vpnhide

vrr/vpnhide

Fork 0

mirror of https://github.com/okhsunrog/vpnhide.git synced 2026-04-28 14:44:43 +00:00

Commit graph

Author	SHA1	Message	Date
okhsunrog	c391d90432	feat: add dev_ifconf, inet6/inet_fill_ifaddr hooks for full VPN hiding Kernel module: - Add dev_ifconf hook to filter SIOCGIFCONF interface enumeration (goes through sock_ioctl -> dev_ifconf, not dev_ioctl) - Add inet6_fill_ifaddr and inet_fill_ifaddr hooks to filter RTM_GETADDR netlink responses. getifaddrs() was leaking tun0 via the address dump even though RTM_GETLINK was filtered. Uses skb_trim to undo the fill and return 0 (not -EMSGSIZE which causes infinite retry on empty skb). - All 6 kretprobes now cover: ioctl, SIOCGIFCONF, netlink link dumps, netlink address dumps (IPv4+IPv6), and /proc/net/route. Test app: - Treat SELinux EACCES/EPERM as PASS — if the app can't access the resource, it can't detect VPN through it either. - Test results: 14/14 passed with VPN active.	2026-04-11 19:09:00 +03:00
okhsunrog	e35cf1a6b9	refactor: overhaul kmod build system, fix kernel module bugs Build system: - Replace hardcoded paths in Makefile with env vars (KERNEL_SRC, CLANG_DIR) - Add .env.example and .envrc for direnv-based config - Simplify build-zip.sh to delegate to make instead of duplicating build command - Rewrite BUILDING.md: 5-step happy path with direnv, standalone prep as appendix - Remove redundant quick-reference script and step 7 (manual module.lds hack) Kernel module (vpnhide_kmod.c): - Fix fib_route_seq_show hook: save seq_file pointer and buffer position in entry handler instead of reading regs->regs[0] in return handler (which holds the return value on arm64, not the original argument). Rewrite buffer scanning as clean forward iteration with memmove compaction. - Remove dead SIOCGIFCONF case from dev_ioctl hook (confirmed in kernel source: SIOCGIFCONF goes through sock_ioctl -> dev_ifconf, not dev_ioctl on GKI 6.1) - Fix header comment: remove false tcp4_seq_show claim, correct rtnl symbol name Test app: - Auto-run checks on launch (LaunchedEffect) for easier adb-driven testing	2026-04-11 18:50:18 +03:00
okhsunrog	12daca5c1a	monorepo: combine vpnhide-zygisk, vpnhide (lsposed), and vpnhide-kmod Unified repository for the complete Android VPN-hiding stack: - zygisk/ — Rust Zygisk module (inline libc hooks via shadowhook) - lsposed/ — Kotlin LSPosed module (Java API + system_server hooks) - kmod/ — C kernel module (kretprobe hooks, invisible to anti-tamper) CI workflows use path filters to build only the changed component.	2026-04-11 15:01:49 +03:00

Author

SHA1

Message

Date

okhsunrog

c391d90432

feat: add dev_ifconf, inet6/inet_fill_ifaddr hooks for full VPN hiding

Kernel module:
- Add dev_ifconf hook to filter SIOCGIFCONF interface enumeration
  (goes through sock_ioctl -> dev_ifconf, not dev_ioctl)
- Add inet6_fill_ifaddr and inet_fill_ifaddr hooks to filter RTM_GETADDR
  netlink responses. getifaddrs() was leaking tun0 via the address dump
  even though RTM_GETLINK was filtered. Uses skb_trim to undo the fill
  and return 0 (not -EMSGSIZE which causes infinite retry on empty skb).
- All 6 kretprobes now cover: ioctl, SIOCGIFCONF, netlink link dumps,
  netlink address dumps (IPv4+IPv6), and /proc/net/route.

Test app:
- Treat SELinux EACCES/EPERM as PASS — if the app can't access the
  resource, it can't detect VPN through it either.
- Test results: 14/14 passed with VPN active.

2026-04-11 19:09:00 +03:00

okhsunrog

e35cf1a6b9

refactor: overhaul kmod build system, fix kernel module bugs

Build system:
- Replace hardcoded paths in Makefile with env vars (KERNEL_SRC, CLANG_DIR)
- Add .env.example and .envrc for direnv-based config
- Simplify build-zip.sh to delegate to make instead of duplicating build command
- Rewrite BUILDING.md: 5-step happy path with direnv, standalone prep as appendix
- Remove redundant quick-reference script and step 7 (manual module.lds hack)

Kernel module (vpnhide_kmod.c):
- Fix fib_route_seq_show hook: save seq_file pointer and buffer position in entry
  handler instead of reading regs->regs[0] in return handler (which holds the
  return value on arm64, not the original argument). Rewrite buffer scanning as
  clean forward iteration with memmove compaction.
- Remove dead SIOCGIFCONF case from dev_ioctl hook (confirmed in kernel source:
  SIOCGIFCONF goes through sock_ioctl -> dev_ifconf, not dev_ioctl on GKI 6.1)
- Fix header comment: remove false tcp4_seq_show claim, correct rtnl symbol name

Test app:
- Auto-run checks on launch (LaunchedEffect) for easier adb-driven testing

2026-04-11 18:50:18 +03:00

okhsunrog

12daca5c1a

monorepo: combine vpnhide-zygisk, vpnhide (lsposed), and vpnhide-kmod

Unified repository for the complete Android VPN-hiding stack:
- zygisk/ — Rust Zygisk module (inline libc hooks via shadowhook)
- lsposed/ — Kotlin LSPosed module (Java API + system_server hooks)
- kmod/ — C kernel module (kretprobe hooks, invisible to anti-tamper)

CI workflows use path filters to build only the changed component.

2026-04-11 15:01:49 +03:00

3 commits