Domů Procházet Nápověda
Přihlásit se
txlyre
/
3x-ui
zrcadlo https://github.com/MHSanaei/3x-ui
1
0
Rozštěpit 0
Soubory Úkoly 0 Wiki
Procházet zdrojové kódy

Fix REALITY share links missing SNI (#4621)

* Fix REALITY share links missing SNI

* Update REALITY link snapshots
Puya před 8 hodinami
rodič
c5dc84d314
revize
c03ecfe638
2 změnil soubory, kde provedl 18 přidání a 9 odebrání
Rozdělené zobrazení Ukázat statistiku rozdílových dat
  1. 16 7
      frontend/src/lib/xray/inbound-link.ts
  2. 2 2
      frontend/src/test/__snapshots__/inbound-link.test.ts.snap

+ 16 - 7
frontend/src/lib/xray/inbound-link.ts
Zobrazit soubor 

@@ -358,13 +358,14 @@ export function genVlessLink(input: GenVlessLinkInput): string {
 
       const reality = stream.realitySettings;
 
       params.set('pbk', reality.settings.publicKey);
 
       params.set('fp', reality.settings.fingerprint);
 
-      // Legacy parity quirk: the old class stored realitySettings.serverNames
 
-      // as a comma-joined string and gated SNI on `!ObjectUtil.isArrEmpty(s)`
 
-      // — which returns true for any string, so SNI was never written into
 
-      // Reality share links. Existing deployed clients rely on receiving
 
-      // the SNI from realitySettings.target instead; we keep the omission
 
-      // here so this extraction stays byte-stable with the legacy URL.
 
-      // Fixing the bug is a separate intentional commit.
 
+
 
+      const sni =
 
+        reality.settings.serverName ||
 
+        reality.serverNames?.[0] ||
 
+        reality.target?.split(':')[0];
 
+
 
+      if (sni && sni.length > 0) params.set('sni', sni);
 
+
 
       if (reality.shortIds.length > 0) params.set('sid', reality.shortIds[0]);
 
       if (reality.settings.spiderX.length > 0) params.set('spx', reality.settings.spiderX);
 
       if (reality.settings.mldsa65Verify.length > 0) params.set('pqv', reality.settings.mldsa65Verify);
 
@@ -436,6 +437,14 @@ function writeRealityParams(stream: NonNullable<Inbound['streamSettings']>, para
 
   const reality = stream.realitySettings;
 
   params.set('pbk', reality.settings.publicKey);
 
   params.set('fp', reality.settings.fingerprint);
 
+
 
+  const sni =
 
+    reality.settings.serverName ||
 
+    reality.serverNames?.[0] ||
 
+    reality.target?.split(':')[0];
 
+
 
+  if (sni && sni.length > 0) params.set('sni', sni);
 
+
 
   if (reality.shortIds.length > 0) params.set('sid', reality.shortIds[0]);
 
   if (reality.settings.spiderX.length > 0) params.set('spx', reality.settings.spiderX);
 
   if (reality.settings.mldsa65Verify.length > 0) params.set('pqv', reality.settings.mldsa65Verify);

+ 2 - 2
frontend/src/test/__snapshots__/inbound-link.test.ts.snap
Zobrazit soubor 

@@ -8,7 +8,7 @@ exports[`genInboundLinks orchestrator > shadowsocks-tcp-2022: byte-stable 1`] =
 
 
 exports[`genInboundLinks orchestrator > trojan-ws-tls: byte-stable 1`] = `"trojan://[email protected]:443?type=ws&path=%2Ftrojan&host=trojan.example.test&security=tls&fp=chrome&alpn=h2%2Chttp%2F1.1&sni=trojan.example.test#parity-test"`;
 
 
-exports[`genInboundLinks orchestrator > vless-tcp-reality: byte-stable 1`] = `"vless://[email protected]:443?type=tcp&encryption=none&security=reality&pbk=Tx5yj1bRcOPHkdvT2pIAQ2zh0gQ8m4OPdnzqXJxxV3o&fp=chrome&sid=a3f1&spx=%2F&flow=xtls-rprx-vision#parity-test"`;
 
+exports[`genInboundLinks orchestrator > vless-tcp-reality: byte-stable 1`] = `"vless://[email protected]:443?type=tcp&encryption=none&security=reality&pbk=Tx5yj1bRcOPHkdvT2pIAQ2zh0gQ8m4OPdnzqXJxxV3o&fp=chrome&sni=yahoo.com&sid=a3f1&spx=%2F&flow=xtls-rprx-vision#parity-test"`;
 
 
 exports[`genInboundLinks orchestrator > vless-ws-tls: byte-stable 1`] = `"vless://[email protected]:443?type=ws&encryption=none&path=%2Fws&host=cdn.example.test&security=tls&fp=chrome&alpn=h2%2Chttp%2F1.1&sni=cdn.example.test#parity-test"`;
 
 
@@ -34,7 +34,7 @@ exports[`genShadowsocksLink > shadowsocks-tcp-2022: byte-stable 1`] = `"ss://MjA
 
 
 exports[`genTrojanLink > trojan-ws-tls: byte-stable 1`] = `"trojan://[email protected]:443?type=ws&path=%2Ftrojan&host=trojan.example.test&security=tls&fp=chrome&alpn=h2%2Chttp%2F1.1&sni=trojan.example.test#parity-test"`;
 
 
-exports[`genVlessLink > vless-tcp-reality: byte-stable 1`] = `"vless://[email protected]:443?type=tcp&encryption=none&security=reality&pbk=Tx5yj1bRcOPHkdvT2pIAQ2zh0gQ8m4OPdnzqXJxxV3o&fp=chrome&sid=a3f1&spx=%2F&flow=xtls-rprx-vision#parity-test"`;
 
+exports[`genVlessLink > vless-tcp-reality: byte-stable 1`] = `"vless://[email protected]:443?type=tcp&encryption=none&security=reality&pbk=Tx5yj1bRcOPHkdvT2pIAQ2zh0gQ8m4OPdnzqXJxxV3o&fp=chrome&sni=yahoo.com&sid=a3f1&spx=%2F&flow=xtls-rprx-vision#parity-test"`;
 
 
 exports[`genVlessLink > vless-ws-tls: byte-stable 1`] = `"vless://[email protected]:443?type=ws&encryption=none&path=%2Fws&host=cdn.example.test&security=tls&fp=chrome&alpn=h2%2Chttp%2F1.1&sni=cdn.example.test#parity-test"`;