slides - PDOS - MIT
slides - PDOS - MIT
slides - PDOS - MIT
SHOW LESS
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
A packet filtering example• Strawman II: extensible kernel module• tcpdump uploads compiled native code to the kernel• ✔ Flexibility ✔ Performance ✘ Securityip*src*net*not*(18.26.5.0/24*or*18.0.0.0/24)tcpdumpkernelNativecodeld*****12(%ebx),*%eax*test***%eax,*$0x800jeq****L3ld*****26(%ebx),*%eaxand****%eax,*$0xffffff00********...filteredpackets***** ***** packetsKernel module
Change language