black-internet-days-ahead/sing-box
1
0
Fork 0
mirror of https://github.com/SagerNet/sing-box.git synced 2024-09-20 02:27:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
sing-box/transport/vless/vision.go

381 lines
10 KiB
Go
Raw Normal View History

Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
package vless
import (
"bytes"
"crypto/rand"
"crypto/tls"
"io"
"math/big"
"net"
"reflect"
"time"
"unsafe"
C "github.com/sagernet/sing-box/constant"
"github.com/sagernet/sing/common"
"github.com/sagernet/sing/common/buf"
"github.com/sagernet/sing/common/bufio"
E "github.com/sagernet/sing/common/exceptions"
Update vision protocol
2023-02-27 07:07:15 +00:00
"github.com/sagernet/sing/common/logger"
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
N "github.com/sagernet/sing/common/network"
)
var tlsRegistry []func(conn net.Conn) (loaded bool, netConn net.Conn, reflectType reflect.Type, reflectPointer uintptr)
func init() {
tlsRegistry = append(tlsRegistry, func(conn net.Conn) (loaded bool, netConn net.Conn, reflectType reflect.Type, reflectPointer uintptr) {
tlsConn, loaded := conn.(*tls.Conn)
if !loaded {
return
}
return true, tlsConn.NetConn(), reflect.TypeOf(tlsConn).Elem(), uintptr(unsafe.Pointer(tlsConn))
})
}
Fix vision read
2023-03-05 06:56:09 +00:00
const xrayChunkSize = 8192
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
type VisionConn struct {
net.Conn
Fix vision read
2023-03-05 06:56:09 +00:00
reader *bufio.ChunkReader
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
writer N.VectorisedWriter
input *bytes.Reader
rawInput *bytes.Buffer
netConn net.Conn
Update vision protocol
2023-02-27 07:07:15 +00:00
logger logger.Logger
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
Update vision protocol
2023-02-27 07:07:15 +00:00
userUUID [16]byte
isTLS bool
numberOfPacketToFilter int
isTLS12orAbove bool
remainingServerHello int32
cipher uint16
enableXTLS bool
isPadding bool
directWrite bool
writeUUID bool
withinPaddingBuffers bool
remainingContent int
remainingPadding int
Improve VLESS request
2023-04-18 06:59:44 +00:00
currentCommand byte
Update vision protocol
2023-02-27 07:07:15 +00:00
directRead bool
remainingReader io.Reader
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
func NewVisionConn(conn net.Conn, tlsConn net.Conn, userUUID [16]byte, logger logger.Logger) (*VisionConn, error) {
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
var (
loaded bool
reflectType reflect.Type
reflectPointer uintptr
netConn net.Conn
)
for _, tlsCreator := range tlsRegistry {
Improve VLESS request
2023-04-18 06:59:44 +00:00
loaded, netConn, reflectType, reflectPointer = tlsCreator(tlsConn)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
if loaded {
break
}
}
if !loaded {
return nil, C.ErrTLSRequired
}
input, _ := reflectType.FieldByName("input")
rawInput, _ := reflectType.FieldByName("rawInput")
return &VisionConn{
Update vision protocol
2023-02-27 07:07:15 +00:00
Conn: conn,
Fix vision read
2023-03-05 06:56:09 +00:00
reader: bufio.NewChunkReader(conn, xrayChunkSize),
Update vision protocol
2023-02-27 07:07:15 +00:00
writer: bufio.NewVectorisedWriter(conn),
input: (*bytes.Reader)(unsafe.Pointer(reflectPointer + input.Offset)),
rawInput: (*bytes.Buffer)(unsafe.Pointer(reflectPointer + rawInput.Offset)),
netConn: netConn,
logger: logger,
userUUID: userUUID,
numberOfPacketToFilter: 8,
remainingServerHello: -1,
isPadding: true,
writeUUID: true,
