Clash.Meta/transport/trojan/trojan.go

package trojan

import (
	"context"
	"crypto/sha256"
	"crypto/tls"
	"encoding/binary"
	"encoding/hex"
	"errors"
	"io"
	"net"
	"net/http"
	"sync"

	N "github.com/metacubex/mihomo/common/net"
	"github.com/metacubex/mihomo/common/pool"
	"github.com/metacubex/mihomo/component/ca"
	tlsC "github.com/metacubex/mihomo/component/tls"
	C "github.com/metacubex/mihomo/constant"
	"github.com/metacubex/mihomo/transport/socks5"
	"github.com/metacubex/mihomo/transport/vmess"
)

const (
	// max packet length
	maxLength = 8192
)

var (
	defaultALPN          = []string{"h2", "http/1.1"}
	defaultWebsocketALPN = []string{"http/1.1"}

	crlf = []byte{'\r', '\n'}
)

type Command = byte

const (
	CommandTCP byte = 1
	CommandUDP byte = 3

	// deprecated XTLS commands, as souvenirs
	commandXRD byte = 0xf0 // XTLS direct mode
	commandXRO byte = 0xf1 // XTLS origin mode
)

type Option struct {
	Password          string
	ALPN              []string
	ServerName        string
	SkipCertVerify    bool
	Fingerprint       string
	ClientFingerprint string
	Reality           *tlsC.RealityConfig
}

type WebsocketOption struct {
	Host                     string
	Port                     string
	Path                     string
	Headers                  http.Header
	V2rayHttpUpgrade         bool
	V2rayHttpUpgradeFastOpen bool
}

type Trojan struct {
	option      *Option
	hexPassword []byte
}

func (t *Trojan) StreamConn(ctx context.Context, conn net.Conn) (net.Conn, error) {
	alpn := defaultALPN
	if len(t.option.ALPN) != 0 {
		alpn = t.option.ALPN
	}
	tlsConfig := &tls.Config{
		NextProtos:         alpn,
		MinVersion:         tls.VersionTLS12,
		InsecureSkipVerify: t.option.SkipCertVerify,
		ServerName:         t.option.ServerName,
	}

	var err error
	tlsConfig, err = ca.GetSpecifiedFingerprintTLSConfig(tlsConfig, t.option.Fingerprint)
	if err != nil {
		return nil, err
	}

	if len(t.option.ClientFingerprint) != 0 {
		if t.option.Reality == nil {
			utlsConn, valid := vmess.GetUTLSConn(conn, t.option.ClientFingerprint, tlsConfig)
			if valid {
				ctx, cancel := context.WithTimeout(context.Background(), C.DefaultTLSTimeout)
				defer cancel()

				err := utlsConn.(*tlsC.UConn).HandshakeContext(ctx)
				return utlsConn, err
			}
		} else {
			ctx, cancel := context.WithTimeout(context.Background(), C.DefaultTLSTimeout)
			defer cancel()
			return tlsC.GetRealityConn(ctx, conn, t.option.ClientFingerprint, tlsConfig, t.option.Reality)
		}
	}
	if t.option.Reality != nil {
		return nil, errors.New("REALITY is based on uTLS, please set a client-fingerprint")
	}

	tlsConn := tls.Client(conn, tlsConfig)

	// fix tls handshake not timeout
	ctx, cancel := context.WithTimeout(context.Background(), C.DefaultTLSTimeout)
	defer cancel()

	err = tlsConn.HandshakeContext(ctx)
	return tlsConn, err
}

func (t *Trojan) StreamWebsocketConn(ctx context.Context, conn net.Conn, wsOptions *WebsocketOption) (net.Conn, error) {
	alpn := defaultWebsocketALPN
	if len(t.option.ALPN) != 0 {
		alpn = t.option.ALPN
	}

	tlsConfig := &tls.Config{
		NextProtos:         alpn,
		MinVersion:         tls.VersionTLS12,
		InsecureSkipVerify: t.option.SkipCertVerify,
		ServerName:         t.option.ServerName,
	}

	var err error
	tlsConfig, err = ca.GetSpecifiedFingerprintTLSConfig(tlsConfig, t.option.Fingerprint)
	if err != nil {
		return nil, err
	}

