This repository contains a tool which traces syscalls in a fast way using eBPF linux kernel feature
16
stars
6
forks
source link
I'd also filter the PID for the tracer in the code, which should fix that particular issue, if you don't already. #67
Open
vitalyvch opened 7 years ago
I'd also filter the PID for the tracer in the code, which should fix that particular issue if you don't already.
It is very good to filter out our own syscall sys_poll always and everywhere. And probably sys_write.