Search in sources :

Example 1 with ShadowsocksServer

use of org.rx.net.shadowsocks.ShadowsocksServer in project rxlib by RockyLOMO.

the class Main method main.

@SneakyThrows
public static void main(String[] args) {
    Map<String, String> options = App.argsOptions(args);
    Integer port = Reflects.tryConvert(options.get("port"), Integer.class);
    if (port == null) {
        log.info("Invalid port arg");
        return;
    }
    Main app;
    Integer connectTimeout = Reflects.tryConvert(options.get("connectTimeout"), Integer.class, 60000);
    String mode = options.get("shadowMode");
    boolean udp2raw = false;
    if (eq(mode, "1")) {
        AuthenticEndpoint shadowUser = Reflects.tryConvert(options.get("shadowUser"), AuthenticEndpoint.class);
        if (shadowUser == null) {
            log.info("Invalid shadowUser arg");
            return;
        }
        SocksUser ssUser = new SocksUser(shadowUser.getUsername());
        ssUser.setPassword(shadowUser.getPassword());
        ssUser.setMaxIpCount(-1);
        SocksConfig backConf = new SocksConfig(port);
        backConf.setTransportFlags(TransportFlags.FRONTEND_COMPRESS.flags());
        backConf.setMemoryMode(MemoryMode.MEDIUM);
        backConf.setConnectTimeoutMillis(connectTimeout);
        backConf.setEnableUdp2raw(udp2raw);
        SocksProxyServer backSvr = new SocksProxyServer(backConf, (u, p) -> eq(u, ssUser.getUsername()) && eq(p, ssUser.getPassword()) ? ssUser : SocksUser.ANONYMOUS);
        backSvr.setAesRouter(SocksProxyServer.DNS_AES_ROUTER);
        // server port + 1 = rpc
        RpcServerConfig rpcConf = new RpcServerConfig(port + 1);
        rpcConf.setTransportFlags(TransportFlags.FRONTEND_AES_COMBO.flags());
        Remoting.listen(app = new Main(backSvr), rpcConf);
    } else {
        String[] arg1 = Strings.split(options.get("shadowUsers"), ",");
        if (arg1.length == 0) {
            log.info("Invalid shadowUsers arg");
            return;
        }
        RandomList<UpstreamSupport> shadowServers = new RandomList<>();
        SocksConfig frontConf = new SocksConfig(port);
        YamlConfiguration watcher = new YamlConfiguration("conf.yml").enableWatch();
        watcher.onChanged.combine((s, e) -> {
            SSConf changed = s.readAs(SSConf.class);
            if (changed == null) {
                return;
            }
            conf = changed;
            NQuery<AuthenticEndpoint> svrs = NQuery.of(conf.shadowServer).select(p -> Reflects.tryConvert(p, AuthenticEndpoint.class));
            if (!svrs.any() || svrs.any(Objects::isNull)) {
                throw new InvalidException("Invalid shadowServer arg");
            }
            for (UpstreamSupport support : shadowServers) {
                tryClose(support.getSupport());
            }
            shadowServers.clear();
            for (AuthenticEndpoint shadowServer : svrs) {
                RpcClientConfig rpcConf = RpcClientConfig.poolMode(Sockets.newEndpoint(shadowServer.getEndpoint(), shadowServer.getEndpoint().getPort() + 1), 2, 6);
                rpcConf.setTransportFlags(TransportFlags.BACKEND_AES_COMBO.flags());
                String weight = shadowServer.getParameters().get("w");
                if (Strings.isEmpty(weight)) {
                    continue;
                }
                shadowServers.add(new UpstreamSupport(shadowServer, Remoting.create(SocksSupport.class, rpcConf)), Integer.parseInt(weight));
            }
            log.info("reload svrs {}", toJsonString(svrs));
            if (conf.bypassHosts != null) {
                frontConf.getBypassList().addAll(conf.bypassHosts);
            }
        });
        watcher.raiseChange();
        NQuery<Tuple<ShadowsocksConfig, SocksUser>> shadowUsers = NQuery.of(arg1).select(shadowUser -> {
            String[] sArgs = Strings.split(shadowUser, ":", 4);
            ShadowsocksConfig config = new ShadowsocksConfig(Sockets.anyEndpoint(Integer.parseInt(sArgs[0])), CipherKind.AES_256_GCM.getCipherName(), sArgs[1]);
            SocksUser user = new SocksUser(sArgs[2]);
            user.setPassword(conf.socksPwd);
            user.setMaxIpCount(Integer.parseInt(sArgs[3]));
