mirror of
https://github.com/lkddi/Xboard.git
synced 2026-04-05 04:30:52 +08:00
fc5a957ddd
- Add AnyTLS protocol support - Add system logs viewing in admin panel - Refactor client subscription delivery code - Refactor hook mechanism - Add plugin support for Shadowsocks protocol - Add CSV export option for batch user creation - Fix mobile admin login page width display issue
316 lines
13 KiB
PHP
316 lines
13 KiB
PHP
<?php
|
|
|
|
namespace App\Protocols;
|
|
|
|
use App\Utils\Helper;
|
|
use App\Support\AbstractProtocol;
|
|
|
|
class Shadowrocket extends AbstractProtocol
|
|
{
|
|
public $flags = ['shadowrocket'];
|
|
|
|
protected $protocolRequirements = [
|
|
'shadowrocket' => [
|
|
'hysteria' => [
|
|
'protocol_settings.version' => [
|
|
'2' => '1993'
|
|
],
|
|
],
|
|
],
|
|
];
|
|
|
|
public function handle()
|
|
{
|
|
$servers = $this->servers;
|
|
$user = $this->user;
|
|
|
|
$uri = '';
|
|
//display remaining traffic and expire date
|
|
$upload = round($user['u'] / (1024 * 1024 * 1024), 2);
|
|
$download = round($user['d'] / (1024 * 1024 * 1024), 2);
|
|
$totalTraffic = round($user['transfer_enable'] / (1024 * 1024 * 1024), 2);
|
|
$expiredDate = date('Y-m-d', $user['expired_at']);
|
|
$uri .= "STATUS=🚀↑:{$upload}GB,↓:{$download}GB,TOT:{$totalTraffic}GB💡Expires:{$expiredDate}\r\n";
|
|
foreach ($servers as $item) {
|
|
if ($item['type'] === 'shadowsocks') {
|
|
$uri .= self::buildShadowsocks($item['password'], $item);
|
|
}
|
|
if ($item['type'] === 'vmess') {
|
|
$uri .= self::buildVmess($user['uuid'], $item);
|
|
}
|
|
if ($item['type'] === 'vless') {
|
|
$uri .= self::buildVless($user['uuid'], $item);
|
|
}
|
|
if ($item['type'] === 'trojan') {
|
|
$uri .= self::buildTrojan($user['uuid'], $item);
|
|
}
|
|
if ($item['type'] === 'hysteria') {
|
|
$uri .= self::buildHysteria($user['uuid'], $item);
|
|
}
|
|
if ($item['type'] === 'tuic') {
|
|
$uri .= self::buildTuic($user['uuid'], $item);
|
|
}
|
|
if ($item['type'] === 'anytls') {
|
|
$uri .= self::buildAnyTLS($user['uuid'], $item);
|
|
}
|
|
}
|
|
return base64_encode($uri);
|
|
}
|
|
|
|
|
|
public static function buildShadowsocks($password, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$name = rawurlencode($server['name']);
|
|
$password = data_get($server, 'password', $password);
|
|
$str = str_replace(
|
|
['+', '/', '='],
|
|
['-', '_', ''],
|
|
base64_encode("{$protocol_settings['cipher']}:{$password}")
|
|
);
|
|
$addr = Helper::wrapIPv6($server['host']);
|
|
|
|
$uri = "ss://{$str}@{$addr}:{$server['port']}";
|
|
$plugin = data_get($protocol_settings, 'plugin') == 'obfs' ? 'obfs-local' : data_get($protocol_settings, 'plugin');
|
|
$plugin_opts = data_get($protocol_settings, 'plugin_opts');
|
|
if ($plugin && $plugin_opts) {
|
|
$uri .= '/?' . 'plugin=' . $plugin . ';' . rawurlencode($plugin_opts);
|
|
}
|
|
return $uri . "#{$name}\r\n";
|
|
}
|
|
|
|
public static function buildVmess($uuid, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$userinfo = base64_encode('auto:' . $uuid . '@' . Helper::wrapIPv6($server['host']) . ':' . $server['port']);
|
|
$config = [
|
|
'tfo' => 1,
|
|
'remark' => $server['name'],
|
|
'alterId' => 0
|
|
];
|
|
if ($protocol_settings['tls']) {
|
|
$config['tls'] = 1;
|
|
if (data_get($protocol_settings, 'tls_settings')) {
|
|
if (!!data_get($protocol_settings, 'tls_settings.allow_insecure'))
|
|
$config['allowInsecure'] = (int) data_get($protocol_settings, 'tls_settings.allow_insecure');
|
|
if (!!data_get($protocol_settings, 'tls_settings.server_name'))
|
|
$config['peer'] = data_get($protocol_settings, 'tls_settings.server_name');
|
|
}
|
|
}
|
|
|
|
switch (data_get($protocol_settings, 'network')) {
|
|
case 'tcp':
|
|
if (data_get($protocol_settings, 'network_settings.header.type', 'none') !== 'none') {
|
|
$config['obfs'] = data_get($protocol_settings, 'network_settings.header.type');
