zapret/nfq/desync.h

#pragma once

#include "darkmagic.h"

#include <stdint.h>
#include <stdbool.h>

#define __FAVOR_BSD
#include <netinet/ip.h>
#include <netinet/ip6.h>
#include <netinet/tcp.h>
#include <netinet/in.h>

#ifdef __linux__
#define DPI_DESYNC_FWMARK_DEFAULT 0x40000000
#else
#define DPI_DESYNC_FWMARK_DEFAULT 512
#endif

#define DPI_DESYNC_MAX_FAKE_LEN 9216

enum dpi_desync_mode {
	DESYNC_NONE=0,
	DESYNC_INVALID,
	DESYNC_FAKE,
	DESYNC_FAKE_KNOWN,
	DESYNC_RST,
	DESYNC_RSTACK,
	DESYNC_SYNACK,
	DESYNC_SYNDATA,
	DESYNC_DISORDER,
	DESYNC_DISORDER2,
	DESYNC_SPLIT,
	DESYNC_SPLIT2,
	DESYNC_IPFRAG2,
	DESYNC_HOPBYHOP,
	DESYNC_DESTOPT,
	DESYNC_IPFRAG1,
	DESYNC_UDPLEN,
	DESYNC_TAMPER
};

extern const char *fake_http_request_default;
extern const uint8_t fake_tls_clienthello_default[517];

enum dpi_desync_mode desync_mode_from_string(const char *s);
bool desync_valid_zero_stage(enum dpi_desync_mode mode);
bool desync_valid_first_stage(enum dpi_desync_mode mode);
bool desync_only_first_stage(enum dpi_desync_mode mode);
bool desync_valid_second_stage(enum dpi_desync_mode mode);
bool desync_valid_second_stage_tcp(enum dpi_desync_mode mode);
bool desync_valid_second_stage_udp(enum dpi_desync_mode mode);

void desync_init(void);
uint8_t dpi_desync_packet(uint32_t fwmark, const char *ifout, uint8_t *data_pkt, size_t *len_pkt);