Add support for old and new kext together
This commit is contained in:
Vladimir Stoilov
@@ -5,12 +5,16 @@ import (
|
||||
"fmt"
|
||||
"time"
|
||||
|
||||
"github.com/safing/portmaster/firewall/interception/windowskext2"
|
||||
"github.com/safing/portbase/log"
|
||||
kext1 "github.com/safing/portmaster/firewall/interception/windowskext"
|
||||
kext2 "github.com/safing/portmaster/firewall/interception/windowskext2"
|
||||
"github.com/safing/portmaster/network"
|
||||
"github.com/safing/portmaster/network/packet"
|
||||
"github.com/safing/portmaster/updates"
|
||||
)
|
||||
|
||||
var useOldKext = false
|
||||
|
||||
// start starts the interception.
|
||||
func startInterception(packets chan packet.Packet) error {
|
||||
kextFile, err := updates.GetPlatformFile("kext/portmaster-kext.sys")
|
||||
@@ -18,88 +22,131 @@ func startInterception(packets chan packet.Packet) error {
|
||||
return fmt.Errorf("interception: could not get kext sys: %s", err)
|
||||
}
|
||||
|
||||
err = windowskext.Init(kextFile.Path())
|
||||
err = kext2.Init(kextFile.Path())
|
||||
if err != nil {
|
||||
return fmt.Errorf("interception: could not init windows kext: %s", err)
|
||||
}
|
||||
|
||||
err = windowskext.Start()
|
||||
err = kext2.Start()
|
||||
if err != nil {
|
||||
return fmt.Errorf("interception: could not start windows kext: %s", err)
|
||||
}
|
||||
|
||||
// Start packet handler.
|
||||
module.StartServiceWorker("kext packet handler", 0, func(ctx context.Context) error {
|
||||
windowskext.Handler(ctx, packets, BandwidthUpdates)
|
||||
return nil
|
||||
})
|
||||
version, err := kext2.GetVersion()
|
||||
if err != nil {
|
||||
return fmt.Errorf("interception: failed to read version: %s", err)
|
||||
}
|
||||
log.Debugf("Kext version: %s", version.String())
|
||||
|
||||
// Start bandwidth stats monitor.
|
||||
module.StartServiceWorker("kext bandwidth request worker", 0, func(ctx context.Context) error {
|
||||
timer := time.NewTicker(1 * time.Second)
|
||||
for {
|
||||
select {
|
||||
case <-timer.C:
|
||||
{
|
||||
err := windowskext.SendBandwidthStatsRequest()
|
||||
if err != nil {
|
||||
return err
|
||||
if version.Minor < 2 {
|
||||
useOldKext = true
|
||||
|
||||
// Transfer ownership.
|
||||
kext1.SetKextHandler(kext2.GetKextHandle())
|
||||
kext1.SetKextService(kext2.GetKextServiceHandle(), kextFile.Path())
|
||||
|
||||
// Start packet handler.
|
||||
module.StartServiceWorker("kext packet handler", 0, func(ctx context.Context) error {
|
||||
kext1.Handler(ctx, packets)
|
||||
return nil
|
||||
})
|
||||
|
||||
// Start bandwidth stats monitor.
|
||||
module.StartServiceWorker("kext bandwidth stats monitor", 0, func(ctx context.Context) error {
|
||||
return kext1.BandwidthStatsWorker(ctx, 1*time.Second, BandwidthUpdates)
|
||||
})
|
||||
} else {
|
||||
|
||||
// Start packet handler.
|
||||
module.StartServiceWorker("kext packet handler", 0, func(ctx context.Context) error {
|
||||
kext2.Handler(ctx, packets, BandwidthUpdates)
|
||||
return nil
|
||||
})
|
||||
|
||||
// Start bandwidth stats monitor.
|
||||
module.StartServiceWorker("kext bandwidth request worker", 0, func(ctx context.Context) error {
|
||||
timer := time.NewTicker(1 * time.Second)
|
||||
for {
|
||||
select {
|
||||
case <-timer.C:
|
||||
{
|
||||
err := kext2.SendBandwidthStatsRequest()
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
}
|
||||
case <-ctx.Done():
|
||||
{
|
||||
return nil
|
||||
}
|
||||
}
|
||||
case <-ctx.Done():
|
||||
{
|
||||
return nil
|
||||
}
|
||||
|
||||
}
|
||||
})
|
||||
|
||||
}
|
||||
})
|
||||
|
||||
// Start kext logging. The worker will periodically send request to the kext to send logs.
|
||||
module.StartServiceWorker("kext log request worker", 0, func(ctx context.Context) error {
|
||||
timer := time.NewTicker(1 * time.Second)
|
||||
for {
|
||||
select {
|
||||
case <-timer.C:
|
||||
{
|
||||
err := windowskext.SendLogRequest()
|
||||
if err != nil {
|
||||
return err
|
||||
// Start kext logging. The worker will periodically send request to the kext to send logs.
|
||||
module.StartServiceWorker("kext log request worker", 0, func(ctx context.Context) error {
|
||||
timer := time.NewTicker(1 * time.Second)
|
||||
for {
|
||||
select {
|
||||
case <-timer.C:
|
||||
{
|
||||
err := kext2.SendLogRequest()
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
}
|
||||
case <-ctx.Done():
|
||||
{
|
||||
return nil
|
||||
}
|
||||
}
|
||||
case <-ctx.Done():
|
||||
{
|
||||
return nil
|
||||
}
|
||||
}
|
||||
|
||||
}
|
||||
})
|
||||
}
|
||||
})
|
||||
}
|
||||
|
||||
return nil
|
||||
}
|
||||
|
||||
// stop starts the interception.
|
||||
func stopInterception() error {
|
||||
return windowskext.Stop()
|
||||
if useOldKext {
|
||||
return kext1.Stop()
|
||||
}
|
||||
return kext2.Stop()
|
||||
}
|
||||
|
||||
// ResetVerdictOfAllConnections resets all connections so they are forced to go thought the firewall again.
|
||||
func ResetVerdictOfAllConnections() error {
|
||||
return windowskext.ClearCache()
|
||||
if useOldKext {
|
||||
return kext1.ClearCache()
|
||||
}
|
||||
return kext2.ClearCache()
|
||||
}
|
||||
|
||||
// UpdateVerdictOfConnection updates the verdict of the given connection in the kernel extension.
|
||||
func UpdateVerdictOfConnection(conn *network.Connection) error {
|
||||
return windowskext.UpdateVerdict(conn)
|
||||
if useOldKext {
|
||||
return kext1.UpdateVerdict(conn)
|
||||
}
|
||||
return kext2.UpdateVerdict(conn)
|
||||
}
|
||||
|
||||
// GetKextVersion returns the version of the kernel extension.
|
||||
func GetKextVersion() (string, error) {
|
||||
version, err := windowskext.GetVersion()
|
||||
if err != nil {
|
||||
return "", err
|
||||
if useOldKext {
|
||||
version, err := kext1.GetVersion()
|
||||
if err != nil {
|
||||
return "", err
|
||||
}
|
||||
return version.String(), nil
|
||||
} else {
|
||||
version, err := kext2.GetVersion()
|
||||
if err != nil {
|
||||
return "", err
|
||||
}
|
||||
return version.String(), nil
|
||||
}
|
||||
|
||||
return version.String(), nil
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user