mirror of
https://github.com/tldr-pages/tldr.git
synced 2025-04-29 23:24:55 +02:00
694 B
694 B
bpftrace
High-level tracing language for Linux eBPF. More information: https://github.com/bpftrace/bpftrace/blob/master/man/adoc/bpftrace.adoc.
- Display bpftrace version:
bpftrace {{[-V|--version]}}
- List all available probes:
sudo bpftrace -l
- Run a one-liner program (e.g. syscall count by program):
sudo bpftrace -e '{{tracepoint:raw_syscalls:sys_enter { @[comm] = count(); }}}'
- Run a program from a file:
sudo bpftrace {{path/to/file}}
- Trace a program by PID:
sudo bpftrace -e '{{tracepoint:raw_syscalls:sys_enter /pid == 123/ { @[comm] = count(); }}}'
- Do a dry run and display the output in eBPF format:
sudo bpftrace -d -e '{{one_line_program}}'