ETW: Monitor anything, anytime, anywhere
Event Tracing for Windows (ETW) is the most important diagnostic tool Windows developers have at their disposal. Dina Goldshtein explores the rich and wonderful world of ETW events, which span numerous OS components. Youll learn how to diagnose complex issues in production systems and discover ways to automate ETW collection and analysis to build self-diagnosing applications.
| Talk Title | ETW: Monitor anything, anytime, anywhere |
| Speakers | Dina Goldshtein (Riverbed) |
| Conference | O’Reilly Velocity Conference |
| Conf Tag | Build resilient systems at scale |
| Location | New York, New York |
| Date | October 2-4, 2017 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Event Tracing for Windows (ETW) is the most important diagnostic tool Windows developers have at their disposal. Dina Goldshtein explores the rich and wonderful world of ETW events, which span numerous components, including the kernel scheduler, the CLR garbage collector, the Windows UI subsystem (including XAML-specific events), request-processing frameworks such as ASP.NET and WCF, and many others. ETW is truly a window into everything happening on your system, and it doesn’t require expensive licenses, invasive tools, or modifying your code in any way. It’s a critical, first-stop skill on your way to mastering application performance and diagnostics. You’ll learn how to diagnose incredibly complex issues in production systems, such as excessive garbage collection pauses, slow startup due to JIT and disk accesses, and even sluggishness during the Windows boot process. Dina also walks you through some ways to automate ETW collection and analysis to build self-diagnosing applications that identify high CPU issues, resource leaks, and concurrency problems and produce alerts and reports. You’ll be exposed to innovative performance tools that haven’t been applied to ETW before, such as flame graphs for visualizing call stacks and a command-line interface for dynamic, scriptable ETW tracing.
