2024-09-07 06:13:50 +00:00
|
|
|
#include "config.h"
|
|
|
|
|
#include "raw_replacements.h"
|
|
|
|
|
#include "types.h"
|
|
|
|
|
#include <linux/moduleparam.h>
|
2024-09-28 19:45:35 +00:00
|
|
|
#include "types.h"
|
|
|
|
|
|
|
|
|
|
static char custom_fake_buf[MAX_FAKE_SIZE];
|
2024-09-07 06:13:50 +00:00
|
|
|
|
2024-09-15 19:02:04 +00:00
|
|
|
#define STR_MAXLEN 2048
|
2024-09-07 06:13:50 +00:00
|
|
|
|
|
|
|
|
struct config_t config = {
|
|
|
|
|
.frag_sni_reverse = 1,
|
|
|
|
|
.frag_sni_faked = 0,
|
|
|
|
|
.fragmentation_strategy = FRAGMENTATION_STRATEGY,
|
|
|
|
|
.faking_strategy = FAKING_STRATEGY,
|
|
|
|
|
.faking_ttl = FAKE_TTL,
|
|
|
|
|
.fake_sni = 1,
|
|
|
|
|
.fake_sni_seq_len = 1,
|
|
|
|
|
.frag_middle_sni = 1,
|
|
|
|
|
.frag_sni_pos = 1,
|
|
|
|
|
.use_ipv6 = 1,
|
|
|
|
|
.fakeseq_offset = 10000,
|
|
|
|
|
.mark = DEFAULT_RAWSOCKET_MARK,
|
|
|
|
|
.synfake = 0,
|
|
|
|
|
.synfake_len = 0,
|
2024-09-28 19:45:35 +00:00
|
|
|
.fake_sni_type = FAKE_PAYLOAD_DEFAULT,
|
2024-09-07 06:13:50 +00:00
|
|
|
|
|
|
|
|
.sni_detection = SNI_DETECTION_PARSE,
|
|
|
|
|
|
|
|
|
|
#ifdef SEG2_DELAY
|
|
|
|
|
.seg2_delay = SEG2_DELAY,
|
|
|
|
|
#else
|
|
|
|
|
.seg2_delay = 0,
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#ifdef USE_GSO
|
|
|
|
|
.use_gso = 1,
|
|
|
|
|
#else
|
|
|
|
|
.use_gso = false,
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#ifdef DEBUG
|
|
|
|
|
.verbose = 2,
|
|
|
|
|
#else
|
|
|
|
|
.verbose = 1,
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
.domains_str = defaul_snistr,
|
|
|
|
|
.domains_strlen = sizeof(defaul_snistr),
|
|
|
|
|
|
|
|
|
|
.queue_start_num = DEFAULT_QUEUE_NUM,
|
|
|
|
|
.fake_sni_pkt = fake_sni_old,
|
|
|
|
|
.fake_sni_pkt_sz = sizeof(fake_sni_old) - 1, // - 1 for null-terminator
|
2024-09-28 19:45:35 +00:00
|
|
|
.fake_custom_pkt = custom_fake_buf,
|
|
|
|
|
.fake_custom_pkt_sz = 0
|
2024-09-07 06:13:50 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static int unumeric_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
int n = 0, ret;
|
|
|
|
|
ret = kstrtoint(val, 10, &n);
|
|
|
|
|
if (ret != 0 || n < 0)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2024-09-15 19:02:04 +00:00
|
|
|
|
2024-09-07 06:13:50 +00:00
|
|
|
return param_set_int(val, kp);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int boolean_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
int n = 0, ret;
|
|
|
|
|
ret = kstrtoint(val, 10, &n);
|
|
|
|
|
if (ret != 0 || (n != 0 && n != 1))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
return param_set_int(val, kp);
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-15 19:02:04 +00:00
|
|
|
static int inverse_boolean_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
int n = 0, ret;
|
|
|
|
|
ret = kstrtoint(val, 10, &n);
|
|
|
|
|
if (ret != 0 || (n != 0 && n != 1))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
n = !n;
|
|
|
|
|
if (kp->arg == NULL)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
*(int *)kp->arg = n;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int inverse_boolean_get(char *buffer, const struct kernel_param *kp) {
|
|
|
|
|
if (*(int *)kp->arg == 0) {
|
|
|
|
|
buffer[0] = '1';
|
|
|
|
|
} else {
|
|
|
|
|
buffer[0] = '0';
|
|
|
|
|
}
|
|
|
|
|
buffer[1] = '\0';
|
2024-09-19 16:21:49 +00:00
|
|
|
return strlen(buffer);
|
2024-09-15 19:02:04 +00:00
|
|
|
}
|
|
|
|
|
|
2024-09-07 06:13:50 +00:00
|
|
|
static const struct kernel_param_ops unumeric_parameter_ops = {
|
|
|
|
|
.set = unumeric_set,
|
|
|
|
|
.get = param_get_int
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static const struct kernel_param_ops boolean_parameter_ops = {
|
|
|
|
|
.set = boolean_set,