	return vmess.StreamWebsocketConn(ctx, conn, &vmess.WebsocketConfig{
		Host:                     wsOptions.Host,
		Port:                     wsOptions.Port,
		Path:                     wsOptions.Path,
		Headers:                  wsOptions.Headers,
		V2rayHttpUpgrade:         wsOptions.V2rayHttpUpgrade,
		V2rayHttpUpgradeFastOpen: wsOptions.V2rayHttpUpgradeFastOpen,
		TLS:                      true,
		TLSConfig:                tlsConfig,
		ClientFingerprint:        t.option.ClientFingerprint,
	})
}

func (t *Trojan) WriteHeader(w io.Writer, command Command, socks5Addr []byte) error {
	buf := pool.GetBuffer()
	defer pool.PutBuffer(buf)

	buf.Write(t.hexPassword)
	buf.Write(crlf)

	buf.WriteByte(command)
	buf.Write(socks5Addr)
	buf.Write(crlf)

	_, err := w.Write(buf.Bytes())
	return err
}

func (t *Trojan) PacketConn(conn net.Conn) net.PacketConn {
	return &PacketConn{
		Conn: conn,
	}
}

func writePacket(w io.Writer, socks5Addr, payload []byte) (int, error) {
	buf := pool.GetBuffer()
	defer pool.PutBuffer(buf)

	buf.Write(socks5Addr)
	binary.Write(buf, binary.BigEndian, uint16(len(payload)))
	buf.Write(crlf)
	buf.Write(payload)

	return w.Write(buf.Bytes())
}

func WritePacket(w io.Writer, socks5Addr, payload []byte) (int, error) {
	if len(payload) <= maxLength {
		return writePacket(w, socks5Addr, payload)
	}

	offset := 0
	total := len(payload)
	for {
		cursor := offset + maxLength
		if cursor > total {
			cursor = total
		}

		n, err := writePacket(w, socks5Addr, payload[offset:cursor])
		if err != nil {
			return offset + n, err
		}

		offset = cursor
		if offset == total {
			break
		}
	}

	return total, nil
}

func ReadPacket(r io.Reader, payload []byte) (net.Addr, int, int, error) {
	addr, err := socks5.ReadAddr(r, payload)
	if err != nil {
		return nil, 0, 0, errors.New("read addr error")
	}
	uAddr := addr.UDPAddr()
	if uAddr == nil {
		return nil, 0, 0, errors.New("parse addr error")
	}

	if _, err = io.ReadFull(r, payload[:2]); err != nil {
		return nil, 0, 0, errors.New("read length error")
	}

	total := int(binary.BigEndian.Uint16(payload[:2]))
	if total > maxLength {
		return nil, 0, 0, errors.New("packet invalid")
	}

	// read crlf
	if _, err = io.ReadFull(r, payload[:2]); err != nil {
		return nil, 0, 0, errors.New("read crlf error")
	}

	length := len(payload)
	if total < length {
		length = total
	}

	if _, err = io.ReadFull(r, payload[:length]); err != nil {
		return nil, 0, 0, errors.New("read packet error")
	}

	return uAddr, length, total - length, nil
}

func New(option *Option) *Trojan {
	return &Trojan{option, hexSha224([]byte(option.Password))}
}

var _ N.EnhancePacketConn = (*PacketConn)(nil)

type PacketConn struct {
	net.Conn
	remain int
	rAddr  net.Addr
	mux    sync.Mutex
}

func (pc *PacketConn) WriteTo(b []byte, addr net.Addr) (int, error) {
	return WritePacket(pc, socks5.ParseAddr(addr.String()), b)
}

func (pc *PacketConn) ReadFrom(b []byte) (int, net.Addr, error) {
	pc.mux.Lock()
	defer pc.mux.Unlock()
	if pc.remain != 0 {
		length := len(b)
		if pc.remain < length {
			length = pc.remain
		}

		n, err := pc.Conn.Read(b[:length])
		if err != nil {
			return 0, nil, err
		}

		pc.remain -= n
		addr := pc.rAddr
		if pc.remain == 0 {
			pc.rAddr = nil
		}

		return n, addr, nil
	}

	addr, n, remain, err := ReadPacket(pc.Conn, b)
	if err != nil {
		return 0, nil, err
	}

	if remain != 0 {
		pc.remain = remain
		pc.rAddr = addr
	}

	return n, addr, nil
}

func (pc *PacketConn) WaitReadFrom() (data []byte, put func(), addr net.Addr, err error) {
	pc.mux.Lock()
	defer pc.mux.Unlock()

