mirrors/utls
1
0
Fork 0
mirror of https://github.com/refraction-networking/utls.git synced 2025-04-04 12:37:35 +03:00
Code Issues Projects Releases Packages Wiki Activity

Support fake extension: EncryptThenMAC (22)

Browse source 
When AllowBluntMimicry is set to true, support fake extension:
EncryptThenMAC (22) https://datatracker.ietf.org/doc/html/rfc7366
This commit is contained in:
gfw-report 2022-12-14 00:00:00 +00:00
parent d5cdf5dbe1
commit 1af5ecda3e
2 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
u_common.go
View file

@ -37,6 +37,7 @@ const (
fakeOldExtensionChannelID uint16 = 30031 // not IANA assigned
fakeExtensionChannelID uint16 = 30032 // not IANA assigned
fakeExtensionDelegatedCredentials uint16 = 34
fakeExtensionEncryptThenMAC uint16 = 22
)
const (

7
u_fingerprinter.go
View file

@ -324,6 +324,13 @@ func (f *Fingerprinter) FingerprintClientHello(data []byte) (*ClientHelloSpec, e
case fakeOldExtensionChannelID:
clientHelloSpec.Extensions = append(clientHelloSpec.Extensions, &FakeChannelIDExtension{true})
case fakeExtensionEncryptThenMAC:
if f.AllowBluntMimicry {
clientHelloSpec.Extensions = append(clientHelloSpec.Extensions, &GenericExtension{extension, extData})
} else {
return nil, errors.New("unsupported extension Encrypt-then-MAC")
}
case fakeExtensionTokenBinding:
var tokenBindingExt FakeTokenBindingExtension
var keyParameters cryptobyte.String