Comments (8)
Yes it's the same error @sujaldev
from mitmproxy.
WireGuard runs over UDP, so I guess that requires some special treatment: https://stackoverflow.com/questions/27596409/how-do-i-publish-a-udp-port-on-docker
In either case, this is very likely Docker idiosyncrasies and not a mitmproxy bug.
from mitmproxy.
Hey @mhils thanks for quick reference,
after change to
docker run --rm -it -v $(pwd):/workspace -p 51820:51820/udp -p 127.0.0.1:8081:8081 mitmproxy/mitmproxy mitmweb --web-host 0.0.0.0 --set block_global=false --set listen_host=0.0.0.0 --mode wireguard -s /workspace/response.py
then got this error in console output:
Failed to process a WireGuard handshake packet: InvalidAeadTag
I still guess it is something related to how wireguard server in mitm handling the udp is somehow not correct when running under docker
from mitmproxy.
Do try running it without your script, perhaps it is responsible for causing this issue.
from mitmproxy.
the script is working fine when running directly
from mitmproxy.
I see, but have you tried running without the script in the container?
from mitmproxy.
I believe it's the error with the private key validations
https://docs.rs/boringtun/latest/src/boringtun/noise/handshake.rs.html
from mitmproxy.
Try adding --set confdir=/root/.mitmproxy
to the mitmweb
command and add make your config persist by adding this to your docker command -v $(pwd)/.mitmproxy:/root/.mitmproxy/
(or use home if you prefer that), like so:
docker run --rm -it -v $(pwd):/workspace -v $(pwd)/.mitmproxy:/root/.mitmproxy/ -p 51820:51820/udp -p 127.0.0.1:8081:8081 mitmproxy/mitmproxy mitmweb --web-host 0.0.0.0 --set block_global=false --set listen_host=0.0.0.0 --mode wireguard -s /workspace/response.py --set confdir=/root/.mitmproxy
And then update your client with the new config.
from mitmproxy.
Related Issues (20)
- Export tab not working on Safari HOT 6
- zstd decompression failure HOT 3
- The CPU of mitmproxy deployed by docker is too high, reaching 100%! HOT 3
- DOC: certificate for IOS emulator entry is useless HOT 1
- log only a part of a request
- mitmproxy works for any known url but not for one and says 502 Bad Gateway Certificate verify failed: unable to get local issuer certificate HOT 2
- BYPASS IDEA FOR REQUESTS FOR PINNED CERTS | [ Android | Iphone ]
- DNS message parsing issue
- Non-linear growth in processing time with mitmproxy regarding packet size HOT 12
- pip install mitmproxy failure HOT 1
- Make Rust default but optional dependency HOT 3
- Task failed: redirect daemon exited prematurely. HOT 3
- Show More Not working HOT 8
- Tracking Issue: MVP Capture Tab
- ProxyAuth doesn't support re-auth
- Android14 emulator, after successfully installing the certificate, accessing website with ssl alerts ssl/tls errors
- Crash when `--ssl-insecure` is enabled in reverse mode HOT 1
- Local mode: Capture redirector process output if it crashes
- CONTENT MISSING and PROTOCOL_ERROR HOT 7
- HTTP/2 protocol error: Header block missing mandatory :path header HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mitmproxy.