youtubeUnblock/iptk_YTUNBLOCK.c

#define _GNU_SOURCE
// Kernel module for youtubeUnblock.
// Make with make kmake && sudo iptables -t mangle -D OUTPUT 1 && sudo make kreload && sudo iptables -t mangle -I OUTPUT -p tcp -j YTUNBLOCK
#include <linux/module.h>
#include <linux/init.h>
#include <linux/printk.h>
#include <linux/mutex.h>
#include <linux/socket.h>
#include <linux/net.h>
#include <linux/netfilter/x_tables.h>
#include "ipt_YTUNBLOCK.h"

#include "mangle.h"
#include "config.h"
#include "raw_replacements.h"
#include "utils.h"
#include "logging.h"

struct config_t config = {
	.threads = THREADS_NUM,
	.frag_sni_reverse = 1,
	.frag_sni_faked = 0,
	.fragmentation_strategy = FRAGMENTATION_STRATEGY,
	.faking_strategy = FAKING_STRATEGY,
	.faking_ttl = FAKE_TTL,
	.fake_sni = 1,
	.fake_sni_seq_len = 1,
	.frag_middle_sni = 1,
	.frag_sni_pos = 1,
	.use_ipv6 = 1,
	.fakeseq_offset = 10000,
	.mark = DEFAULT_RAWSOCKET_MARK,
	.synfake = 0,
	.synfake_len = 0,

	.sni_detection = SNI_DETECTION_PARSE,

#ifdef SEG2_DELAY
	.seg2_delay = SEG2_DELAY,
#else
	.seg2_delay = 0,
#endif

#ifdef USE_GSO
	.use_gso = 1,
#else
	.use_gso = false,
#endif

#ifdef DEBUG
	.verbose = 2,
#else
	.verbose = 0,
#endif

	.domains_str = defaul_snistr,
	.domains_strlen = sizeof(defaul_snistr),

	.queue_start_num = DEFAULT_QUEUE_NUM,
	.fake_sni_pkt = fake_sni_old,
	.fake_sni_pkt_sz = sizeof(fake_sni_old) - 1, // - 1 for null-terminator
};

MODULE_LICENSE("GPL");
MODULE_VERSION("0.3.2");
MODULE_AUTHOR("Vadim Vetrov <vetrovvd@gmail.com>");
MODULE_DESCRIPTION("Linux kernel module for youtube unblock");

static int rsfd;
static struct socket *rawsocket;
DEFINE_MUTEX(rslock);

static int open_raw_socket(void) {
	int ret = 0;
	ret = sock_create(AF_INET, SOCK_RAW, IPPROTO_RAW, &rawsocket);

	if (ret < 0) {
		pr_alert("Unable to create raw socket\n");
		goto err;
	}

	sockptr_t optval = {
		.kernel = NULL,
		.is_kernel = 1
	};

	int mark = config.mark;
	optval.kernel = &mark;
	ret = sock_setsockopt(rawsocket, SOL_SOCKET, SO_MARK, optval, sizeof(mark));
	if (ret < 0)
	{
		pr_alert("setsockopt(SO_MARK, %d) failed\n", mark);
		goto sr_err;
	}
	int one = 1;
	optval.kernel = &one;

	return 0;
sr_err:
	sock_release(rawsocket);
err:
	return ret;
}

static void close_raw_socket(void) {
	sock_release(rawsocket);
}

static int send_raw_ipv4(const uint8_t *pkt, uint32_t pktlen) {
	int ret = 0;
	if (pktlen > AVAILABLE_MTU) return -ENOMEM;

	struct iphdr *iph;

	if ((ret = ip4_payload_split(
	(uint8_t *)pkt, pktlen, &iph, NULL, NULL, NULL)) < 0) {
		return ret;
	}

	struct sockaddr_in daddr = {
		.sin_family = AF_INET,
		.sin_port = 0,
		.sin_addr = {
			.s_addr = iph->daddr
		}
	};

	struct msghdr msg;
	struct kvec iov;
	iov.iov_base = (__u8 *)pkt;
	iov.iov_len = pktlen;
	iov_iter_kvec(&msg.msg_iter, READ, &iov, 1, 1);

	msg.msg_flags = 0;
	msg.msg_name = &daddr;
	msg.msg_namelen = sizeof(struct sockaddr_in);
	msg.msg_control = NULL;
	msg.msg_controllen = 0;

	mutex_lock(&rslock);
	ret = kernel_sendmsg(rawsocket, &msg, &iov, 1, pktlen);
	mutex_unlock(&rslock);

	return ret;
}

static int send_raw_socket(const uint8_t *pkt, uint32_t pktlen) {
	int ret;

	if (pktlen > AVAILABLE_MTU) {
		pr_warn("The packet is too big and may cause issues!");

