-
Notifications
You must be signed in to change notification settings - Fork 0
/
fingerprint_hash.go
115 lines (97 loc) · 3.46 KB
/
fingerprint_hash.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
package clienthellod
import (
"crypto/sha1" // skipcq: GSC-G505
"encoding/binary"
"encoding/hex"
"hash"
"github.com/refraction-networking/clienthellod/internal/utils"
)
func updateArr(h hash.Hash, arr []byte) {
binary.Write(h, binary.BigEndian, uint32(len(arr)))
h.Write(arr)
}
func updateU32(h hash.Hash, i uint32) {
binary.Write(h, binary.BigEndian, i)
}
func updateU64(h hash.Hash, i uint64) {
binary.Write(h, binary.BigEndian, i)
}
// FingerprintID is the type of fingerprint ID.
type FingerprintID int64
// AsHex returns the hex representation of this fingerprint ID.
func (id FingerprintID) AsHex() string {
hid := make([]byte, 8)
binary.BigEndian.PutUint64(hid, uint64(id))
return hex.EncodeToString(hid)
}
// calcNumericID returns the numeric ID of this client hello.
func (ch *ClientHello) calcNumericID() (orig, norm int64) {
for _, normalized := range []bool{false, true} {
h := sha1.New() // skipcq: GO-S1025, GSC-G401,
binary.Write(h, binary.BigEndian, uint16(ch.TLSRecordVersion))
binary.Write(h, binary.BigEndian, uint16(ch.TLSHandshakeVersion))
updateArr(h, utils.Uint16ToUint8(ch.CipherSuites))
updateArr(h, ch.CompressionMethods)
if normalized {
updateArr(h, utils.Uint16ToUint8(ch.ExtensionsNormalized))
} else {
updateArr(h, utils.Uint16ToUint8(ch.Extensions))
}
updateArr(h, utils.Uint16ToUint8(ch.lengthPrefixedSupportedGroups))
updateArr(h, ch.lengthPrefixedEcPointFormats)
updateArr(h, utils.Uint16ToUint8(ch.lengthPrefixedSignatureAlgos))
updateArr(h, ch.alpnWithLengths)
updateArr(h, utils.Uint16ToUint8(ch.keyshareGroupsWithLengths))
updateArr(h, ch.PSKKeyExchangeModes)
updateArr(h, utils.Uint16ToUint8(ch.SupportedVersions))
updateArr(h, ch.lengthPrefixedCertCompressAlgos)
updateArr(h, ch.RecordSizeLimit)
if normalized {
norm = int64(binary.BigEndian.Uint64(h.Sum(nil)[:8]))
} else {
orig = int64(binary.BigEndian.Uint64(h.Sum(nil)[:8]))
}
}
return
}
// calcNumericID returns the numeric ID of this gathered client initial.
func (gci *GatheredClientInitials) calcNumericID() uint64 {
h := sha1.New() // skipcq: GO-S1025, GSC-G401
updateArr(h, gci.Packets[0].Header.Version)
updateU32(h, gci.Packets[0].Header.DCIDLength)
updateU32(h, gci.Packets[0].Header.SCIDLength)
updateArr(h, gci.Packets[0].Header.PacketNumber)
// merge, deduplicate, and sort all frames from all packets
var allFrameIDs []uint8
for _, p := range gci.Packets {
allFrameIDs = append(allFrameIDs, p.frames.FrameTypesUint8()...)
}
dedupAllFrameIDs := utils.DedupIntArr(allFrameIDs)
updateArr(h, dedupAllFrameIDs)
if gci.Packets[0].Header.HasToken {
updateU32(h, TOKEN_PRESENT)
} else {
updateU32(h, TOKEN_ABSENT)
}
return binary.BigEndian.Uint64(h.Sum(nil)[0:8])
}
// calcNumericID returns the numeric ID of this transport parameters combination.
func (qtp *QUICTransportParameters) calcNumericID() uint64 {
h := sha1.New() // skipcq: GO-S1025, GSC-G401
updateArr(h, qtp.MaxIdleTimeout)
updateArr(h, qtp.MaxUDPPayloadSize)
updateArr(h, qtp.InitialMaxData)
updateArr(h, qtp.InitialMaxStreamDataBidiLocal)
updateArr(h, qtp.InitialMaxStreamDataBidiRemote)
updateArr(h, qtp.InitialMaxStreamDataUni)
updateArr(h, qtp.InitialMaxStreamsBidi)
updateArr(h, qtp.InitialMaxStreamsUni)
updateArr(h, qtp.AckDelayExponent)
updateArr(h, qtp.MaxAckDelay)
updateArr(h, qtp.ActiveConnectionIDLimit)
updateU32(h, uint32(len(qtp.QTPIDs)))
for _, id := range qtp.QTPIDs {
updateU64(h, id)
}
return binary.BigEndian.Uint64(h.Sum(nil))
}