            return Tuple.of(config, user);
        });
        Integer shadowDnsPort = Reflects.tryConvert(options.get("shadowDnsPort"), Integer.class, 53);
        DnsServer dnsSvr = new DnsServer(shadowDnsPort);
        // 12 hour
        dnsSvr.setTtl(60 * 60 * 10);
        dnsSvr.setShadowServers(shadowServers);
        dnsSvr.addHostsFile("hosts.txt");
        InetSocketAddress shadowDnsEp = Sockets.localEndpoint(shadowDnsPort);
        Sockets.injectNameService(Collections.singletonList(shadowDnsEp));
        frontConf.setTransportFlags(TransportFlags.BACKEND_COMPRESS.flags());
        frontConf.setMemoryMode(MemoryMode.MEDIUM);
        frontConf.setConnectTimeoutMillis(connectTimeout);
        frontConf.setEnableUdp2raw(conf.udp2raw);
        frontConf.setUdp2rawServers(NQuery.of(shadowServers).select(p -> p.getEndpoint().getEndpoint()).toList());
        if (frontConf.isEnableUdp2raw() && conf.udp2rawEndpoint != null) {
            log.info("udp2rawEndpoint: {}", conf.udp2rawEndpoint);
            AuthenticEndpoint udp2rawSvrEp = AuthenticEndpoint.valueOf(conf.udp2rawEndpoint);
            frontConf.getUdp2rawServers().add(udp2rawSvrEp.getEndpoint());
        }
        SocksProxyServer frontSvr = new SocksProxyServer(frontConf, Authenticator.dbAuth(shadowUsers.select(p -> p.right).toList(), port + 1));
        Upstream shadowDnsUpstream = new Upstream(new UnresolvedEndpoint(shadowDnsEp));
        TripleAction<SocksProxyServer, RouteEventArgs> firstRoute = (s, e) -> {
            UnresolvedEndpoint dstEp = e.getDestinationEndpoint();
            // must first
            if (dstEp.getPort() == SocksSupport.DNS_PORT) {
                e.setValue(shadowDnsUpstream);
                return;
            }
            // bypass
            if (frontConf.isBypass(dstEp.getHost())) {
                e.setValue(new Upstream(dstEp));
            }
        };
        frontSvr.onRoute.replace(firstRoute, (s, e) -> {
            if (e.getValue() != null) {
                return;
            }
            e.setValue(new Socks5Upstream(e.getDestinationEndpoint(), frontConf, () -> shadowServers.next(e.getSourceEndpoint(), conf.steeringTTL, true)));
        });
        frontSvr.onUdpRoute.replace(firstRoute, (s, e) -> {
            if (e.getValue() != null) {
                return;
            }
            UnresolvedEndpoint dstEp = e.getDestinationEndpoint();
            if (conf.pcap2socks && e.getSourceEndpoint().getAddress().isLoopbackAddress()) {
                Cache<String, Boolean> cache = Cache.getInstance(Cache.MEMORY_CACHE);
                if (cache.get(hashKey("pcap", e.getSourceEndpoint().getPort()), k -> Sockets.socketInfos(SocketProtocol.UDP).any(p -> p.getSource().getPort() == e.getSourceEndpoint().getPort() && Strings.startsWith(p.getProcessName(), "pcap2socks")))) {
                    log.info("pcap2socks forward");
                    e.setValue(new Upstream(dstEp));
                    return;
                }
            }
            // if (frontConf.isEnableUdp2raw()) {
            // if (udp2rawSvrEp != null) {
            // e.setValue(new Upstream(dstEp, udp2rawSvrEp));
            // } else {
            // e.setValue(new Upstream(dstEp, shadowServers.next().getEndpoint()));
            // }
            // return;
            // }
            e.setValue(new Socks5UdpUpstream(dstEp, frontConf, () -> shadowServers.next(e.getSourceEndpoint(), conf.steeringTTL, true)));
        });
        frontSvr.setAesRouter(SocksProxyServer.DNS_AES_ROUTER);
        app = new Main(frontSvr);
        Action fn = () -> {
            InetAddress addr = InetAddress.getByName(IPSearcher.DEFAULT.current().getIp());
            eachQuietly(shadowServers, p -> p.getSupport().addWhiteList(addr));
        };
        fn.invoke();
        Tasks.schedule(fn, conf.autoWhiteListSeconds * 1000L);
        InetSocketAddress frontSvrEp = Sockets.localEndpoint(port);
        for (Tuple<ShadowsocksConfig, SocksUser> tuple : shadowUsers) {
            ShadowsocksConfig ssConfig = tuple.left;
            SocksUser user = tuple.right;
            AuthenticEndpoint srvEp = new AuthenticEndpoint(frontSvrEp, user.getUsername(), user.getPassword());
