mirror of https://github.com/XTLS/Xray-core
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
222 lines
6.0 KiB
222 lines
6.0 KiB
package websocket |
|
|
|
import ( |
|
"bytes" |
|
"context" |
|
_ "embed" |
|
"encoding/base64" |
|
"io" |
|
gonet "net" |
|
"net/http" |
|
"time" |
|
|
|
"github.com/gorilla/websocket" |
|
"github.com/xtls/xray-core/common" |
|
"github.com/xtls/xray-core/common/net" |
|
"github.com/xtls/xray-core/common/platform" |
|
"github.com/xtls/xray-core/common/session" |
|
"github.com/xtls/xray-core/common/uuid" |
|
"github.com/xtls/xray-core/transport/internet" |
|
"github.com/xtls/xray-core/transport/internet/stat" |
|
"github.com/xtls/xray-core/transport/internet/tls" |
|
) |
|
|
|
//go:embed dialer.html |
|
var webpage []byte |
|
|
|
var conns chan *websocket.Conn |
|
|
|
func init() { |
|
addr := platform.NewEnvFlag(platform.BrowserDialerAddress).GetValue(func() string { return "" }) |
|
if addr != "" { |
|
token := uuid.New() |
|
csrfToken := token.String() |
|
webpage = bytes.ReplaceAll(webpage, []byte("csrfToken"), []byte(csrfToken)) |
|
conns = make(chan *websocket.Conn, 256) |
|
go http.ListenAndServe(addr, http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { |
|
if r.URL.Path == "/websocket" { |
|
if r.URL.Query().Get("token") == csrfToken { |
|
if conn, err := upgrader.Upgrade(w, r, nil); err == nil { |
|
conns <- conn |
|
} else { |
|
newError("Browser dialer http upgrade unexpected error").AtError().WriteToLog() |
|
} |
|
} |
|
} else { |
|
w.Write(webpage) |
|
} |
|
})) |
|
} |
|
} |
|
|
|
// Dial dials a WebSocket connection to the given destination. |
|
func Dial(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig) (stat.Connection, error) { |
|
newError("creating connection to ", dest).WriteToLog(session.ExportIDToError(ctx)) |
|
var conn net.Conn |
|
if streamSettings.ProtocolSettings.(*Config).Ed > 0 { |
|
ctx, cancel := context.WithCancel(ctx) |
|
conn = &delayDialConn{ |
|
dialed: make(chan bool, 1), |
|
cancel: cancel, |
|
ctx: ctx, |
|
dest: dest, |
|
streamSettings: streamSettings, |
|
} |
|
} else { |
|
var err error |
|
if conn, err = dialWebSocket(ctx, dest, streamSettings, nil); err != nil { |
|
return nil, newError("failed to dial WebSocket").Base(err) |
|
} |
|
} |
|
return stat.Connection(conn), nil |
|
} |
|
|
|
func init() { |
|
common.Must(internet.RegisterTransportDialer(protocolName, Dial)) |
|
} |
|
|
|
func dialWebSocket(ctx context.Context, dest net.Destination, streamSettings *internet.MemoryStreamConfig, ed []byte) (net.Conn, error) { |
|
wsSettings := streamSettings.ProtocolSettings.(*Config) |
|
|
|
dialer := &websocket.Dialer{ |
|
NetDial: func(network, addr string) (net.Conn, error) { |
|
return internet.DialSystem(ctx, dest, streamSettings.SocketSettings) |
|
}, |
|
ReadBufferSize: 4 * 1024, |
|
WriteBufferSize: 4 * 1024, |
|
HandshakeTimeout: time.Second * 8, |
|
} |
|
|
|
protocol := "ws" |
|
|
|
if config := tls.ConfigFromStreamSettings(streamSettings); config != nil { |
|
protocol = "wss" |
|
tlsConfig := config.GetTLSConfig(tls.WithDestination(dest), tls.WithNextProto("http/1.1")) |
|
dialer.TLSClientConfig = tlsConfig |
|
if fingerprint := tls.GetFingerprint(config.Fingerprint); fingerprint != nil { |
|
dialer.NetDialTLSContext = func(_ context.Context, _, addr string) (gonet.Conn, error) { |
