250 lines
6.7 KiB
Go
250 lines
6.7 KiB
Go
|
package outbound
|
||
|
|
||
|
import (
|
||
|
"context"
|
||
|
"crypto/tls"
|
||
|
"crypto/x509"
|
||
|
"errors"
|
||
|
"fmt"
|
||
|
"io/ioutil"
|
||
|
"net"
|
||
|
"regexp"
|
||
|
"strconv"
|
||
|
"time"
|
||
|
|
||
|
"github.com/Dreamacro/clash/component/dialer"
|
||
|
C "github.com/Dreamacro/clash/constant"
|
||
|
"github.com/Dreamacro/clash/log"
|
||
|
"github.com/lucas-clemente/quic-go"
|
||
|
"github.com/lucas-clemente/quic-go/congestion"
|
||
|
M "github.com/sagernet/sing/common/metadata"
|
||
|
hyCongestion "github.com/tobyxdd/hysteria/pkg/congestion"
|
||
|
"github.com/tobyxdd/hysteria/pkg/core"
|
||
|
"github.com/tobyxdd/hysteria/pkg/obfs"
|
||
|
"github.com/tobyxdd/hysteria/pkg/pmtud_fix"
|
||
|
"github.com/tobyxdd/hysteria/pkg/transport"
|
||
|
)
|
||
|
|
||
|
const (
|
||
|
mbpsToBps = 125000
|
||
|
minSpeedBPS = 16384
|
||
|
|
||
|
DefaultStreamReceiveWindow = 15728640 // 15 MB/s
|
||
|
DefaultConnectionReceiveWindow = 67108864 // 64 MB/s
|
||
|
DefaultMaxIncomingStreams = 1024
|
||
|
|
||
|
DefaultALPN = "hysteria"
|
||
|
)
|
||
|
|
||
|
var rateStringRegexp = regexp.MustCompile(`^(\d+)\s*([KMGT]?)([Bb])ps$`)
|
||
|
|
||
|
type Hysteria struct {
|
||
|
*Base
|
||
|
|
||
|
client *core.Client
|
||
|
clientTransport *transport.ClientTransport
|
||
|
}
|
||
|
|
||
|
func (h *Hysteria) DialContext(ctx context.Context, metadata *C.Metadata, opts ...dialer.Option) (C.Conn, error) {
|
||
|
tcpConn, err := h.client.DialTCP(metadata.RemoteAddress())
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
return NewConn(tcpConn, h), nil
|
||
|
}
|
||
|
|
||
|
func (h *Hysteria) ListenPacketContext(ctx context.Context, metadata *C.Metadata, opts ...dialer.Option) (C.PacketConn, error) {
|
||
|
udpConn, err := h.client.DialUDP()
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
return newPacketConn(&hyPacketConn{udpConn}, h), nil
|
||
|
}
|
||
|
|
||
|
type HysteriaOption struct {
|
||
|
BasicOption
|
||
|
Name string `proxy:"name"`
|
||
|
Server string `proxy:"server"`
|
||
|
Port int `proxy:"port"`
|
||
|
Protocol string `json:"protocol,omitempty"`
|
||
|
Up string `proxy:"up,omitempty"`
|
||
|
UpMbps int `proxy:"up_mbps,omitempty"`
|
||
|
Down string `proxy:"down,omitempty"`
|
||
|
DownMbps int `proxy:"down_mbps,omitempty"`
|
||
|
Auth []byte `proxy:"auth,omitempty"`
|
||
|
AuthString string `proxy:"auth_str,omitempty"`
|
||
|
Obfs string `proxy:"obfs,omitempty"`
|
||
|
SNI string `proxy:"sni,omitempty"`
|
||
|
SkipCertVerify bool `proxy:"skip-cert-verify,omitempty"`
|
||
|
ALPN []string `proxy:"alpn,omitempty"`
|
||
|
CustomCA string `proxy:"ca,omitempty"`
