rms/win-split-tunnel
1
0
Fork 0
mirror of https://github.com/amnezia-vpn/win-split-tunnel.git synced 2026-05-17 08:16:00 +03:00
Code Issues Packages Projects Releases Wiki Activity

Match on inaddr_any in connect-redirect

Browse Source
This commit is contained in:
Odd Stranne
2021-05-24 17:07:06 +02:00
parent 3f3445dffe
commit 484c120dad
1 changed files with 14 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
src/firewall/callouts.cpp
View File

@@ -496,26 +496,29 @@ RewriteConnection
WdfSpinLockRelease(Context->IpAddresses.Lock);
//
// Identify the specific case we're interested in, or abort.
// Identify the specific cases we're interested in, or abort.
//
bool shouldRedirect = false;
if (ipv4)
{
auto src = RtlUlongByteSwap(FixedValues->incomingValue[FWPS_FIELD_ALE_CONNECT_REDIRECT_V4_IP_LOCAL_ADDRESS].value.uint32);
if (!IN4_ADDR_EQUAL(reinterpret_cast<IN_ADDR*>(&src), &ipAddresses.TunnelIpv4))
{
return;
}
shouldRedirect = IN4_ADDR_EQUAL(reinterpret_cast<IN_ADDR*>(&src), &ipAddresses.TunnelIpv4)
|| IN4_IS_ADDR_UNSPECIFIED(reinterpret_cast<IN_ADDR*>(&src));
}
else
{
auto src = FixedValues->incomingValue[FWPS_FIELD_ALE_CONNECT_REDIRECT_V6_IP_LOCAL_ADDRESS].value.byteArray16;
if (!IN6_ADDR_EQUAL(reinterpret_cast<IN6_ADDR*>(src), &ipAddresses.TunnelIpv6))
{
return;
}
shouldRedirect = IN6_ADDR_EQUAL(reinterpret_cast<IN6_ADDR*>(src), &ipAddresses.TunnelIpv6)
|| IN6_IS_ADDR_UNSPECIFIED(reinterpret_cast<IN6_ADDR*>(&src));
}
if (!shouldRedirect)
{
return;
}
//
@@ -672,6 +675,8 @@ CalloutClassifyConnect
if (verdict == PROCESS_SPLIT_VERDICT::DO_SPLIT)
{
DbgPrint("New connection in split app\n");
RewriteConnection
(
FixedValues,