Fix get SNI from big ClientHello.

macronut · Jul 29, 2024 · 7928f8e · 7928f8e
1 parent 2576269
commit 7928f8e
Show file tree

Hide file tree

Showing 9 changed files with 612 additions and 361 deletions.
diff --git a/main.go b/main.go
@@ -5,7 +5,7 @@ import (
 	"encoding/json"
 	"flag"
 	"fmt"
-	"io/ioutil"
+	"io"
 	"log"
 	"net"
 	"net/http"
@@ -149,7 +149,7 @@ func StartService() {
 		return
 	}
 
-	bytes, err := ioutil.ReadAll(conf)
+	bytes, err := io.ReadAll(conf)
 	if err != nil {
 		log.Panic(err)
 	}
@@ -188,6 +188,7 @@ func StartService() {
 			return
 		}
 	}
+
 	if ServiceConfig.HostsFile != "" {
 		err := ptcp.LoadHosts(ServiceConfig.HostsFile)
 		if err != nil {

diff --git a/phantomtcp/dns.go b/phantomtcp/dns.go
@@ -11,6 +11,7 @@ import (
 	"net"
 	"net/http"
 	"net/url"
+	"os"
 	"strconv"
 	"strings"
 	"sync"
@@ -608,7 +609,8 @@ func (records *DNSRecords) PackAnswers(qtype int, minttl uint32) (int, []byte) {
 
 		count := 0
 		totalLen := 0
-		for _, ip := range rec.Addresses {
+		addresses := rec.Addresses
+		for _, ip := range addresses {
 			ip4 := ip.To4()
 			if ip4 != nil {
 				count++
@@ -621,7 +623,8 @@ func (records *DNSRecords) PackAnswers(qtype int, minttl uint32) (int, []byte) {
 
 		answers := make([]byte, totalLen)
 		length := 0
-		for _, ip := range rec.Addresses {
+		for i := 0; i < count; i++ {
+			ip := addresses[i]
 			ip4 := ip.To4()
 			if ip4 != nil {
 				copy(answers[length:], []byte{0xC0, 0x0C, 0x00, 1,
@@ -865,6 +868,7 @@ type ServerOptions struct {
 	Type      string
 	PD        string
 	Domain    string
+	Output    string
 	BadSubnet *net.IPNet
 	Fallback  net.IP
 }
@@ -884,6 +888,8 @@ func ParseOptions(options string) ServerOptions {
 				serverOpts.Type = key[1]
 			case "domain":
 				serverOpts.Domain = key[1]
+			case "output":
+				serverOpts.Output = key[1]
 			case "badsubnet":
 				_, serverOpts.BadSubnet, _ = net.ParseCIDR(key[1])
 			case "fallback":
@@ -1156,13 +1162,17 @@ func NSRequest(request []byte, cache bool) (uint32, []byte) {
 				return records.Index, records.BuildResponse(request, qtype, 60)
 			}
 			records.IPv4Hint = nil
+		} else if records.Index > 0 {
+			return records.Index, records.BuildResponse(request, qtype, 60)
 		}
 	case 28:
 		if records.IPv6Hint != nil {
 			if records.IPv6Hint.TTL == 0 || records.IPv6Hint.TTL > CurrentTime {
 				return records.Index, records.BuildResponse(request, qtype, 60)
 			}
 			records.IPv6Hint = nil
+		} else if records.Index > 0 {
+			return records.Index, records.BuildResponse(request, qtype, 60)
 		}
 	case 65:
 		if records.ALPN&(HINT_ALPN|HINT_HTTP|HINT_HTTPS|HINT_HTTP3) != 0 {
@@ -1288,6 +1298,32 @@ func NSRequest(request []byte, cache bool) (uint32, []byte) {
 		records.Index = uint32(len(Nose))
 		Nose = append(Nose, name)
 		NoseLock.Unlock()
+
+		if options.Output != "" {
+			f, err := os.OpenFile(options.Output, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0666)
+			if err != nil {
+				logPrintln(1, options.Output, err)
+			}
+			defer f.Close()
+
+			if _qtype == 1 {
+				if records.IPv4Hint.Addresses != nil {
+					f.WriteString(name + "=")
+					for _, ip := range records.IPv4Hint.Addresses {
+						f.WriteString(ip.String())
+					}
+					f.WriteString("\n")
+				}
+			} else if _qtype == 28 {
+				if records.IPv6Hint.Addresses != nil {
+					f.WriteString(name + "=")
+					for _, ip := range records.IPv6Hint.Addresses {
+						f.WriteString(ip.String())
+					}
+					f.WriteString("\n")
+				}
+			}
+		}
 	}
 
 	return records.Index, records.BuildResponse(request, qtype, 0)
@@ -1303,7 +1339,7 @@ func (server *PhantomInterface) ResolveTCPAddr(host string, port int) (*net.TCPA
 	if len(addrs) == 0 {
 		return nil, errors.New("no such host")
 	}
-	rand.Seed(time.Now().UnixNano())
+
 	return &net.TCPAddr{IP: addrs[rand.Intn(len(addrs))], Port: port}, nil
 }