tion" in user space which introduces a performance penalty.
Regards,
Richard
On Thu, Mar 9, 2023 at 6:22 AM Steve Grubb wrote:
> Hello,
>
> On Wednesday, March 8, 2023 8:46:57 AM EST Richard Du wrote:
> > I'm trying to define an audit rule with auditctl for clone() sysc
Hello all,
I'm trying to define an audit rule with auditctl for clone() syscall, and I
would expect that the a0 of clone() syscall (i.e. the clone_flags argument)
without the CLONE_THREAD flag bit being set.
int clone(int (*fn)(void *), void *stack, int flags, void *arg, ...
/* p
