NAME

Sniffer::Connection - contain basic information about a TCP connection

SYNOPSIS

  my $conn = Sniffer::Connection->new(
    tcp           => $packet,
    sent_data     => sub { $self->sent_data(@_) },
    received_data => sub { $self->received_data(@_) },
    closed        => sub {},
    teardown      => sub { $self->closed->($self) },
    log           => sub { print $_[0] },
  ));

This module will try to give you the ordered data stream from a TCP connection. You supply callbacks for the data. The data is returned as the ACK-packets are seen for it.

As the TCP-reordering is cooked out by me, it likely has bugs, but I have used this module for sniffing some out-of-order TCP connection.

`$conn->init_from_packet TCP`

Initializes the connection data from a packet.

`$conn->handle_packet TCP [, TIMESTAMP]`

Handles a packet and updates the status according to the packet.

The optional TIMESTAMP parameter allows you to attach a timestamp (in seconds since the epoch) to the packet if you have a capture file with timestamps. It defaults to the value of time.

`last_activity`

Returns the timestamp in epoch seconds of the last activity of the socket. This can be convenient to determine if a connection has gone stale.

This timestamp should be fed in via handle_packet if it is available. Capturing via Sniffer::HTTP::run and Sniffer::HTTP::run_file supplies the correct Net::Pcap timestamps and thus will reproduce all sessions faithfully.

`update_activity [TIMESTAMP]`

Updates last_activity and supplies a default timestamp of time.

TODO

Implement a (configurable?) timeout (of say 5 minutes) after which connections get auto-closed to reduce resource usage.
Data can only be forwarded after there has been the ACK packet for it!

BUGS

The whole module suite has almost no tests.

If you experience problems, please supply me with a complete, relevant packet dump as the included dump-raw.pl creates. Even better, supply me with (failing) tests.

AUTHOR

Max Maischein (corion@cpan.org)

COPYRIGHT

This code is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

To install Sniffer::HTTP, copy and paste the appropriate command in to your terminal.

cpanm

cpanm Sniffer::HTTP

CPAN shell

perl -MCPAN -e shell
install Sniffer::HTTP

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

NAME

SYNOPSIS

$conn->init_from_packet TCP

$conn->handle_packet TCP [, TIMESTAMP]

last_activity

update_activity [TIMESTAMP]