gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(interceptor): Use lxc-info for more reliable container detection

Browse Source 
Changed LXC container status detection from lxc-ls to lxc-info:
- lxc-info -n mitmproxy -s provides direct state query
- More reliable than parsing lxc-ls --running output
- Fixed container name from secbx-mitmproxy to mitmproxy

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
CyberMind-FR 2026-02-12 11:35:16 +01:00
parent d5f7da4774
commit 7ea2ff43ba
1 changed files with 8 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
package/secubox/luci-app-interceptor/root/usr/libexec/rpcd/luci.interceptor
View File

@ -46,9 +46,9 @@ get_mitm_status() {
# Check UCI config # Check UCI config
enabled=$(uci -q get mitmproxy.main.enabled || echo "0") enabled=$(uci -q get mitmproxy.main.enabled || echo "0")
# Check if LXC container is running # Check if LXC container is running (use lxc-info which is more reliable)
if command -v lxc-ls >/dev/null 2>&1; then if command -v lxc-info >/dev/null 2>&1; then
lxc-ls --running 2>/dev/null | grep -q "secbx-mitmproxy" && running=1 lxc-info -n mitmproxy -s 2>/dev/null | grep -q "RUNNING" && running=1
fi fi
# Count today's threats from log # Count today's threats from log
@ -156,10 +156,10 @@ get_failover_status() {
get_insider_waf_status() { get_insider_waf_status() {
local enabled=0 running=0 insider_threats=0 blocked_clients=0 exfil_attempts=0 local enabled=0 running=0 insider_threats=0 blocked_clients=0 exfil_attempts=0
# Insider WAF is enabled when mitmproxy "out" instance is running # Insider WAF is enabled when mitmproxy container is running
# This inspects LAN→WAN traffic for insider threats # This inspects LAN→WAN traffic for insider threats
if command -v lxc-ls >/dev/null 2>&1; then if command -v lxc-info >/dev/null 2>&1; then
lxc-ls --running 2>/dev/null | grep -qE "mitmproxy-out|secbx-mitmproxy" && running=1 lxc-info -n mitmproxy -s 2>/dev/null | grep -q "RUNNING" && running=1
fi fi
# Check mitmproxy config for outbound inspection # Check mitmproxy config for outbound inspection
@ -241,7 +241,7 @@ case "$1" in
fi fi
# mitmproxy running (external WAF) # mitmproxy running (external WAF)
if pgrep mitmproxy >/dev/null 2>&1 || lxc-ls --running 2>/dev/null | grep -q "secbx-mitmproxy"; then if pgrep mitmproxy >/dev/null 2>&1 || lxc-info -n mitmproxy -s 2>/dev/null | grep -q "RUNNING"; then
score=$((score + 17)) score=$((score + 17))
pillars_active=$((pillars_active + 1)) pillars_active=$((pillars_active + 1))
fi fi
@ -265,7 +265,7 @@ case "$1" in
fi fi
# Insider WAF (mitmproxy outbound instance) # Insider WAF (mitmproxy outbound instance)
if lxc-ls --running 2>/dev/null | grep -qE "mitmproxy-out|secbx-mitmproxy"; then if lxc-info -n mitmproxy -s 2>/dev/null | grep -q "RUNNING"; then
score=$((score + 16)) score=$((score + 16))
pillars_active=$((pillars_active + 1)) pillars_active=$((pillars_active + 1))
fi fi