2024-09-19 16:21:49 +00:00
|
|
|
#include "nf_wrapper.h"
|
2024-09-01 16:56:38 +00:00
|
|
|
#ifndef KERNEL_SPACE
|
|
|
|
#error "You are trying to compile the kernel module not in the kernel space"
|
|
|
|
#endif
|
2024-07-31 23:40:58 +00:00
|
|
|
// Kernel module for youtubeUnblock.
|
|
|
|
// Make with make kmake && sudo iptables -t mangle -D OUTPUT 1 && sudo make kreload && sudo iptables -t mangle -I OUTPUT -p tcp -j YTUNBLOCK
|
|
|
|
#include <linux/module.h>
|
|
|
|
#include <linux/init.h>
|
|
|
|
#include <linux/printk.h>
|
|
|
|
#include <linux/mutex.h>
|
|
|
|
#include <linux/socket.h>
|
|
|
|
#include <linux/net.h>
|
2024-09-01 17:58:50 +00:00
|
|
|
|
|
|
|
#include <linux/netfilter.h>
|
|
|
|
#include <linux/netfilter_ipv4.h>
|
|
|
|
#include <linux/netfilter_ipv6.h>
|
2024-08-04 12:55:07 +00:00
|
|
|
|
2024-07-31 23:40:58 +00:00
|
|
|
#include "mangle.h"
|
2024-08-04 12:55:07 +00:00
|
|
|
#include "config.h"
|
2024-09-01 13:07:47 +00:00
|
|
|
#include "utils.h"
|
|
|
|
#include "logging.h"
|
2024-09-01 16:56:38 +00:00
|
|
|
#include "kmod_utils.h"
|
2024-09-01 13:07:47 +00:00
|
|
|
|
2024-07-31 23:40:58 +00:00
|
|
|
MODULE_LICENSE("GPL");
|
2024-09-01 13:07:47 +00:00
|
|
|
MODULE_VERSION("0.3.2");
|
2024-07-31 23:40:58 +00:00
|
|
|
MODULE_AUTHOR("Vadim Vetrov <vetrovvd@gmail.com>");
|
|
|
|
MODULE_DESCRIPTION("Linux kernel module for youtube unblock");
|
|
|
|
|
2024-09-19 16:21:49 +00:00
|
|
|
static NF_CALLBACK(ykb_nf_hook, skb) {
|
2024-09-01 21:11:58 +00:00
|
|
|
int ret;
|
|
|
|
|
2024-09-01 13:07:47 +00:00
|
|
|
if ((skb->mark & config.mark) == config.mark)
|
2024-09-01 21:11:58 +00:00
|
|
|
goto accept;
|
2024-09-01 13:07:47 +00:00
|
|
|
|
2024-09-01 17:58:50 +00:00
|
|
|
if (skb->head == NULL)
|
2024-09-01 21:11:58 +00:00
|
|
|
goto accept;
|
2024-09-01 13:07:47 +00:00
|
|
|
|
2024-09-01 21:11:58 +00:00
|
|
|
if (skb->len > MAX_PACKET_SIZE)
|
|
|
|
goto accept;
|
2024-09-01 13:07:47 +00:00
|
|
|
|
2024-09-01 21:11:58 +00:00
|
|
|
ret = skb_linearize(skb);
|
|
|
|
if (ret < 0) {
|
|
|
|
lgerror("Cannot linearize", ret);
|
2024-09-01 13:07:47 +00:00
|
|
|
goto accept;
|
|
|
|
}
|
|
|
|
|
2024-09-01 21:11:58 +00:00
|
|
|
int vrd = process_packet(skb->data, skb->len);
|
2024-09-01 13:07:47 +00:00
|
|
|
|
|
|
|
switch(vrd) {
|
|
|
|
case PKT_ACCEPT:
|
|
|
|
goto accept;
|
|
|
|
case PKT_DROP:
|
|
|
|
goto drop;
|
2024-07-31 23:40:58 +00:00
|
|
|
}
|
2024-09-01 13:07:47 +00:00
|
|
|
|
2024-07-31 23:40:58 +00:00
|
|
|
accept:
|
2024-09-01 17:58:50 +00:00
|
|
|
return NF_ACCEPT;
|
2024-09-01 13:07:47 +00:00
|
|
|
drop:
|
|
|
|
kfree_skb(skb);
|
|
|
|
return NF_STOLEN;
|
2024-07-31 23:40:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
