/* * quic_analyze_entry.cpp * * Created on: 2021-11-09 * Author: liuxueli */ #include #include #include #include #include #include #include #include #include "quic_entry.h" #include "quic_process.h" #include "quic_deprotection.h" #define PARSE_RESULT_UNKNOWN 0 #define PARSE_RESULT_VERSION 1 #define PARSE_RESULT_CLIENT_HELLO 2 #ifndef PRINTADDR #define PRINTADDR(a, b) ((b)addr), a->threadnum) : "") #endif #ifndef MIN #define MIN(a, b) (((a) < (b)) ? (a) : (b)) #endif struct quic_client_hello_msg_hdr { uint8_t handshake_type; uint8_t client_hello_len[3]; uint16_t tls_version; uint8_t random[32]; }; int check_port(unsigned short port) { int i=0; for(i=0; i< g_quic_param.quic_port_num; i++) { if(g_quic_param.quic_port_list[i]==port) { return 1; } } return 0; } int is_quic_port(struct streaminfo *pstream) { unsigned short source=0, dest=0; switch(pstream->addr.addrtype) { case ADDR_TYPE_IPV4: case __ADDR_TYPE_IP_PAIR_V4: source=(unsigned short)ntohs(pstream->addr.ipv4->source); dest=(unsigned short)ntohs(pstream->addr.ipv4->dest); break; case ADDR_TYPE_IPV6: case __ADDR_TYPE_IP_PAIR_V6: source=(unsigned short)ntohs(pstream->addr.ipv6->source); dest=(unsigned short)ntohs(pstream->addr.ipv6->dest); break; default: return 0; break; } if(check_port(source) || check_port(dest)) { return 1; } return 0; } static int gquic_pkn_bit2length(unsigned char bit_value) { switch(bit_value) { case 0x30: return 6; case 0x20: return 4; case 0x10: return 2; default: return 1; } return 1; } static int copy_extension_tag(const char *tag_start_pos, int tag_len, char **out, int thread_seq) { if(tag_start_pos!=NULL && tag_len>0) { (*out)=(char *)dictator_malloc(thread_seq, tag_len+1); memcpy(*out, tag_start_pos, tag_len); (*out)[tag_len]='\0'; return tag_len; } return 0; } //Source: https://wise2.ipac.caltech.edu/staff/slw/docs/html/varint_8h_source.html static int msb2_varint_decode(const unsigned char *buf, long *out) { unsigned long val = buf[0] & 0x3f; unsigned int nfollow = 1<<(buf[0]>>6); switch (nfollow-1) { case 7: val = (val << 8) | buf[nfollow - 7]; /*fail through*/ case 6: val = (val << 8) | buf[nfollow - 6]; /*fail through*/ case 5: val = (val << 8) | buf[nfollow - 5]; /*fail through*/ case 4: val = (val << 8) | buf[nfollow - 4]; /*fail through*/ case 3: val = (val << 8) | buf[nfollow - 3]; /*fail through*/ case 2: val = (val << 8) | buf[nfollow - 2]; /*fail through*/ case 1: val = (val << 8) | buf[nfollow-1]; case 0: break; } *out=val; return nfollow; } int quic_call_business_state(struct quic_context *context) { UCHAR state = 0; if(0==context->link_state) { state=SESSION_STATE_PENDING|SESSION_STATE_DATA; context->link_state=1; } else { state=SESSION_STATE_DATA; } return state; } unsigned char quic_call_business_plug(struct streaminfo *pstream, struct quic_context *context, void *buff, int buff_len, enum quic_interested_region region_mask, void *a_packet) { char state=PROT_STATE_GIVEME; char app_state=APP_STATE_GIVEME; stSessionInfo session_info={0}; if(region_mask==QUIC_INTEREST_KEY_MASK) { session_info.plugid=g_quic_param.quic_plugid; session_info.prot_flag=0; session_info.session_state=SESSION_STATE_CLOSE; session_info.app_info=NULL; session_info.buf=NULL; session_info.buflen=0; } else { session_info.plugid=g_quic_param.quic_plugid; session_info.prot_flag=(((unsigned long long)1)<quic_info); session_info.buf=buff; session_info.buflen=buff_len; } state=PROT_PROCESS(&session_info, &(context->business_pme), pstream->threadnum, pstream, a_packet); if(state&PROT_STATE_DROPPKT) { app_state=APP_STATE_DROPPKT; } return