mirror of
https://github.com/safing/portmaster
synced 2025-09-01 10:09:11 +00:00
93 lines
2.5 KiB
Go
93 lines
2.5 KiB
Go
package interception
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/safing/portbase/log"
|
|
"github.com/safing/portbase/notifications"
|
|
"github.com/safing/portbase/utils/osdetail"
|
|
"github.com/safing/portmaster/firewall/interception/windowskext"
|
|
"github.com/safing/portmaster/network/packet"
|
|
"github.com/safing/portmaster/updates"
|
|
)
|
|
|
|
var Packets chan packet.Packet
|
|
|
|
func init() {
|
|
// Packets channel for feeding the firewall.
|
|
Packets = make(chan packet.Packet, 1000)
|
|
}
|
|
|
|
// Start starts the interception.
|
|
func Start() error {
|
|
|
|
dllFile, err := updates.GetPlatformFile("kext/portmaster-kext.dll")
|
|
if err != nil {
|
|
return fmt.Errorf("interception: could not get kext dll: %s", err)
|
|
}
|
|
kextFile, err := updates.GetPlatformFile("kext/portmaster-kext.sys")
|
|
if err != nil {
|
|
return fmt.Errorf("interception: could not get kext sys: %s", err)
|
|
}
|
|
|
|
err = windowskext.Init(dllFile.Path(), kextFile.Path())
|
|
if err != nil {
|
|
return fmt.Errorf("interception: could not init windows kext: %s", err)
|
|
}
|
|
|
|
err = windowskext.Start()
|
|
if err != nil {
|
|
return fmt.Errorf("interception: could not start windows kext: %s", err)
|
|
}
|
|
|
|
go windowskext.Handler(Packets)
|
|
go handleWindowsDNSCache()
|
|
|
|
return nil
|
|
}
|
|
|
|
// Stop starts the interception.
|
|
func Stop() error {
|
|
return windowskext.Stop()
|
|
}
|
|
|
|
func handleWindowsDNSCache() {
|
|
|
|
err := osdetail.StopService("dnscache")
|
|
if err != nil {
|
|
// cannot stop dnscache, try disabling
|
|
if err == osdetail.ErrServiceNotStoppable {
|
|
err := osdetail.DisableDNSCache()
|
|
if err != nil {
|
|
log.Warningf("firewall/interception: failed to disable Windows Service \"DNS Client\" (dnscache) for better interception: %s", err)
|
|
notifyDisableDNSCache()
|
|
}
|
|
notifyRebootRequired()
|
|
return
|
|
}
|
|
|
|
// error while stopping service
|
|
log.Warningf("firewall/interception: failed to stop Windows Service \"DNS Client\" (dnscache) for better interception: %s", err)
|
|
notifyDisableDNSCache()
|
|
}
|
|
|
|
// log that service is stopped
|
|
log.Info("firewall/interception: Windows Service \"DNS Client\" (dnscache) is stopped for better interception")
|
|
|
|
}
|
|
|
|
func notifyDisableDNSCache() {
|
|
(¬ifications.Notification{
|
|
ID: "windows-disable-dns-cache",
|
|
Message: "The Portmaster needs the Windows Service \"DNS Client\" (dnscache) to be disabled for best effectiveness.",
|
|
Type: notifications.Warning,
|
|
}).Save()
|
|
}
|
|
|
|
func notifyRebootRequired() {
|
|
(¬ifications.Notification{
|
|
ID: "windows-dnscache-reboot-required",
|
|
Message: "Please restart your system to complete Portmaster integration.",
|
|
Type: notifications.Warning,
|
|
}).Save()
|
|
}
|