|
// Like the NetDial in the dialer |
|
pconn, err := internet.DialSystem(ctx, dest, streamSettings.SocketSettings) |
|
if err != nil { |
|
newError("failed to dial to " + addr).Base(err).AtError().WriteToLog() |
|
return nil, err |
|
} |
|
// TLS and apply the handshake |
|
cn := tls.UClient(pconn, tlsConfig, fingerprint).(*tls.UConn) |
|
if err := cn.WebsocketHandshakeContext(ctx); err != nil { |
|
newError("failed to dial to " + addr).Base(err).AtError().WriteToLog() |
|
return nil, err |
|
} |
|
if !tlsConfig.InsecureSkipVerify { |
|
if err := cn.VerifyHostname(tlsConfig.ServerName); err != nil { |
|
newError("failed to dial to " + addr).Base(err).AtError().WriteToLog() |
|
return nil, err |
|
} |
|
} |
|
return cn, nil |
|
} |
|
} |
|
} |
|
|
|
host := dest.NetAddr() |
|
if (protocol == "ws" && dest.Port == 80) || (protocol == "wss" && dest.Port == 443) { |
|
host = dest.Address.String() |
|
} |
|
uri := protocol + "://" + host + wsSettings.GetNormalizedPath() |
|
|
|
if conns != nil { |
|
data := []byte(uri) |
|
if ed != nil { |
|
data = append(data, " "+base64.RawURLEncoding.EncodeToString(ed)...) |
|
} |
|
var conn *websocket.Conn |
|
for { |
|
conn = <-conns |
|
if conn.WriteMessage(websocket.TextMessage, data) != nil { |
|
conn.Close() |
|
} else { |
|
break |
|
} |
|
} |
|
if _, p, err := conn.ReadMessage(); err != nil { |
|
conn.Close() |
|
return nil, err |
|
} else if s := string(p); s != "ok" { |
|
conn.Close() |
|
return nil, newError(s) |
|
} |
|
return newConnection(conn, conn.RemoteAddr(), nil), nil |
|
} |
|
|
|
header := wsSettings.GetRequestHeader() |
|
if ed != nil { |
|
// RawURLEncoding is support by both V2Ray/V2Fly and XRay. |
|
header.Set("Sec-WebSocket-Protocol", base64.RawURLEncoding.EncodeToString(ed)) |
|
} |
|
|
|
conn, resp, err := dialer.DialContext(ctx, uri, header) |
|
if err != nil { |
|
var reason string |
|
if resp != nil { |
|
reason = resp.Status |
|
} |
|
return nil, newError("failed to dial to (", uri, "): ", reason).Base(err) |
|
} |
|
|
|
return newConnection(conn, conn.RemoteAddr(), nil), nil |
|
} |
|
|
|
type delayDialConn struct { |
|
net.Conn |
|
closed bool |
|
dialed chan bool |
|
cancel context.CancelFunc |
|
ctx context.Context |
|
dest net.Destination |
|
streamSettings *internet.MemoryStreamConfig |
|
} |
|
|
|
func (d *delayDialConn) Write(b []byte) (int, error) { |
|
if d.closed { |
|
return 0, io.ErrClosedPipe |
|
} |
|
if d.Conn == nil { |
|
ed := b |
|
if len(ed) > int(d.streamSettings.ProtocolSettings.(*Config).Ed) { |
|
ed = nil |
|
} |
|
var err error |
|
if d.Conn, err = dialWebSocket(d.ctx, d.dest, d.streamSettings, ed); err != nil { |
|
d.Close() |
|
return 0, newError("failed to dial WebSocket").Base(err) |
|
} |
|
d.dialed <- true |
|
if ed != nil { |
|
return len(ed), nil |
|
} |
|
} |
|
return d.Conn.Write(b) |
|
} |
|
|
|
func (d *delayDialConn) Read(b []byte) (int, error) { |
|
if d.closed { |
|
return 0, io.ErrClosedPipe |
|
} |
|
if d.Conn == nil { |
|
select { |
|
case <-d.ctx.Done(): |
|
return 0, io.ErrUnexpectedEOF |
|
case <-d.dialed: |
|
} |
|
} |
|
return d.Conn.Read(b) |
|
} |
|
|
|
func (d *delayDialConn) Close() error { |
|
d.closed = true |
|
d.cancel() |
|
if d.Conn == nil { |
|
return nil |
|
} |
|
return d.Conn.Close() |
|
}
|
|
|