Commit Graph

152 Commits

Author SHA1 Message Date
bol-van
48850b5f4e dvtws fix socket buffers 2024-03-08 14:01:24 +03:00
bol-van
70fa1dbea7 do not use PF_DIVERT for openbsd 2024-03-08 13:50:19 +03:00
bol-van
eaaa1a326c freebsd dvtws respect freebsd14+ PF_DIVERT 2024-03-08 11:09:14 +03:00
bol-van
7ba1c28f94 auto ttl alog minor fix 2024-03-02 21:22:35 +03:00
bol-van
8a161f1f49 autottl, datanoack, oob, postnat 2024-03-02 17:53:37 +03:00
bol-van
8d56d02d1d nfqws: change default fake from w3.org to iana.org (NOT cloudflare) 2024-02-27 13:58:36 +03:00
bol-van
3f80ae2dd7 remove old files 2023-12-19 13:43:31 +03:00
bol-van
a33848b212 tls: respect tls record length 2023-12-19 13:40:28 +03:00
bol-van
a9a4cd5cb4 nfqws: tls client hello reassemble 2023-11-15 19:36:34 +03:00
bol-van
3559e1f2b8 autohostlist debug 2023-11-09 12:08:09 +03:00
bol-van
7ef7cbe554 recheck domain before adding to autohostlist 2023-10-26 16:27:52 +03:00
bol-van
ac574ce2ce autohostlist mode 2023-10-26 15:12:32 +03:00
bol-van
3e8d7676fc function without args () -> (void) 2023-10-13 20:10:46 +03:00
bol-van
c4729c3006 nfqws,tpws: fix tls protocol bounds check 2023-10-12 14:46:32 +03:00
bol-van
2456aae8ad build mac64 universal x64+arm64 binaries 2023-10-06 11:22:41 +03:00
bol-van
274bb4b6da build mac64 universal x64+arm64 binaries 2023-10-06 11:21:20 +03:00
bol-van
57486daa25 dvtws: do not fill excessive memory buffer 2023-09-21 14:16:28 +03:00
bol-van
905be06154 dvtws: FreeBSD 14 beta2 compat 2023-09-21 13:01:09 +03:00
bol-van
5b6ea0bf5d nfqws: dht require at least 7 chars 2023-09-09 18:53:25 +03:00
bol-van
394c590a25 nfqws: tamper dht lex order 00 instead of aa 2023-09-07 21:02:29 +03:00
bol-van
15a31d53ed nfqws: tamper dht lex order aa instead of zz 2023-09-07 20:50:03 +03:00
bol-van
c91542d516 nfqws: DHT and tamper 2023-09-07 19:03:37 +03:00
bol-van
91ac09a8bd nfqws: udplen-pattern, hex string support 2023-09-07 13:41:25 +03:00
bol-van
bc6b683009 nfqws: wireguard protocol recognition 2023-08-12 09:56:19 +03:00
bol-van
109e3374d4 seccomp: more syscalls filter 2022-12-07 21:00:22 +03:00
bol-van
f6e6c39edf seccomp: fix process_madvise 2022-12-05 14:51:36 +03:00
bol-van
2dc13abb5d seccomp: more filtered syscalls 2022-12-05 14:38:39 +03:00
bol-van
6a05a4f9f4 seccomp: allow to compile with older toolchain 2022-11-24 00:15:07 +03:00
bol-van
87a77c5932 seccomp: fix jump offset 2022-11-23 18:56:10 +03:00
bol-van
619222b86e seecomp : fix x86 __X32_SYSCALL_BIT 2022-11-23 12:11:37 +03:00
bol-van
80a6ba9a8a seccomp optimize 2022-11-23 11:58:06 +03:00
bol-van
53d17aa4e1 seccomp: disable clone2 2022-11-22 18:23:04 +03:00
bol-van
7af2d43d5f tpws,nfqws: seccomp hardening 2022-11-22 17:49:53 +03:00
bol-van
