| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167 | package wireguardimport (	"context"	"net"	"net/netip"	"github.com/sagernet/sing-box/adapter"	"github.com/sagernet/sing-box/adapter/outbound"	"github.com/sagernet/sing-box/common/dialer"	C "github.com/sagernet/sing-box/constant"	"github.com/sagernet/sing-box/experimental/deprecated"	"github.com/sagernet/sing-box/log"	"github.com/sagernet/sing-box/option"	"github.com/sagernet/sing-box/transport/wireguard"	"github.com/sagernet/sing/common"	E "github.com/sagernet/sing/common/exceptions"	"github.com/sagernet/sing/common/logger"	M "github.com/sagernet/sing/common/metadata"	N "github.com/sagernet/sing/common/network"	"github.com/sagernet/sing/service")func RegisterOutbound(registry *outbound.Registry) {	outbound.Register[option.LegacyWireGuardOutboundOptions](registry, C.TypeWireGuard, NewOutbound)}var (	_ adapter.Endpoint                = (*Endpoint)(nil)	_ adapter.InterfaceUpdateListener = (*Endpoint)(nil))type Outbound struct {	outbound.Adapter	ctx            context.Context	dnsRouter      adapter.DNSRouter	logger         logger.ContextLogger	localAddresses []netip.Prefix	endpoint       *wireguard.Endpoint}func NewOutbound(ctx context.Context, router adapter.Router, logger log.ContextLogger, tag string, options option.LegacyWireGuardOutboundOptions) (adapter.Outbound, error) {	deprecated.Report(ctx, deprecated.OptionWireGuardOutbound)	if options.GSO {		deprecated.Report(ctx, deprecated.OptionWireGuardGSO)	}	outbound := &Outbound{		Adapter:        outbound.NewAdapterWithDialerOptions(C.TypeWireGuard, tag, []string{N.NetworkTCP, N.NetworkUDP}, options.DialerOptions),		ctx:            ctx,		dnsRouter:      service.FromContext[adapter.DNSRouter](ctx),		logger:         logger,		localAddresses: options.LocalAddress,	}	if options.Detour == "" {		options.IsWireGuardListener = true	} else if options.GSO {		return nil, E.New("gso is conflict with detour")	}	outboundDialer, err := dialer.New(ctx, options.DialerOptions, options.ServerIsDomain())	if err != nil {		return nil, err	}	peers := common.Map(options.Peers, func(it option.LegacyWireGuardPeer) wireguard.PeerOptions {		return wireguard.PeerOptions{			Endpoint:     it.ServerOptions.Build(),			PublicKey:    it.PublicKey,			PreSharedKey: it.PreSharedKey,			AllowedIPs:   it.AllowedIPs,			// PersistentKeepaliveInterval: time.Duration(it.PersistentKeepaliveInterval),			Reserved: it.Reserved,		}	})	if len(peers) == 0 {		peers = []wireguard.PeerOptions{{			Endpoint:     options.ServerOptions.Build(),			PublicKey:    options.PeerPublicKey,			PreSharedKey: options.PreSharedKey,			AllowedIPs:   []netip.Prefix{netip.PrefixFrom(netip.IPv4Unspecified(), 0), netip.PrefixFrom(netip.IPv6Unspecified(), 0)},			Reserved:     options.Reserved,		}}	}	wgEndpoint, err := wireguard.NewEndpoint(wireguard.EndpointOptions{		Context: ctx,		Logger:  logger,		System:  options.SystemInterface,		Dialer:  outboundDialer,		CreateDialer: func(interfaceName string) N.Dialer {			return common.Must1(dialer.NewDefault(ctx, option.DialerOptions{				BindInterface: interfaceName,			}))		},		Name:       options.InterfaceName,		MTU:        options.MTU,		Address:    options.LocalAddress,		PrivateKey: options.PrivateKey,		ResolvePeer: func(domain string) (netip.Addr, error) {			endpointAddresses, lookupErr := outbound.dnsRouter.Lookup(ctx, domain, adapter.DNSQueryOptions{				Strategy: C.DomainStrategy(options.DomainStrategy),			})			if lookupErr != nil {				return netip.Addr{}, lookupErr			}			return endpointAddresses[0], nil		},		Peers:   peers,		Workers: options.Workers,	})	if err != nil {		return nil, err	}	outbound.endpoint = wgEndpoint	return outbound, nil}func (o *Outbound) Start(stage adapter.StartStage) error {	switch stage {	case adapter.StartStateStart:		return o.endpoint.Start(false)	case adapter.StartStatePostStart:		return o.endpoint.Start(true)	}	return nil}func (o *Outbound) Close() error {	return o.endpoint.Close()}func (o *Outbound) InterfaceUpdated() {	o.endpoint.BindUpdate()	return}func (o *Outbound) DialContext(ctx context.Context, network string, destination M.Socksaddr) (net.Conn, error) {	switch network {	case N.NetworkTCP:		o.logger.InfoContext(ctx, "outbound connection to ", destination)	case N.NetworkUDP:		o.logger.InfoContext(ctx, "outbound packet connection to ", destination)	}	if destination.IsFqdn() {		destinationAddresses, err := o.dnsRouter.Lookup(ctx, destination.Fqdn, adapter.DNSQueryOptions{})		if err != nil {			return nil, err		}		return N.DialSerial(ctx, o.endpoint, network, destination, destinationAddresses)	} else if !destination.Addr.IsValid() {		return nil, E.New("invalid destination: ", destination)	}	return o.endpoint.DialContext(ctx, network, destination)}func (o *Outbound) ListenPacket(ctx context.Context, destination M.Socksaddr) (net.PacketConn, error) {	o.logger.InfoContext(ctx, "outbound packet connection to ", destination)	if destination.IsFqdn() {		destinationAddresses, err := o.dnsRouter.Lookup(ctx, destination.Fqdn, adapter.DNSQueryOptions{})		if err != nil {			return nil, err		}		packetConn, _, err := N.ListenSerial(ctx, o.endpoint, destination, destinationAddresses)		if err != nil {			return nil, err		}		return packetConn, err	}	return o.endpoint.ListenPacket(ctx, destination)}
 |