces such as CDF, we may frequently encounter No Trace Metafile pattern, especially after product updates ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required