            ssConfig.setMemoryMode(MemoryMode.MEDIUM);
            ssConfig.setConnectTimeoutMillis(connectTimeout);
            SocksConfig directConf = new SocksConfig(port);
            frontConf.setMemoryMode(MemoryMode.MEDIUM);
            frontConf.setConnectTimeoutMillis(connectTimeout);
            ShadowsocksServer server = new ShadowsocksServer(ssConfig);
            TripleAction<ShadowsocksServer, RouteEventArgs> ssFirstRoute = (s, e) -> {
                UnresolvedEndpoint dstEp = e.getDestinationEndpoint();
                // must first
                if (dstEp.getPort() == SocksSupport.DNS_PORT) {
                    e.setValue(shadowDnsUpstream);
                    return;
                }
                // bypass
                if (ssConfig.isBypass(dstEp.getHost())) {
                    log.info("ss bypass: {}", dstEp);
                    e.setValue(new Upstream(dstEp));
                }
            };
            server.onRoute.replace(ssFirstRoute, (s, e) -> {
                if (e.getValue() != null) {
                    return;
                }
                // gateway
                IPAddress ipAddress = awaitQuietly(() -> IPSearcher.DEFAULT.search(e.getDestinationEndpoint().getHost()), SocksSupport.ASYNC_TIMEOUT / 2);
                if (ipAddress != null && ipAddress.isChina()) {
                    e.setValue(new Upstream(e.getDestinationEndpoint()));
                    return;
                }
                e.setValue(new Socks5Upstream(e.getDestinationEndpoint(), directConf, () -> new UpstreamSupport(srvEp, null)));
            });
            server.onUdpRoute.replace(ssFirstRoute, (s, e) -> {
                if (e.getValue() != null) {
                    return;
                }
                e.setValue(new Upstream(e.getDestinationEndpoint(), srvEp));
            });
        }
        app.ddns();
    }
    log.info("Server started..");
    app.await();
}
Also used : DnsServer(org.rx.net.dns.DnsServer) Extends(org.rx.core.Extends) SneakyThrows(lombok.SneakyThrows) RequiredArgsConstructor(lombok.RequiredArgsConstructor) Upstream(org.rx.net.socks.upstream.Upstream) InvalidException(org.rx.exception.InvalidException) DnsClient(org.rx.net.dns.DnsClient) CipherKind(org.rx.net.shadowsocks.encryption.CipherKind) HttpClient(org.rx.net.http.HttpClient) InetAddress(java.net.InetAddress) TripleAction(org.rx.util.function.TripleAction) org.rx.net.socks(org.rx.net.socks) Map(java.util.Map) Socks5UdpUpstream(org.rx.net.socks.upstream.Socks5UdpUpstream) App(org.rx.core.App) org.rx.core(org.rx.core) ShadowsocksConfig(org.rx.net.shadowsocks.ShadowsocksConfig) RandomList(org.rx.bean.RandomList) ShadowsocksServer(org.rx.net.shadowsocks.ShadowsocksServer) org.rx.net.support(org.rx.net.support) Tasks.awaitQuietly(org.rx.core.Tasks.awaitQuietly) InetSocketAddress(java.net.InetSocketAddress) Tuple(org.rx.bean.Tuple) Action(org.rx.util.function.Action) Objects(java.util.Objects) Slf4j(lombok.extern.slf4j.Slf4j) List(java.util.List) RpcClientConfig(org.rx.net.rpc.RpcClientConfig) Data(lombok.Data) Remoting(org.rx.net.rpc.Remoting) SUID(org.rx.bean.SUID) org.rx.net(org.rx.net) RpcServerConfig(org.rx.net.rpc.RpcServerConfig) Socks5Upstream(org.rx.net.socks.upstream.Socks5Upstream) Collections(java.util.Collections) TripleAction(org.rx.util.function.TripleAction) Action(org.rx.util.function.Action) RpcServerConfig(org.rx.net.rpc.RpcServerConfig) InetSocketAddress(java.net.InetSocketAddress) InvalidException(org.rx.exception.InvalidException) RandomList(org.rx.bean.RandomList) RpcClientConfig(org.rx.net.rpc.RpcClientConfig) Upstream(org.rx.net.socks.upstream.Upstream) Socks5UdpUpstream(org.rx.net.socks.upstream.Socks5UdpUpstream) Socks5Upstream(org.rx.net.socks.upstream.Socks5Upstream) ShadowsocksConfig(org.rx.net.shadowsocks.ShadowsocksConfig) ShadowsocksServer(org.rx.net.shadowsocks.ShadowsocksServer) DnsServer(org.rx.net.dns.DnsServer) Socks5UdpUpstream(org.rx.net.socks.upstream.Socks5UdpUpstream) Socks5Upstream(org.rx.net.socks.upstream.Socks5Upstream) InetAddress(java.net.InetAddress) Tuple(org.rx.bean.Tuple) SneakyThrows(lombok.SneakyThrows)