|
||
|
CustomCAString string `proxy:"ca_str,omitempty"`
|
||
|
ReceiveWindowConn uint64 `proxy:"recv_window_conn,omitempty"`
|
||
|
ReceiveWindow uint64 `proxy:"recv_window,omitempty"`
|
||
|
DisableMTUDiscovery bool `proxy:"disable_mtu_discovery,omitempty"`
|
||
|
UDP bool `proxy:"udp,omitempty"`
|
||
|
}
|
||
|
|
||
|
func (c *HysteriaOption) Speed() (uint64, uint64, error) {
|
||
|
var up, down uint64
|
||
|
if len(c.Up) > 0 {
|
||
|
up = stringToBps(c.Up)
|
||
|
if up == 0 {
|
||
|
return 0, 0, errors.New("invalid speed format")
|
||
|
}
|
||
|
} else {
|
||
|
up = uint64(c.UpMbps) * mbpsToBps
|
||
|
}
|
||
|
if len(c.Down) > 0 {
|
||
|
down = stringToBps(c.Down)
|
||
|
if down == 0 {
|
||
|
return 0, 0, errors.New("invalid speed format")
|
||
|
}
|
||
|
} else {
|
||
|
down = uint64(c.DownMbps) * mbpsToBps
|
||
|
}
|
||
|
return up, down, nil
|
||
|
}
|
||
|
|
||
|
func NewHysteria(option HysteriaOption) (*Hysteria, error) {
|
||
|
clientTransport := &transport.ClientTransport{
|
||
|
Dialer: &net.Dialer{
|
||
|
Timeout: 8 * time.Second,
|
||
|
},
|
||
|
}
|
||
|
|
||
|
addr := net.JoinHostPort(option.Server, strconv.Itoa(option.Port))
|
||
|
|
||
|
tlsConfig := &tls.Config{
|
||
|
ServerName: option.SNI,
|
||
|
InsecureSkipVerify: option.SkipCertVerify,
|
||
|
MinVersion: tls.VersionTLS13,
|
||
|
}
|
||
|
if len(option.ALPN) > 0 {
|
||
|
tlsConfig.NextProtos = option.ALPN
|
||
|
} else {
|
||
|
tlsConfig.NextProtos = []string{DefaultALPN}
|
||
|
}
|
||
|
if len(option.CustomCA) > 0 {
|
||
|
bs, err := ioutil.ReadFile(option.CustomCA)
|
||
|
if err != nil {
|
||
|
return nil, fmt.Errorf("hysteria %s load ca error: %w", addr, err)
|
||
|
}
|
||
|
cp := x509.NewCertPool()
|
||
|
if !cp.AppendCertsFromPEM(bs) {
|
||
|
return nil, fmt.Errorf("hysteria %s failed to parse ca_str", addr)
|
||
|
}
|
||
|
tlsConfig.RootCAs = cp
|
||
|
} else if option.CustomCAString != "" {
|
||
|
cp := x509.NewCertPool()
|
||
|
if !cp.AppendCertsFromPEM([]byte(option.CustomCAString)) {
|
||
|
return nil, fmt.Errorf("hysteria %s failed to parse ca_str", addr)
|
||
|
}
|
||
|
tlsConfig.RootCAs = cp
|
||
|
}
|
||
|
quicConfig := &quic.Config{
|
||
|
InitialStreamReceiveWindow: option.ReceiveWindowConn,
|
||
|
MaxStreamReceiveWindow: option.ReceiveWindowConn,
|
||
|
InitialConnectionReceiveWindow: option.ReceiveWindow,
|
||
|
MaxConnectionReceiveWindow: option.ReceiveWindow,
|
||
|
KeepAlive: true,
|
||
|
DisablePathMTUDiscovery: option.DisableMTUDiscovery,
|
||
|
EnableDatagrams: true,
|
||
|
}
|
||
|
if option.ReceiveWindowConn == 0 {
|
||
|
quicConfig.InitialStreamReceiveWindow = DefaultStreamReceiveWindow
|
||
|