|
|
|
|
|
.get = param_get_int
|
|
|
|
|
};
|
|
|
|
|
|
2024-09-15 19:02:04 +00:00
|
|
|
static const struct kernel_param_ops inverse_boolean_ops = {
|
|
|
|
|
.set = inverse_boolean_set,
|
|
|
|
|
.get = inverse_boolean_get,
|
|
|
|
|
};
|
|
|
|
|
|
2024-09-07 06:13:50 +00:00
|
|
|
module_param_cb(fake_sni, &boolean_parameter_ops, &config.fake_sni, 0664);
|
|
|
|
|
module_param_cb(fake_sni_seq_len, &unumeric_parameter_ops, &config.fake_sni_seq_len, 0664);
|
|
|
|
|
module_param_cb(faking_ttl, &unumeric_parameter_ops, &config.faking_ttl, 0664);
|
|
|
|
|
module_param_cb(fake_seq_offset, &unumeric_parameter_ops, &config.fakeseq_offset, 0664);
|
|
|
|
|
module_param_cb(frag_sni_reverse, &unumeric_parameter_ops, &config.frag_sni_reverse, 0664);
|
|
|
|
|
module_param_cb(frag_sni_faked, &boolean_parameter_ops, &config.frag_sni_faked, 0664);
|
|
|
|
|
module_param_cb(frag_middle_sni, &boolean_parameter_ops, &config.frag_middle_sni, 0664);
|
|
|
|
|
module_param_cb(frag_sni_pos, &unumeric_parameter_ops, &config.frag_sni_pos, 0664);
|
|
|
|
|
module_param_cb(fk_winsize, &unumeric_parameter_ops, &config.fk_winsize, 0664);
|
|
|
|
|
module_param_cb(synfake, &boolean_parameter_ops, &config.synfake, 0664);
|
|
|
|
|
module_param_cb(synfake_len, &unumeric_parameter_ops, &config.synfake_len, 0664);
|
|
|
|
|
module_param_cb(packet_mark, &unumeric_parameter_ops, &config.mark, 0664);
|
|
|
|
|
|
|
|
|
|
static int sni_domains_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
size_t len;
|
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
|
|
len = strnlen(val, STR_MAXLEN + 1);
|
|
|
|
|
if (len == STR_MAXLEN + 1) {
|
|
|
|
|
pr_err("%s: string parameter too long\n", kp->name);
|
|
|
|
|
return -ENOSPC;
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-15 19:02:04 +00:00
|
|
|
if (len >= 1 && val[len - 1] == '\n') {
|
|
|
|
|
len--;
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-07 06:13:50 +00:00
|
|
|
ret = param_set_charp(val, kp);
|
|
|
|
|
|
|
|
|
|
if (ret < 0) {
|
|
|
|
|
config.domains_strlen = 0;
|
|
|
|
|
} else {
|
|
|
|
|
config.domains_strlen = len;
|
2024-09-15 19:02:04 +00:00
|
|
|
if (len == 3 && !strncmp(val, "all", len)) {
|
2024-09-07 06:13:50 +00:00
|
|
|
config.all_domains = 1;
|
2024-09-15 19:02:04 +00:00
|
|
|
} else {
|
|
|
|
|
config.all_domains = 0;
|
2024-09-07 06:13:50 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const struct kernel_param_ops sni_domains_ops = {
|
|
|
|
|
.set = sni_domains_set,
|
|
|
|
|
.get = param_get_charp,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
module_param_cb(sni_domains, &sni_domains_ops, &config.domains_str, 0664);
|
|
|
|
|
|
|
|
|
|
static int exclude_domains_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
size_t len;
|
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
|
|
len = strnlen(val, STR_MAXLEN + 1);
|
|
|
|
|
if (len == STR_MAXLEN + 1) {
|
|
|
|
|
pr_err("%s: string parameter too long\n", kp->name);
|
|
|
|
|
return -ENOSPC;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ret = param_set_charp(val, kp);
|
|
|
|
|
|
|
|
|
|
if (ret < 0) {
|
2024-09-07 12:51:43 +00:00
|
|
|
config.exclude_domains_strlen = 0;
|
2024-09-07 06:13:50 +00:00
|
|
|
} else {
|
2024-09-07 12:51:43 +00:00
|
|
|
config.exclude_domains_strlen = len;
|
2024-09-07 06:13:50 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-07 12:51:43 +00:00
|
|
|
static const struct kernel_param_ops exclude_domains_ops = {
|
|
|
|
|
.set = exclude_domains_set,
|
|
|
|
|
.get = param_get_charp,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
module_param_cb(exclude_domains, &exclude_domains_ops, &config.exclude_domains_str, 0664);
|
2024-09-07 06:13:50 +00:00
