2023-06-12 09:44:22 +00:00
|
|
|
package v5
|
2022-11-28 09:09:25 +00:00
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"bufio"
|
|
|
|
|
"bytes"
|
|
|
|
|
"context"
|
|
|
|
|
"crypto/tls"
|
2023-03-15 01:55:48 +00:00
|
|
|
"fmt"
|
2022-11-28 09:09:25 +00:00
|
|
|
"net"
|
|
|
|
|
"sync"
|
2022-11-28 10:18:51 +00:00
|
|
|
"sync/atomic"
|
2022-11-28 09:09:25 +00:00
|
|
|
"time"
|
|
|
|
|
|
2023-06-12 09:44:22 +00:00
|
|
|
"github.com/Dreamacro/clash/adapter/inbound"
|
2022-11-28 09:09:25 +00:00
|
|
|
N "github.com/Dreamacro/clash/common/net"
|
2023-03-05 03:00:14 +00:00
|
|
|
"github.com/Dreamacro/clash/common/utils"
|
2022-11-28 09:09:25 +00:00
|
|
|
C "github.com/Dreamacro/clash/constant"
|
2022-11-28 10:18:51 +00:00
|
|
|
"github.com/Dreamacro/clash/transport/socks5"
|
2023-06-12 09:44:22 +00:00
|
|
|
"github.com/Dreamacro/clash/transport/tuic/common"
|
2023-03-05 03:00:14 +00:00
|
|
|
|
2023-04-09 07:40:17 +00:00
|
|
|
"github.com/gofrs/uuid/v5"
|
2023-03-05 03:00:14 +00:00
|
|
|
"github.com/metacubex/quic-go"
|
2022-11-28 09:09:25 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type ServerOption struct {
|
2023-06-12 09:44:22 +00:00
|
|
|
HandleTcpFn func(conn net.Conn, addr socks5.Addr, additions ...inbound.Addition) error
|
|
|
|
|
HandleUdpFn func(addr socks5.Addr, packet C.UDPPacket, additions ...inbound.Addition) error
|
2022-11-28 09:09:25 +00:00
|
|
|
|
|
|
|
|
TlsConfig *tls.Config
|
|
|
|
|
QuicConfig *quic.Config
|
2023-06-12 09:44:22 +00:00
|
|
|
Users map[[16]byte]string
|
2022-11-28 09:09:25 +00:00
|
|
|
CongestionController string
|
|
|
|
|
AuthenticationTimeout time.Duration
|
|
|
|
|
MaxUdpRelayPacketSize int
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Server struct {
|
|
|
|
|
*ServerOption
|
2023-06-03 08:45:35 +00:00
|
|
|
listener *quic.EarlyListener
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func NewServer(option *ServerOption, pc net.PacketConn) (*Server, error) {
|
|
|
|
|
listener, err := quic.ListenEarly(pc, option.TlsConfig, option.QuicConfig)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
return &Server{
|
|
|
|
|
ServerOption: option,
|
|
|
|
|
listener: listener,
|
|
|
|
|
}, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *Server) Serve() error {
|
|
|
|
|
for {
|
|
|
|
|
conn, err := s.listener.Accept(context.Background())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2023-06-12 09:44:22 +00:00
|
|
|
common.SetCongestionController(conn, s.CongestionController)
|
2022-11-28 09:09:25 +00:00
|
|
|
h := &serverHandler{
|
|
|
|
|
Server: s,
|
|
|
|
|
quicConn: conn,
|
2023-03-15 02:10:03 +00:00
|
|
|
uuid: utils.NewUUIDV4(),
|
2022-11-28 09:09:25 +00:00
|
|
|
authCh: make(chan struct{}),
|
|
|
|
|
}
|
|
|
|
|
go h.handle()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *Server) Close() error {
|
|
|
|
|
return s.listener.Close()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type serverHandler struct {
|
|
|
|
|
*Server
|
2023-03-10 04:26:17 +00:00
|
|
|
quicConn quic.EarlyConnection
|
2022-11-28 09:09:25 +00:00
|
|
|
uuid uuid.UUID
|
|
|
|
|
|
|
|
|
|
authCh chan struct{}
|
|
|
|
|
authOk bool
|
2023-06-12 09:44:22 +00:00
|
|
|
authUUID string
|
2022-11-28 09:09:25 +00:00
|
|
|
authOnce sync.Once
|
2022-11-28 10:18:51 +00:00
|
|
|
|
|
|
|
|
udpInputMap sync.Map
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverHandler) handle() {
|
|
|
|
|
go func() {
|
|
|
|
|
_ = s.handleUniStream()
|
|
|
|
|
}()
|
|
|
|
|
go func() {
|
|
|
|
|
_ = s.handleStream()
|
|
|
|
|
}()
|
|
|
|
|
go func() {
|
|
|
|
|
_ = s.handleMessage()
