Show HN: xstack – Passive eBPF Linux stack profiling without tracepoints

2 tanelpoder 0 8/14/2025, 10:03:18 PM tanelpoder.com ↗

Here's the latest eBPF performance tool of mine - xstack. It's a minimal tool, just 165 lines of eBPF C and under 500 lines of userland C code (including all comments and boilerplate!). It uses the libbpf and (Rust) BlazeSym libraries though (which are a lot of code).

The point (and difference) of this tool is that it can sample both the kernel and userspace stack traces of all threads in your system.

Traditionally, the "bpf_get_stack()" helper can not read userspace stack traces of other tasks in Linux, but since Linux 5.18 we can combine sleepable eBPF task iterator programs with a new "bpf_copy_from_user_task()" helper to read whatever we want from the userspace memory of any other process.

That includes stack areas - so currently whenever the target executable was compiled with frame pointers enabled, you can easily do passive-sampling stack profiling - without slowing the other processes down - at all!

Despite the Linux kernel 5.18 requirement, it actually works on RHEL 9.5+ (and clones) too. RedHat apparently ported the entire eBPF 6.8 subsystem to their RHEL 9.5+ 5.14 kernels. Feedback and testing results appreciated.

VC-backed company just killed my EU trademark for a small OSS project

Ask HN: How do you tune your personality to get better at interviews?

Individual Bestbuy email subscription pages are apparently indexed by Google

Ask HN: What "developer holy war" have you flip-flopped on?

F-Droid build servers can't build modern Android apps due to outdated CPUs

Ask HN: Is Twilio necessary and required to build text and voice agents?

Ask HN: How do you connect with other founders in your city?

Ask HN: Why aren't more developers using AI tools?

Ask HN: Do you use personal AI Agents?

Ask HN: Is the rise of AI tools going to be the next 'dot com' bust?

Ask HN: What alternatives to GitHub are you using?

What is the learning curve for using generative AI effectively?

Ask HN: How can ChatGPT serve 700M users when I can't run one GPT-4 locally?

Ask HN: What's stopping Guix from building static binaries for various targets?

Ask HN: Is there an AI that can read code aloud and explain it?

Ask HN: What toolchains are people using for desktop app development in 2025?

Ask HN: Are there software engineering areas that are safe from LLMs invasion?

My inbox is a mess from signing up for everything. How do you handle it?

Best area of AI to focus on for a front end developer?

Ask HN: Why Is My Happiness Tied to My Productivity?

Gemini's brutal assessment of a vibe coding session

Ask HN: With all the AI hype, how are software engineers feeling?

Era of Bloated Software Is Over

Why do dev tools crush it on Product Hunt but never seem to raise money?

Ask HN: Would you swap your desk for a restaurant shift?

Ask HN: What LLM are you all using for coding assistance right now?

Ask HN: What do you dislike about ChatGPT and what needs improving?

Ask HN: Are leetcode interviews going away?

Snapchat open source cross-platform mobile framework. Looking for beta testers

Ask HN: How do you find Enterprise customers?

Show HN: xstack – Passive eBPF Linux stack profiling without tracepoints

Comments (0)