Shikong/Clash.Meta
1
0
Fork 0
mirror of https://gitclone.com/github.com/MetaCubeX/Clash.Meta synced 2025-05-25 19:38:07 +08:00
Code Issues Packages Projects Releases Wiki Activity
aa51b9faba
Clash.Meta/transport/vmess/tls.go

62 lines
1.5 KiB
Go
Raw Normal View History

Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
package vmess
import (
Fix: tls handshake requires a timeout (#1893)
2022-01-15 19:33:21 +08:00
"context"
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
"crypto/tls"
feat: Support REALITY protocol
2023-03-08 17:18:46 +08:00
"errors"
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
"net"
Fix: tls handshake requires a timeout (#1893)
2022-01-15 19:33:21 +08:00
chore: hello mihomo
2023-11-03 21:01:45 +08:00
"github.com/metacubex/mihomo/component/ca"
tlsC "github.com/metacubex/mihomo/component/tls"
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
)
type TLSConfig struct {
feat: Add utls for modifying client's fingerprint. Currently only support TLS transport in TCP/GRPC/WS/HTTP for VLESS/Vmess and trojan-grpc.
2023-02-01 22:16:06 +08:00
Host string
SkipCertVerify bool
FingerPrint string
ClientFingerprint string
NextProtos []string
feat: Support REALITY protocol
2023-03-08 17:18:46 +08:00
Reality *tlsC.RealityConfig
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
}
chore: more context passing in outbounds
2023-05-18 13:15:08 +08:00
func StreamTLSConn(ctx context.Context, conn net.Conn, cfg *TLSConfig) (net.Conn, error) {
feat: add fingerprint param
2022-07-11 13:42:28 +08:00
tlsConfig := &tls.Config{
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
ServerName: cfg.Host,
InsecureSkipVerify: cfg.SkipCertVerify,
Feature: support VMess HTTP/2 transport (#903)
2020-09-26 20:33:57 +08:00
NextProtos: cfg.NextProtos,
feat: add fingerprint param
2022-07-11 13:42:28 +08:00
}
chore: rebuild ca parsing
2023-09-22 14:45:34 +08:00
var err error
tlsConfig, err = ca.GetSpecifiedFingerprintTLSConfig(tlsConfig, cfg.FingerPrint)
if err != nil {
return nil, err
feat: add fingerprint param
2022-07-11 13:42:28 +08:00
}
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
chore: better global-client-fingerprint handle
2025-04-19 02:04:09 +08:00
clientFingerprint := cfg.ClientFingerprint
if tlsC.HaveGlobalFingerprint() && len(clientFingerprint) == 0 {
clientFingerprint = tlsC.GetGlobalFingerprint()
}
if len(clientFingerprint) != 0 {
feat: Support REALITY protocol
2023-03-08 17:18:46 +08:00
if cfg.Reality == nil {
chore: better global-client-fingerprint handle
2025-04-19 02:04:09 +08:00
if fingerprint, exists := tlsC.GetFingerprint(clientFingerprint); exists {
chore: update utls to 1.7.0
2025-04-21 12:07:33 +08:00
utlsConn := tlsC.UClient(conn, tlsC.UConfig(tlsConfig), fingerprint)
chore: code cleanup
2025-02-17 19:43:58 +08:00
err = utlsConn.HandshakeContext(ctx)
chore: better global-client-fingerprint handle
2025-04-19 02:04:09 +08:00
if err != nil {
return nil, err
}
return utlsConn, nil
feat: Support REALITY protocol
2023-03-08 17:18:46 +08:00
}
} else {
chore: better global-client-fingerprint handle
2025-04-19 02:04:09 +08:00
return tlsC.GetRealityConn(ctx, conn, clientFingerprint, tlsConfig, cfg.Reality)
feat: Add utls for modifying client's fingerprint. Currently only support TLS transport in TCP/GRPC/WS/HTTP for VLESS/Vmess and trojan-grpc.
2023-02-01 22:16:06 +08:00
}
}
feat: Support REALITY protocol
2023-03-08 17:18:46 +08:00
if cfg.Reality != nil {
return nil, errors.New("REALITY is based on uTLS, please set a client-fingerprint")
}
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
tlsConn := tls.Client(conn, tlsConfig)
Fix: tls handshake requires a timeout (#1893)
2022-01-15 19:33:21 +08:00
chore: rebuild ca parsing
2023-09-22 14:45:34 +08:00
err = tlsConn.HandshakeContext(ctx)
Fix: vmess pure TLS mode
2020-04-03 16:04:24 +08:00
return tlsConn, err
}
Reference in New Issue Copy Permalink