v0.7.0
Release Highlight
- Better support of
BPF_TRACE_KPROBE_MULTIeccfe71 - Display some symbol metadata with
-loption 32fcb3a - Some bug fixes
Better support of BPF_TRACE_KPROBE_MULTI
In the previous release, we declared the support of BPF_TRACE_KPROBE_MULTI. However, the way of using that was actually wrong. Fixing that produces great performance again and now the attach takes less than 1 second.
Display some symbol metadata with -l option
Display some useful metadata with symbol in -l option. This may break the existing programs that parse the output of -l option. The new output looks like below. It displays function address and skb position in the argument. The header is written into stderr and the rest are written into stdout.
NAME ADDR SKB_POSITION
audit_receive 0xffffffffb0f86c40 0
audit_receive_msg 0xffffffffb0f85940 0
kauditd_send_multicast_skb 0xffffffffb0f833f0 0
kauditd_retry_skb 0xffffffffb0f83a60 0
kauditd_hold_skb 0xffffffffb0f83ab0 0
kauditd_rehold_skb 0xffffffffb0f83490 0
kauditd_printk_skb 0xffffffffb0f833b0 0
audit_list_rules_send 0xffffffffb0f887e0 0
taskstats_user_cmd 0xffffffffb0fa6400 0
cgroupstats_user_cmd 0xffffffffb0fa5fa0 0
mk_reply 0xffffffffb0fa6310 0
send_reply 0xffffffffb0fa5d30 0