DWS/hadrian
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix srcset handler in html rewriter

Browse Source
This commit is contained in:
Kevin Pham
2023-11-27 21:36:50 -06:00
parent 78e15d8342
commit 0fe02c397d
8 changed files with 59 additions and 33 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
handlers/proxy.go
View File

@@ -31,16 +31,27 @@ func NewProxySiteHandler(opts *ProxyOptions) fiber.Handler {
SetFiberCtx(c). SetFiberCtx(c).
SetDebugLogging(opts.Verbose). SetDebugLogging(opts.Verbose).
SetRequestModifications( SetRequestModifications(
rx.MasqueradeAsFacebookBot(), //rx.MasqueradeAsFacebookBot(),
rx.DeleteOutgoingCookies(), rx.MasqueradeAsGoogleBot(),
//rx.DeleteOutgoingCookies(),
rx.ForwardRequestHeaders(),
rx.SetOutgoingCookie("nyt-a", " "),
rx.SetOutgoingCookie("nyt-gdpr", "0"),
rx.SetOutgoingCookie("nyt-gdpr", "0"),
rx.SetOutgoingCookie("nyt-geo", "DE"),
rx.SetOutgoingCookie("nyt-privacy", "1"),
rx.SpoofReferrerFromGoogleSearch(),
//rx.RequestWaybackMachine(),
//rx.RequestArchiveIs(), //rx.RequestArchiveIs(),
). ).
AddResponseModifications( AddResponseModifications(
tx.BypassCORS(), tx.BypassCORS(),
//tx.BypassContentSecurityPolicy(), tx.BypassContentSecurityPolicy(),
//tx.DeleteIncomingCookies(), //tx.DeleteIncomingCookies(),
//tx.RewriteHTMLResourceURLs(), tx.ForwardResponseHeaders(),
//tx.PatchDynamicResourceURLs(), tx.RewriteHTMLResourceURLs(),
tx.PatchDynamicResourceURLs(),
//tx.SetContentSecurityPolicy("default-src * 'unsafe-inline' 'unsafe-eval' data: blob:;"),
). ).
Execute() Execute()

4
proxychain/proxychain.go
View File

@@ -5,8 +5,8 @@ import (
"fmt" "fmt"
"io" "io"
"log" "log"
//"net/http" "net/http"
http "github.com/Danny-Dasilva/fhttp" //http "github.com/Danny-Dasilva/fhttp"
"net/url" "net/url"
"strings" "strings"

4
proxychain/requestmodifers/forward_request_headers.go
View File

@@ -19,11 +19,12 @@ func init() {
"x-forwarded-for": true, "x-forwarded-for": true,
"x-real-ip": true, "x-real-ip": true,
"forwarded": true, "forwarded": true,
"accept-encoding": true,
} }
} }
// ForwardRequestHeaders forwards the requests headers sent from the client to the upstream server // ForwardRequestHeaders forwards the requests headers sent from the client to the upstream server
func ForwardRequestHeaders(ua string) proxychain.RequestModification { func ForwardRequestHeaders() proxychain.RequestModification {
return func(chain *proxychain.ProxyChain) error { return func(chain *proxychain.ProxyChain) error {
forwardHeaders := func(key, value []byte) { forwardHeaders := func(key, value []byte) {
@@ -32,6 +33,7 @@ func ForwardRequestHeaders(ua string) proxychain.RequestModification {
if forwardBlacklist[k] { if forwardBlacklist[k] {
return return
} }
//fmt.Println(k, v)
chain.Request.Header.Set(k, v) chain.Request.Header.Set(k, v)
} }

4
proxychain/requestmodifers/modify_outgoing_cookies.go
View File

@@ -1,8 +1,8 @@
package requestmodifers package requestmodifers
import ( import (
//"net/http" "net/http"
http "github.com/Danny-Dasilva/fhttp" //http "github.com/Danny-Dasilva/fhttp"
"ladder/proxychain" "ladder/proxychain"
) )

4
proxychain/requestmodifers/resolve_with_google_doh.go
View File

@@ -5,8 +5,8 @@ import (
"encoding/json" "encoding/json"
"fmt" "fmt"
"net" "net"
//"net/http" "net/http"
http "github.com/Danny-Dasilva/fhttp" //http "github.com/Danny-Dasilva/fhttp"
"time" "time"
"ladder/proxychain" "ladder/proxychain"

11
proxychain/requestmodifers/spoof_ja3_fingerprint.go
View File

@@ -1,5 +1,15 @@
package requestmodifers package requestmodifers
import "ladder/proxychain"
// TODO: fix
func SpoofJA3fingerprint(ja3 string, userAgent string) proxychain.RequestModification {
return func(chain *proxychain.ProxyChain) error {
return nil
}
}
/*
import ( import (
"github.com/Danny-Dasilva/CycleTLS/cycletls" "github.com/Danny-Dasilva/CycleTLS/cycletls"
http "github.com/Danny-Dasilva/fhttp" http "github.com/Danny-Dasilva/fhttp"
@@ -44,3 +54,4 @@ func SpoofJA3fingerprintWithProxy(ja3 string, userAgent string, proxy proxy.Cont
return nil return nil
} }
} }
*/

