Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

wsa 无法正常工作 #378

Closed
EveJenkins opened this issue Jul 13, 2023 · 10 comments · Fixed by #379
Closed

wsa 无法正常工作 #378

EveJenkins opened this issue Jul 13, 2023 · 10 comments · Fixed by #379
Labels
🐞 bug Something isn't working

Comments

@EveJenkins
Copy link

qssi:/data/local/tmp # ./ecapture tls
tls_2023/07/13 13:47:21 ECAPTURE :: ecapture Version : androidgki_x86_64:0.6.0-20230702-44d2d47:5.15.0-1040-azure
tls_2023/07/13 13:47:21 ECAPTURE :: Pid Info : 6577
tls_2023/07/13 13:47:21 ECAPTURE :: Kernel Info : 5.15.104
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL module initialization
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL master key keylogger: ecapture_masterkey.log
tls_2023/07/13 13:47:21 ECAPTURE :: Module.Run()
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL UPROBE MODEL
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL OpenSSL/BoringSSL version not found, used default version :android_default
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL HOOK type:2, binrayPath:/apex/com.android.conscrypt/lib64/libssl.so
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL Hook masterKey function:SSL_in_init
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL target all process.
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL target all users.
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL BPF bytecode filename:user/bytecode/boringssl_1_1_1_kern.o
tls_2023/07/13 13:47:21 EBPFProbeOPENSSL module run failed, [skip it]. error:couldn't init manager error:unknown EbpfFuncName , couldn't find program at probe_entry_SSL_write
tls_2023/07/13 13:47:21 ECAPTURE :: No runnable modules, Exit(1)
@cfc4n
Copy link
Member

cfc4n commented Jul 14, 2023

自己编译的吧?大概是编译报错了。

@EveJenkins
Copy link
Author

自己编译的吧?大概是编译报错了。

不是是我下载的

@helloworld2019
Copy link

helloworld2019 commented Jul 15, 2023
edited
Loading

我也是自己下载的,开始以为是Ubuntu版本的问题(18.04),最后特地装了个21.04还是有问题,根本用不了。我也是一直显示
EBPFProbeOPENSSL module run failed, [skip it]. error:couldn't init manager error:unknown EbpfFuncName , couldn't find program at probe_entry_SSL_write

@cfc4n
Copy link
Member

cfc4n commented Jul 16, 2023

OK,我晚点看下

@cfc4n cfc4n added the 🐞 bug Something isn't working label Jul 16, 2023
@cfc4n
Copy link
Member

cfc4n commented Jul 16, 2023
edited
Loading

make nocore编译时报错,原因为non-co-re模式下,使用的头文件里,缺少了对KBUILD-MODNAME的定义,导致编译报错。

In file included from kern/gotls_kern.c:16:
In file included from ./kern/ecapture.h:50:
In file included from /lib/modules/5.15.0-77-generic/build/include/net/sock.h:59:
In file included from /lib/modules/5.15.0-77-generic/build/include/linux/filter.h:25:
In file included from /lib/modules/5.15.0-77-generic/build/include/net/sch_generic.h:21:
/lib/modules/5.15.0-77-generic/build/include/net/flow_offload.h:363:3: error: use of undeclared identifier 'KBUILD_MODNAME'
                NL_SET_ERR_MSG_MOD(extack, "Driver does not support selected HW stats type");
                ^
/lib/modules/5.15.0-77-generic/build/include/linux/netlink.h:102:27: note: expanded from macro 'NL_SET_ERR_MSG_MOD'
        NL_SET_ERR_MSG((extack), KBUILD_MODNAME ": " msg)

release时报错信息如下:v0.6.0 release log

cfc4n added a commit that referenced this issue Jul 16, 2023
@cfc4n
fix #378 , error: use of undeclared identifier 'KBUILD_MODNAME'
563ae13
@cfc4n cfc4n linked a pull request Jul 16, 2023 that will close this issue
fix #378 , error: use of undeclared identifier 'KBUILD_MODNAME' #379
Merged
This was referenced Jul 16, 2023
Merged
Closed
@helloworld2019
Copy link

老哥多久能更新release版本啊,想尽快体验一下功能。

cfc4n added a commit that referenced this issue Jul 16, 2023
@cfc4n
fix #378 , error: use of undeclared identifier 'KBUILD_MODNAME'
6a08825
@cfc4n cfc4n reopened this Jul 16, 2023
@cfc4n
Copy link
Member

cfc4n commented Jul 16, 2023

发布好了,可以去试试。

Try v0.6.1

@helloworld2019
Copy link

目前尝试使用release v0.6.1在Ubuntu21.04上运行,可正常使用运行。

@cfc4n
Copy link
Member

cfc4n commented Jul 17, 2023

v0.6.1 修复了android上抓包的问题了吗? 如果修复了,请关闭issue。

Has the packet capture issue on Android been fixed in v0.6.1? If it has been fixed, please close the issue.

@EveJenkins
Copy link
Author

v0.6.1 修复了android上抓包的问题了吗? 如果修复了,请关闭issue。

Has the packet capture issue on Android been fixed in v0.6.1? If it has been fixed, please close the issue.

已经可以使用了

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
🐞 bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix #378 , error: use of undeclared identifier 'KBUILD_MODNAME' gojue/ecapture
3 participants
@cfc4n @helloworld2019 @EveJenkins