|
|
|
|
2024-09-15 19:02:04 +00:00
|
|
|
module_param_cb(no_ipv6, &inverse_boolean_ops, &config.use_ipv6, 0664);
|
|
|
|
|
module_param_cb(quic_drop, &boolean_parameter_ops, &config.quic_drop, 0664);
|
|
|
|
|
|
2024-09-28 19:45:35 +00:00
|
|
|
static int verbosity_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
size_t len;
|
2024-09-15 19:02:04 +00:00
|
|
|
|
2024-09-28 19:45:35 +00:00
|
|
|
len = strnlen(val, STR_MAXLEN + 1);
|
|
|
|
|
if (len == STR_MAXLEN + 1) {
|
|
|
|
|
pr_err("%s: string parameter too long\n", kp->name);
|
|
|
|
|
return -ENOSPC;
|
2024-09-15 19:02:04 +00:00
|
|
|
}
|
2024-09-28 19:45:35 +00:00
|
|
|
|
|
|
|
|
if (len >= 1 && val[len - 1] == '\n') {
|
|
|
|
|
len--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (strncmp(val, "trace", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = VERBOSE_TRACE;
|
|
|
|
|
} else if (strncmp(val, "debug", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = VERBOSE_DEBUG;
|
|
|
|
|
} else if (strncmp(val, "silent", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = VERBOSE_INFO;
|
|
|
|
|
} else {
|
2024-09-15 19:02:04 +00:00
|
|
|
return -EINVAL;
|
2024-09-28 19:45:35 +00:00
|
|
|
}
|
2024-09-15 19:02:04 +00:00
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2024-09-28 19:45:35 +00:00
|
|
|
|
|
|
|
|
static int verbosity_get(char *buffer, const struct kernel_param *kp) {
|
|
|
|
|
switch (*(int *)kp->arg) {
|
|
|
|
|
case VERBOSE_TRACE:
|
|
|
|
|
strcpy(buffer, "trace\n");
|
|
|
|
|
break;
|
|
|
|
|
case VERBOSE_DEBUG:
|
|
|
|
|
strcpy(buffer, "debug\n");
|
|
|
|
|
break;
|
|
|
|
|
case VERBOSE_INFO:
|
|
|
|
|
strcpy(buffer, "silent\n");
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
strcpy(buffer, "unknown\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return strlen(buffer);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const struct kernel_param_ops verbosity_ops = {
|
|
|
|
|
.set = verbosity_set,
|
|
|
|
|
.get = verbosity_get,
|
2024-09-15 19:02:04 +00:00
|
|
|
};
|
2024-09-19 16:21:49 +00:00
|
|
|
|
2024-09-28 19:45:35 +00:00
|
|
|
module_param_cb(verbosity, &verbosity_ops, &config.verbose, 0664);
|
2024-09-19 16:21:49 +00:00
|
|
|
|
|
|
|
|
static int frag_strat_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
size_t len;
|
|
|
|
|
|
|
|
|
|
len = strnlen(val, STR_MAXLEN + 1);
|
|
|
|
|
if (len == STR_MAXLEN + 1) {
|
|
|
|
|
pr_err("%s: string parameter too long\n", kp->name);
|
|
|
|
|
return -ENOSPC;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len >= 1 && val[len - 1] == '\n') {
|
|
|
|
|
len--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (strncmp(val, "tcp", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FRAG_STRAT_TCP;
|
|
|
|
|
} else if (strncmp(val, "ip", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FRAG_STRAT_IP;
|
|
|
|
|
} else if (strncmp(val, "none", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FRAG_STRAT_NONE;
|
|
|
|
|
} else {
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int frag_strat_get(char *buffer, const struct kernel_param *kp) {
|
|
|
|
|
switch (*(int *)kp->arg) {
|
|
|
|
|
case FRAG_STRAT_TCP:
|
|
|
|
|
strcpy(buffer, "tcp\n");
|
|
|
|
|
break;
|
|
|
|
|
case FRAG_STRAT_IP:
|
|
|
|
|
strcpy(buffer, "ip\n");
|
|
|
|
|
break;
|
|
|
|
|
case FRAG_STRAT_NONE:
|
|
|
|
|
strcpy(buffer, "none\n");
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
strcpy(buffer, "unknown\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return strlen(buffer);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const struct kernel_param_ops frag_strat_ops = {
|
|
|
|
|
.set = frag_strat_set,
|
|
|
|
|
.get = frag_strat_get,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