2
proxychain/responsemodifers/bypass_csp.go
View File

@@ -11,7 +11,7 @@ import (
// from enforcing any CSP restrictions. This should run at the end of the chain. // from enforcing any CSP restrictions. This should run at the end of the chain.
func BypassContentSecurityPolicy() proxychain.ResponseModification { func BypassContentSecurityPolicy() proxychain.ResponseModification {
return func(chain *proxychain.ProxyChain) error { return func(chain *proxychain.ProxyChain) error {
chain.AddResponseModifications( chain.AddOnceResponseModifications(
DeleteResponseHeader("Content-Security-Policy"), DeleteResponseHeader("Content-Security-Policy"),
DeleteResponseHeader("Content-Security-Policy-Report-Only"), DeleteResponseHeader("Content-Security-Policy-Report-Only"),
DeleteResponseHeader("X-Content-Security-Policy"), DeleteResponseHeader("X-Content-Security-Policy"),

40
proxychain/responsemodifers/rewriters/html_token_url_rewriter.go
View File

@@ -89,16 +89,22 @@ func NewHTMLTokenURLRewriter(baseURL *url.URL, proxyURL string) *HTMLTokenURLRew
} }
func (r *HTMLTokenURLRewriter) ShouldModify(token *html.Token) bool { func (r *HTMLTokenURLRewriter) ShouldModify(token *html.Token) bool {
//fmt.Printf("touch token: %s\n", token.String())
attrLen := len(token.Attr) attrLen := len(token.Attr)
if attrLen == 0 { if attrLen == 0 {
return false return false
} }
if !(token.Type == html.StartTagToken || token.Type == html.SelfClosingTagToken) {
return false if token.Type == html.StartTagToken {
}
return true return true
} }
if token.Type == html.SelfClosingTagToken {
return true
}
return false
}
func (r *HTMLTokenURLRewriter) ModifyToken(token *html.Token) (string, string) { func (r *HTMLTokenURLRewriter) ModifyToken(token *html.Token) (string, string) {
for i := range token.Attr { for i := range token.Attr {
attr := &token.Attr[i] attr := &token.Attr[i]
@@ -198,10 +204,10 @@ func handleAbsolutePath(attr *html.Attribute, baseURL *url.URL) {
if err != nil { if err != nil {
return return
} }
if !(u.Scheme == "http" || u.Scheme == "https") { if u.Scheme != "http" || u.Scheme != "https" {
return return
} }
attr.Val = fmt.Sprintf("%s://%s/%s", baseURL.Scheme, baseURL.Host, escape(strings.TrimPrefix(attr.Val, "/"))) attr.Val = fmt.Sprintf("/%s", escape(strings.TrimPrefix(attr.Val, "/")))
log.Printf("abs url rewritten-> '%s'='%s'", attr.Key, attr.Val) log.Printf("abs url rewritten-> '%s'='%s'", attr.Key, attr.Val)
} }
@@ -234,31 +240,27 @@ func handleSrcSet(attr *html.Attribute, baseURL *url.URL) {
srcSetItems := strings.Split(attr.Val, ",") srcSetItems := strings.Split(attr.Val, ",")
for i, srcItem := range srcSetItems { for i, srcItem := range srcSetItems {
srcParts := strings.Fields(srcItem) // Fields splits around whitespace, trimming them srcParts := strings.Fields(srcItem)
if len(srcParts) == 0 { if len(srcParts) == 0 {
continue // skip empty items continue
} }
// rewrite each URL part by passing in fake attribute fakeAttr := &html.Attribute{Val: srcParts[0], Key: "src"}
f := &html.Attribute{Val: srcParts[0], Key: "src"} handleURLPart(fakeAttr, baseURL)
handleURLPart(f, baseURL)
urlPart := f.Key
// First srcset item without a descriptor if i > 0 {
if i == 0 && (len(srcParts) == 1 || !strings.HasSuffix(srcParts[1], "x")) { srcSetBuilder.WriteString(", ")
srcSetBuilder.WriteString(urlPart)
} else {
srcSetBuilder.WriteString(fmt.Sprintf("%s %s", urlPart, srcParts[1]))
} }
if i < len(srcSetItems)-1 { srcSetBuilder.WriteString(fakeAttr.Val)
srcSetBuilder.WriteString(",") // Add comma for all but last item if len(srcParts) > 1 {
srcSetBuilder.WriteString(" ")
srcSetBuilder.WriteString(strings.Join(srcParts[1:], " "))
} }
} }
attr.Val = srcSetBuilder.String() attr.Val = srcSetBuilder.String()
log.Printf("srcset url rewritten-> '%s'='%s'", attr.Key, attr.Val)
} }
func escape(str string) string { func escape(str string) string {