app_state; } /* //https://docs.google.com/document/d/1FcpCJGTDEMblAs-Bm5TYuqhHyUqeWpqrItw2vkMFsdY/edit Long Header (used for packets that are sent prior to the completion of version negotiation and establishment of 1-RTT keys): +-+-+-+-+-+-+-+-+ |1|1|T|T|R|R|P|P| +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Version (32) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |DCIL(4)|SCIL(4)| +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Destination Connection ID (0/64) ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Source Connection ID (0/64) ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Packet Number (8/16/24/32) ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ */ static int join_client_hello_frames(const char *payload, int payload_len, char *join_payload, int *join_payload_len) { int joined_length=0; int payload_offset=0; long frame_type=0, frame_offset=0, frame_length=0; for(; payload_offset(*join_payload_len) || frame_offset<0 || frame_offset+frame_length>payload_len) { return -1; } memcpy(join_payload+frame_offset, payload+payload_offset, frame_length); joined_length+=frame_length; payload_offset+=frame_length; } (*join_payload_len)=joined_length; return joined_length; } static int parse_gquic_version_44to48_header(const char *payload, int payload_len, int *payload_offset) { unsigned pkn_length=0; unsigned char client_CID_len=0; unsigned char server_CID_len=0; unsigned char public_flags=payload[*payload_offset]; *payload_offset+=1; //skip public flags *payload_offset+=sizeof(int); // skip version if((payload[*payload_offset])&GQUIC_VERSION_44to48_CID_MASK) { client_CID_len=(payload[*payload_offset]&GQUIC_VERSION_44to48_CID_MASK) + 3; } if((payload[*payload_offset]>>4)&GQUIC_VERSION_44to48_CID_MASK) { server_CID_len=((payload[*payload_offset]>>4)&GQUIC_VERSION_44to48_CID_MASK) + 3; } *payload_offset+=1; // both connection_id length *payload_offset+=server_CID_len; // Destination connection id length *payload_offset+=client_CID_len; // source connection id length pkn_length=(public_flags&GQUIC_VERSION_44to48_PKN_LEN_MASK)+1; *payload_offset+=pkn_length; *payload_offset+=12; //message authentication hash return 1; } int parse_special_frame_stream(struct quic_info* quic_info, const char *payload, int payload_len, int thread_seq) { int tag_num = 0; int payload_offset=0; unsigned int message_tag; int pass_tag_num=0; int ext_tag_type=0; int tag_value_start_offset=0; int total_tag_len=0,one_tag_len=0; int parse_result=PARSE_RESULT_VERSION; int one_tag_offset_end=0,pre_one_tag_offset_end=0; if(payload_len-payload_offset<=8) { return PARSE_RESULT_VERSION; } switch(quic_info->quic_version) { case GQUIC_VERSION_Q041: payload_offset+=1; // unknown case GQUIC_VERSION_Q044: message_tag=(unsigned int)ntohl(*(unsigned int *)(payload+payload_offset)); payload_offset+=4; tag_num=*(int *)(payload+payload_offset); payload_offset+=4; //tag_num break; default: message_tag=(unsigned int)ntohl(*(unsigned int *)(payload+payload_offset)); payload_offset+=4; tag_num=*(unsigned short *)(payload+payload_offset); payload_offset+=2; //tag_num payload_offset+=2; //padding break; } if(message_tag!