2018-06-14 01:00:58 +08:00
|
|
|
package socks
|
2018-06-10 22:50:03 +08:00
|
|
|
|
|
|
|
import (
|
2019-07-25 17:47:39 +08:00
|
|
|
"io"
|
2018-06-10 22:50:03 +08:00
|
|
|
"net"
|
|
|
|
|
2023-11-03 21:01:45 +08:00
|
|
|
"github.com/metacubex/mihomo/adapter/inbound"
|
|
|
|
N "github.com/metacubex/mihomo/common/net"
|
|
|
|
C "github.com/metacubex/mihomo/constant"
|
|
|
|
authStore "github.com/metacubex/mihomo/listener/auth"
|
|
|
|
"github.com/metacubex/mihomo/transport/socks4"
|
|
|
|
"github.com/metacubex/mihomo/transport/socks5"
|
2018-06-10 22:50:03 +08:00
|
|
|
)
|
|
|
|
|
2021-06-13 17:23:10 +08:00
|
|
|
type Listener struct {
|
2022-12-05 00:20:50 +08:00
|
|
|
listener net.Listener
|
|
|
|
addr string
|
|
|
|
closed bool
|
2018-11-22 11:54:01 +08:00
|
|
|
}
|
|
|
|
|
2021-08-01 00:35:37 +08:00
|
|
|
// RawAddress implements C.Listener
|
|
|
|
func (l *Listener) RawAddress() string {
|
|
|
|
return l.addr
|
|
|
|
}
|
|
|
|
|
|
|
|
// Address implements C.Listener
|
|
|
|
func (l *Listener) Address() string {
|
|
|
|
return l.listener.Addr().String()
|
|
|
|
}
|
|
|
|
|
|
|
|
// Close implements C.Listener
|
|
|
|
func (l *Listener) Close() error {
|
|
|
|
l.closed = true
|
|
|
|
return l.listener.Close()
|
|
|
|
}
|
|
|
|
|
2023-09-28 18:59:31 +08:00
|
|
|
func New(addr string, tunnel C.Tunnel, additions ...inbound.Addition) (*Listener, error) {
|
2022-12-05 00:20:50 +08:00
|
|
|
if len(additions) == 0 {
|
2022-12-05 10:12:53 +08:00
|
|
|
additions = []inbound.Addition{
|
|
|
|
inbound.WithInName("DEFAULT-SOCKS"),
|
|
|
|
inbound.WithSpecialRules(""),
|
|
|
|
}
|
2022-12-05 00:20:50 +08:00
|
|
|
}
|
2022-11-16 10:43:16 +08:00
|
|
|
l, err := inbound.Listen("tcp", addr)
|
2018-06-10 22:50:03 +08:00
|
|
|
if err != nil {
|
2018-11-22 11:54:01 +08:00
|
|
|
return nil, err
|
2018-06-10 22:50:03 +08:00
|
|
|
}
|
2018-07-15 22:23:20 +08:00
|
|
|
|
2021-07-19 14:07:51 +08:00
|
|
|
sl := &Listener{
|
2022-12-05 00:20:50 +08:00
|
|
|
listener: l,
|
|
|
|
addr: addr,
|
2021-07-19 14:07:51 +08:00
|
|
|
}
|
2018-07-15 22:23:20 +08:00
|
|
|
go func() {
|
|
|
|
for {
|
|
|
|
c, err := l.Accept()
|
|
|
|
if err != nil {
|
2018-11-22 11:54:01 +08:00
|
|
|
if sl.closed {
|
2018-07-15 22:23:20 +08:00
|
|
|
break
|
|
|
|
}
|
|
|
|
continue
|
|
|
|
}
|
2023-12-12 20:39:11 +08:00
|
|
|
if len(additions) == 0 { // only apply on default listener
|
|
|
|
if inbound.IsRemoteAddrDisAllowed(c.RemoteAddr()) {
|
|
|
|
_ = c.Close()
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
}
|
2023-09-28 18:59:31 +08:00
|
|
|
go handleSocks(c, tunnel, additions...)
