BCC BPF Compiler Collection

BCC or BPF Compiler Collection is a set of tools leveraging eBPF for kernel tracing.

IO Visor Github has some great resources here:

• BCC – Tools for BPF-based Linux IO analysis, networking, monitoring, and more

BCC reference guide can be found here:

• BCC reference guide

This tutorial covers how to use BCC tools to quickly solve performance, troubleshooting, and networking issues:

• BCC tutorial by Brendan Gregg

 

To learn about developing BCC tools and programs using the python interface:

• BCC python developer tutorial

Brendan Gregg has many great blogs on tracing, a few are listed here:

• DTrace for Linux 2016
• Linux bcc Tracing Security Capabilities
• Linux bcc ext4 Latency Tracing
• Linux eBPF Off-CPU Flame Graph

A recorded presentation by Brenden Blanco and Brendan Gregg at ScaleX:

• In-Kernel Low Latency Tracing and Networking

A quick overview of BCC by Sasha Goldshtein:

• BPF Tracing Superpowers

An overview of using eBPF for tracing by Elena Zannoni of Oracle:

• New (and Exciting) Developments in Linux Tracing