WIN7 SP1 can not work

Question

WIN7 SP1 can not work

medivh-jay opened this issue 4 years ago · 14 comments

Hello

This program will get the following error on a 32-bit system:

windiver error: open interface handle error: The indicates an invalid packet filter string, layer, priority, or flags

The specific code that causes this reason is github.com/imgk/divert-go divert_dll.go, method open , code winDivertOpen.Call, The parameter is false, WINDIVERT_LAYER_NETWORK, 0, 0, Is there a solution?

Answer 1 · 2021-03-29T10:08:57.000Z

When I use the official C program provided by WinDivert, everything is fine.

Answer 2 · 2021-03-29T12:36:49.000Z

Can you provide more information about this error? Do you mean you can use same config on 64bit system while get an error on 32bit system? Can you provide your config file? I do not have any 32bit machine. I can not test it.

Answer 3 · 2021-03-30T05:46:56.000Z

i got same error ,bro

Can you provide more information about this error? Do you mean you can use same config on 64bit system while get an error on 32bit system? Can you provide your config file? I do not have any 32bit machine. I can not test it.

Answer 4 · 2021-03-30T06:04:41.000Z

Reproduction step:

download a windows 7 SP1 version and run it using a virtual machine (such as Oracle VM VirtualBox)
clone this repository
build this repository by:
3.1 set env go env -w GOOS=windows
3.2 set env go env -w GOARCH=386
3.3 build go build -tags="divert trojan"
copy config and binary into the windows 7 SP1
copy WinDivert.dll and WinDiver32.sys into windows 7 SP1 C:\Windows\System32
run it
mistakes always happen.

Answer 5 · 2021-03-30T06:06:10.000Z

In other words, it doesn't have to be Win7SP1. Windows10 32-bits can also happen

Answer 6 · 2021-03-30T06:28:04.000Z

Can you try to build shadow with MinGW and CGO and set -tags="divert divert_cgo trojan"?

Answer 7 · 2021-03-30T07:24:26.000Z

Can you try to build shadow with MinGW and CGO and set ?-tags="divert divert_cgo trojan"

yes, when I use -tags="divert divert_cgo trojan", it work, but the program will throw a glang error: runtime.semawakeup

Answer 8 · 2021-03-30T07:32:19.000Z

Can you try to build shadow with MinGW and CGO and set ?-tags="divert divert_cgo trojan"

yes, when I use -tags="divert divert_cgo trojan", it work, but the program will throw a glang error: runtime.semawakeup

Sometimes it happens. I do not know what causes that. For more information see #24.

Now I confirmed that this line does not work well on a 32-bit system.

hd, _, err := winDivertOpen.Call(uintptr(unsafe.Pointer(filterPtr)), uintptr(layer), uintptr(priority), uintptr(flags))

Answer 9 · 2021-03-31T01:42:10.000Z

In other words, it doesn't have to be Win7SP1. Windows10 32-bits can also happen

Please test the latest version of dev branch. I have tested 32-bit shadow on 64-bit system.

Answer 10 · 2021-03-31T14:34:58.000Z

In other words, it doesn't have to be Win7SP1. Windows10 32-bits can also happen

Please test the latest version of dev branch. I have tested 32-bit shadow on 64-bit system.

It still doesn't work, but one solution is to install the KB3033929 patch on 32-bit win7 so that wintun will work, but windivert's runtime exception doesn't seem to solve anyway

Answer 11 · 2021-03-31T22:32:49.000Z

What is the error message? I hope dev branch can solve this error.

windivert error: open interface handle error: The indicates an invalid packet filter string, layer, priority, or flags

The runtime error is runtime.semawakeup? It happens every time?

Answer 12 · 2021-04-01T01:42:14.000Z

Yes, runtime.semawakeup happens frequently and is very unstable.

Answer 13 · 2021-04-01T01:43:54.000Z

Answer 14 · 2021-04-02T01:53:04.000Z

As Microsoft has stopped the support of Windows 7 and I have no Windows 7 device, I won't pay too much attention on this issue. If you can provide a solution, I'm willing to adopt that. And I have no idea about what causes Golang runtime error.