	destination, err := socks5.ReadAddr0(pc.Conn)
	if err != nil {
		return nil, nil, nil, err
	}
	addr = destination.UDPAddr()

	data = pool.Get(pool.UDPBufferSize)
	put = func() {
		_ = pool.Put(data)
	}

	_, err = io.ReadFull(pc.Conn, data[:2+2]) // u16be length + CR LF
	if err != nil {
		if put != nil {
			put()
		}
		return nil, nil, nil, err
	}
	length := binary.BigEndian.Uint16(data)

	if length > 0 {
		data = data[:length]
		_, err = io.ReadFull(pc.Conn, data)
		if err != nil {
			if put != nil {
				put()
			}
			return nil, nil, nil, err
		}
	} else {
		if put != nil {
			put()
		}
		return nil, nil, addr, nil
	}

	return
}

func hexSha224(data []byte) []byte {
	buf := make([]byte, 56)
	hash := sha256.Sum224(data)
	hex.Encode(buf, hash[:])
	return buf
}
Feature: support trojan 2020-03-19 20:26:53 +08:00			`package trojan`

			`import (`
Fix: tls handshake requires a timeout (#1893) 2022-01-15 19:33:21 +08:00			`"context"`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`"crypto/sha256"`
			`"crypto/tls"`
			`"encoding/binary"`
			`"encoding/hex"`
			`"errors"`
Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`"io"`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`"net"`
Feature: support trojan websocket 2021-10-16 20:19:59 +08:00			`"net/http"`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`"sync"`

chore: hello mihomo 2023-11-03 21:01:45 +08:00			`N "github.com/metacubex/mihomo/common/net"`
			`"github.com/metacubex/mihomo/common/pool"`
			`"github.com/metacubex/mihomo/component/ca"`
			`tlsC "github.com/metacubex/mihomo/component/tls"`
			`C "github.com/metacubex/mihomo/constant"`
			`"github.com/metacubex/mihomo/transport/socks5"`
			`"github.com/metacubex/mihomo/transport/vmess"`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`)`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`const (`
			`// max packet length`
			`maxLength = 8192`
			`)`

Feature: support trojan 2020-03-19 20:26:53 +08:00			`var (`
Chore: use alpn http 1.1 only on trojan websocket by default 2021-10-19 22:34:18 +08:00			`defaultALPN = []string{"h2", "http/1.1"}`
			`defaultWebsocketALPN = []string{"http/1.1"}`

			`crlf = []byte{'\r', '\n'}`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`)`

			`type Command = byte`

Feature: Trojan XTLS 2022-03-30 00:15:39 +08:00			`const (`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`CommandTCP byte = 1`
			`CommandUDP byte = 3`
Feature: Trojan XTLS 2022-03-30 00:15:39 +08:00
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`// deprecated XTLS commands, as souvenirs`
Feature: Trojan XTLS 2022-03-30 00:15:39 +08:00			`commandXRD byte = 0xf0 // XTLS direct mode`
			`commandXRO byte = 0xf1 // XTLS origin mode`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`)`

			`type Option struct {`
feat: Add utls for modifying client's fingerprint. Currently only support TLS transport in TCP/GRPC/WS/HTTP for VLESS/Vmess and trojan-grpc. 2023-02-01 22:16:06 +08:00			`Password string`
			`ALPN []string`
			`ServerName string`
			`SkipCertVerify bool`
			`Fingerprint string`
			`ClientFingerprint string`
feat: Support REALITY protocol 2023-03-08 17:18:46 +08:00			`Reality *tlsC.RealityConfig`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Feature: support trojan websocket 2021-10-16 20:19:59 +08:00			`type WebsocketOption struct {`
feat: Add v2ray httpupgrade fast open support 2023-11-24 13:02:00 +08:00			`Host string`
			`Port string`
			`Path string`
			`Headers http.Header`
			`V2rayHttpUpgrade bool`
			`V2rayHttpUpgradeFastOpen bool`
Feature: support trojan websocket 2021-10-16 20:19:59 +08:00			`}`