04f8f7774d nfqws: do not complain if IPV6_FREEBIND not available 2022-07-29 08:20:57 +03:00
bol-van
895af0f629 nfqws: allow to decrease udp length 2022-07-27 12:00:36 +03:00
bol-van
403dc1a204 nfqws,tpws: multiple hostlist support, exclude hostlist support 2022-07-26 19:15:28 +03:00
bol-van
e2418531af nfqws: default quic fake to bypass russian TSPU 2022-05-30 14:48:29 +03:00
bol-van
01ec94806d nfqws: fix running on ipv6 disabled system 2022-05-20 11:21:38 +03:00
bol-van
877adbd6f6 nfqws: preserve fwmark. bind-fix 2022-05-15 15:54:35 +03:00
bol-van
7f7badb2af update bins 2022-05-03 12:32:14 +03:00
Reki
7ffa952d01 Use byte-per-byte accesses when accessing possibly unaligned data. 2022-05-03 10:20:42 +03:00
bol-van
ffda684a43 nfqws: fakeknown, udplen desync modes 2022-04-12 15:52:06 +03:00
bol-van
479ba87fc5 nfqws: cosmetics 2022-03-27 10:40:09 +03:00
bol-van
ad5588ebf1 nfqws: cosmetics 2022-03-27 10:15:28 +03:00
bol-van
1111845590 nfqws: QUIC check fixed bit = 1 2022-03-26 21:09:15 +03:00
bol-van
2eec88c2bf nfqws: verify quic auth tag. improve initial packet detection 2022-03-26 21:00:58 +03:00
bol-van
3753349058 nfqws: quic protocol code optimizations 2022-03-26 10:08:10 +03:00
bol-van
f7c0c35670 nfqws: handle QUIC decrypt failed case during desync 2022-03-25 22:34:37 +03:00
bol-van
7df1be9d3e nfqws: prevent out-of-bound access 2022-03-25 20:22:15 +03:00
bol-van
0887fe6f2a nfqws: remove duplicate check 2022-03-25 20:15:09 +03:00
bol-van
64406960aa nfqws: prevent out-of-band access in IsQUICCryptoHello 2022-03-25 20:08:05 +03:00
bol-van
4dc6639b5a nfqws: crypto dos2unix 2022-03-25 19:55:54 +03:00
bol-van
6c31029999 crypto rfc6234 restore license notices 2022-03-25 18:53:18 +03:00
bol-van
dce5b4c6f0 nfqws: QUIC initial dissection support 2022-03-25 16:59:58 +03:00
bol-van
0a5ffc1a54 nfqws: QUIC protocol recognition 2022-03-20 20:46:39 +03:00
bol-van
4aef7a96a4 nfqws: ipfrag1 desync mode 2022-02-05 15:41:46 +03:00
bol-van
b787ed0146 nfqws: cosmetics 2022-02-05 13:39:09 +03:00
bol-van
6151afe727 nfqws: destopt desync mode 2022-02-05 13:36:32 +03:00
bol-van
707e86bd90 nfqws: allow hopbyhop with 2nd phase desync 2022-02-02 15:18:35 +03:00
bol-van
a66aa7777a nfqws: do not drop packet in case of hopbyhop desync and ipv4 2022-02-02 09:39:48 +03:00
bol-van
427f16776c nfqws: hop-by-hop ipv6 fooling and desync 2022-02-01 20:35:52 +03:00
bol-van
b5d55b632c -Wno-logical-op-parentheses 2022-01-23 14:52:04 +03:00
bol-van
6b39411454 nfqws: ipv6 fragment at transport header 2022-01-05 15:34:57 +03:00
bol-van
1221626b1d nfqws: IP_NODEFRAG not working for ipv6 2022-01-03 22:16:11 +03:00
bol-van
78de2c2137 nfqws: move IP_NODEFRAG sockopt 2022-01-03 21:30:42 +03:00
bol-van
