Home Explore Help
Register Sign In
Apq
/
Xray-core
mirror of https://github.com/XTLS/Xray-core.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 93c7ebe382
Branches Tags
Xray-core
/
transport
/
internet
/
tls
/
tls.go

tls.go 2.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. package tls
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/tls"
    5. 

  5. 

  6. 	utls "github.com/refraction-networking/utls"
    7. 

  7. 	"github.com/xtls/xray-core/common/buf"
    8. 

  8. 	"github.com/xtls/xray-core/common/net"
    9. 

  9. )
    10. 

  10. 

  11. //go:generate go run github.com/xtls/xray-core/common/errors/errorgen
    12. 

  12. 

  13. var _ buf.Writer = (*Conn)(nil)
    14. 

  14. 

  15. type Conn struct {
    16. 

  16. 	*tls.Conn
    17. 

  17. }
    18. 

  18. 

  19. func (c *Conn) WriteMultiBuffer(mb buf.MultiBuffer) error {
    20. 

  20. 	mb = buf.Compact(mb)
    21. 

  21. 	mb, err := buf.WriteMultiBuffer(c, mb)
    22. 

  22. 	buf.ReleaseMulti(mb)
    23. 

  23. 	return err
    24. 

  24. }
    25. 

  25. 

  26. func (c *Conn) HandshakeAddress() net.Address {
    27. 

  27. 	if err := c.Handshake(); err != nil {
    28. 

  28. 		return nil
    29. 

  29. 	}
    30. 

  30. 	state := c.ConnectionState()
    31. 

  31. 	if state.ServerName == "" {
    32. 

  32. 		return nil
    33. 

  33. 	}
    34. 

  34. 	return net.ParseAddress(state.ServerName)
    35. 

  35. }
    36. 

  36. 

  37. func (c *Conn) NegotiatedProtocol() (name string, mutual bool) {
    38. 

  38. 	state := c.ConnectionState()
    39. 

  39. 	return state.NegotiatedProtocol, state.NegotiatedProtocolIsMutual
    40. 

  40. }
    41. 

  41. 

  42. // Client initiates a TLS client handshake on the given connection.
    43. 

  43. func Client(c net.Conn, config *tls.Config) net.Conn {
    44. 

  44. 	tlsConn := tls.Client(c, config)
    45. 

  45. 	return &Conn{Conn: tlsConn}
    46. 

  46. }
    47. 

  47. 

  48. // Server initiates a TLS server handshake on the given connection.
    49. 

  49. func Server(c net.Conn, config *tls.Config) net.Conn {
    50. 

  50. 	tlsConn := tls.Server(c, config)
    51. 

  51. 	return &Conn{Conn: tlsConn}
    52. 

  52. }
    53. 

  53. 

  54. type UConn struct {
    55. 

  55. 	*utls.UConn
    56. 

  56. }
    57. 

  57. 

  58. func (c *UConn) HandshakeAddress() net.Address {
    59. 

  59. 	if err := c.Handshake(); err != nil {
    60. 

  60. 		return nil
    61. 

  61. 	}
    62. 

  62. 	state := c.ConnectionState()
    63. 

  63. 	if state.ServerName == "" {
    64. 

  64. 		return nil
    65. 

  65. 	}
    66. 

  66. 	return net.ParseAddress(state.ServerName)
    67. 

  67. }
    68. 

  68. 

  69. func (c *UConn) NegotiatedProtocol() (name string, mutual bool) {
    70. 

  70. 	state := c.ConnectionState()
    71. 

  71. 	return state.NegotiatedProtocol, state.NegotiatedProtocolIsMutual
    72. 

  72. }
    73. 

  73. 

  74. func UClient(c net.Conn, config *tls.Config, fingerprint *utls.ClientHelloID) net.Conn {
    75. 

  75. 	utlsConn := utls.UClient(c, copyConfig(config), *fingerprint)
    76. 

  76. 	return &UConn{UConn: utlsConn}
    77. 

  77. }
    78. 

  78. 

  79. func copyConfig(c *tls.Config) *utls.Config {
    80. 

  80. 	return &utls.Config{
    81. 

  81. 		RootCAs:            c.RootCAs,
    82. 

  82. 		ServerName:         c.ServerName,
    83. 

  83. 		InsecureSkipVerify: c.InsecureSkipVerify,
    84. 

  84. 	}
    85. 

  85. }
    86. 

  86. 

  87. var Fingerprints = map[string]*utls.ClientHelloID{
    88. 

  88. 	"chrome":     &utls.HelloChrome_Auto,
    89. 

  89. 	"firefox":    &utls.HelloFirefox_Auto,
    90. 

  90. 	"safari":     &utls.HelloIOS_Auto,
    91. 

  91. 	"randomized": &utls.HelloRandomized,
    92. 

  92. }
    93. 

  93. 

  94. type Interface interface {
    95. 

  95. 	net.Conn
    96. 

  96. 	Handshake() error
    97. 

  97. 	VerifyHostname(host string) error
    98. 

  98. 	NegotiatedProtocol() (name string, mutual bool)
    99. 

  99. }
    100.