|
|
|
|
|
}()
|
2023-03-10 04:26:17 +00:00
|
|
|
|
2023-06-01 08:25:02 +00:00
|
|
|
<-s.quicConn.HandshakeComplete()
|
2023-03-10 04:26:17 +00:00
|
|
|
time.AfterFunc(s.AuthenticationTimeout, func() {
|
|
|
|
|
s.authOnce.Do(func() {
|
|
|
|
|
_ = s.quicConn.CloseWithError(AuthenticationTimeout, "AuthenticationTimeout")
|
|
|
|
|
s.authOk = false
|
|
|
|
|
close(s.authCh)
|
|
|
|
|
})
|
|
|
|
|
})
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverHandler) handleMessage() (err error) {
|
|
|
|
|
for {
|
|
|
|
|
var message []byte
|
|
|
|
|
message, err = s.quicConn.ReceiveMessage()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
go func() (err error) {
|
|
|
|
|
buffer := bytes.NewBuffer(message)
|
|
|
|
|
packet, err := ReadPacket(buffer)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
return s.parsePacket(packet, "native")
|
|
|
|
|
}()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverHandler) parsePacket(packet Packet, udpRelayMode string) (err error) {
|
|
|
|
|
<-s.authCh
|
|
|
|
|
if !s.authOk {
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-06-12 09:44:22 +00:00
|
|
|
var assocId uint16
|
2022-11-28 09:09:25 +00:00
|
|
|
|
|
|
|
|
assocId = packet.ASSOC_ID
|
2022-11-28 10:18:51 +00:00
|
|
|
|
2023-06-12 09:44:22 +00:00
|
|
|
v, _ := s.udpInputMap.LoadOrStore(assocId, &serverUDPInput{})
|
|
|
|
|
input := v.(*serverUDPInput)
|
|
|
|
|
if input.writeClosed.Load() {
|
2022-11-28 10:18:51 +00:00
|
|
|
return nil
|
|
|
|
|
}
|
2023-06-12 09:44:22 +00:00
|
|
|
packetPtr := input.Feed(packet)
|
|
|
|
|
if packetPtr == nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-11-28 10:18:51 +00:00
|
|
|
|
2022-11-28 09:09:25 +00:00
|
|
|
pc := &quicStreamPacketConn{
|
|
|
|
|
connId: assocId,
|
|
|
|
|
quicConn: s.quicConn,
|
|
|
|
|
inputConn: nil,
|
|
|
|
|
udpRelayMode: udpRelayMode,
|
|
|
|
|
maxUdpRelayPacketSize: s.MaxUdpRelayPacketSize,
|
|
|
|
|
deferQuicConnFn: nil,
|
|
|
|
|
closeDeferFn: nil,
|
2023-06-12 09:44:22 +00:00
|
|
|
writeClosed: &input.writeClosed,
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
|
2023-06-12 09:44:22 +00:00
|
|
|
return s.HandleUdpFn(packetPtr.ADDR.SocksAddr(), &serverUDPPacket{
|
2022-11-28 09:09:25 +00:00
|
|
|
pc: pc,
|
2023-06-12 09:44:22 +00:00
|
|
|
packet: packetPtr,
|
2023-03-15 01:55:48 +00:00
|
|
|
rAddr: N.NewCustomAddr("tuic", fmt.Sprintf("tuic-%s-%d", s.uuid, assocId), s.quicConn.RemoteAddr()), // for tunnel's handleUDPConn
|
2023-06-12 09:44:22 +00:00
|
|
|
}, inbound.WithInUser(s.authUUID))
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverHandler) handleStream() (err error) {
|
|
|
|
|
for {
|
|
|
|
|
var quicStream quic.Stream
|
|
|
|
|
quicStream, err = s.quicConn.AcceptStream(context.Background())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
go func() (err error) {
|
2023-06-12 09:44:22 +00:00
|
|
|
stream := common.NewQuicStreamConn(
|
|
|
|
|
quicStream,
|
|
|
|
|
s.quicConn.LocalAddr(),
|
|
|
|
|
s.quicConn.RemoteAddr(),
|
|
|
|
|
nil,
|
|
|
|
|
)
|
2022-11-28 09:09:25 +00:00
|
|
|
conn := N.NewBufferedConn(stream)
|
|
|
|
|
connect, err := ReadConnect(conn)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
<-s.authCh
|
|
|
|
|
if !s.authOk {
|
|
|
|
|
return conn.Close()
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-12 09:44:22 +00:00
|
|
|
err = s.HandleTcpFn(conn, connect.ADDR.SocksAddr(), inbound.WithInUser(s.authUUID))
|
2022-11-28 09:09:25 +00:00
|
|
|
if err != nil {
|
|
|
|
|
_ = conn.Close()
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverHandler) handleUniStream() (err error) {
