gandc/mtprotoproxy
1
0
Fork 0
mirror of https://github.com/alexbers/mtprotoproxy.git synced 2026-03-22 02:25:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

be more tolerate to time skewing. This should cover 90% of cases

Browse Source
This commit is contained in:
Alexander Bersenev
2019-08-17 13:21:57 +05:00
parent dcad0bd51b
commit 015d0a2012
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
mtprotoproxy.py
View File

@@ -846,7 +846,8 @@ async def handle_fake_tls_handshake(handshake, reader, writer, peer):
global used_handshakes global used_handshakes
global fake_cert_len global fake_cert_len
TIME_SKEW_TOLERANCE = 120 TIME_SKEW_MIN = -20 * 60
TIME_SKEW_MAX = 10 * 60
TLS_VERS = b"\x03\x03" TLS_VERS = b"\x03\x03"
TLS_CIPHERSUITE = b"\x13\x01" TLS_CIPHERSUITE = b"\x13\x01"
@@ -885,10 +886,10 @@ async def handle_fake_tls_handshake(handshake, reader, writer, peer):
continue continue
timestamp = int.from_bytes(xored_digest[-4:], "little") timestamp = int.from_bytes(xored_digest[-4:], "little")
if not is_time_skewed and abs(time.time() - timestamp) > TIME_SKEW_TOLERANCE: if not is_time_skewed and not TIME_SKEW_MIN < time.time() - timestamp < TIME_SKEW_MAX:
print_err("Client with time skew detected from %s, can be a replay-attack" % peer[0]) print_err("Client with time skew detected from %s, can be a replay-attack" % peer[0])
print_err("The clocks were %d minutes behind" % ((time.time() - timestamp) // 60)) print_err("The clocks were %d minutes behind" % ((time.time() - timestamp) // 60))
# continue continue
http_data = bytearray([random.randrange(0, 256) for i in range(fake_cert_len)]) http_data = bytearray([random.randrange(0, 256) for i in range(fake_cert_len)])