US 12,019,735 B2
Tracing function execution in a database system
Brandon S. Baker, Redmond, WA (US); Derek Denny-Brown, Seattle, WA (US); Mark M. Manning, Penfield, NY (US); and Andong Zhan, San Mateo, CA (US)
Assigned to Snowflake Inc., Bozeman, MT (US)
Filed by Snowflake Inc., Bozeman, MT (US)
Filed on Jul. 20, 2023, as Appl. No. 18/355,563.
Application 18/355,563 is a continuation of application No. 18/161,514, filed on Jan. 30, 2023, granted, now 11,822,645.
Application 18/161,514 is a continuation of application No. 17/809,622, filed on Jun. 29, 2022, granted, now 11,640,458.
Application 17/809,622 is a continuation of application No. 17/390,251, filed on Jul. 30, 2021, granted, now 11,409,864.
Claims priority of provisional application 63/197,813, filed on Jun. 7, 2021.
Prior Publication US 2023/0359727 A1, Nov. 9, 2023
Int. Cl. G06F 21/53 (2013.01); G06F 16/245 (2019.01)
CPC G06F 21/53 (2013.01) [G06F 16/245 (2019.01); G06F 2221/033 (2013.01)] 30 Claims
OG exemplary drawing
 
1. A method comprising:
instantiating, by at least one hardware processor of a computing node, a user-defined function (UDF) server associated with a plurality of configurations; instantiating, using the plurality of configurations, a plurality of child processes of the UDF server;
configuring using a child process of the plurality of child processes, a filtering process at an operating system (OS) kernel of the computing node, the filtering process comprising a set of system call categories and a corresponding set of filtering policies;
detecting a system call received at the OS kernel is associated with a system call category of the set of system call categories and violates a corresponding filtering policy of the set of filtering policies; and
initiating a tracing event of the system call based on the detecting.