2024-09-01 17:58:50 +00:00
|
|
|
static struct nf_hook_ops ykb_nf_reg __read_mostly = {
|
|
|
|
.hook = ykb_nf_hook,
|
|
|
|
.pf = NFPROTO_IPV4,
|
|
|
|
.hooknum = NF_INET_POST_ROUTING,
|
|
|
|
.priority = NF_IP_PRI_MANGLE,
|
2024-07-31 23:40:58 +00:00
|
|
|
};
|
|
|
|
|
2024-09-01 17:58:50 +00:00
|
|
|
static struct nf_hook_ops ykb6_nf_reg __read_mostly = {
|
|
|
|
.hook = ykb_nf_hook,
|
|
|
|
.pf = NFPROTO_IPV6,
|
|
|
|
.hooknum = NF_INET_POST_ROUTING,
|
|
|
|
.priority = NF_IP6_PRI_MANGLE,
|
2024-09-01 13:52:41 +00:00
|
|
|
};
|
|
|
|
|
2024-07-31 23:40:58 +00:00
|
|
|
static int __init ykb_init(void) {
|
|
|
|
int ret = 0;
|
|
|
|
|
|
|
|
ret = open_raw_socket();
|
|
|
|
if (ret < 0) goto err;
|
|
|
|
|
2024-09-01 17:58:50 +00:00
|
|
|
|
2024-09-01 13:52:41 +00:00
|
|
|
if (config.use_ipv6) {
|
|
|
|
ret = open_raw6_socket();
|
|
|
|
if (ret < 0) goto close_rawsocket;
|
|
|
|
|
2024-09-01 17:58:50 +00:00
|
|
|
#if LINUX_VERSION_CODE >= KERNEL_VERSION(4,13,0)
|
|
|
|
struct net *n;
|
|
|
|
for_each_net(n) {
|
|
|
|
ret = nf_register_net_hook(n, &ykb6_nf_reg);
|
|
|
|
if (ret < 0)
|
|
|
|
lgerror("bad rat",ret);
|
|
|
|
}
|
|
|
|
#else
|
|
|
|
nf_register_hook(&ykb6_nf_reg);
|
|
|
|
#endif
|
2024-09-01 13:52:41 +00:00
|
|
|
}
|
|
|
|
|
2024-09-01 17:58:50 +00:00
|
|
|
|
|
|
|
#if LINUX_VERSION_CODE >= KERNEL_VERSION(4,13,0)
|
|
|
|
struct net *n;
|
|
|
|
|
|
|
|
for_each_net(n) {
|
|
|
|
ret = nf_register_net_hook(n, &ykb_nf_reg);
|
|
|
|
if (ret < 0)
|
|
|
|
lgerror("bad rat",ret);
|
|
|
|
}
|
|
|
|
#else
|
|
|
|
nf_register_hook(&ykb_nf_reg);
|
|
|
|
#endif
|
2024-07-31 23:40:58 +00:00
|
|
|
|
|
|
|
pr_info("youtubeUnblock kernel module started.\n");
|
|
|
|
return 0;
|
2024-09-01 13:52:41 +00:00
|
|
|
|
2024-07-31 23:40:58 +00:00
|
|
|
close_rawsocket:
|
|
|
|
close_raw_socket();
|
|
|
|
err:
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
static void __exit ykb_destroy(void) {
|
2024-09-01 17:58:50 +00:00
|
|
|
if (config.use_ipv6) {
|
|
|
|
#if LINUX_VERSION_CODE >= KERNEL_VERSION(4,13,0)
|
|
|
|
struct net *n;
|
|
|
|
for_each_net(n)
|
|
|
|
nf_unregister_net_hook(n, &ykb6_nf_reg);
|
|
|
|
#else
|
|
|
|
nf_unregister_hook(&ykb6_nf_reg);
|
|
|
|
#endif
|
|
|
|
close_raw6_socket();
|
|
|
|
}
|
|
|
|
|
|
|
|
#if LINUX_VERSION_CODE >= KERNEL_VERSION(4,13,0)
|
|
|
|
struct net *n;
|
|
|
|
for_each_net(n)
|
|
|
|
nf_unregister_net_hook(n, &ykb_nf_reg);
|
|
|
|
#else
|
|
|
|
nf_unregister_hook(&ykb_nf_reg);
|
|
|
|
#endif
|
|
|
|
|
2024-07-31 23:40:58 +00:00
|
|
|
close_raw_socket();
|
|
|
|
pr_info("youtubeUnblock kernel module destroyed.\n");
|
|
|
|
}
|
|
|
|
|
|
|
|
module_init(ykb_init);
|
|
|
|
module_exit(ykb_destroy);
|