• Mikio Hara's avatar
    net: delay IP protocol stack-snooping system calls · 6694a688
    Mikio Hara authored
    This change delays IP protocol stack-snooping system calls until the
    start of connection setup for the better experience with some system
    call auditing, such as seccomp on Linux. See #16789 for examples.
    
    Also updates the documentation on favoriteAddrFamily, which is the
    owner of stack-snooping system calls.
    
    Fixes #16789.
    
    Change-Id: I4af27bc1ed06ffb1f657b6f6381c328c1f41c66c
    Reviewed-on: https://go-review.googlesource.com/40750
    Run-TryBot: Mikio Hara <mikioh.mikioh@gmail.com>
    TryBot-Result: Gobot Gobot <gobot@golang.org>
    Reviewed-by: 's avatarIan Lance Taylor <iant@golang.org>
    6694a688
ipsock_posix.go 6.09 KB