Yandex yatulutsa kachidindo ka skbtrace utility, yomwe imapereka zida zowunikira magwiridwe antchito a netiweki ndikutsata momwe ma network amagwirira ntchito mu Linux. Zomwe zimagwiritsidwa ntchito zimakhazikitsidwa ngati chowonjezera ku BPFtrace dynamic debugging system. Khodiyo idalembedwa mu Go ndikugawidwa pansi pa layisensi ya MIT. Imathandizira kugwira ntchito ndi Linux kernels 4.14+ komanso ndi BPFTrace 0.9.2+ toolkit.
Pamene ikuyenda, skbtrace utility imapanga zolembedwa mu chilankhulo chapamwamba cha BPFtrace chomwe chimatsata ndikusanthula nthawi yogwira ntchito yokhudzana ndi stack ya Linux network ndi socket sockets. Zolembazo zimasinthidwa kukhala fomu yofunsira eBPF ndikuchitidwa pamlingo wa kernel.
Pakati pa luso lapadera la skbtrace, kuyeza kwa nthawi yotumiza mapaketi pakati pa malo omwe akubwera ndi otuluka, nthawi ya moyo wa TCP kuchokera kulandira SYN mpaka kufika kwa FIN/RST, kuchedwa pakati pa zochitika zosiyanasiyana zopangira paketi, ndi nthawi. Zokambirana za kulumikizana kwa TCP zimadziwika. Skbtrace itha kugwiritsidwanso ntchito kuzindikira kutumizidwanso kwa mapaketi a TCP, ngakhale atayikidwa m'mapaketi ena, ndikuchita ngati analogue yosavuta ya tcpdump, yomwe imatha kusanthula machitidwe ena a kernel, monga kuyimbira kfree_skb kumasula kukumbukira. pamene kutaya mapaketi.
Source: opennet.ru