		NETBUF_ALLOC(buff1, MAX_PACKET_SIZE);
		if (!NETBUF_CHECK(buff1)) {
			lgerror("Allocation error", -ENOMEM);
			return -ENOMEM;
		}
		NETBUF_ALLOC(buff2, MAX_PACKET_SIZE);
		if (!NETBUF_CHECK(buff2)) {
			lgerror("Allocation error", -ENOMEM);
			NETBUF_FREE(buff2);
			return -ENOMEM;
		}
		uint32_t buff1_size = MAX_PACKET_SIZE;
		uint32_t buff2_size = MAX_PACKET_SIZE;

		switch (config.fragmentation_strategy) {
			case FRAG_STRAT_TCP:
				if ((ret = tcp_frag(pkt, pktlen, AVAILABLE_MTU-128,
					buff1, &buff1_size, buff2, &buff2_size)) < 0) {

					goto erret_lc;
				}
				break;
			case FRAG_STRAT_IP:
				if ((ret = ip4_frag(pkt, pktlen, AVAILABLE_MTU-128,
					buff1, &buff1_size, buff2, &buff2_size)) < 0) {

					goto erret_lc;
				}
				break;
			default:
				pr_warn("send_raw_socket: Packet is too big but fragmentation is disabled!");
				ret = -EINVAL;
				goto erret_lc;
		}

		int sent = 0;
		ret = send_raw_socket(buff1, buff1_size);

		if (ret >= 0) sent += ret;
		else {
			goto erret_lc;
		}

		ret = send_raw_socket(buff2, buff2_size);
		if (ret >= 0) sent += ret;
		else {
			goto erret_lc;
		}

		NETBUF_FREE(buff1);
		NETBUF_FREE(buff2);
		return sent;
erret_lc:
		NETBUF_FREE(buff1);
		NETBUF_FREE(buff2);
		return ret;
	}
	
	int ipvx = netproto_version(pkt, pktlen);

	if (ipvx == IP4VERSION) 
		return send_raw_ipv4(pkt, pktlen);

	// else if (ipvx == IP6VERSION) 
		// return send_raw_ipv6(pkt, pktlen);

	printf("proto version %d is unsupported\n", ipvx);
	return -EINVAL;
}

static void delay_packet_send(const unsigned char *data, unsigned int data_len, unsigned int delay_ms) {
	pr_warn("delay_packet_send won't work on current youtubeUnblock version");
	send_raw_socket(data, data_len);
}

struct instance_config_t instance_config = {
	.send_raw_packet = send_raw_socket,
	.send_delayed_packet = delay_packet_send,
};

static unsigned int ykb_tg(struct sk_buff *skb, const struct xt_action_param *par) 
{
	if ((skb->mark & config.mark) == config.mark) 
		return XT_CONTINUE;
	
	if (skb->head == NULL) return XT_CONTINUE;
	
	uint32_t buflen = skb->len;
	if (buflen > MAX_PACKET_SIZE)
		goto accept;

	NETBUF_ALLOC(buf, buflen);
	if (!NETBUF_CHECK(buf))
		goto no_free;

	if (skb_copy_bits(skb, 0, buf, buflen) < 0) {
		pr_err("Unable copy bits\n");
		goto accept;
	}

	int vrd = process_packet(buf, buflen);

	switch(vrd) {
		case PKT_ACCEPT:
			goto accept;
		case PKT_DROP:
			goto drop;
	}

accept:
	NETBUF_FREE(buf);
no_free:
	return XT_CONTINUE;
drop:
	NETBUF_FREE(buf);
	kfree_skb(skb);
	return NF_STOLEN;
}