Feature: support trojan 2020-03-19 20:26:53 +08:00			`type Trojan struct {`
			`option *Option`
			`hexPassword []byte`
			`}`

chore: more context passing in outbounds 2023-05-18 13:15:08 +08:00			`func (t *Trojan) StreamConn(ctx context.Context, conn net.Conn) (net.Conn, error) {`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`alpn := defaultALPN`
			`if len(t.option.ALPN) != 0 {`
			`alpn = t.option.ALPN`
			`}`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`tlsConfig := &tls.Config{`
			`NextProtos: alpn,`
			`MinVersion: tls.VersionTLS12,`
			`InsecureSkipVerify: t.option.SkipCertVerify,`
			`ServerName: t.option.ServerName,`
			`}`
Feature: Trojan XTLS 2022-03-30 00:15:39 +08:00
chore: rebuild ca parsing 2023-09-22 14:45:34 +08:00			`var err error`
			`tlsConfig, err = ca.GetSpecifiedFingerprintTLSConfig(tlsConfig, t.option.Fingerprint)`
			`if err != nil {`
			`return nil, err`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`}`
feat: add fingerprint param 2022-07-11 13:42:28 +08:00
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`if len(t.option.ClientFingerprint) != 0 {`
			`if t.option.Reality == nil {`
			`utlsConn, valid := vmess.GetUTLSConn(conn, t.option.ClientFingerprint, tlsConfig)`
			`if valid {`
feat: Update utls support. * client-fingerprint is used to apply Utls for modifying ClientHello, it accepts "chrome","firefox","safari","ios","random" options. * Utls is currently support TLS transport in TCP/grpc/WS/HTTP for VLESS/Vmess and trojan. 2023-02-05 17:31:58 +08:00			`ctx, cancel := context.WithTimeout(context.Background(), C.DefaultTLSTimeout)`
			`defer cancel()`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00
			`err := utlsConn.(*tlsC.UConn).HandshakeContext(ctx)`
			`return utlsConn, err`
feat: Update utls support. * client-fingerprint is used to apply Utls for modifying ClientHello, it accepts "chrome","firefox","safari","ios","random" options. * Utls is currently support TLS transport in TCP/grpc/WS/HTTP for VLESS/Vmess and trojan. 2023-02-05 17:31:58 +08:00			`}`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`} else {`
			`ctx, cancel := context.WithTimeout(context.Background(), C.DefaultTLSTimeout)`
			`defer cancel()`
			`return tlsC.GetRealityConn(ctx, conn, t.option.ClientFingerprint, tlsConfig, t.option.Reality)`
feat: Update utls support. * client-fingerprint is used to apply Utls for modifying ClientHello, it accepts "chrome","firefox","safari","ios","random" options. * Utls is currently support TLS transport in TCP/grpc/WS/HTTP for VLESS/Vmess and trojan. 2023-02-05 17:31:58 +08:00			`}`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`}`
			`if t.option.Reality != nil {`
			`return nil, errors.New("REALITY is based on uTLS, please set a client-fingerprint")`
			`}`
feat: Update utls support. * client-fingerprint is used to apply Utls for modifying ClientHello, it accepts "chrome","firefox","safari","ios","random" options. * Utls is currently support TLS transport in TCP/grpc/WS/HTTP for VLESS/Vmess and trojan. 2023-02-05 17:31:58 +08:00
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`tlsConn := tls.Client(conn, tlsConfig)`
feat: Update utls support. * client-fingerprint is used to apply Utls for modifying ClientHello, it accepts "chrome","firefox","safari","ios","random" options. * Utls is currently support TLS transport in TCP/grpc/WS/HTTP for VLESS/Vmess and trojan. 2023-02-05 17:31:58 +08:00
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`// fix tls handshake not timeout`
			`ctx, cancel := context.WithTimeout(context.Background(), C.DefaultTLSTimeout)`
			`defer cancel()`
[Feat] support trojan xtls change geodataloader mode as memconservative 2022-02-04 23:33:36 +08:00
chore: rebuild ca parsing 2023-09-22 14:45:34 +08:00			`err = tlsConn.HandshakeContext(ctx)`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`return tlsConn, err`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

chore: more context passing in outbounds 2023-05-18 13:15:08 +08:00			`func (t Trojan) StreamWebsocketConn(ctx context.Context, conn net.Conn, wsOptions WebsocketOption) (net.Conn, error) {`
Chore: use alpn http 1.1 only on trojan websocket by default 2021-10-19 22:34:18 +08:00			`alpn := defaultWebsocketALPN`
Feature: support trojan websocket 2021-10-16 20:19:59 +08:00			`if len(t.option.ALPN) != 0 {`
			`alpn = t.option.ALPN`
			`}`