=CHLO || tag_num>64 || tag_num<=0) { return PARSE_RESULT_VERSION; } quic_info->client_hello=(struct quic_client_hello *)dictator_malloc(thread_seq, sizeof(struct quic_client_hello)); memset(quic_info->client_hello, 0, sizeof(struct quic_client_hello)); tag_value_start_offset=payload_offset+tag_num*4*2; // skip length of type and offset, type(offset)=szieof(int) while(tag_num>pass_tag_num) { ext_tag_type=ntohl(*(unsigned int *)(payload+payload_offset)); payload_offset+=sizeof(int); one_tag_offset_end=*(unsigned int *)(payload+payload_offset); payload_offset+=sizeof(int); one_tag_len=one_tag_offset_end-pre_one_tag_offset_end; if(one_tag_len<=0 || (one_tag_offset_end>=payload_len) || (one_tag_len+tag_value_start_offset)>payload_len) { break; } switch(ext_tag_type) { case TAG_UAID: copy_extension_tag(payload+tag_value_start_offset, one_tag_len, &quic_info->client_hello->user_agent, thread_seq); parse_result=PARSE_RESULT_CLIENT_HELLO; break; case TAG_SNI: copy_extension_tag(payload+tag_value_start_offset, one_tag_len, &quic_info->client_hello->sni, thread_seq); parse_result=PARSE_RESULT_CLIENT_HELLO; break; default: break; } pass_tag_num++; tag_value_start_offset+=one_tag_len; total_tag_len+=one_tag_len; pre_one_tag_offset_end=one_tag_offset_end; } return parse_result; } int parse_quic_transport_parameter(struct quic_client_hello *client_hello, const char *quic_para, int quic_para_len, int thread_seq) { int one_para_length=0; int para_offset=0; long one_para_type=0; while(quic_para_len > para_offset) { para_offset+=msb2_varint_decode((const unsigned char *)(quic_para+para_offset), &one_para_type); switch(one_para_type) { case EXT_QUIC_PARAM_USER_AGENT: // 2021-10-20 deprecated one_para_length=quic_para[para_offset++]; // length=1 if(one_para_length+para_offset>quic_para_len) { return 0; } para_offset+=copy_extension_tag(quic_para+para_offset, one_para_length, &client_hello->user_agent, thread_seq); return 1; default: one_para_length=quic_para[para_offset++]; // length=1 para_offset+=one_para_length; break; } } return 0; } int parse_extension_server_name(struct quic_client_hello *client_hello, const char *ext_server_name, int ext_server_name_length, int thread_seq) { unsigned short sni_type=0; unsigned short sni_length=0; unsigned short extension_offset=0; unsigned short server_name_list_len=0; server_name_list_len=ntohs(*(unsigned short *)(ext_server_name+extension_offset)); //Server Name List length if(server_name_list_len<=0 || server_name_list_len>ext_server_name_length) { return 0; } extension_offset+=2; //Server Name List length sni_type=ext_server_name[extension_offset++]; //Server Name type if(sni_type!=EXTENSION_SERVER_NAME) { return 0; } sni_length=ntohs(*(unsigned short*)(ext_server_name+extension_offset)); //Server Name length if(sni_length<=0 || sni_length>ext_server_name_length) { return 0; } extension_offset+=2; copy_extension_tag(ext_server_name+extension_offset, sni_length, &client_hello->sni, thread_seq); return 1; } int parse_tls_client_hello(struct quic_client_hello **client_hello, const char *payload, int payload_len, int thread_seq) { int ret=0,skip_len=0; int payload_offset=0; int extension_offset=0; const char *extension_start_pos=NULL; int parse_result=PARSE_RESULT_VERSION; unsigned short one_ext_type=0, one_ext_len=0, extension_total_len=0; if(payload_len-payload_offset<=sizeof(struct quic_client_hello_msg_hdr)) { return PARSE_RESULT_VERSION; } // handshake type(1), client hello length(3), ssl_version(2), Random(32) payload_offset+=sizeof(struct quic_client_hello_msg_hdr); skip_len=payload[payload_offset++]; //Session ID length if(payload_len-payload_offset<=skip_len) { return PARSE_RESULT_VERSION; } payload_offset+=skip_len; skip_len=ntohs(*(unsigned short *)(payload+payload_offset)); //Ciper Suites length if(payload_len-payload_offset<=skip_len+2) { return