udpconnect: show UDP only, exclude ICMP and RAW

xenserver-next · Apr 20, 2020 · 09f8a3a · 09f8a3a
1 parent 21724cc
commit 09f8a3a
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/updated/Ch10_Networking/udpconnect.bt b/updated/Ch10_Networking/udpconnect.bt
@@ -24,8 +24,10 @@ BEGIN
 kprobe:ip4_datagram_connect,
 kprobe:ip6_datagram_connect
 {
+	$sk = (struct sock *)arg0;
 	$sa = (struct sockaddr *)arg1;
-	if ($sa->sa_family == AF_INET || $sa->sa_family == AF_INET6) {
+	if (($sa->sa_family == AF_INET || $sa->sa_family == AF_INET6) &&
+	    $sk->sk_protocol == IPPROTO_UDP) {
 		time("%H:%M:%S ");
 		if ($sa->sa_family == AF_INET) {
 			$s = (struct sockaddr_in *)arg1;