vikarti.anatra/safing-portmaster
1
0
Fork 0
mirror of https://github.com/safing/portmaster synced 2025-09-02 18:49:14 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

minor refactoring

Browse source
This commit is contained in:
vladimir 2022-11-10 17:36:58 +02:00
parent f43cf9974d
commit c43f6fe463
4 changed files with 13 additions and 13 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
firewall/interception.go
View file

@ -151,7 +151,7 @@ func resetAllConnectionVerdicts() {
if conn.Verdict.Firewall != previousVerdict { if conn.Verdict.Firewall != previousVerdict {
err := interception.UpdateVerdictOfConnection(conn) err := interception.UpdateVerdictOfConnection(conn)
if err != nil { if err != nil {
log.Debugf("filter: failed to delete connection verdict: %s", err) log.Debugf("filter: failed to update connection verdict: %s", err)
} }
conn.Save() conn.Save()
tracer.Infof("filter: verdict of connection %s changed from %s to %s", conn, previousVerdict.Verb(), conn.VerdictVerb()) tracer.Infof("filter: verdict of connection %s changed from %s to %s", conn, previousVerdict.Verb(), conn.VerdictVerb())

4
firewall/interception/nfq/conntrack.go
View file

@ -25,8 +25,8 @@ func InitNFCT() error {
return nil return nil
} }
// DeinitNFCT deinitializes the network filter conntrack library. // TeardownNFCT deinitializes the network filter conntrack library.
func DeinitNFCT() { func TeardownNFCT() {
_ = nfct.Close() _ = nfct.Close()
} }

2
firewall/interception/nfqueue_linux.go
View file

@ -172,7 +172,7 @@ func DeactivateNfqueueFirewall() error {
} }
_ = nfq.DeleteAllMarkedConnection() _ = nfq.DeleteAllMarkedConnection()
nfq.DeinitNFCT() nfq.TeardownNFCT()
return result.ErrorOrNil() return result.ErrorOrNil()
} }

18
firewall/interception/windowskext/handler.go
View file

@ -29,7 +29,7 @@ const (
VerdictRequestFlagSocketAuth = 2 VerdictRequestFlagSocketAuth = 2
) )
// Do not change the order of the members! The structure to communicate with the kernel extension. // Do not change the order of the members! The structure is used to communicate with the kernel extension.
// VerdictRequest is the request structure from the Kext. // VerdictRequest is the request structure from the Kext.
type VerdictRequest struct { type VerdictRequest struct {
id uint32 // ID from RegisterPacket id uint32 // ID from RegisterPacket
@ -48,7 +48,7 @@ type VerdictRequest struct {
packetSize uint32 packetSize uint32
} }
// Do not change the order of the members! The structure to communicate with the kernel extension. // Do not change the order of the members! The structure is used to communicate with the kernel extension.
type VerdictInfo struct { type VerdictInfo struct {
id uint32 // ID from RegisterPacket id uint32 // ID from RegisterPacket
verdict network.Verdict // verdict for the connection verdict network.Verdict // verdict for the connection
@ -56,13 +56,13 @@ type VerdictInfo struct {
// Do not change the order of the members! The structure to communicate with the kernel extension. // Do not change the order of the members! The structure to communicate with the kernel extension.
type VerdictUpdateInfo struct { type VerdictUpdateInfo struct {
localIP [4]uint32 //Source Address, only srcIP[0] if IPv4 localIP [4]uint32 // Source Address, only srcIP[0] if IPv4
remoteIP [4]uint32 //Destination Address remoteIP [4]uint32 // Destination Address
localPort uint16 //Source Port localPort uint16 // Source Port
remotePort uint16 //Destination port remotePort uint16 // Destination port
ipV6 uint8 //True: IPv6, False: IPv4 ipV6 uint8 // True: IPv6, False: IPv4
protocol uint8 //Protocol (UDP, TCP, ...) protocol uint8 // Protocol (UDP, TCP, ...)
verdict uint8 //New verdict verdict uint8 // New verdict
} }
type VersionInfo struct { type VersionInfo struct {