Yandex tau tshaj tawm cov cai ntawm qhov chaw siv hluav taws xob skbtrace, uas muab cov cuab yeej los saib xyuas kev ua haujlwm ntawm pawg network thiab taug qab kev ua tiav ntawm kev ua haujlwm hauv network hauv Linux. Cov khoom siv hluav taws xob tau siv los ua ib qho ntxiv rau BPFtrace dynamic debugging system. Cov cai tau sau rau hauv Go thiab muab faib raws li MIT daim ntawv tso cai. Txhawb kev ua haujlwm nrog Linux kernels 4.14+ thiab nrog BPFTrace 0.9.2+ toolkit.
Thaum ua haujlwm, skbtrace cov nqi hluav taws xob tsim cov ntawv sau hauv qib siab BPFtrace cov lus uas dynamically taug qab thiab txheeb xyuas lub sijhawm ua haujlwm ntawm kev ua haujlwm cuam tshuam nrog Linux network pawg thiab cov sockets network. Cov ntawv sau raug muab txhais ua eBPF daim ntawv thov thiab ua tiav ntawm qib kernel.
Ntawm cov peev txheej tshwj xeeb ntawm skbtrace, kev ntsuas lub sijhawm xa cov pob khoom nruab nrab ntawm cov khoom siv nkag thiab tawm hauv lub network, lub neej ntawm TCP kev sib txuas los ntawm kev tau txais SYN mus rau qhov tuaj txog ntawm FIN / RST, qeeb ntawm cov txheej txheem sib txawv ntawm pob ntawv, thiab lub sijhawm. rau kev sib tham txog kev sib txuas TCP tau sau tseg. Skbtrace kuj tseem tuaj yeem siv los txheeb xyuas qhov kev xa rov qab ntawm TCP pob ntawv, txawm tias lawv tau ntim rau hauv lwm cov pob ntawv, thiab ua raws li qhov yooj yim analogue ntawm cov khoom siv hluav taws xob tcpdump, muaj peev xwm txheeb xyuas qhov kev ua tiav ntawm qee cov kernel niaj hnub, xws li hu kfree_skb kom dawb nco. thaum muab cov pob ntawv pov tseg.
Tau qhov twg los: opennet.ru