|
|
$config['path'] = \Illuminate\Support\Arr::random(data_get($protocol_settings, 'network_settings.header.request.path', ['/']));
|
|
$config['obfsParam'] = \Illuminate\Support\Arr::random(data_get($protocol_settings, 'network_settings.header.request.headers.Host', ['www.example.com']));
|
|
}
|
|
break;
|
|
case 'ws':
|
|
$config['obfs'] = "websocket";
|
|
$config['path'] = data_get($protocol_settings, 'network_settings.path');
|
|
if ($host = data_get($protocol_settings, 'network_settings.headers.Host')) {
|
|
$config['obfsParam'] = $host;
|
|
}
|
|
break;
|
|
case 'grpc':
|
|
$config['obfs'] = "grpc";
|
|
$config['path'] = data_get($protocol_settings, 'network_settings.serviceName');
|
|
$config['host'] = data_get($protocol_settings, 'tls_settings.server_name') ?? $server['host'];
|
|
break;
|
|
}
|
|
$query = http_build_query($config, '', '&', PHP_QUERY_RFC3986);
|
|
$uri = "vmess://{$userinfo}?{$query}";
|
|
$uri .= "\r\n";
|
|
return $uri;
|
|
}
|
|
|
|
public static function buildVless($uuid, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$userinfo = base64_encode('auto:' . $uuid . '@' . Helper::wrapIPv6($server['host']) . ':' . $server['port']);
|
|
$config = [
|
|
'tfo' => 1,
|
|
'remark' => $server['name'],
|
|
'alterId' => 0
|
|
];
|
|
|
|
// 判断是否开启xtls
|
|
if (data_get($protocol_settings, 'flow')) {
|
|
$xtlsMap = [
|
|
'none' => 0,
|
|
'xtls-rprx-direct' => 1,
|
|
'xtls-rprx-vision' => 2
|
|
];
|
|
if (array_key_exists(data_get($protocol_settings, 'flow'), $xtlsMap)) {
|
|
$config['tls'] = 1;
|
|
$config['xtls'] = $xtlsMap[data_get($protocol_settings, 'flow')];
|
|
}
|
|
}
|
|
|
|
switch (data_get($protocol_settings, 'tls')) {
|
|
case 1:
|
|
$config['tls'] = 1;
|
|
$config['allowInsecure'] = (int) data_get($protocol_settings, 'tls_settings.allow_insecure');
|
|
if ($serverName = data_get($protocol_settings, 'tls_settings.server_name')) {
|
|
$config['peer'] = $serverName;
|
|
}
|
|
break;
|
|
case 2:
|
|
$config['tls'] = 1;
|
|
$config['sni'] = data_get($protocol_settings, 'reality_settings.server_name');
|
|
$config['pbk'] = data_get($protocol_settings, 'reality_settings.public_key');
|
|
$config['sid'] = data_get($protocol_settings, 'reality_settings.short_id');
|
|
$config['fp'] = Helper::getRandFingerprint();
|
|
break;
|
|
default:
|
|
break;
|
|
}
|
|
switch (data_get($protocol_settings, 'network')) {
|
|
case 'tcp':
|
|
if (data_get($protocol_settings, 'network_settings.header.type', 'none') !== 'none') {
|
|
$config['obfs'] = data_get($protocol_settings, 'network_settings.header.type');
|
|
$config['path'] = \Illuminate\Support\Arr::random(data_get($protocol_settings, 'network_settings.header.request.path', ['/']));
|
|
$config['obfsParam'] = \Illuminate\Support\Arr::random(data_get($protocol_settings, 'network_settings.header.request.headers.Host', ['www.example.com']));
|
|
}
|
|
break;
|
|
case 'ws':
|
|
$config['obfs'] = "websocket";
|
|
if (data_get($protocol_settings, 'network_settings.path')) {
|
|
$config['path'] = data_get($protocol_settings, 'network_settings.path');
|
|
}
|
|
|
|
if ($host = data_get($protocol_settings, 'network_settings.headers.Host')) {
|
|
$config['obfsParam'] = $host;
|
|
}
|
|
break;
|
|
case 'grpc':
|
|
$config['obfs'] = "grpc";
|
|
$config['path'] = data_get($protocol_settings, 'network_settings.serviceName');
|
|
$config['host'] = data_get($protocol_settings, 'tls_settings.server_name') ?? $server['host'];
|
|
break;
|
|
}
|
|
|
|
$query = http_build_query($config, '', '&', PHP_QUERY_RFC3986);
|
|
$uri = "vless" . "://{$userinfo}?{$query}";
|
|
$uri .= "\r\n";
|
|
return $uri;
|
|
}
|
|
|
|
public static function buildTrojan($password, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$name = rawurlencode($server['name']);
|
|
$params['allowInsecure'] = data_get($protocol_settings, 'allow_insecure');