94433e3279 nfqws: set IP_NODEFRAG sockopt 2022-01-03 21:14:55 +03:00
Ata Niyazov
7dc0fba0cd
Update nfqws.c
nfqws.c: fix comments
2022-01-03 16:23:54 +00:00
bol-van
690d458ec7 nfqws: ipfrag 2022-01-03 12:38:18 +03:00
bol-van
44175a5e2d nfqws: do not do useless work 2022-01-01 21:12:47 +03:00
bol-van
65830eb665 nfqws: udp protocol desync 2022-01-01 20:22:04 +03:00
bol-van
6af82ec97d nfqws: change default badack increment -65000=>-66000 2021-12-28 12:50:04 +03:00
bol-van
aece656a8d nfqws: n|d|s cutoff modes 2021-12-27 16:51:30 +03:00
bol-van
606063dd48 nfqws: --dpi-desync-fake-unknown 2021-12-26 20:43:16 +03:00
bol-van
d1618faf40 nfqws: tunable badseq/badack increment, changed defaults 2021-12-26 17:11:21 +03:00
root
f2d083499e nfqws: change default split-pos from 3 to 2 2021-12-22 11:21:47 +03:00
bol-van
545c9a4730 nfqws: separate ipv4/6 ttl setting 2021-12-10 22:08:52 +03:00
bol-van
600473dd25 minor source fixes 2021-12-03 23:01:49 +03:00
bol-van
37e3a11a77 source cosmetics 2021-11-12 12:36:25 +03:00
bol-van
45f6838059 nfqws, tpws : fix tls1.1, tls1.2, tls1.3 header recognition 2021-10-12 23:24:38 +03:00
bol-van
6363732009 remove binary links 2021-09-21 01:19:19 +03:00
bol-van
9a354ee972 nfqws: cosmetic 2021-05-26 09:26:39 +03:00
bol-van
86241cb56c nfqws: prohibit extra modes in --dpi-desync 2021-04-11 18:53:47 +03:00
bol-van
fe8cada8ae nfqws: synack desync mode 2021-04-07 12:13:46 +03:00
bol-van
c011f7914d nfqws: fix dpi-desync-split-pos help 2021-03-26 15:15:32 +03:00
bol-van
483658485e openbsd: discovered how to apply divert-packet to outgoing only 2021-03-22 12:02:55 +03:00
bol-van
96cbd2fd5e nfqws: --dpi-desync-cutoff 2021-03-21 21:55:26 +03:00
bol-van
29b905c1a1 nfqws: n prefix for network byte order vars 2021-03-21 11:51:38 +03:00
bol-van
0c76290440 nfqws: do not reset conntrack entry in SYN state 2021-03-21 10:39:52 +03:00
bol-van
17867c25b7 nfqws: allow resetting conntrack entry in any state on SYN 2021-03-20 11:38:00 +03:00
bol-van
4ff55ad7f5 nfqws: increase max packet size for desync 2021-03-19 15:47:28 +03:00
bol-van
5ddc0aa01b nfqws: extend conntrack 2021-03-19 15:39:32 +03:00
bol-van
2e46070c0f dos2unix 2021-03-18 17:22:03 +03:00
bol-van
b27cfbc813 nfqws: conntrack 2021-03-18 17:21:25 +03:00
bol-van
dccf672d8a nfqws: -artefact 2021-03-12 15:45:43 +03:00
bol-van
199bf7c9b0 nfqws: do not allow increasing scale factor 2021-03-12 15:44:25 +03:00
bol-van
bdf4c30973 update uthash 2021-03-12 15:07:31 +03:00
bol-van
53f36c7297 nfqws: wssize 2021-03-12 14:33:48 +03:00
bol-van
c021033bdf makefiles: avoid redefining STRIP 2021-03-05 21:23:32 +03:00
bol-van
bd571f3abe makefiles: strip mac executables 2021-03-05 21:17:21 +03:00
bol-van
ccd518a7d0 nfqws: ntop46 functions 2021-03-05 20:15:56 +03:00