mirrors/XTLS_REALITY
0
0
Fork 0
mirror of https://github.com/XTLS/REALITY.git synced 2025-08-22 14:38:35 +00:00
Code

Simple method for IdentifyModernFingerprint

Browse Source
This commit is contained in:
yuhan6665 2025-06-28 23:23:49 -04:00
parent 6833ba5445
commit 6219e43643
2 changed files with 36 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
record_detect.go
View File

@ -6,6 +6,7 @@ import (
"fmt" "fmt"
"io" "io"
"net" "net"
"slices"
"sync" "sync"
"time" "time"
@ -108,6 +109,35 @@ func (c *DetectConn) Read(b []byte) (n int, err error) {
return 0, io.EOF return 0, io.EOF
} }
func IdentifyModernFingerprint(ch *clientHelloMsg) string {
if slices.Contains(ch.supportedVersions, VersionTLS10) && slices.Contains(ch.supportedVersions, VersionTLS11) {
if slices.Contains(ch.extensions, utlsExtensionApplicationSettings) {
return "hellochrome_96"
}
return "hellochrome_87" // also hellochrome_83
}
if slices.Contains(ch.supportedCurves, X25519MLKEM768) {
if slices.Contains(ch.extensions, utlsExtensionApplicationSettingsNew) {
return "hellochrome_133"
}
return "hellochrome_131"
}
if slices.Contains(ch.extensions, utlsExtensionECH) {
return "hellochrome_120"
}
if slices.Contains(ch.extensions, utlsExtensionPadding) {
return "hellochrome_106_shuffle" // also HelloChrome_100, HelloChrome_102
}
return "Custom"
}
const (
utlsExtensionPadding uint16 = 21
utlsExtensionApplicationSettings uint16 = 17513 // not IANA assigned
utlsExtensionApplicationSettingsNew uint16 = 17613 // not IANA assigned
utlsExtensionECH uint16 = 0xfe0d // draft-ietf-tls-esni-17
)
var ModernFingerprints = map[string]*utls.ClientHelloID{ var ModernFingerprints = map[string]*utls.ClientHelloID{
// One of these will be chosen as `random` at startup // One of these will be chosen as `random` at startup
"hellofirefox_99": &utls.HelloFirefox_99, "hellofirefox_99": &utls.HelloFirefox_99,

8
tls.go
View File

@ -162,8 +162,6 @@ func Value(vals ...byte) (value int) {
// The configuration config must be non-nil and must include // The configuration config must be non-nil and must include
// at least one certificate or else set GetCertificate. // at least one certificate or else set GetCertificate.
func Server(ctx context.Context, conn net.Conn, config *Config) (*Conn, error) { func Server(ctx context.Context, conn net.Conn, config *Config) (*Conn, error) {
postHandshakeRecordsLens := DetectPostHandshakeRecordsLens(config, "hellochrome_131")
remoteAddr := conn.RemoteAddr().String() remoteAddr := conn.RemoteAddr().String()
if config.Show { if config.Show {
fmt.Printf("REALITY remoteAddr: %v\n", remoteAddr) fmt.Printf("REALITY remoteAddr: %v\n", remoteAddr)
@ -374,6 +372,12 @@ func Server(ctx context.Context, conn net.Conn, config *Config) (*Conn, error) {
if err != nil { if err != nil {
break break
} }
var fingerprint = IdentifyModernFingerprint(hs.clientHello)
fmt.Printf("REALITY remoteAddr: %v\tidentified fingerprint: %v\n", remoteAddr, fingerprint)
if fingerprint == "Custom" {
fingerprint = "hellochrome_131"
}
postHandshakeRecordsLens := DetectPostHandshakeRecordsLens(config, fingerprint)
for _, length := range postHandshakeRecordsLens[hs.clientHello.serverName] { for _, length := range postHandshakeRecordsLens[hs.clientHello.serverName] {
if length == 0 { if length == 0 {
break; break;