Deploying to gh-pages from @ eunomia-bpf/bpf-developer-tutorial@52ae3ae26d 🚀

4-opensnoop/.gitignore

@@ -0,0 +1,7 @@
+.vscode
+package.json
+eunomia-exporter
+ecli
+*.bpf.o
+*.skel.json
+*.skel.yaml

4-opensnoop/opensnoop.bpf.c

@@ -0,0 +1,21 @@
+#include <vmlinux.h>
+#include <bpf/bpf_helpers.h>
+
+/// @description "Process ID to trace"
+const volatile int pid_target = 0;
+
+SEC("tracepoint/syscalls/sys_enter_openat")
+int tracepoint__syscalls__sys_enter_openat(struct trace_event_raw_sys_enter* ctx)
+{
+	u64 id = bpf_get_current_pid_tgid();
+	u32 pid = id;
+
+	if (pid_target && pid_target != pid)
+		return false;
+	// Use bpf_printk to print the process information
+	bpf_printk("Process ID: %d enter sys openat\n", pid);
+	return 0;
+}
+
+/// "Trace open family syscalls."
+char LICENSE[] SEC("license") = "GPL";