gandc/zapret2
Template
1
0
Fork 0
mirror of https://github.com/bol-van/zapret2.git synced 2026-03-14 06:13:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

zapret-antidpi: extend tls clone function

Browse Source
This commit is contained in:
bol-van
2025-12-29 13:03:48 +03:00
parent 8628c34941
commit 9cc348e5bd
2 changed files with 32 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

41
lua/zapret-antidpi.lua
View File

@@ -290,7 +290,11 @@ end
-- nfqws1 : not available
-- standard args : direction
-- arg: blob = blob name to store cloned tls client hello (stored in desync, not global)
-- arg: snt - server name type value in SNI
-- arg: sni_snt - server name type value in SNI
-- arg: sni_del_ext - delete sni extension
-- arg: sni_del - delete all names
-- arg: sni_first - add name to the beginning
-- arg: sni_last - add name to the end
function tls_client_hello_clone(ctx, desync)
if not desync.dis.tcp then
instance_cutoff_shim(ctx, desync)
@@ -310,18 +314,37 @@ function tls_client_hello_clone(ctx, desync)
DLOG("tls_client_hello_clone: handshake not dissected")
return
end
if desync.arg.snt then
local k = array_field_search(tdis.handshake[TLS_HANDSHAKE_TYPE_CLIENT].dis.ext, "type", 0)
if not k then
DLOG("tls_client_hello_clone: no SNI extension")
return
local idx_sni
if desync.arg.sni_snt or desync.arg.sni_del_ext or desync.arg.sni_del or desync.arg.sni_first or desync.arg.sni_last then
idx_sni = array_field_search(tdis.handshake[TLS_HANDSHAKE_TYPE_CLIENT].dis.ext, "type", 0)
if not idx_sni then
DLOG("tls_client_hello_clone: no SNI extension. adding")
table.insert(tdis.handshake[TLS_HANDSHAKE_TYPE_CLIENT].dis.ext, 1, { type = TLS_EXT_SERVER_NAME, dis = { list = {} } } )
end
for i,v in pairs(tdis.handshake[1].dis.ext[k].dis.list) do
v.type=desync.arg.snt
end
if desync.arg.sni_del_ext then
table.remove(tdis.handshake[TLS_HANDSHAKE_TYPE_CLIENT].dis.ext, idx_sni)
else
if desync.arg.sni_del then
tdis.handshake[1].dis.ext[idx_sni].dis.list = {}
elseif desync.arg.sni_snt then
for i,v in pairs(tdis.handshake[1].dis.ext[idx_sni].dis.list) do
v.type = desync.arg.sni_snt
end
end
if desync.arg.sni_first then
table.insert(tdis.handshake[TLS_HANDSHAKE_TYPE_CLIENT].dis.ext[idx_sni].dis.list, 1, { name = desync.arg.sni_first } )
end
if desync.arg.sni_last then
table.insert(tdis.handshake[TLS_HANDSHAKE_TYPE_CLIENT].dis.ext[idx_sni].dis.list, { name = desync.arg.sni_last } )
end
end
desync[desync.arg.blob] = tls_reconstruct(tdis)
DLOG("tls_client_hello_clone: cloned to desync."..desync.arg.blob)
if desync[desync.arg.blob] then
DLOG("tls_client_hello_clone: cloned to desync."..desync.arg.blob)
else
DLOG_ERR("tls_client_hello_clone: reconstruct error")
end
end
end

1
lua/zapret-lib.lua
View File

@@ -2227,7 +2227,6 @@ function tls_reconstruct(tdis)
end
local tls
if tdis.rec then
-- need to follow in order
local i=1