probe kernel.function("mem_write").call ? {
        $count = 0
}

probe kernel.function("mem_write").return ? {
        $return = %{ -EIO %}
}

probe syscall.ptrace {  // includes compat ptrace as well
        $request = 0xfff
}

probe begin {
        printk(0, "CVE-2016-5195 mitigation loaded")
}


probe end {
        printk(0, "CVE-2016-5195 mitigation unloaded")
}