mirrors/hysteria
1
0
Fork 0
mirror of https://github.com/apernet/hysteria.git synced 2025-04-03 04:27:39 +03:00
Code Issues Projects Releases Packages Wiki Activity
hysteria/app/cmd/client.go
tobyxdd 9f54aade8f hysteria 2 prototype first public release
2023-05-25 20:24:24 -07:00

216 lines
6 KiB
Go
Raw Blame History

package cmd
import (
"crypto/x509"
"errors"
"net"
"os"
"sync"
"github.com/spf13/cobra"
"github.com/spf13/viper"
"go.uber.org/zap"
"github.com/apernet/hysteria/app/internal/socks5"
"github.com/apernet/hysteria/core/client"
)
var clientCmd = &cobra.Command{
Use: "client",
Short: "Client mode",
Run: runClient,
}
var modeMap = map[string]func(*viper.Viper, client.Client) error{
"socks5": clientSOCKS5,
}
func init() {
rootCmd.AddCommand(clientCmd)
}
func runClient(cmd *cobra.Command, args []string) {
logger.Info("client mode")
if err := viper.ReadInConfig(); err != nil {
logger.Fatal("failed to read client config", zap.Error(err))
}
config, err := viperToClientConfig()
if err != nil {
logger.Fatal("failed to parse client config", zap.Error(err))
}
c, err := client.NewClient(config)
if err != nil {
logger.Fatal("failed to initialize client", zap.Error(err))
}
defer c.Close()
var wg sync.WaitGroup
hasMode := false
for mode, f := range modeMap {
v := viper.Sub(mode)
if v != nil {
hasMode = true
wg.Add(1)
go func() {
defer wg.Done()
if err := f(v, c); err != nil {
logger.Fatal("failed to run mode", zap.String("mode", mode), zap.Error(err))
}
}()
}
}
if !hasMode {
logger.Fatal("no mode specified")
}
wg.Wait()
}
func viperToClientConfig() (*client.Config, error) {
// Conn and address
addrStr := viper.GetString("server")
if addrStr == "" {
return nil, configError{Field: "server", Err: errors.New("server address is empty")}
}
addrStr = completeServerAddrString(addrStr)
addr, err := net.ResolveUDPAddr("udp", addrStr)
if err != nil {
return nil, configError{Field: "server", Err: err}
}
sni := viper.GetString("sni")
if sni == "" {
sni = addrStr
}
// TLS
tlsConfig, err := viperToClientTLSConfig()
if err != nil {
return nil, err
}
// QUIC
quicConfig := viperToClientQUICConfig()
// Bandwidth
bwConfig, err := viperToClientBandwidthConfig()
if err != nil {
return nil, err
}
return &client.Config{
ConnFactory: nil, // TODO
ServerAddr: addr,
ServerName: sni,
Auth: viper.GetString("auth"),
TLSConfig: tlsConfig,
QUICConfig: quicConfig,
BandwidthConfig: bwConfig,
FastOpen: viper.GetBool("fastOpen"),
}, nil
}
func viperToClientTLSConfig() (client.TLSConfig, error) {
config := client.TLSConfig{
InsecureSkipVerify: viper.GetBool("tls.insecure"),
}
caPath := viper.GetString("tls.ca")
if caPath != "" {
ca, err := os.ReadFile(caPath)
if err != nil {
return client.TLSConfig{}, configError{Field: "tls.ca", Err: err}
}
pool := x509.NewCertPool()
if !pool.AppendCertsFromPEM(ca) {
return client.TLSConfig{}, configError{Field: "tls.ca", Err: errors.New("failed to parse CA certificate")}
}
config.RootCAs = pool
}
return config, nil
}
func viperToClientQUICConfig() client.QUICConfig {
return client.QUICConfig{
InitialStreamReceiveWindow: viper.GetUint64("quic.initStreamReceiveWindow"),
MaxStreamReceiveWindow: viper.GetUint64("quic.maxStreamReceiveWindow"),
InitialConnectionReceiveWindow: viper.GetUint64("quic.initConnReceiveWindow"),
MaxConnectionReceiveWindow: viper.GetUint64("quic.maxConnReceiveWindow"),
MaxIdleTimeout: viper.GetDuration("quic.maxIdleTimeout"),
KeepAlivePeriod: viper.GetDuration("quic.keepAlivePeriod"),
DisablePathMTUDiscovery: viper.GetBool("quic.disablePathMTUDiscovery"),
}
}
func viperToClientBandwidthConfig() (client.BandwidthConfig, error) {
bw := client.BandwidthConfig{}
upStr, downStr := viper.GetString("bandwidth.up"), viper.GetString("bandwidth.down")
if upStr == "" || downStr == "" {
return client.BandwidthConfig{}, configError{Field: "bandwidth", Err: errors.New("bandwidth.up and bandwidth.down must be set")}
}
up, err := convBandwidth(upStr)
if err != nil {
return client.BandwidthConfig{}, configError{Field: "bandwidth.up", Err: err}
}
down, err := convBandwidth(downStr)
if err != nil {
return client.BandwidthConfig{}, configError{Field: "bandwidth.down", Err: err}
}
bw.MaxTx, bw.MaxRx = up, down
return bw, nil
}
func clientSOCKS5(v *viper.Viper, c client.Client) error {
listenAddr := v.GetString("listen")
if listenAddr == "" {
return configError{Field: "listen", Err: errors.New("listen address is empty")}
}
l, err := net.Listen("tcp", listenAddr)
if err != nil {
return configError{Field: "listen", Err: err}
}
var authFunc func(username, password string) bool
username, password := v.GetString("username"), v.GetString("password")
if username != "" && password != "" {
authFunc = func(username, password string) bool {
return username == username && password == password
}
}
s := socks5.Server{
HyClient: c,
AuthFunc: authFunc,
DisableUDP: viper.GetBool("disableUDP"),
EventLogger: &socks5Logger{},
}
logger.Info("SOCKS5 server listening", zap.String("addr", listenAddr))
return s.Serve(l)
}
func completeServerAddrString(addrStr string) string {
if _, _, err := net.SplitHostPort(addrStr); err != nil {
// No port provided, use default HTTPS port
return net.JoinHostPort(addrStr, "443")
}
return addrStr
}
type socks5Logger struct{}
func (l *socks5Logger) TCPRequest(addr net.Addr, reqAddr string) {
logger.Debug("SOCKS5 TCP request", zap.String("addr", addr.String()), zap.String("reqAddr", reqAddr))
}
func (l *socks5Logger) TCPError(addr net.Addr, reqAddr string, err error) {
if err == nil {
logger.Debug("SOCKS5 TCP closed", zap.String("addr", addr.String()), zap.String("reqAddr", reqAddr))
} else {
logger.Error("SOCKS5 TCP error", zap.String("addr", addr.String()), zap.String("reqAddr", reqAddr), zap.Error(err))
}
}
func (l *socks5Logger) UDPRequest(addr net.Addr) {
logger.Debug("SOCKS5 UDP request", zap.String("addr", addr.String()))
}
func (l *socks5Logger) UDPError(addr net.Addr, err error) {
if err == nil {
logger.Debug("SOCKS5 UDP closed", zap.String("addr", addr.String()))
} else {
logger.Error("SOCKS5 UDP error", zap.String("addr", addr.String()), zap.Error(err))
}
}
Reference in a new issue View git blame Copy permalink