fche changed the topic of #systemtap to: http://sourceware.org/systemtap; email systemtap@sourceware.org if answers here not timely, conversations may be logged
<ciupicri>
fche: for your information, this is the reason I've been nagging you: https://unix.stackexchange.com/a/435078/1174 I wasn't that useful in the end, but I appreciate the help
<fche>
reading now
<ciupicri>
... no need, it's nothing fancy
<fche>
the topic reminds me of a talk a year or so ago, advertising how a bpf-based firewall module could be faster than an iptables one
<fche>
.... because the iptables one they compared to had sixteen million individual rules :')
<ciupicri>
but at least systemtap gave me a bit of insight into the kernel; the netfilter howto [1] didn't provide enough information and it's one thing to read the kernel's source code and another to see it in action with probes ( [1]: https://www.netfilter.org/documentation/HOWTO/netfilter-hacking-HOWTO-4.html )
<fche>
yeah ... exploring a foreign bit of code is something stap is good for ... but I don't think we have an intro writeup on that task