kernel/bpf-developer-tutorial
1
0
Fork 0
mirror of https://github.com/eunomia-bpf/bpf-developer-tutorial.git synced 2026-02-03 10:14:44 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
c572e7f511c04719106bccffb0295bbf17c76102
bpf-developer-tutorial/6-sigsnoop/sigsnoop.md
yunwei37 c572e7f511 fix bpf programs with useless attach
2022-12-06 16:10:45 +08:00

381 B
Raw Blame History

eBPF 入门实践教程:编写 eBPF 程序 sigsnoop 工具监控全局 signal 事件

背景

实现原理

sigsnoop 在利用了linux的tracepoint挂载点其在syscall进入和退出的各个关键挂载点均挂载了执行函数。

Eunomia中使用方式

result result

总结

Reference in New Issue View Git Blame Copy Permalink