Acasă Explorează Ajutor
Autentificare
txlyre
/
3x-ui
oglindă de https://github.com/MHSanaei/3x-ui
1
0
Bifurcare 0
Fisiere Probleme 0 Wiki
Arbore: f9b275dd23
Ramuri Etichete
3x-ui
/
internal
/
web
/
service
/
inbound_protocol.go

inbound_protocol.go 2.3 KB
Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. package service
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 

  6. 	"github.com/mhsanaei/3x-ui/v3/internal/database/model"
    7. 

  7. )
    8. 

  8. 

  9. // inboundShadowsocksMethod extracts settings.method for Shadowsocks inbounds so
    10. 

  10. // the client UI can generate a valid PSK (base64 of the method's key length)
    11. 

  11. // for Shadowsocks 2022 ciphers. Returns "" for non-Shadowsocks inbounds.
    12. 

  12. func inboundShadowsocksMethod(protocol, settings string) string {
    13. 

  13. 	if protocol != string(model.Shadowsocks) || settings == "" {
    14. 

  14. 		return ""
    15. 

  15. 	}
    16. 

  16. 	var s struct {
    17. 

  17. 		Method string `json:"method"`
    18. 

  18. 	}
    19. 

  19. 	if err := json.Unmarshal([]byte(settings), &s); err != nil {
    20. 

  20. 		return ""
    21. 

  21. 	}
    22. 

  22. 	return s.Method
    23. 

  23. }
    24. 

  24. 

  25. // inboundCanEnableTlsFlow mirrors Inbound.canEnableTlsFlow() from the frontend:
    26. 

  26. // XTLS Vision is only valid for VLESS on TCP with tls or reality.
    27. 

  27. func inboundCanEnableTlsFlow(protocol, streamSettings string) bool {
    28. 

  28. 	if protocol != string(model.VLESS) {
    29. 

  29. 		return false
    30. 

  30. 	}
    31. 

  31. 	if streamSettings == "" {
    32. 

  32. 		return false
    33. 

  33. 	}
    34. 

  34. 	var stream struct {
    35. 

  35. 		Network  string `json:"network"`
    36. 

  36. 		Security string `json:"security"`
    37. 

  37. 	}
    38. 

  38. 	if err := json.Unmarshal([]byte(streamSettings), &stream); err != nil {
    39. 

  39. 		return false
    40. 

  40. 	}
    41. 

  41. 	if stream.Network != "tcp" {
    42. 

  42. 		return false
    43. 

  43. 	}
    44. 

  44. 	return stream.Security == "tls" || stream.Security == "reality"
    45. 

  45. }
    46. 

  46. 

  47. // inboundCanHostFallbacks gates the settings.fallbacks injection.
    48. 

  48. // Xray only honors fallbacks on VLESS and Trojan inbounds carried over
    49. 

  49. // TCP transport with TLS or Reality security.
    50. 

  50. func inboundCanHostFallbacks(ib *model.Inbound) bool {
    51. 

  51. 	if ib == nil {
    52. 

  52. 		return false
    53. 

  53. 	}
    54. 

  54. 	if ib.Protocol != model.VLESS && ib.Protocol != model.Trojan {
    55. 

  55. 		return false
    56. 

  56. 	}
    57. 

  57. 	return inboundCanEnableTlsFlow(string(ib.Protocol), ib.StreamSettings) ||
    58. 

  58. 		(ib.Protocol == model.Trojan && trojanStreamSupportsFallbacks(ib.StreamSettings))
    59. 

  59. }
    60. 

  60. 

  61. // trojanStreamSupportsFallbacks mirrors the Trojan side of the same gate
    62. 

  62. // (Trojan reuses XTLS-Vision capable streams: tcp + tls or reality).
    63. 

  63. func trojanStreamSupportsFallbacks(streamSettings string) bool {
    64. 

  64. 	if streamSettings == "" {
    65. 

  65. 		return false
    66. 

  66. 	}
    67. 

  67. 	var stream struct {
    68. 

  68. 		Network  string `json:"network"`
    69. 

  69. 		Security string `json:"security"`
    70. 

  70. 	}
    71. 

  71. 	if err := json.Unmarshal([]byte(streamSettings), &stream); err != nil {
    72. 

  72. 		return false
    73. 

  73. 	}
    74. 

  74. 	if stream.Network != "tcp" {
    75. 

  75. 		return false
    76. 

  76. 	}
    77. 

  77. 	return stream.Security == "tls" || stream.Security == "reality"
    78. 

  78. }
    79.