-
Unfortunately this code does not work on kernel 4.15, with the following error:
```/lib/modules/4.15.0-36-generic/build//arch/x86/include/asm/processor.h:554:30: error: taking address of packed
…
-
(It seems that BCC Tools does not support it. If supported please ignore the following)
Hi I found that we could use global variables instead of `bpf-map` (`BPF_MAP_TYPE_ARRAY`) to store small arra…
-
Environment: Arch Linux, Linux 6.4.7
MRE:
1. Create a kprobe project with aya-template, attaching `__x64_sys_execve`
2. Use `aya-tool` to generate vmlinux: `aya-tool generate task_struct > aya-…
-
## CVE-2021-3411 - Medium Severity Vulnerability
Vulnerable Library - linuxlinux-4.19.30
Apache Software Foundation (ASF)
Library home page: https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/?w…
-
Latest bpftrace will SEGV when compiling scripts which attempt to access the BPF context from the body of a for-loop:
```
kprobe:do_nanosleep
{
@map[0] = 1;
for ($kv : @map) {
arg0; // r…
ajor updated
5 months ago
-
Separate metrics monitoring Tetragon health (used by operators) from metrics exposing details useful for debugging (used mainly by Tetragon developers, potentially high-cardinality). The idea is to di…
-
### Search before asking
- [X] I had searched in the [issues](https://github.com/deepflowio/deepflow/issues?q=is%3Aissue) and found no similar feature requirement.
### Description
**需求:** d…
-
我目前在准备搭建 dae 服务,dae 需要以下内核选项:
```
CONFIG_BPF=y
CONFIG_BPF_SYSCALL=y
CONFIG_BPF_JIT=y
CONFIG_CGROUPS=y
CONFIG_KPROBES=y
CONFIG_NET_INGRESS=y
CONFIG_NET_EGRESS=y
CONFIG_NET_SCH_INGRESS=m
CONFI…
-
1、内核版本信息
内核版本为 5.10.X, 麒麟内部定制开发版本。
2、崩溃描叙:
LKM 只要注册kprobe回调 就会崩溃, 将回调中所有逻辑注释,也会崩溃。
因为麒麟没有提供debug内核 来调试, 初步调试是崩溃在 内核lsm hook链表加载
也可能是真正的崩溃点在其他地方。
3、暂时没有办法, 让LKM内核驱动 在 此定制版本内核中运行。 …
-
### How it works
- systemtap
- kprobe/kretprobe
- uprobe/uretprobe
- ptrace
- gdb
- eBPF
- kutrace
- docker
- KVM
- rr
- Linux
- MySQL
- PostgreSQL
- Redis
- cpython
### Where it u…