static int ykb_chk(const struct xt_tgchk_param *par) {
	return 0;
}


static struct xt_target ykb_tg_reg __read_mostly = {
	.name		= "YTUNBLOCK",
	.target		= ykb_tg,
	.table		= "mangle",
	.hooks		= (1 << NF_INET_LOCAL_OUT) | (1 << NF_INET_FORWARD), 
	.targetsize	= sizeof(struct xt_ytunblock_tginfo),
	.proto		= IPPROTO_TCP,
	.family		= NFPROTO_IPV4,
	.checkentry	= ykb_chk,
	.me		= THIS_MODULE,
};

static int __init ykb_init(void) {
	int ret = 0;

	ret = open_raw_socket();
	if (ret < 0) goto err;

	ret = xt_register_target(&ykb_tg_reg);
	if (ret < 0) goto close_rawsocket;

	pr_info("youtubeUnblock kernel module started.\n");
	return 0;
close_rawsocket:
	close_raw_socket();
err:
	return ret;
}

static void __exit ykb_destroy(void) {
	xt_unregister_target(&ykb_tg_reg);
	close_raw_socket();
	pr_info("youtubeUnblock kernel module destroyed.\n");
}

module_init(ykb_init);
module_exit(ykb_destroy);
Userspace compilation for openwrt \#define _GNU_SOURCE specified explicitly 2024-08-04 21:07:34 +00:00			`#define _GNU_SOURCE`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`// Kernel module for youtubeUnblock.`
			`// Make with make kmake && sudo iptables -t mangle -D OUTPUT 1 && sudo make kreload && sudo iptables -t mangle -I OUTPUT -p tcp -j YTUNBLOCK`
			`#include <linux/module.h>`
			`#include <linux/init.h>`
			`#include <linux/printk.h>`
			`#include <linux/mutex.h>`
			`#include <linux/socket.h>`
			`#include <linux/net.h>`
			`#include <linux/netfilter/x_tables.h>`
			`#include "ipt_YTUNBLOCK.h"`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`#include "mangle.h"`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00			`#include "config.h"`
			`#include "raw_replacements.h"`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`#include "utils.h"`
			`#include "logging.h"`

			`struct config_t config = {`
			`.threads = THREADS_NUM,`
			`.frag_sni_reverse = 1,`
			`.frag_sni_faked = 0,`
			`.fragmentation_strategy = FRAGMENTATION_STRATEGY,`
			`.faking_strategy = FAKING_STRATEGY,`
			`.faking_ttl = FAKE_TTL,`
			`.fake_sni = 1,`
			`.fake_sni_seq_len = 1,`
			`.frag_middle_sni = 1,`
			`.frag_sni_pos = 1,`
			`.use_ipv6 = 1,`
			`.fakeseq_offset = 10000,`
			`.mark = DEFAULT_RAWSOCKET_MARK,`
			`.synfake = 0,`
			`.synfake_len = 0,`

			`.sni_detection = SNI_DETECTION_PARSE,`

			`#ifdef SEG2_DELAY`
			`.seg2_delay = SEG2_DELAY,`
			`#else`
			`.seg2_delay = 0,`
			`#endif`

			`#ifdef USE_GSO`
			`.use_gso = 1,`
			`#else`
			`.use_gso = false,`
			`#endif`

			`#ifdef DEBUG`
			`.verbose = 2,`
			`#else`
			`.verbose = 0,`
			`#endif`

			`.domains_str = defaul_snistr,`
			`.domains_strlen = sizeof(defaul_snistr),`

			`.queue_start_num = DEFAULT_QUEUE_NUM,`
			`.fake_sni_pkt = fake_sni_old,`
			`.fake_sni_pkt_sz = sizeof(fake_sni_old) - 1, // - 1 for null-terminator`
			`};`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
			`MODULE_LICENSE("GPL");`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`MODULE_VERSION("0.3.2");`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`MODULE_AUTHOR("Vadim Vetrov <vetrovvd@gmail.com>");`
			`MODULE_DESCRIPTION("Linux kernel module for youtube unblock");`

			`static int rsfd;`
			`static struct socket *rawsocket;`
			`DEFINE_MUTEX(rslock);`

			`static int open_raw_socket(void) {`
			`int ret = 0;`
			`ret = sock_create(AF_INET, SOCK_RAW, IPPROTO_RAW, &rawsocket);`

