Fix the version number string cannot be found in the dynamic library of boringssl. #679
+54
−38
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
… the dynamic library of boringssl. Signed-off-by: CFC4N <[email protected]>
cfc4n
changed the title
before2024-12-02T14:36:02Z INF AppName="eCapture(旁观者)"
2024-12-02T14:36:02Z INF HomePage=https://ecapture.cc
2024-12-02T14:36:02Z INF Repository=https://github.com/gojue/ecapture
2024-12-02T14:36:02Z INF Author="CFC4N <[email protected]>"
2024-12-02T14:36:02Z INF Description="Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64."
2024-12-02T14:36:02Z INF Version=androidgki_arm64:v0.8.11:6.5.0-1025-azure
2024-12-02T14:36:02Z INF Listen=localhost:28256
2024-12-02T14:36:02Z INF eCapture running logs logger=
2024-12-02T14:36:02Z INF the file handler that receives the captured event eventCollector=
2024-12-02T14:36:02Z WRN ========== module starting. ==========
2024-12-02T14:36:02Z INF Kernel Info=5.15.41 Pid=5425
2024-12-02T14:36:02Z WRN Your environment is like a container. We won't be able to detect the BTF configuration.
If eCapture fails to run, try specifying the BTF mode. use `-b 2` to specify non-CORE mode.
2024-12-02T14:36:02Z INF BTF bytecode mode: CORE. btfMode=0
2024-12-02T14:36:02Z INF master key keylogger has been set. eBPFProgramType=Text keylogger=
2024-12-02T14:36:02Z INF module initialization. isReload=false moduleName=EBPFProbeOPENSSL
2024-12-02T14:36:02Z INF Module.Run()
2024-12-02T14:36:02Z INF listen=localhost:28256
2024-12-02T14:36:02Z INF https server starting...You can update the configuration file via the HTTP interface.
2024-12-02T14:36:02Z ERR OpenSSL/BoringSSL version check failed error="OpenSSL/BoringSSL version not found" soPath=/apex/com.android.conscrypt/lib64/libssl.so
2024-12-02T14:36:02Z INF setupManagers eBPFProgramType=Text
2024-12-02T14:36:02Z FTL module run failed. error="OpenSSL/BoringSSL version not found" isReload=falseafteremu64a:/data/local/tmp # ./ecapture tls
2024-12-02T15:03:52Z INF AppName="eCapture(旁观者)"
2024-12-02T15:03:52Z INF HomePage=https://ecapture.cc
2024-12-02T15:03:52Z INF Repository=https://github.com/gojue/ecapture
2024-12-02T15:03:52Z INF Author="CFC4N <[email protected]>"
2024-12-02T15:03:52Z INF Description="Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64."
2024-12-02T15:03:52Z INF Version=androidgki_arm64:0.8.10-20241116-fcddaeb:5.15.0-125-generic
2024-12-02T15:03:52Z INF Listen=localhost:28256
2024-12-02T15:03:52Z INF eCapture running logs logger=
2024-12-02T15:03:52Z INF the file handler that receives the captured event eventCollector=
2024-12-02T15:03:52Z WRN ========== module starting. ==========
2024-12-02T15:03:52Z INF Kernel Info=5.15.41 Pid=6845
2024-12-02T15:03:52Z WRN Your environment is like a container. We won't be able to detect the BTF configuration.
If eCapture fails to run, try specifying the BTF mode. use `-b 2` to specify non-CORE mode.
2024-12-02T15:03:52Z INF BTF bytecode mode: CORE. btfMode=0
2024-12-02T15:03:52Z INF master key keylogger has been set. eBPFProgramType=Text keylogger=
2024-12-02T15:03:52Z INF listen=localhost:28256
2024-12-02T15:03:52Z INF https server starting...You can update the configuration file via the HTTP interface.
2024-12-02T15:03:52Z INF module initialization. isReload=false moduleName=EBPFProbeOPENSSL
2024-12-02T15:03:52Z INF Module.Run()
2024-12-02T15:03:52Z ERR bpfFile=boringssl_a_13_kern.o sslVersion=android_default
2024-12-02T15:03:52Z ERR OpenSSL/BoringSSL version not found, used default version.If you want to use the specific version, please set the sslVersion parameter with "--ssl_version='boringssl_a_13'" , "--ssl_version='boringssl_a_14'", or use "ecapture tls --help" for more help.
2024-12-02T15:03:52Z INF Hook masterKey function ElfType=2 Functions=["SSL_in_init"] binrayPath=/apex/com.android.conscrypt/lib64/libssl.so
2024-12-02T15:03:52Z INF target all process.
2024-12-02T15:03:52Z INF target all users.
2024-12-02T15:03:52Z INF setupManagers eBPFProgramType=Text
2024-12-02T15:03:52Z INF BPF bytecode file is matched. bpfFileName=user/bytecode/boringssl_a_13_kern_core.o
2024-12-02T15:03:52Z INF perfEventReader created mapSize(MB)=4
2024-12-02T15:03:52Z INF perfEventReader created mapSize(MB)=4
2024-12-02T15:03:52Z INF module started successfully. isReload=false moduleName=EBPFProbeOPENSSL
2024-12-02T15:04:01Z ??? UUID:844_6856_Thread-96_0_1_0.0.0.0, Name:HTTPRequest, Type:1, Length:212
GET /generate_204 HTTP/1.1
Host: www.google.com
Accept-Encoding: gzip
Connection: close
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.32 Safari/537.36
2024-12-02T15:04:01Z ??? UUID:844_6856_Thread-96_0_0_0.0.0.0, Name:HTTPResponse, Type:3, Length:184
HTTP/1.1 204 No Content
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 02 Dec 2024 15:04:00 GMT
2024-12-02T15:04:04Z ??? UUID:844_7597_Thread-99_0_1_0.0.0.0, Name:HTTPRequest, Type:1, Length:212
GET /generate_204 HTTP/1.1
Host: www.google.com
Accept-Encoding: gzip
Connection: close
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.32 Safari/537.36
2024-12-02T15:04:05Z ??? UUID:844_7597_Thread-99_0_0_0.0.0.0, Name:HTTPResponse, Type:3, Length:184
HTTP/1.1 204 No Content
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 02 Dec 2024 15:04:04 GMT
2024-12-02T15:04:06Z ??? UUID:844_7614_Thread-102_0_1_0.0.0.0, Name:HTTPRequest, Type:1, Length:212
GET /generate_204 HTTP/1.1
Host: www.google.com
Accept-Encoding: gzip
Connection: close
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.32 Safari/537.36
2024-12-02T15:04:06Z ??? UUID:844_7614_Thread-102_0_0_0.0.0.0, Name:HTTPResponse, Type:3, Length:184
HTTP/1.1 204 No Content
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 02 Dec 2024 15:04:05 GMT
^C2024-12-02T15:04:07Z INF module close.
2024-12-02T15:04:07Z INF Module closed,message recived from Context
2024-12-02T15:04:08Z INF iModule module close
2024-12-02T15:04:08Z INF bye bye.
emu64a:/data/local/tmp # % ``` |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
fix #678