#! /usr/bin/env stap
probe begin {
printf("%6s %16s %6s %6s %16s\n",
"UID", "CMD", "PID", "DEST_IP", "DEST_PORT")
}
probe syscall.connect {
if (uaddr_ip=~"192.169.*")
printf("%6d %16s %6d %s %6s\n", uid(), execname(), pid(), uaddr_ip, uaddr_ip_port)
}
SystemTap提供两个正则匹配的运算符,分别是=~和!~,=~就是按正则匹配第二个操作数,!~就是取反