lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <CAMmOe3Q2cc_uzpKezojkNWFSdg+Pt+K6BqcijV46QRj5ZXod7g@mail.gmail.com>
Date:   Tue, 21 Apr 2020 20:29:25 -0400
From:   Joshua Abraham <j.abraham1776@...il.com>
To:     davem@...emloft.net, kuba@...nel.org
Cc:     netdev@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: [RFC] unixmon virtual device for unix sockets

There is currently no way to capture a connected unix domain socket
without interrupting the connection. AF_UNIX socket transport is
implemented in-kernel and enabling packet captures would require
kernel support. This could be based on the design of the vsockmon and
nlmon virtual devices.

This would be very useful when debugging traffic traversing AF_UNIX
sockets, such as DBUS traffic without modifying the user-space
programs that are using the unix sockets.

Is this a worthwhile feature to implement?

-Josh

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