			`if (ret < 0) {`
			`pr_alert("Unable to create raw socket\n");`
			`goto err;`
			`}`

			`sockptr_t optval = {`
			`.kernel = NULL,`
			`.is_kernel = 1`
			`};`

Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`int mark = config.mark;`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`optval.kernel = &mark;`
			`ret = sock_setsockopt(rawsocket, SOL_SOCKET, SO_MARK, optval, sizeof(mark));`
			`if (ret < 0)`
			`{`
			`pr_alert("setsockopt(SO_MARK, %d) failed\n", mark);`
			`goto sr_err;`
			`}`
			`int one = 1;`
			`optval.kernel = &one;`

			`return 0;`
			`sr_err:`
			`sock_release(rawsocket);`
			`err:`
			`return ret;`
			`}`

			`static void close_raw_socket(void) {`
			`sock_release(rawsocket);`
			`}`

Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`static int send_raw_ipv4(const uint8_t *pkt, uint32_t pktlen) {`
			`int ret = 0;`
			`if (pktlen > AVAILABLE_MTU) return -ENOMEM;`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
			`struct iphdr *iph;`

			`if ((ret = ip4_payload_split(`
			`(uint8_t *)pkt, pktlen, &iph, NULL, NULL, NULL)) < 0) {`
			`return ret;`
			`}`

			`struct sockaddr_in daddr = {`
			`.sin_family = AF_INET,`
Implement packet send 2024-08-03 22:29:57 +00:00			`.sin_port = 0,`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`.sin_addr = {`
			`.s_addr = iph->daddr`
			`}`
			`};`

			`struct msghdr msg;`
			`struct kvec iov;`
			`iov.iov_base = (__u8 *)pkt;`
			`iov.iov_len = pktlen;`
			`iov_iter_kvec(&msg.msg_iter, READ, &iov, 1, 1);`

			`msg.msg_flags = 0;`
Implement packet send 2024-08-03 22:29:57 +00:00			`msg.msg_name = &daddr;`
			`msg.msg_namelen = sizeof(struct sockaddr_in);`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`msg.msg_control = NULL;`
			`msg.msg_controllen = 0;`

			`mutex_lock(&rslock);`
Implement packet send 2024-08-03 22:29:57 +00:00			`ret = kernel_sendmsg(rawsocket, &msg, &iov, 1, pktlen);`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`mutex_unlock(&rslock);`

			`return ret;`
			`}`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`static int send_raw_socket(const uint8_t *pkt, uint32_t pktlen) {`
			`int ret;`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`if (pktlen > AVAILABLE_MTU) {`
			`pr_warn("The packet is too big and may cause issues!");`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`NETBUF_ALLOC(buff1, MAX_PACKET_SIZE);`
			`if (!NETBUF_CHECK(buff1)) {`
			`lgerror("Allocation error", -ENOMEM);`
			`return -ENOMEM;`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00			`}`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`NETBUF_ALLOC(buff2, MAX_PACKET_SIZE);`
			`if (!NETBUF_CHECK(buff2)) {`
			`lgerror("Allocation error", -ENOMEM);`
			`NETBUF_FREE(buff2);`
			`return -ENOMEM;`
			`}`
			`uint32_t buff1_size = MAX_PACKET_SIZE;`
			`uint32_t buff2_size = MAX_PACKET_SIZE;`

			`switch (config.fragmentation_strategy) {`
			`case FRAG_STRAT_TCP:`
			`if ((ret = tcp_frag(pkt, pktlen, AVAILABLE_MTU-128,`
			`buff1, &buff1_size, buff2, &buff2_size)) < 0) {`

			`goto erret_lc;`
			`}`
			`break;`
			`case FRAG_STRAT_IP:`
			`if ((ret = ip4_frag(pkt, pktlen, AVAILABLE_MTU-128,`
			`buff1, &buff1_size, buff2, &buff2_size)) < 0) {`

			`goto erret_lc;`
			`}`
			`break;`
			`default:`
			`pr_warn("send_raw_socket: Packet is too big but fragmentation is disabled!");`
			`ret = -EINVAL;`
			`goto erret_lc;`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00			`}`

Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`int sent = 0;`
			`ret = send_raw_socket(buff1, buff1_size);`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`if (ret >= 0) sent += ret;`
			`else {`
			`goto erret_lc;`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00			`}`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00
			`ret = send_raw_socket(buff2, buff2_size);`
			`if (ret >= 0) sent += ret;`
			`else {`
			`goto erret_lc;`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00			`}`

Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`NETBUF_FREE(buff1);`
			`NETBUF_FREE(buff2);`
			`return sent;`
			`erret_lc:`
			`NETBUF_FREE(buff1);`
			`NETBUF_FREE(buff2);`
			`return ret;`
			`}`

			`int ipvx = netproto_version(pkt, pktlen);`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`if (ipvx == IP4VERSION)`
			`return send_raw_ipv4(pkt, pktlen);`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`// else if (ipvx == IP6VERSION)`
			`// return send_raw_ipv6(pkt, pktlen);`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`printf("proto version %d is unsupported\n", ipvx);`
			`return -EINVAL;`
			`}`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`static void delay_packet_send(const unsigned char *data, unsigned int data_len, unsigned int delay_ms) {`
			`pr_warn("delay_packet_send won't work on current youtubeUnblock version");`
			`send_raw_socket(data, data_len);`
			`}`
Module for kernel works now on local machine. SEG2_DELAY is not implemented yet. 2024-08-04 12:55:07 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`struct instance_config_t instance_config = {`
			`.send_raw_packet = send_raw_socket,`
			`.send_delayed_packet = delay_packet_send,`
			`};`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`static unsigned int ykb_tg(struct sk_buff skb, const struct xt_action_param par)`
			`{`
			`if ((skb->mark & config.mark) == config.mark)`
			`return XT_CONTINUE;`

			`if (skb->head == NULL) return XT_CONTINUE;`

			`uint32_t buflen = skb->len;`
			`if (buflen > MAX_PACKET_SIZE)`
			`goto accept;`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`NETBUF_ALLOC(buf, buflen);`
			`if (!NETBUF_CHECK(buf))`
			`goto no_free;`

			`if (skb_copy_bits(skb, 0, buf, buflen) < 0) {`
			`pr_err("Unable copy bits\n");`
			`goto accept;`
			`}`

			`int vrd = process_packet(buf, buflen);`

			`switch(vrd) {`
			`case PKT_ACCEPT:`
			`goto accept;`
			`case PKT_DROP:`
			`goto drop;`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`}`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`accept:`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`NETBUF_FREE(buf);`
			`no_free:`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`return XT_CONTINUE;`
Kernel module basic ipv4 with debug settings 2024-09-01 13:07:47 +00:00			`drop:`
			`NETBUF_FREE(buf);`
			`kfree_skb(skb);`
			`return NF_STOLEN;`
Implement googlevideo packet handling Mangling itself is in TODO state. 2024-07-31 23:40:58 +00:00			`}`

			`static int ykb_chk(const struct xt_tgchk_param *par) {`
			`return 0;`
			`}`


			`static struct xt_target ykb_tg_reg __read_mostly = {`
			`.name = "YTUNBLOCK",`
			`.target = ykb_tg,`
			`.table = "mangle",`
			`.hooks = (1 << NF_INET_LOCAL_OUT) \| (1 << NF_INET_FORWARD),`
			`.targetsize = sizeof(struct xt_ytunblock_tginfo),`
			`.proto = IPPROTO_TCP,`
			`.family = NFPROTO_IPV4,`
			`.checkentry = ykb_chk,`
			`.me = THIS_MODULE,`
			`};`

			`static int __init ykb_init(void) {`
			`int ret = 0;`

			`ret = open_raw_socket();`
			`if (ret < 0) goto err;`

			`ret = xt_register_target(&ykb_tg_reg);`
			`if (ret < 0) goto close_rawsocket;`

			`pr_info("youtubeUnblock kernel module started.\n");`
			`return 0;`
			`close_rawsocket:`
			`close_raw_socket();`
			`err:`
			`return ret;`
			`}`

			`static void __exit ykb_destroy(void) {`
			`xt_unregister_target(&ykb_tg_reg);`
			`close_raw_socket();`
			`pr_info("youtubeUnblock kernel module destroyed.\n");`
			`}`

			`module_init(ykb_init);`
			`module_exit(ykb_destroy);`