withinPaddingBuffers: true,
remainingContent: -1,
remainingPadding: -1,
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}, nil
}
func (c *VisionConn) Read(p []byte) (n int, err error) {
if c.remainingReader != nil {
n, err = c.remainingReader.Read(p)
if err == io.EOF {
Improve VLESS request
2023-04-18 06:59:44 +00:00
err = nil
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.remainingReader = nil
Fix vision read
2023-03-05 06:56:09 +00:00
}
if n > 0 {
return
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
}
if c.directRead {
return c.netConn.Read(p)
}
Fix vision read
2023-03-05 06:56:09 +00:00
var bufferBytes []byte
Improve VLESS request
2023-04-18 06:59:44 +00:00
var chunkBuffer *buf.Buffer
Fix vision read
2023-03-05 06:56:09 +00:00
if len(p) > xrayChunkSize {
n, err = c.Conn.Read(p)
if err != nil {
return
}
bufferBytes = p[:n]
} else {
Improve VLESS request
2023-04-18 06:59:44 +00:00
chunkBuffer, err = c.reader.ReadChunk()
Fix vision read
2023-03-05 06:56:09 +00:00
if err != nil {
return 0, err
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
bufferBytes = chunkBuffer.Bytes()
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Update vision protocol
2023-02-27 07:07:15 +00:00
if c.withinPaddingBuffers || c.numberOfPacketToFilter > 0 {
Fix vision read
2023-03-05 06:56:09 +00:00
buffers := c.unPadding(bufferBytes)
Improve VLESS request
2023-04-18 06:59:44 +00:00
if chunkBuffer != nil {
buffers = common.Map(buffers, func(it *buf.Buffer) *buf.Buffer {
return it.ToOwned()
})
chunkBuffer.FullReset()
}
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
if c.remainingContent == 0 && c.remainingPadding == 0 {
Improve VLESS request
2023-04-18 06:59:44 +00:00
if c.currentCommand == commandPaddingEnd {
Update vision protocol
2023-02-27 07:07:15 +00:00
c.withinPaddingBuffers = false
c.remainingContent = -1
c.remainingPadding = -1
Improve VLESS request
2023-04-18 06:59:44 +00:00
} else if c.currentCommand == commandPaddingDirect {
Update vision protocol
2023-02-27 07:07:15 +00:00
c.withinPaddingBuffers = false
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.directRead = true
inputBuffer, err := io.ReadAll(c.input)
if err != nil {
return 0, err
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
buffers = append(buffers, buf.As(inputBuffer))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
rawInputBuffer, err := io.ReadAll(c.rawInput)
if err != nil {
return 0, err
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
buffers = append(buffers, buf.As(rawInputBuffer))
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("XtlsRead readV")
Improve VLESS request
2023-04-18 06:59:44 +00:00
} else if c.currentCommand == commandPaddingContinue {
Update vision protocol
2023-02-27 07:07:15 +00:00
c.withinPaddingBuffers = true
} else {
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
return 0, E.New("unknown command ", c.currentCommand)
}
Update vision protocol
2023-02-27 07:07:15 +00:00
} else if c.remainingContent > 0 || c.remainingPadding > 0 {
c.withinPaddingBuffers = true
} else {
c.withinPaddingBuffers = false
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
if c.numberOfPacketToFilter > 0 {
Improve VLESS request
2023-04-18 06:59:44 +00:00
c.filterTLS(buf.ToSliceMulti(buffers))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
c.remainingReader = io.MultiReader(common.Map(buffers, func(it *buf.Buffer) io.Reader { return it })...)