			`tlsConfig := &tls.Config{`
			`NextProtos: alpn,`
			`MinVersion: tls.VersionTLS12,`
			`InsecureSkipVerify: t.option.SkipCertVerify,`
			`ServerName: t.option.ServerName,`
			`}`

fix: fingerprint passing 2024-05-12 19:34:25 +08:00			`var err error`
			`tlsConfig, err = ca.GetSpecifiedFingerprintTLSConfig(tlsConfig, t.option.Fingerprint)`
			`if err != nil {`
			`return nil, err`
			`}`

chore: more context passing in outbounds 2023-05-18 13:15:08 +08:00			`return vmess.StreamWebsocketConn(ctx, conn, &vmess.WebsocketConfig{`
feat: Add v2ray httpupgrade fast open support 2023-11-24 13:02:00 +08:00			`Host: wsOptions.Host,`
			`Port: wsOptions.Port,`
			`Path: wsOptions.Path,`
			`Headers: wsOptions.Headers,`
			`V2rayHttpUpgrade: wsOptions.V2rayHttpUpgrade,`
			`V2rayHttpUpgradeFastOpen: wsOptions.V2rayHttpUpgradeFastOpen,`
			`TLS: true,`
			`TLSConfig: tlsConfig,`
			`ClientFingerprint: t.option.ClientFingerprint,`
Feature: support trojan websocket 2021-10-16 20:19:59 +08:00			`})`
			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`func (t *Trojan) WriteHeader(w io.Writer, command Command, socks5Addr []byte) error {`
Improve: use one bytes.Buffer pool 2021-09-20 21:02:18 +08:00			`buf := pool.GetBuffer()`
			`defer pool.PutBuffer(buf)`
Feature: support trojan 2020-03-19 20:26:53 +08:00
			`buf.Write(t.hexPassword)`
			`buf.Write(crlf)`

			`buf.WriteByte(command)`
			`buf.Write(socks5Addr)`
			`buf.Write(crlf)`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`_, err := w.Write(buf.Bytes())`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`return err`
			`}`

			`func (t *Trojan) PacketConn(conn net.Conn) net.PacketConn {`
Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`return &PacketConn{`
			`Conn: conn,`
			`}`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`func writePacket(w io.Writer, socks5Addr, payload []byte) (int, error) {`
Improve: use one bytes.Buffer pool 2021-09-20 21:02:18 +08:00			`buf := pool.GetBuffer()`
			`defer pool.PutBuffer(buf)`
Feature: support trojan 2020-03-19 20:26:53 +08:00
			`buf.Write(socks5Addr)`
			`binary.Write(buf, binary.BigEndian, uint16(len(payload)))`
			`buf.Write(crlf)`
			`buf.Write(payload)`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`return w.Write(buf.Bytes())`
			`}`

			`func WritePacket(w io.Writer, socks5Addr, payload []byte) (int, error) {`
			`if len(payload) <= maxLength {`
			`return writePacket(w, socks5Addr, payload)`
			`}`

			`offset := 0`
			`total := len(payload)`
			`for {`
			`cursor := offset + maxLength`
			`if cursor > total {`
			`cursor = total`
			`}`

			`n, err := writePacket(w, socks5Addr, payload[offset:cursor])`
			`if err != nil {`
			`return offset + n, err`
			`}`

			`offset = cursor`
			`if offset == total {`
			`break`
			`}`
			`}`

			`return total, nil`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`func ReadPacket(r io.Reader, payload []byte) (net.Addr, int, int, error) {`
			`addr, err := socks5.ReadAddr(r, payload)`
			`if err != nil {`
			`return nil, 0, 0, errors.New("read addr error")`
			`}`
			`uAddr := addr.UDPAddr()`
Fix: handle parse socks5 udp address properly (#2220) (cherry picked from commit bec4df7b122e6a4db0f831ed6176732b2a09fb63) 2022-07-25 12:44:00 +08:00			`if uAddr == nil {`
			`return nil, 0, 0, errors.New("parse addr error")`
			`}`
Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00
			`if _, err = io.ReadFull(r, payload[:2]); err != nil {`
			`return nil, 0, 0, errors.New("read length error")`
			`}`

			`total := int(binary.BigEndian.Uint16(payload[:2]))`
			`if total > maxLength {`
			`return nil, 0, 0, errors.New("packet invalid")`
			`}`