quicConfig.MaxStreamReceiveWindow = DefaultStreamReceiveWindow
|
||
|
}
|
||
|
if option.ReceiveWindow == 0 {
|
||
|
quicConfig.InitialConnectionReceiveWindow = DefaultConnectionReceiveWindow
|
||
|
quicConfig.MaxConnectionReceiveWindow = DefaultConnectionReceiveWindow
|
||
|
}
|
||
|
if !quicConfig.DisablePathMTUDiscovery && pmtud_fix.DisablePathMTUDiscovery {
|
||
|
log.Infoln("hysteria: Path MTU Discovery is not yet supported on this platform")
|
||
|
}
|
||
|
var auth []byte
|
||
|
if len(option.Auth) > 0 {
|
||
|
auth = option.Auth
|
||
|
} else {
|
||
|
auth = []byte(option.AuthString)
|
||
|
}
|
||
|
var obfuscator obfs.Obfuscator
|
||
|
if len(option.Obfs) > 0 {
|
||
|
obfuscator = obfs.NewXPlusObfuscator([]byte(option.Obfs))
|
||
|
}
|
||
|
up, down, _ := option.Speed()
|
||
|
client, err := core.NewClient(
|
||
|
addr, option.Protocol, auth, tlsConfig, quicConfig, clientTransport, up, down, func(refBPS uint64) congestion.CongestionControl {
|
||
|
return hyCongestion.NewBrutalSender(congestion.ByteCount(refBPS))
|
||
|
}, obfuscator,
|
||
|
)
|
||
|
if err != nil {
|
||
|
return nil, fmt.Errorf("hysteria %s create error: %w", addr, err)
|
||
|
}
|
||
|
return &Hysteria{
|
||
|
Base: &Base{
|
||
|
name: option.Name,
|
||
|
addr: addr,
|
||
|
tp: C.Hysteria,
|
||
|
udp: option.UDP,
|
||
|
iface: option.Interface,
|
||
|
rmark: option.RoutingMark,
|
||
|
},
|
||
|
client: client,
|
||
|
clientTransport: clientTransport,
|
||
|
}, nil
|
||
|
}
|
||
|
|
||
|
func stringToBps(s string) uint64 {
|
||
|
if s == "" {
|
||
|
return 0
|
||
|
}
|
||
|
m := rateStringRegexp.FindStringSubmatch(s)
|
||
|
if m == nil {
|
||
|
return 0
|
||
|
}
|
||
|
var n uint64
|
||
|
switch m[2] {
|
||
|
case "K":
|
||
|
n = 1 << 10
|
||
|
case "M":
|
||
|
n = 1 << 20
|
||
|
case "G":
|
||
|
n = 1 << 30
|
||
|
case "T":
|
||
|
n = 1 << 40
|
||
|
default:
|
||
|
n = 1
|
||
|
}
|
||
|
v, _ := strconv.ParseUint(m[1], 10, 64)
|
||
|
n = v * n
|
||
|
if m[3] == "b" {
|
||
|
// Bits, need to convert to bytes
|
||
|
n = n >> 3
|
||
|
}
|
||
|
return n
|
||
|
}
|
||
|
|
||
|
type hyPacketConn struct {
|
||
|
core.UDPConn
|
||
|
}
|
||
|
|
||
|
func (c *hyPacketConn) ReadFrom(p []byte) (n int, addr net.Addr, err error) {
|
||
|
b, addrStr, err := c.UDPConn.ReadFrom()
|
||
|
if err != nil {
|
||
|
return
|
||
|
}
|
||
|
n = copy(p, b)
|
||
|
addr = M.ParseSocksaddr(addrStr).UDPAddr()
|
||
|
return
|
||
|
}
|
||
|
|
||
|
func (c *hyPacketConn) WriteTo(p []byte, addr net.Addr) (n int, err error) {
|
||
|
err = c.UDPConn.WriteTo(p, M.SocksaddrFromNet(addr).String())
|
||
|
if err != nil {
|
||
|
return
|
||
|
}
|
||
|
n = len(p)
|
||
|
return
|
||
|
}
|