diff options
Diffstat (limited to 'extrace-bpf')
-rwxr-xr-x | extrace-bpf | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/extrace-bpf b/extrace-bpf index 4658cc7..d72f847 100755 --- a/extrace-bpf +++ b/extrace-bpf @@ -6,6 +6,9 @@ require 'etc' # TODO: -p / cmd... (how?) BPF = <<'EOF' +BEGIN { + printf("SEP2\n"); +} tracepoint:syscalls:sys_enter_execve { printf("%ld +%d %d", elapsed, pid, uid); join(args->argv, "SEP1"); |