Fix vless read cache
2023-03-06 03:19:23 +00:00
return c.Read(p)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
} else {
if c.numberOfPacketToFilter > 0 {
Fix vision read
2023-03-05 06:56:09 +00:00
c.filterTLS([][]byte{bufferBytes})
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
if chunkBuffer != nil {
n = copy(p, bufferBytes)
chunkBuffer.Advance(n)
}
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
return
}
}
func (c *VisionConn) Write(p []byte) (n int, err error) {
if c.numberOfPacketToFilter > 0 {
c.filterTLS([][]byte{p})
}
Update vision protocol
2023-02-27 07:07:15 +00:00
if c.isPadding {
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
inputLen := len(p)
buffers := reshapeBuffer(p)
var specIndex int
for i, buffer := range buffers {
Update vision protocol
2023-02-27 07:07:15 +00:00
if c.isTLS && buffer.Len() > 6 && bytes.Equal(tlsApplicationDataStart, buffer.To(3)) {
var command byte = commandPaddingEnd
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
if c.enableXTLS {
c.directWrite = true
specIndex = i
Update vision protocol
2023-02-27 07:07:15 +00:00
command = commandPaddingDirect
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Update vision protocol
2023-02-27 07:07:15 +00:00
c.isPadding = false
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
buffers[i] = c.padding(buffer, command)
break
Update vision protocol
2023-02-27 07:07:15 +00:00
} else if !c.isTLS12orAbove && c.numberOfPacketToFilter <= 1 {
c.isPadding = false
buffers[i] = c.padding(buffer, commandPaddingEnd)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
break
}
Update vision protocol
2023-02-27 07:07:15 +00:00
buffers[i] = c.padding(buffer, commandPaddingContinue)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
if c.directWrite {
encryptedBuffer := buffers[:specIndex+1]
err = c.writer.WriteVectorised(encryptedBuffer)
if err != nil {
return
}
buffers = buffers[specIndex+1:]
c.writer = bufio.NewVectorisedWriter(c.netConn)
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("XtlsWrite writeV ", specIndex, " ", buf.LenMulti(encryptedBuffer), " ", len(buffers))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
time.Sleep(5 * time.Millisecond) // wtf
}
err = c.writer.WriteVectorised(buffers)
if err == nil {
n = inputLen
}
return
}
if c.directWrite {
return c.netConn.Write(p)
} else {
return c.Conn.Write(p)
}
}
func (c *VisionConn) filterTLS(buffers [][]byte) {
for _, buffer := range buffers {
c.numberOfPacketToFilter--
if len(buffer) > 6 {
if buffer[0] == 22 && buffer[1] == 3 && buffer[2] == 3 {
c.isTLS = true
if buffer[5] == 2 {
c.isTLS12orAbove = true
c.remainingServerHello = (int32(buffer[3])<<8 | int32(buffer[4])) + 5
if len(buffer) >= 79 && c.remainingServerHello >= 79 {
sessionIdLen := int32(buffer[43])
cipherSuite := buffer[43+sessionIdLen+1 : 43+sessionIdLen+3]
c.cipher = uint16(cipherSuite[0])<<8 | uint16(cipherSuite[1])
Update vision protocol
2023-02-27 07:07:15 +00:00
} else {
c.logger.Trace("XtlsFilterTls short server hello, tls 1.2 or older? ", len(buffer), " ", c.remainingServerHello)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
}
} else if bytes.Equal(tlsClientHandShakeStart, buffer[:2]) && buffer[5] == 1 {
c.isTLS = true
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("XtlsFilterTls found tls client hello! ", len(buffer))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
}
if c.remainingServerHello > 0 {
end := int(c.remainingServerHello)
if end > len(buffer) {
end = len(buffer)
}
c.remainingServerHello -= int32(end)
if bytes.Contains(buffer[:end], tls13SupportedVersions) {
cipher, ok := tls13CipherSuiteDic[c.cipher]
if ok && cipher != "TLS_AES_128_CCM_8_SHA256" {
c.enableXTLS = true
}
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("XtlsFilterTls found tls 1.3! ", len(buffer), " ", c.cipher, " ", c.enableXTLS)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.numberOfPacketToFilter = 0
return
} else if c.remainingServerHello == 0 {
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("XtlsFilterTls found tls 1.2! ", len(buffer))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.numberOfPacketToFilter = 0
return
}
}
Update vision protocol
2023-02-27 07:07:15 +00:00
if c.numberOfPacketToFilter == 0 {
c.logger.Trace("XtlsFilterTls stop filtering ", len(buffer))