|
2018-07-15 22:23:20 +08:00
|
|
|
}
|
|
|
|
}()
|
|
|
|
|
2018-11-22 11:54:01 +08:00
|
|
|
return sl, nil
|
|
|
|
}
|
|
|
|
|
2023-09-28 18:59:31 +08:00
|
|
|
func handleSocks(conn net.Conn, tunnel C.Tunnel, additions ...inbound.Addition) {
|
2023-09-02 16:25:55 +08:00
|
|
|
N.TCPKeepAlive(conn)
|
2021-07-18 16:09:09 +08:00
|
|
|
bufConn := N.NewBufferedConn(conn)
|
|
|
|
head, err := bufConn.Peek(1)
|
|
|
|
if err != nil {
|
|
|
|
conn.Close()
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
switch head[0] {
|
|
|
|
case socks4.Version:
|
2023-09-28 18:59:31 +08:00
|
|
|
HandleSocks4(bufConn, tunnel, additions...)
|
2021-07-18 16:09:09 +08:00
|
|
|
case socks5.Version:
|
2023-09-28 18:59:31 +08:00
|
|
|
HandleSocks5(bufConn, tunnel, additions...)
|
2021-07-18 16:09:09 +08:00
|
|
|
default:
|
|
|
|
conn.Close()
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-09-28 18:59:31 +08:00
|
|
|
func HandleSocks4(conn net.Conn, tunnel C.Tunnel, additions ...inbound.Addition) {
|
2023-10-10 19:43:26 +08:00
|
|
|
authenticator := authStore.Authenticator()
|
|
|
|
if inbound.SkipAuthRemoteAddr(conn.RemoteAddr()) {
|
|
|
|
authenticator = nil
|
|
|
|
}
|
|
|
|
addr, _, err := socks4.ServerHandshake(conn, authenticator)
|
2021-07-18 16:09:09 +08:00
|
|
|
if err != nil {
|
|
|
|
conn.Close()
|
|
|
|
return
|
|
|
|
}
|
2023-09-28 18:59:31 +08:00
|
|
|
tunnel.HandleTCPConn(inbound.NewSocket(socks5.ParseAddr(addr), conn, C.SOCKS4, additions...))
|
2021-07-18 16:09:09 +08:00
|
|
|
}
|
|
|
|
|
2023-09-28 18:59:31 +08:00
|
|
|
func HandleSocks5(conn net.Conn, tunnel C.Tunnel, additions ...inbound.Addition) {
|
2023-10-10 19:43:26 +08:00
|
|
|
authenticator := authStore.Authenticator()
|
|
|
|
if inbound.SkipAuthRemoteAddr(conn.RemoteAddr()) {
|
|
|
|
authenticator = nil
|
|
|
|
}
|
|
|
|
target, command, err := socks5.ServerHandshake(conn, authenticator)
|
2018-06-10 22:50:03 +08:00
|
|
|
if err != nil {
|
2018-06-12 09:18:15 +08:00
|
|
|
conn.Close()
|
|
|
|
return
|
2018-06-10 22:50:03 +08:00
|
|
|
}
|
2019-04-25 13:48:47 +08:00
|
|
|
if command == socks5.CmdUDPAssociate {
|
2019-07-25 17:47:39 +08:00
|
|
|
defer conn.Close()
|
2021-10-09 20:35:06 +08:00
|
|
|
io.Copy(io.Discard, conn)
|
2019-04-23 23:29:36 +08:00
|
|
|
return
|
|
|
|
}
|
2023-09-28 18:59:31 +08:00
|
|
|
tunnel.HandleTCPConn(inbound.NewSocket(target, conn, C.SOCKS5, additions...))
|
2019-04-23 23:29:36 +08:00
|
|
|
}
|