Example 2 with ShadowsocksServer

use of org.rx.net.shadowsocks.ShadowsocksServer in project rxlib by RockyLOMO.

the class SocksTester method ssProxy.

@SneakyThrows
@Test
public void ssProxy() {
    int shadowDnsPort = 853;
    DnsServer dnsSvr = new DnsServer(shadowDnsPort);
    InetSocketAddress shadowDnsEp = Sockets.localEndpoint(shadowDnsPort);
    Upstream shadowDnsUpstream = new Upstream(new UnresolvedEndpoint(shadowDnsEp));
    String defPwd = "123456";
    SocksConfig backConf = new SocksConfig(2080);
    backConf.setEnableUdp2raw(true);
    backConf.setUdp2rawServers(Collections.emptyList());
    SocksUser usr = new SocksUser("rocky");
    usr.setPassword(defPwd);
    usr.setMaxIpCount(-1);
    SocksProxyServer backSvr = new SocksProxyServer(backConf, Authenticator.dbAuth(Collections.singletonList(usr), null));
    AuthenticEndpoint srvEp = new AuthenticEndpoint(Sockets.localEndpoint(backConf.getListenPort()), usr.getUsername(), usr.getPassword());
    ShadowsocksConfig config = new ShadowsocksConfig(Sockets.anyEndpoint(2090), CipherKind.AES_128_GCM.getCipherName(), defPwd);
    ShadowsocksServer server = new ShadowsocksServer(config);
    server.onRoute.combine((s, e) -> {
        UnresolvedEndpoint dstEp = e.getDestinationEndpoint();
        // must first
        if (dstEp.getPort() == SocksSupport.DNS_PORT) {
            e.setValue(shadowDnsUpstream);
            return;
        }
        // bypass
        if (config.isBypass(dstEp.getHost())) {
            e.setValue(new Upstream(dstEp));
            return;
        }
        e.setValue(new Socks5Upstream(dstEp, backConf, () -> new UpstreamSupport(srvEp, null)));
    });
    server.onUdpRoute.combine((s, e) -> {
        UnresolvedEndpoint dstEp = e.getDestinationEndpoint();
        // must first
        if (dstEp.getPort() == SocksSupport.DNS_PORT) {
            e.setValue(shadowDnsUpstream);
        }
        // bypass
        if (config.isBypass(dstEp.getHost())) {
            e.setValue(new Upstream(dstEp));
        }
        e.setValue(new Upstream(dstEp));
    // return new Upstream(dstEp, srvEp);
    });
    // ShadowsocksClient client = new ShadowsocksClient(1080, config);
    System.in.read();
}
Also used : InetSocketAddress(java.net.InetSocketAddress) Upstream(org.rx.net.socks.upstream.Upstream) Socks5UdpUpstream(org.rx.net.socks.upstream.Socks5UdpUpstream) Socks5Upstream(org.rx.net.socks.upstream.Socks5Upstream) ShadowsocksConfig(org.rx.net.shadowsocks.ShadowsocksConfig) ShadowsocksServer(org.rx.net.shadowsocks.ShadowsocksServer) DnsServer(org.rx.net.dns.DnsServer) Socks5Upstream(org.rx.net.socks.upstream.Socks5Upstream) Test(org.junit.jupiter.api.Test) SneakyThrows(lombok.SneakyThrows)

Aggregations

InetSocketAddress (java.net.InetSocketAddress)2 SneakyThrows (lombok.SneakyThrows)2 DnsServer (org.rx.net.dns.DnsServer)2 ShadowsocksConfig (org.rx.net.shadowsocks.ShadowsocksConfig)2 ShadowsocksServer (org.rx.net.shadowsocks.ShadowsocksServer)2 Socks5UdpUpstream (org.rx.net.socks.upstream.Socks5UdpUpstream)2 Socks5Upstream (org.rx.net.socks.upstream.Socks5Upstream)2 Upstream (org.rx.net.socks.upstream.Upstream)2 InetAddress (java.net.InetAddress)1 Collections (java.util.Collections)1 List (java.util.List)1 Map (java.util.Map)1 Objects (java.util.Objects)1 Data (lombok.Data)1 RequiredArgsConstructor (lombok.RequiredArgsConstructor)1 Slf4j (lombok.extern.slf4j.Slf4j)1 Test (org.junit.jupiter.api.Test)1 RandomList (org.rx.bean.RandomList)1 SUID (org.rx.bean.SUID)1 Tuple (org.rx.bean.Tuple)1