module_param_cb(fragmentation_strategy, &frag_strat_ops, &config.fragmentation_strategy, 0664);
|
|
|
|
|
|
|
|
|
|
static int fake_strat_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
size_t len;
|
|
|
|
|
|
|
|
|
|
len = strnlen(val, STR_MAXLEN + 1);
|
|
|
|
|
if (len == STR_MAXLEN + 1) {
|
|
|
|
|
pr_err("%s: string parameter too long\n", kp->name);
|
|
|
|
|
return -ENOSPC;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len >= 1 && val[len - 1] == '\n') {
|
|
|
|
|
len--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (strncmp(val, "randseq", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FAKE_STRAT_RAND_SEQ;
|
|
|
|
|
} else if (strncmp(val, "ttl", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FAKE_STRAT_TTL;
|
|
|
|
|
} else if (strncmp(val, "tcp_check", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FAKE_STRAT_TCP_CHECK;
|
|
|
|
|
} else if (strncmp(val, "pastseq", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FAKE_STRAT_PAST_SEQ;
|
|
|
|
|
} else if (strncmp(val, "md5sum", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = FAKE_STRAT_TCP_MD5SUM;
|
|
|
|
|
} else {
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int fake_strat_get(char *buffer, const struct kernel_param *kp) {
|
|
|
|
|
switch (*(int *)kp->arg) {
|
|
|
|
|
case FAKE_STRAT_RAND_SEQ:
|
|
|
|
|
strcpy(buffer, "randseq\n");
|
|
|
|
|
break;
|
|
|
|
|
case FAKE_STRAT_TTL:
|
|
|
|
|
strcpy(buffer, "ttl\n");
|
|
|
|
|
break;
|
|
|
|
|
case FAKE_STRAT_TCP_CHECK:
|
|
|
|
|
strcpy(buffer, "tcp_check\n");
|
|
|
|
|
break;
|
|
|
|
|
case FAKE_STRAT_PAST_SEQ:
|
|
|
|
|
strcpy(buffer, "pastseq\n");
|
|
|
|
|
break;
|
|
|
|
|
case FAKE_STRAT_TCP_MD5SUM:
|
|
|
|
|
strcpy(buffer, "md5sum\n");
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
strcpy(buffer, "unknown\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return strlen(buffer);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const struct kernel_param_ops fake_strat_ops = {
|
|
|
|
|
.set = fake_strat_set,
|
|
|
|
|
.get = fake_strat_get,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
module_param_cb(faking_strategy, &fake_strat_ops, &config.faking_strategy, 0664);
|
|
|
|
|
|
|
|
|
|
static int sni_detection_set(const char *val, const struct kernel_param *kp) {
|
|
|
|
|
size_t len;
|
|
|
|
|
|
|
|
|
|
len = strnlen(val, STR_MAXLEN + 1);
|
|
|
|
|
if (len == STR_MAXLEN + 1) {
|
|
|
|
|
pr_err("%s: string parameter too long\n", kp->name);
|
|
|
|
|
return -ENOSPC;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len >= 1 && val[len - 1] == '\n') {
|
|
|
|
|
len--;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (strncmp(val, "parse", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = SNI_DETECTION_PARSE;
|
|
|
|
|
} else if (strncmp(val, "brute", len) == 0) {
|
|
|
|
|
*(int *)kp->arg = SNI_DETECTION_BRUTE;
|
|
|
|
|
} else {
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int sni_detection_get(char *buffer, const struct kernel_param *kp) {
|
|
|
|
|
switch (*(int *)kp->arg) {
|
|
|
|
|
case SNI_DETECTION_PARSE:
|
|
|
|
|
strcpy(buffer, "parse\n");
|
|
|
|
|
break;
|
|
|
|
|
case SNI_DETECTION_BRUTE:
|
|
|
|
|
strcpy(buffer, "brute\n");
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
strcpy(buffer, "unknown\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return strlen(buffer);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const struct kernel_param_ops sni_detection_ops = {
|
|
|
|
|
.set = sni_detection_set,
|
|
|
|
|
.get = sni_detection_get,
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
module_param_cb(sni_detection, &sni_detection_ops, &config.sni_detection, 0664);
|