|
|
|
|
|
for {
|
|
|
|
|
var stream quic.ReceiveStream
|
|
|
|
|
stream, err = s.quicConn.AcceptUniStream(context.Background())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
go func() (err error) {
|
|
|
|
|
defer func() {
|
|
|
|
|
stream.CancelRead(0)
|
|
|
|
|
}()
|
|
|
|
|
reader := bufio.NewReader(stream)
|
|
|
|
|
commandHead, err := ReadCommandHead(reader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
switch commandHead.TYPE {
|
|
|
|
|
case AuthenticateType:
|
|
|
|
|
var authenticate Authenticate
|
|
|
|
|
authenticate, err = ReadAuthenticateWithHead(commandHead, reader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-06-12 09:44:22 +00:00
|
|
|
authOk := false
|
|
|
|
|
var authUUID uuid.UUID
|
|
|
|
|
var token [32]byte
|
|
|
|
|
if password, ok := s.Users[authenticate.UUID]; ok {
|
|
|
|
|
token, err = GenToken(s.quicConn.ConnectionState(), authenticate.UUID, password)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if token == authenticate.TOKEN {
|
|
|
|
|
authOk = true
|
|
|
|
|
authUUID = authenticate.UUID
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
s.authOnce.Do(func() {
|
2023-06-12 09:44:22 +00:00
|
|
|
if !authOk {
|
2023-03-09 02:41:07 +00:00
|
|
|
_ = s.quicConn.CloseWithError(AuthenticationFailed, "AuthenticationFailed")
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
2023-06-12 09:44:22 +00:00
|
|
|
s.authOk = authOk
|
|
|
|
|
s.authUUID = authUUID.String()
|
2022-11-28 09:09:25 +00:00
|
|
|
close(s.authCh)
|
|
|
|
|
})
|
|
|
|
|
case PacketType:
|
|
|
|
|
var packet Packet
|
|
|
|
|
packet, err = ReadPacketWithHead(commandHead, reader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
return s.parsePacket(packet, "quic")
|
|
|
|
|
case DissociateType:
|
|
|
|
|
var disassociate Dissociate
|
|
|
|
|
disassociate, err = ReadDissociateWithHead(commandHead, reader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
2022-11-28 10:18:51 +00:00
|
|
|
if v, loaded := s.udpInputMap.LoadAndDelete(disassociate.ASSOC_ID); loaded {
|
2023-06-12 09:44:22 +00:00
|
|
|
input := v.(*serverUDPInput)
|
|
|
|
|
input.writeClosed.Store(true)
|
2022-11-28 10:18:51 +00:00
|
|
|
}
|
2022-11-28 10:28:22 +00:00
|
|
|
case HeartbeatType:
|
|
|
|
|
var heartbeat Heartbeat
|
|
|
|
|
heartbeat, err = ReadHeartbeatWithHead(commandHead, reader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
heartbeat.BytesLen()
|
2022-11-28 09:09:25 +00:00
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-12 09:44:22 +00:00
|
|
|
type serverUDPInput struct {
|
|
|
|
|
writeClosed atomic.Bool
|
|
|
|
|
deFragger
|
|
|
|
|
}
|
|
|
|
|
|
2022-11-28 09:09:25 +00:00
|
|
|
type serverUDPPacket struct {
|
|
|
|
|
pc *quicStreamPacketConn
|
|
|
|
|
packet *Packet
|
|
|
|
|
rAddr net.Addr
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverUDPPacket) InAddr() net.Addr {
|
|
|
|
|
return s.pc.LocalAddr()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverUDPPacket) LocalAddr() net.Addr {
|
|
|
|
|
return s.rAddr
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverUDPPacket) Data() []byte {
|
|
|
|
|
return s.packet.DATA
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverUDPPacket) WriteBack(b []byte, addr net.Addr) (n int, err error) {
|
|
|
|
|
return s.pc.WriteTo(b, addr)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (s *serverUDPPacket) Drop() {
|
|
|
|
|
s.packet.DATA = nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-02 14:24:46 +00:00
|
|
|
var _ C.UDPPacket = (*serverUDPPacket)(nil)
|
|
|
|
|
var _ C.UDPPacketInAddr = (*serverUDPPacket)(nil)
|