			`// read crlf`
			`if _, err = io.ReadFull(r, payload[:2]); err != nil {`
			`return nil, 0, 0, errors.New("read crlf error")`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`length := len(payload)`
			`if total < length {`
			`length = total`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`if _, err = io.ReadFull(r, payload[:length]); err != nil {`
			`return nil, 0, 0, errors.New("read packet error")`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`return uAddr, length, total - length, nil`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

			`func New(option Option) Trojan {`
			`return &Trojan{option, hexSha224([]byte(option.Password))}`
			`}`

chore: Decrease UoT read memory 2023-05-20 17:00:43 +08:00			`var _ N.EnhancePacketConn = (*PacketConn)(nil)`

Feature: support trojan 2020-03-19 20:26:53 +08:00			`type PacketConn struct {`
			`net.Conn`
Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`remain int`
			`rAddr net.Addr`
			`mux sync.Mutex`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

			`func (pc *PacketConn) WriteTo(b []byte, addr net.Addr) (int, error) {`
			`return WritePacket(pc, socks5.ParseAddr(addr.String()), b)`
			`}`

			`func (pc *PacketConn) ReadFrom(b []byte) (int, net.Addr, error) {`
Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`pc.mux.Lock()`
			`defer pc.mux.Unlock()`
			`if pc.remain != 0 {`
			`length := len(b)`
			`if pc.remain < length {`
			`length = pc.remain`
			`}`

			`n, err := pc.Conn.Read(b[:length])`
			`if err != nil {`
			`return 0, nil, err`
			`}`

			`pc.remain -= n`
			`addr := pc.rAddr`
			`if pc.remain == 0 {`
			`pc.rAddr = nil`
			`}`

			`return n, addr, nil`
			`}`

			`addr, n, remain, err := ReadPacket(pc.Conn, b)`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`if err != nil {`
Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`return 0, nil, err`
			`}`

			`if remain != 0 {`
			`pc.remain = remain`
			`pc.rAddr = addr`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

Fix: trojan split udp packet 2020-03-20 00:02:05 +08:00			`return n, addr, nil`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`}`

chore: Decrease UoT read memory 2023-05-20 17:00:43 +08:00			`func (pc *PacketConn) WaitReadFrom() (data []byte, put func(), addr net.Addr, err error) {`
			`pc.mux.Lock()`
			`defer pc.mux.Unlock()`

chore: using internal socks5.ReadAddr0 in trojan 2023-05-20 18:35:04 +08:00			`destination, err := socks5.ReadAddr0(pc.Conn)`
chore: Decrease UoT read memory 2023-05-20 17:00:43 +08:00			`if err != nil {`
			`return nil, nil, nil, err`
			`}`
			`addr = destination.UDPAddr()`

			`data = pool.Get(pool.UDPBufferSize)`
			`put = func() {`
			`_ = pool.Put(data)`
			`}`

			`_, err = io.ReadFull(pc.Conn, data[:2+2]) // u16be length + CR LF`
			`if err != nil {`
chore: add WaitReadFrom support in ssr 2023-05-28 22:51:26 +08:00			`if put != nil {`
			`put()`
			`}`
chore: Decrease UoT read memory 2023-05-20 17:00:43 +08:00			`return nil, nil, nil, err`
			`}`
			`length := binary.BigEndian.Uint16(data)`

			`if length > 0 {`
			`data = data[:length]`
			`_, err = io.ReadFull(pc.Conn, data)`
			`if err != nil {`
chore: add WaitReadFrom support in ssr 2023-05-28 22:51:26 +08:00			`if put != nil {`
			`put()`
			`}`
chore: Decrease UoT read memory 2023-05-20 17:00:43 +08:00			`return nil, nil, nil, err`
			`}`
			`} else {`
chore: add WaitReadFrom support in ssr 2023-05-28 22:51:26 +08:00			`if put != nil {`
			`put()`
			`}`
chore: Decrease UoT read memory 2023-05-20 17:00:43 +08:00			`return nil, nil, addr, nil`
			`}`

			`return`
			`}`

Feature: support trojan 2020-03-19 20:26:53 +08:00			`func hexSha224(data []byte) []byte {`
			`buf := make([]byte, 56)`
chore: Remove legacy XTLS support (#645) * chore: Remove legacy XTLS support * chore: Rename function 2023-07-16 23:26:07 +08:00			`hash := sha256.Sum224(data)`
			`hex.Encode(buf, hash[:])`
Feature: support trojan 2020-03-19 20:26:53 +08:00			`return buf`
			`}`