}
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
}
func (c *VisionConn) padding(buffer *buf.Buffer, command byte) *buf.Buffer {
contentLen := 0
paddingLen := 0
if buffer != nil {
contentLen = buffer.Len()
}
Update vision protocol
2023-02-27 07:07:15 +00:00
if contentLen < 900 && c.isTLS {
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
l, _ := rand.Int(rand.Reader, big.NewInt(500))
paddingLen = int(l.Int64()) + 900 - contentLen
Update vision protocol
2023-02-27 07:07:15 +00:00
} else {
l, _ := rand.Int(rand.Reader, big.NewInt(256))
paddingLen = int(l.Int64())
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Fix vision padding overflow
2023-03-19 02:25:26 +00:00
var bufferLen int
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
if c.writeUUID {
Fix vision padding overflow
2023-03-19 02:25:26 +00:00
bufferLen += 16
}
bufferLen += 5
if buffer != nil {
bufferLen += buffer.Len()
}
bufferLen += paddingLen
newBuffer := buf.NewSize(bufferLen)
if c.writeUUID {
common.Must1(newBuffer.Write(c.userUUID[:]))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.writeUUID = false
}
Fix vision padding overflow
2023-03-19 02:25:26 +00:00
common.Must1(newBuffer.Write([]byte{command, byte(contentLen >> 8), byte(contentLen), byte(paddingLen >> 8), byte(paddingLen)}))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
if buffer != nil {
Fix vision padding overflow
2023-03-19 02:25:26 +00:00
common.Must1(newBuffer.Write(buffer.Bytes()))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
buffer.Release()
}
newBuffer.Extend(paddingLen)
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("XtlsPadding ", contentLen, " ", paddingLen, " ", command)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
return newBuffer
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
func (c *VisionConn) unPadding(buffer []byte) []*buf.Buffer {
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
var bufferIndex int
if c.remainingContent == -1 && c.remainingPadding == -1 {
if len(buffer) >= 21 && bytes.Equal(c.userUUID[:], buffer[:16]) {
bufferIndex = 16
c.remainingContent = 0
c.remainingPadding = 0
Update vision protocol
2023-02-27 07:07:15 +00:00
c.currentCommand = 0
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
}
if c.remainingContent == -1 && c.remainingPadding == -1 {
Improve VLESS request
2023-04-18 06:59:44 +00:00
return []*buf.Buffer{buf.As(buffer)}
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
var buffers []*buf.Buffer
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
for bufferIndex < len(buffer) {
if c.remainingContent <= 0 && c.remainingPadding <= 0 {
if c.currentCommand == 1 {
Improve VLESS request
2023-04-18 06:59:44 +00:00
buffers = append(buffers, buf.As(buffer[bufferIndex:]))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
break
} else {
paddingInfo := buffer[bufferIndex : bufferIndex+5]
Improve VLESS request
2023-04-18 06:59:44 +00:00
c.currentCommand = paddingInfo[0]
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.remainingContent = int(paddingInfo[1])<<8 | int(paddingInfo[2])
c.remainingPadding = int(paddingInfo[3])<<8 | int(paddingInfo[4])
bufferIndex += 5
Update vision protocol
2023-02-27 07:07:15 +00:00
c.logger.Trace("Xtls Unpadding new block ", bufferIndex, " ", c.remainingContent, " padding ", c.remainingPadding, " ", c.currentCommand)
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
}
} else if c.remainingContent > 0 {
end := c.remainingContent
if end > len(buffer)-bufferIndex {
end = len(buffer) - bufferIndex
}
Improve VLESS request
2023-04-18 06:59:44 +00:00
buffers = append(buffers, buf.As(buffer[bufferIndex:bufferIndex+end]))
Add VLESS server, vision flow and reality TLS
2023-02-25 08:24:08 +00:00
c.remainingContent -= end
bufferIndex += end
} else {
end := c.remainingPadding
if end > len(buffer)-bufferIndex {
end = len(buffer) - bufferIndex
}
c.remainingPadding -= end
bufferIndex += end
}
if bufferIndex == len(buffer) {
break
}
}
return buffers
}
Minor fixes
2023-03-03 08:31:07 +00:00
Prepare deadline interface
2023-04-19 13:48:54 +00:00
func (c *VisionConn) NeedAdditionalReadDeadline() bool {
return true
}
Minor fixes
2023-03-03 08:31:07 +00:00
func (c *VisionConn) Upstream() any {
return c.Conn
}
Reference in a new issue Copy permalink