PARSE_RESULT_VERSION; } payload_offset+=skip_len+2; skip_len=payload[payload_offset++]; //Compression Methods if(payload_len-payload_offset extension_offset) { one_ext_type=ntohs(*(unsigned short *)(extension_start_pos+extension_offset)); //Extension type extension_offset+=2; one_ext_len=ntohs(*(unsigned short *)(extension_start_pos+extension_offset)); //length extension_offset+=2; if(extension_total_len-extension_offsetquic_version; if( (quic_version>=MVFST_VERSION_00 && quic_version<=MVFST_VERSION_0F) || (quic_version>=GQUIC_VERSION_T050 && quic_version<=GQUIC_VERSION_T059) || (quic_version>=IQUIC_VERSION_I022 && quic_version<=IQUIC_VERSION_I029) || (quic_version==IQUIC_VERSION_RFC9000) ) { join_payload_len=join_client_hello_frames(payload, payload_len, join_payload, &join_payload_len); if(join_payload_len<=0) { return PARSE_RESULT_VERSION; } if(join_payload[0] == QUIC_HANDSHAKE_TYPE_CLIENTHELLO) { return parse_tls_client_hello(&(quic_info->client_hello), join_payload, join_payload_len, thread_seq); } } else //if(quic_version>=GQUIC_VERSION_Q047 && quic_version<=GQUIC_VERSION_Q059) { return parse_special_frame_stream(quic_info, (char *)payload+4, payload_len-4, thread_seq); // Frame type=1,offset=1,length=2 } return PARSE_RESULT_VERSION; } int parse_quic_uncryption_payload(struct quic_info *quic_info, const char * payload, int payload_len, int thread_seq) { int stream_id_len=0; int offset_len=0; unsigned char frame_type; int payload_offset=0; frame_type=payload[payload_offset]; payload_offset+=1; //skip frame_type //https://docs.google.com/document/d/1WJvyZflAO2pq77yOLbp9NsGjC1CHetAXV8I0fQe-B_U/edit# //Frame Type: The Frame Type byte is an 8-bit value containing various flags (1fdooossB): if(frame_type&GQUIC_SPECIAL_FRAME_STREAM || (frame_type&0xC0)==GQUIC_SPECIAL_FRAME_ACK) { stream_id_len=(frame_type&GQUIC_SPECIAL_FRAME_STREAM_ID)+1; if(payload_len-payload_offset<=stream_id_len) { return PARSE_RESULT_VERSION; } payload_offset+=stream_id_len; // stream ID length if(frame_type&GQUIC_SPECIAL_FRAME_STREAM_DLEN) { if(payload_len-payload_offset<2) { return PARSE_RESULT_VERSION; } payload_offset+=2; //data length } if(frame_type&GQUIC_SPECIAL_FRAME_STREAM_OFFSET) {//The next three 'ooo' bits encode the length of the Offset header field as 0, 16, 24, 32, 40, 48, 56, or 64 bits long. offset_len= (((frame_type&GQUIC_SPECIAL_FRAME_STREAM_OFFSET))>>2)+1; if(payload_len-payload_offset<=offset_len) { return PARSE_RESULT_VERSION; } payload_offset+=offset_len; //data length } return parse_special_frame_stream(quic_info, payload+payload_offset, payload_len-payload_offset, thread_seq); } return PARSE_RESULT_VERSION; } /* //https://docs.google.com/document/d/1WJvyZflAO2pq77yOLbp9NsGjC1CHetAXV8I0fQe-B_U/edit --- src 0 1 2 3 4 8 +--------+--------+--------+--------+--------+--- ---+ | Public | Connection ID (64) ... | -> |Flags(8)| (optional) | +--------+--------+--------+--------+--------+--- ---+ 9 10 11 12 +--------+--------+--------+--------+ | QUIC Version (32) | -> | (optional) | +--------+--------+--------+--------+ 13 14 15 16 17 18 19 20 +--------+--------+--------+--------+--------+--------+--------+--------+ | Diversification Nonce | -> | (optional) | +--------+--------+--------+--------+--------+--------+--------+--------+ 21 22 23 24 25 26 27 28 +--------+--------+--------+--------+--------+--------+--------+--------+ | Diversification Nonce Continued | -> | (optional) | +--------+--------+--------+--------+--------+--------+--------+--------+ 29 30 31 32 33 34 35 36 +--------+--------+--------+--------+--------+--------+--------+--------+ | Diversification Nonce Continued | -> | (optional) | +--------+--------+--------+--------+--------+--------+--------+--------+ 37 38 39 40 41 42 43 44 +--------+--------+--------+--------+--------+--------+--------+--------+ | Diversification Nonce Continued | -> | (optional) | +--------+--------+--------+--------+--------+--------+--------+--------+ 45 46 47 48 49 50 +--------+--------+--------+--------+--------+--------+ | Packet Number (8, 16, 32, or 48) | | (variable length) | +--------+--------+--------+--------+--------+--------+ */ enum QUIC_VERSION identify_gquic_version0to43(const char *payload, int payload_len, int *payload_offset) { unsigned char pkn_length=0; unsigned char public_flags=0; enum QUIC_VERSION quic_version=QUIC_VERSION_UNKNOWN; public_flags=payload[*payload_offset]; *payload_offset+=1; if(!(public_flags&GQUIC_PUBLIC_FLAG_VERSION)) { return QUIC_VERSION_UNKNOWN; } /* 0x08 = Indicates the full 8 byte Connection ID is present in the packet. This must be set in all packets until negotiated to a different value for a given direction (e.g., client may request fewer bytes of the Connection ID be presented) */ if(public_flags&GQUIC_PUBLIC_FLAG_CID) { *payload_offset+=8; // CID length } if(public_flags&GQUIC_PUBLIC_FLAG_VERSION && (*(unsigned char *)(payload+*payload_offset)==0x51)) { quic_version=(enum QUIC_VERSION)ntohl(*(unsigned int *)(payload+*payload_offset)); *payload_offset+=sizeof(int); // skip version } if(quic_versionGQUIC_VERSION_Q043) { return QUIC_VERSION_UNKNOWN; } pkn_length=gquic_pkn_bit2length(public_flags&GQUIC_VERSION_0to43_PKN_LEN_MASK); *payload_offset+=pkn_length; // packet number length if(public_flags==GQUIC_PUBLIC_FLAG_NONCE) { *payload_offset+=32; //diversification nonce } // Version 11 reduced the length of null encryption authentication tag from 16 to 12 bytes if(quic_version > GQUIC_VERSION_Q010) { *payload_offset+=12; } else { *payload_offset+=16; } // Version 34 removed entropy bits from packets and ACK frames, // removed private flag from packet header and changed the ACK format to specify ranges of packets acknowledged rather than missing ranges. if(quic_version < GQUIC_VERSION_Q034) { *payload_offset+=1; //private flags } return quic_version; } enum QUIC_VERSION identify_quic_version(const char *payload, int payload_len, int *payload_offset) { enum QUIC_VERSION quic_version=(enum QUIC_VERSION)ntohl(*(unsigned int *)(payload+(*payload_offset+1))); if(quic_version>=GQUIC_VERSION_Q044 && quic_version<=GQUIC_VERSION_Q048) { parse_gquic_version_44to48_header(payload, payload_len, payload_offset); return quic_version; } else if( (quic_version==GQUIC_VERSION_Q099) || (quic_version==PICOQUIC_VERSION_30) || (quic_version==PQUIC_VERSION_PROX) || (quic_version==GQUIC_VERSION_T099) || (quic_version>=GQUIC_VERSION_Q049 && quic_version<=GQUIC_VERSION_Q050) || (quic_version>=GQUIC_VERSION_Q051 && quic_version<=GQUIC_VERSION_Q059) || (quic_version>=GQUIC_VERSION_T048 && quic_version<=GQUIC_VERSION_T049) || (quic_version>=GQUIC_VERSION_T050 && quic_version<=GQUIC_VERSION_T059) || (quic_version>=QUANT_VERSION_00 && quic_version<=QUANT_VERSION_FF) || (quic_version>=QUIC_GO_VERSION_00 && quic_version<=QUIC_GO_VERSION_FF) || (quic_version>=QUICLY_VERSION_00 && quic_version<=QUICLY_VERSION_FF) || (quic_version>=MSQUIC_VERSION_00 && quic_version<=MSQUIC_VERSION_0F) || (quic_version>=MOZQUIC_VERSION_00 && quic_version<=MOZQUIC_VERSION_0F) || (quic_version>=MVFST_VERSION_00 && quic_version<=MVFST_VERSION_0F) || (quic_version>=IQUIC_VERSION_I001 && quic_version<=IQUIC_VERSION_I032) || (quic_version==IQUIC_VERSION_RFC9000) ) { return quic_version; } return QUIC_VERSION_UNKNOWN; } enum QUIC_VERSION is_quic_protocol(const char *payload, int payload_len, int *payload_offset) { enum QUIC_VERSION quic_version=QUIC_VERSION_UNKNOWN; unsigned char frame_type=(unsigned char)(payload[0]); if(frame_type&QUIC_LONG_HEADER_MASK) { quic_version=identify_quic_version(payload, payload_len, payload_offset); } else if(frame_typequic_version=quic_version; if(quic_version>=GQUIC_VERSION_Q001 && quic_version<=GQUIC_VERSION_Q048) { return parse_quic_uncryption_payload(quic_info, payload+payload_offset, payload_len-payload_offset, thread_seq); } else if(((quic_version>=MVFST_VERSION_00 && quic_version<=MVFST_VERSION_0F) || (quic_version>=GQUIC_VERSION_Q049 && quic_version<=GQUIC_VERSION_Q059) || (quic_version>=GQUIC_VERSION_T050 && quic_version<=GQUIC_VERSION_T059) || (quic_version>=GQUIC_VERSION_T050 && quic_version<=GQUIC_VERSION_T059) || (quic_version>=IQUIC_VERSION_I022 && quic_version<=IQUIC_VERSION_I029) || (quic_version==IQUIC_VERSION_RFC9000)) && g_quic_param.decrypted_switch>0 ) { ret=quic_deprotection(payload, payload_len, decrypt_payload, &decrypt_payload_len); if(ret!=1 || decrypt_payload_len<=0) { return PARSE_RESULT_VERSION; } if(g_quic_param.decrypted_switch==2) { return parse_quic_decrypted_payload(quic_info, (const char *)decrypt_payload, decrypt_payload_len, thread_seq); } } else { return PARSE_RESULT_VERSION; } return PARSE_RESULT_VERSION; } unsigned char quic_analyze_entry(struct streaminfo *pstream, struct quic_context* context, int thread_seq, void* a_packet) { int ret=PARSE_RESULT_UNKNOWN; if(pstream==NULL || pstream->pudpdetail==NULL) { return APP_STATE_DROPME; } struct udpdetail *udp_detail=pstream->pudpdetail; ret=parse_quic_all_version(&(context->quic_info), (const char *)udp_detail->pdata, udp_detail->datalen, thread_seq); switch(ret) { case PARSE_RESULT_VERSION: return quic_call_business_plug(pstream, context, (void *)&(context->quic_info.quic_version), sizeof(unsigned int), QUIC_USEING_VERSION_MASK, a_packet); case PARSE_RESULT_CLIENT_HELLO: return quic_call_business_plug(pstream, context, (void *)&(context->quic_info), sizeof(void *), QUIC_CLIENT_HELLO_MASK, a_packet); default: break; } return APP_STATE_DROPME; } static int copy_client_hello_extension(char *src, char *dest, int d_len) { if(src==NULL || dest==NULL || d_len<=0) { return 0; } int len=MIN((int)strlen(src), d_len-1); memcpy(dest, src, len); dest[len]='\0'; return len; } unsigned int quic_protocol_identify(struct streaminfo *a_stream, void *a_packet, char *out_sni, int *out_sni_len, char *out_ua, int *out_ua_len) { int ret=APP_STATE_GIVEME; struct quic_info quic_info={0, NULL}; unsigned int quic_version=QUIC_VERSION_UNKNOWN; if(!is_quic_port(a_stream) || a_stream==NULL || a_stream->pudpdetail==NULL) { return quic_version; } ret=parse_quic_all_version(&quic_info, (const char *)a_stream->pudpdetail->pdata, a_stream->pudpdetail->datalen, a_stream->threadnum); if(ret!=PARSE_RESULT_UNKNOWN) { if(quic_info.client_hello!=NULL) { *out_sni_len=copy_client_hello_extension(quic_info.client_hello->sni, out_sni, *out_sni_len); *out_ua_len=copy_client_hello_extension(quic_info.client_hello->user_agent, out_ua, *out_ua_len); quic_free_client_hello(quic_info.client_hello, a_stream->threadnum); } else { *out_sni_len=0; *out_ua_len=0; } quic_version=quic_info.quic_version; } return quic_version; }