|
|
if ($serverName = data_get($protocol_settings, 'server_name')) {
|
|
$params['peer'] = $serverName;
|
|
}
|
|
switch (data_get($protocol_settings, 'network')) {
|
|
case 'grpc':
|
|
$params['obfs'] = 'grpc';
|
|
$params['path'] = data_get($protocol_settings, 'network_settings.serviceName');
|
|
break;
|
|
case 'ws':
|
|
$host = data_get($protocol_settings, 'network_settings.headers.Host');
|
|
$path = data_get($protocol_settings, 'network_settings.path');
|
|
$params['plugin'] = "obfs-local;obfs=websocket;obfs-host={$host};obfs-uri={$path}";
|
|
break;
|
|
}
|
|
$query = http_build_query($params);
|
|
$addr = Helper::wrapIPv6($server['host']);
|
|
|
|
$uri = "trojan://{$password}@{$addr}:{$server['port']}?{$query}&tfo=1#{$name}";
|
|
$uri .= "\r\n";
|
|
return $uri;
|
|
}
|
|
|
|
public static function buildHysteria($password, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$uri = ''; // 初始化变量
|
|
|
|
switch (data_get($protocol_settings, 'version')) {
|
|
case 1:
|
|
$params = [
|
|
"auth" => $password,
|
|
"upmbps" => data_get($protocol_settings, 'bandwidth.up'),
|
|
"downmbps" => data_get($protocol_settings, 'bandwidth.down'),
|
|
"protocol" => 'udp',
|
|
"fastopen" => 1,
|
|
];
|
|
if ($serverName = data_get($protocol_settings, 'tls.server_name')) {
|
|
$params['peer'] = $serverName;
|
|
}
|
|
if (data_get($protocol_settings, 'obfs.open')) {
|
|
$params["obfs"] = "xplus";
|
|
$params["obfsParam"] = data_get($protocol_settings, 'obfs_settings.password');
|
|
}
|
|
$params['insecure'] = data_get($protocol_settings, 'tls.allow_insecure');
|
|
if (isset($server['ports']))
|
|
$params['mport'] = $server['ports'];
|
|
$query = http_build_query($params);
|
|
$addr = Helper::wrapIPv6($server['host']);
|
|
|
|
$uri = "hysteria://{$addr}:{$server['port']}?{$query}#{$server['name']}";
|
|
$uri .= "\r\n";
|
|
break;
|
|
case 2:
|
|
$params = [
|
|
"obfs" => 'none',
|
|
"fastopen" => 1
|
|
];
|
|
if ($serverName = data_get($protocol_settings, 'tls.server_name')) {
|
|
$params['peer'] = $serverName;
|
|
}
|
|
if (data_get($protocol_settings, 'obfs.open')) {
|
|
$params['obfs'] = data_get($protocol_settings, 'obfs.type');
|
|
$params['obfs-password'] = data_get($protocol_settings, 'obfs.password');
|
|
}
|
|
$params['insecure'] = data_get($protocol_settings, 'tls.allow_insecure');
|
|
if (isset($server['ports']))
|
|
$params['mport'] = $server['ports'];
|
|
$query = http_build_query($params);
|
|
$addr = Helper::wrapIPv6($server['host']);
|
|
|
|
$uri = "hysteria2://{$password}@{$addr}:{$server['port']}?{$query}#{$server['name']}";
|
|
$uri .= "\r\n";
|
|
break;
|
|
}
|
|
return $uri;
|
|
}
|
|
public static function buildTuic($password, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$name = rawurlencode($server['name']);
|
|
$params = [
|
|
'alpn' => data_get($protocol_settings, 'alpn'),
|
|
'sni' => data_get($protocol_settings, 'tls.server_name'),
|
|
'insecure' => data_get($protocol_settings, 'tls.allow_insecure')
|
|
];
|
|
if (data_get($protocol_settings, 'version') === 4) {
|
|
$params['token'] = $password;
|
|
} else {
|
|
$params['uuid'] = $password;
|
|
$params['password'] = $password;
|
|
}
|
|
$query = http_build_query($params);
|
|
$uri = "tuic://{$server['host']}:{$server['port']}?{$query}#{$name}";
|
|
$uri .= "\r\n";
|
|
return $uri;
|
|
}
|
|
|
|
public static function buildAnyTLS($password, $server)
|
|
{
|
|
$protocol_settings = $server['protocol_settings'];
|
|
$name = rawurlencode($server['name']);
|
|
$params = [
|
|
'sni' => data_get($protocol_settings, 'tls.server_name'),
|
|
'insecure' => data_get($protocol_settings, 'tls.allow_insecure')
|
|
];
|
|
$query = http_build_query($params);
|
|
$uri = "anytls://{$password}@{$server['host']}:{$server['port']}?{$query}#{$name}";
|
|
$uri .= "\r\n";
|
|
return $uri;
|
|
}
|
|
}
|