tpws: autohostlist reset fail counter on success

readme: autohostlist fail counter reset
nfqws: autohostlist fail counter reset on non-RST
2024-11-26 20:20:53 +03:00 · 2024-07-16 14:50:15 +03:00 · 2024-07-16 14:18:44 +03:00 · 2024-07-16 14:12:11 +03:00 · 2024-07-16 13:41:28 +03:00 · 2024-07-16 13:40:19 +03:00
26 changed files with 41 additions and 3 deletions
--- a/binaries/aarch64/nfqws
+++ b/binaries/aarch64/nfqws
--- a/binaries/aarch64/tpws
+++ b/binaries/aarch64/tpws
--- a/binaries/arm/nfqws
+++ b/binaries/arm/nfqws
--- a/binaries/arm/tpws
+++ b/binaries/arm/tpws
--- a/binaries/freebsd-x64/dvtws
+++ b/binaries/freebsd-x64/dvtws
--- a/binaries/freebsd-x64/tpws
+++ b/binaries/freebsd-x64/tpws
--- a/binaries/mac64/tpws
+++ b/binaries/mac64/tpws
--- a/binaries/mips32r1-lsb/nfqws
+++ b/binaries/mips32r1-lsb/nfqws
--- a/binaries/mips32r1-lsb/tpws
+++ b/binaries/mips32r1-lsb/tpws
--- a/binaries/mips32r1-msb/nfqws
+++ b/binaries/mips32r1-msb/nfqws
--- a/binaries/mips32r1-msb/tpws
+++ b/binaries/mips32r1-msb/tpws
--- a/binaries/mips64r2-msb/nfqws
+++ b/binaries/mips64r2-msb/nfqws
--- a/binaries/mips64r2-msb/tpws
+++ b/binaries/mips64r2-msb/tpws
--- a/binaries/ppc/nfqws
+++ b/binaries/ppc/nfqws
--- a/binaries/ppc/tpws
+++ b/binaries/ppc/tpws
--- a/binaries/win64/winws.exe
+++ b/binaries/win64/winws.exe
--- a/binaries/win64/zapret-winws/autohostlist.txt
+++ b/binaries/win64/zapret-winws/autohostlist.txt
--- a/binaries/win64/zapret-winws/winws.exe
+++ b/binaries/win64/zapret-winws/winws.exe
--- a/binaries/x86/nfqws
+++ b/binaries/x86/nfqws
--- a/binaries/x86/tpws
+++ b/binaries/x86/tpws
--- a/binaries/x86_64/nfqws
+++ b/binaries/x86_64/nfqws
--- a/binaries/x86_64/tpws
+++ b/binaries/x86_64/tpws
--- a/binaries/x86_64/tpws_wsl.tgz
+++ b/binaries/x86_64/tpws_wsl.tgz
--- a/docs/readme.txt
+++ b/docs/readme.txt
@ -1077,6 +1077,8 @@ nfqws и tpws могут сечь варианты 1-3, 4 они не распо
 Чтобы снизить вероятность ложных срабатываний, имеется счетчик ситуаций, похожих на блокировку.
 Если за определенное время произойдет более определенного их количества, хост считается заблокированным
 и заносится в autohostlist. По нему сразу же начинает работать стратегия по обходу блокировки.
 Если в процессе счета вебсайт отвечает без признаков блокировки, счетчик сбрасывается.
 Вероятно, это был временный сбой сайта.
 На практике работа с данным режимом выглядит так.
