SuperDump is a service for automated crash-dump analysis.
SuperDump was made with these goals in mind:
- Make crash-dump analysis easy for people who are unexperienced with it, or don't have the necessary tools installed.
- Speed up first assessment of a crash-dump, by automatically preparing crash-dump analysis up-front. A developer should be quicker in determining if it's an already known crash.
What SuperDump is not:
- A replacement for in-depth analysis tools such as WinDbg.
- A windows kernel dump analysis tool.
- Dump analysis can be triggered via web-frontend (HTTP-upload) or via REST-API.
- Any windows-crash-dump (Fulldump or Minidump) can be analyzed (
.dmpfiles). .zipfiles containing multiple crash-dumps are also supported.- Report results are stored as
.jsonfiles and can be queried via REST-API. But they can also be viewed in SuperDump directly. - SuperDump report shows:
- Basic information (bitness, system/process uptime, lastevent, ...)
- Loaded modules and versions
- Stacktraces of all threads (native and .NET frames)
- AppDomains
- Basic memory analyis (number of bytes used by .NET types)
- SuperDump detects exceptions (native and managed) and marks the responsible threads.
- Deadlock detection.
- SuperDump also invokes a number of
WinDbgcommands and logs them to a separate log-file. - It also invokes DebugDiag Analysis. An
.mhtfile is created automatically and can be downloaded. - You can enter "interactive mode" for every dump. This will spin up
cdb.exe(basically WinDbg for the command line) and create a websocket-based console terminal in the browser which lets you analyze the dump more deeply, with out the need to download it and have debugging tools installed locally. - Linux coredumps (
.core) are supported in a very limited way. They can be uploaded, and are prepared the same way windows crash dumps are prepared. Then a configurable command is invoked for analysis (LinuxAnalysisCommand). The actual analyis-scripts are not part of this repository (yet). - "Interactive mode" for linux coredumps is possible as well, but again it's just a command that is invoked (
LinuxInteractiveCommand). The actual helper-script for this is not part of this repository (yet).- If anyone is interested in a how-to-set-up-superdump-for-linux guide, please contact me on twitter (https://twitter.com/discostu105).
Demo-Video: https://youtu.be/XdyDjkW8MDk
Demo-Deployment: http://superdump-demo.azurewebsites.net (older version though)
- CLRMD for analysis.
- ASP.NET Core and Razor for web-frontend and api.
- Hangfire for task scheduling.
- websocket-manager for websocket communication for interactive WinDbg session.
- Prerequisites:
- Visual Studio 2017
- .NET Core Tooling 1.0
- .NET Core 1.1.1
- .NET Framework 4.6
- LocalDB (optional, see
UseInMemoryHangfireStoragesetting) - DebugDiag (for automatic DebugDiag analysis)
- Windows Debugging Tools (
cdb.exe) (optional, for interactive mode)
- Build via
building/build.cmd - Run via
build/runsuperdump.cmd(defaults to port 5000)
SuperDump has been created at Dynatrace as an internship project in 2016. It turned out to be pretty useful so we thought it might be useful for others too. Thus we decided to opensource it.
Though it currently works great for us at Dynatrace, there are areas that need to be improved to make it a high-quality and generally useful tool:
- Test-Coverage: A couple of unit tests are there, but there is currently no CI to automatically run them. The tests partially depend on actual dump-files being available, which obviously are not in source control. We'd need some binary-store, a prepare/download step, etc to make those run.
- Some stuff is tailored for our needs at Dynatrace. E.g. we have special detection for Dynatrace Agent stackframes. While this feature probably won't hurt anyone else, it is kind of unclean to have such special detection in place.
- There is no authentication/authorization implemented. Every crash-dump is visible to everyone and can be downloaded by everyone. This is an important fact, because crash-dump contents can be highly security critical.
We've open sourced SuperDump, because we believe it can be helpful for others. Anyone is welcome to contribute to SuperDump. In small ways, or in ways we have not thought about yet. Feedback, github tickets, as well as PR's are welcome.
Some high-level ideas we've been poking around:
- Pluggable analyzers: Possibility to write your own analyzers, detached from the main project and pluggable.
- Linux coredumps: Use Linux/GDB to automatically analyze linux coredumps, and use SuperDumpService as frontend (for file upload, REST-API, view reports).
- Some of this is already implemented. See "Features".
- Duplication Detection: Find a way to detect if the same crash has already been reported.
- Descriptive summaries: The idea is to put the most likely crash-reason in a short descriptive summary text. This is useful if a crash is entered as a bug in a ticket system.
Most of the initial code base was written by Andreas Lobmaier in his summer internship of 2016. It's been maintained and further developed since then by Christoph Neumüller and other folks at Dynatrace.