github/portmaster
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Add and improve InfoOnly and ExpectInfo packet flags

Browse Source
This commit is contained in:
Daniel
2023-07-18 16:16:41 +02:00
parent 83479acc95
commit 28d3d24988
8 changed files with 78 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
firewall/interception/windowskext/bandwidth_stats.go
View File

@@ -1,3 +1,6 @@
//go:build windows
// +build windows
package windowskext
// This file contains example code how to read bandwidth stats from the kext. Its not ment to be used in production.

5
firewall/interception/windowskext/handler.go
View File

@@ -30,6 +30,11 @@ const (
// connection that was intercepted on an ALE layer instead of in the network
// stack itself. Thus, no packet data is available.
VerdictRequestFlagSocketAuth = 2
// VerdictRequestFlagExpectSocketAuth indicates that the next verdict
// requests is expected to be an informational socket auth request from
// the ALE layer.
VerdictRequestFlagExpectSocketAuth = 4
)
// Do not change the order of the members! The structure is used to communicate with the kernel extension.

6
firewall/interception/windowskext/kext.go
View File

@@ -127,8 +127,10 @@ func RecvVerdictRequest() (*VerdictRequest, error) {
return nil, ErrKextNotReady
}
timestamp := time.Now()
defer log.Tracef("winkext: getting verdict request took %s", time.Since(timestamp))
// DEBUG:
// timestamp := time.Now()
// defer log.Tracef("winkext: getting verdict request took %s", time.Since(timestamp))
// Initialize struct for the output data
var new VerdictRequest

13
firewall/interception/windowskext/packet.go
View File

@@ -24,16 +24,21 @@ type Packet struct {
lock sync.Mutex
}
// FastTrackedByIntegration returns whether the packet has been fast-track
// accepted by the OS integration.
func (pkt *Packet) FastTrackedByIntegration() bool {
return pkt.verdictRequest.flags&VerdictRequestFlagFastTrackPermitted > 0
}
// InfoOnly returns whether the packet is informational only and does not
// represent an actual packet.
func (pkt *Packet) InfoOnly() bool {
return pkt.verdictRequest.flags&VerdictRequestFlagSocketAuth > 0
}
// FastTrackedByIntegration returns whether the packet has been fast-track
// accepted by the OS integration.
func (pkt *Packet) FastTrackedByIntegration() bool {
return pkt.verdictRequest.flags&VerdictRequestFlagFastTrackPermitted > 0
// ExpectInfo returns whether the next packet is expected to be informational only.
func (pkt *Packet) ExpectInfo() bool {
return pkt.verdictRequest.flags&VerdictRequestFlagExpectSocketAuth > 0
}
// GetPayload returns the full raw packet.