 Первый раз пользователь заходит на сайт и получает заглушку, сброс соединения или броузер подвисает,
--- a/nfq/desync.c
+++ b/nfq/desync.c
@ -174,6 +174,22 @@ static void ctrack_stop_retrans_counter(t_ctrack *ctrack)
 	}
 }
 static void auto_hostlist_reset_fail_counter(const char *hostname)
 {
 	if (hostname)
 	{
 		hostfail_pool *fail_counter;
 		fail_counter = HostFailPoolFind(params.hostlist_auto_fail_counters, hostname);
 		if (fail_counter)
 		{
 			HostFailPoolDel(&params.hostlist_auto_fail_counters, fail_counter);
 			DLOG("auto hostlist : %s : fail counter reset. website is working.\n", hostname);
 			HOSTLIST_DEBUGLOG_APPEND("%s : fail counter reset. website is working.", hostname);
 		}
 	}
 }
 // return true if retrans trigger fires
 static bool auto_hostlist_retrans(t_ctrack *ctrack, uint8_t l4proto, int threshold)
 {
@ -187,6 +203,7 @@ static bool auto_hostlist_retrans(t_ctrack *ctrack, uint8_t l4proto, int thresho
 			{
 				DLOG("req retrans : tcp seq %u not within the req range %u-%u. stop tracking.\n", ctrack->seq_last, ctrack->req_seq_start, ctrack->req_seq_end);
 				ctrack_stop_retrans_counter(ctrack);
 				auto_hostlist_reset_fail_counter(ctrack->hostname);
 				return false;
 			}
 		}
@ -550,6 +567,9 @@ static uint8_t dpi_desync_tcp_packet_play(bool replay, size_t reasm_offset, uint
 				}
 				if (bFail)
 					auto_hostlist_failed(ctrack->hostname);
 				else
 					if (len_payload)
 						auto_hostlist_reset_fail_counter(ctrack->hostname);
 				if (tcphdr->th_flags & TH_RST)
 					ConntrackClearHostname(ctrack); // do not react to further dup RSTs
 			}
--- a/tpws/tamper.c
+++ b/tpws/tamper.c
@ -253,6 +253,21 @@ void tamper_out(t_ctrack *ctrack, uint8_t *segment,size_t segment_buffer_size,si
 	if (params.oob) *split_flags |= SPLIT_FLAG_OOB;
 }
 static void auto_hostlist_reset_fail_counter(const char *hostname)
 {
 	if (hostname)
 	{
 		hostfail_pool *fail_counter;
 		fail_counter = HostFailPoolFind(params.hostlist_auto_fail_counters, hostname);
 		if (fail_counter)
 		{
 			HostFailPoolDel(&params.hostlist_auto_fail_counters, fail_counter);
 			VPRINT("auto hostlist : %s : fail counter reset. website is working.", hostname);
 			HOSTLIST_DEBUGLOG_APPEND("%s : fail counter reset. website is working.", hostname);
 		}
 	}
 }
 static void auto_hostlist_failed(const char *hostname)
 {
@ -331,10 +346,11 @@ void tamper_in(t_ctrack *ctrack, uint8_t *segment,size_t segment_buffer_size,siz
 				// received not http reply. do not monitor this connection anymore
 				VPRINT("incoming unknown HTTP data detected for hostname %s", ctrack->hostname);
 			}
-			if (bFail)
+			if (bFail) auto_hostlist_failed(ctrack->hostname);
-				auto_hostlist_failed(ctrack->hostname);
+
 		}
 		if (!bFail) auto_hostlist_reset_fail_counter(ctrack->hostname);
 		}	
 	}
 	ctrack->bTamperInCutoff = true;
 }
Author	SHA1	Message	Date
bol-van	9fcd8f830e	tpws: autohostlist reset fail counter on success	2024-07-16 14:50:15 +03:00
bol-van	72d2450081	readme: autohostlist fail counter reset	2024-07-16 14:18:44 +03:00
bol-van	2ae426c7ab	nfqws: autohostlist fail counter reset on non-RST	2024-07-16 14:12:11 +03:00
bol-van	b44c697171	fix minor regression	2024-07-16 13:41:28 +03:00
bol-van	0d3b7b6542	remove bad file	2024-07-16 13:40:19 +03:00
bol-van	a01505ca37	nfqws: autohostlist reset fail counter if website accessible	2024-07-16 13:38:43 +03:00