mirror of
https://github.com/cedar2025/Xboard.git
synced 2025-01-22 10:38:14 -05:00
d3bc8ff8fe
Some checks are pending
Docker Build and Publish / build (push) Waiting to run
Update websocket settings
325 lines
13 KiB
PHP
325 lines
13 KiB
PHP
<?php
|
|
namespace App\Protocols;
|
|
|
|
use App\Utils\Helper;
|
|
|
|
class SingBox
|
|
{
|
|
public $flag = 'sing-box,hiddify';
|
|
private $servers;
|
|
private $user;
|
|
private $config;
|
|
|
|
public function __construct($user, $servers, array $options = null)
|
|
{
|
|
$this->user = $user;
|
|
$this->servers = $servers;
|
|
}
|
|
|
|
public function handle()
|
|
{
|
|
$appName = admin_setting('app_name', 'XBoard');
|
|
$this->config = $this->loadConfig();
|
|
$this->buildOutbounds();
|
|
$this->buildRule();
|
|
$user = $this->user;
|
|
|
|
return response()
|
|
->json($this->config)
|
|
->header('profile-title', 'base64:'. base64_encode($appName))
|
|
->header('subscription-userinfo', "upload={$user['u']}; download={$user['d']}; total={$user['transfer_enable']}; expire={$user['expired_at']}")
|
|
->header('profile-update-interval', '24');
|
|
}
|
|
|
|
protected function loadConfig()
|
|
{
|
|
$defaultConfig = base_path('resources/rules/default.sing-box.json');
|
|
$customConfig = base_path('resources/rules/custom.sing-box.json');
|
|
$jsonData = file_exists($customConfig) ? file_get_contents($customConfig) : file_get_contents($defaultConfig);
|
|
|
|
return json_decode($jsonData, true);
|
|
}
|
|
|
|
protected function buildOutbounds()
|
|
{
|
|
$outbounds = $this->config['outbounds'];
|
|
$proxies = [];
|
|
foreach ($this->servers as $item) {
|
|
if ($item['type'] === 'shadowsocks') {
|
|
$ssConfig = $this->buildShadowsocks($item['password'], $item);
|
|
$proxies[] = $ssConfig;
|
|
}
|
|
if ($item['type'] === 'trojan') {
|
|
$trojanConfig = $this->buildTrojan($this->user['uuid'], $item);
|
|
$proxies[] = $trojanConfig;
|
|
}
|
|
if ($item['type'] === 'vmess') {
|
|
$vmessConfig = $this->buildVmess($this->user['uuid'], $item);
|
|
$proxies[] = $vmessConfig;
|
|
}
|
|
if ($item['type'] === 'vless') {
|
|
$vlessConfig = $this->buildVless($this->user['uuid'], $item);
|
|
$proxies[] = $vlessConfig;
|
|
}
|
|
if ($item['type'] === 'hysteria') {
|
|
$hysteriaConfig = $this->buildHysteria($this->user['uuid'], $item, $this->user);
|
|
$proxies[] = $hysteriaConfig;
|
|
}
|
|
}
|
|
foreach ($outbounds as &$outbound) {
|
|
if (in_array($outbound['type'], ['urltest', 'selector'])) {
|
|
array_push($outbound['outbounds'], ...array_column($proxies, 'tag'));
|
|
}
|
|
}
|
|
|
|
$outbounds = array_merge($outbounds, $proxies);
|
|
$this->config['outbounds'] = $outbounds;
|
|
return $outbounds;
|
|
}
|
|
|
|
/**
|
|
* Build rule
|
|
*/
|
|
protected function buildRule(){
|
|
$rules = $this->config['route']['rules'];
|
|
// Force the nodes ip to be a direct rule
|
|
array_unshift($rules, [
|
|
'ip_cidr' => collect($this->servers)->pluck('host')->map(function($host){
|
|
return filter_var($host, FILTER_VALIDATE_IP) ? [$host] : Helper::getIpByDomainName($host);
|
|
})->flatten()->unique()->values(),
|
|
'outbound' => 'direct',
|
|
]);
|
|
$this->config['route']['rules'] = $rules;
|
|
}
|
|
|
|
protected function buildShadowsocks($password, $server)
|
|
{
|
|
$array = [];
|
|
$array['tag'] = $server['name'];
|
|
$array['type'] = 'shadowsocks';
|
|
$array['server'] = $server['host'];
|
|
$array['server_port'] = $server['port'];
|
|
$array['method'] = $server['cipher'];
|
|
$array['password'] = $password;
|
|
|
|
return $array;
|
|
}
|
|
|
|
|
|
protected function buildVmess($uuid, $server)
|
|
{
|
|
$array = [];
|
|
$array['tag'] = $server['name'];
|
|
$array['type'] = 'vmess';
|
|
$array['server'] = $server['host'];
|
|
$array['server_port'] = $server['port'];
|
|
$array['uuid'] = $uuid;
|
|
$array['security'] = 'auto';
|
|
$array['alter_id'] = 0;
|
|
$array['transport'] = [];
|
|
|
|
if ($server['tls']) {
|
|
$tlsConfig = [];
|
|
$tlsConfig['enabled'] = true;
|
|
if ($server['tlsSettings']) {
|
|
$tlsSettings = $server['tlsSettings'] ?? [];
|
|
$tlsConfig['insecure'] = $tlsSettings['allowInsecure'] ? true : false;
|
|
$tlsConfig['server_name'] = $tlsSettings['serverName'] ?? null;
|
|
}
|
|
$array['tls'] = $tlsConfig;
|
|
}
|
|
if ($server['network'] === 'tcp') {
|
|
$tcpSettings = $server['networkSettings'];
|
|
if (isset($tcpSettings['header']['type']) && $tcpSettings['header']['type'] == 'http')
|
|
$array['transport']['type'] = $tcpSettings['header']['type'];
|
|
if (isset($tcpSettings['header']['request']['path'][0])) {
|
|
$paths = $tcpSettings['header']['request']['path'];
|
|
$array['transport']['path'] = $paths[array_rand($paths)];
|
|
}
|
|
if (isset($tcpSettings['header']['request']['headers']['Host'][0])) {
|
|
$hosts = $tcpSettings['header']['request']['headers']['Host'];
|
|
$array['transport']['host'] = $hosts;
|
|
}
|
|
}
|
|
if ($server['network'] === 'ws') {
|
|
$array['transport']['type'] = 'ws';
|
|
if ($server['networkSettings']) {
|
|
$wsSettings = $server['networkSettings'];
|
|
if (isset($wsSettings['path']) && !empty($wsSettings['path']))
|
|
$array['transport']['path'] = $wsSettings['path'];
|
|
if (isset($wsSettings['headers']['Host']) && !empty($wsSettings['headers']['Host']))
|
|
$array['transport']['headers'] = ['Host' => array($wsSettings['headers']['Host'])];
|
|
$array['transport']['max_early_data'] = 2560;
|
|
$array['transport']['early_data_header_name'] = 'Sec-WebSocket-Protocol';
|
|
}
|
|
}
|
|
if ($server['network'] === 'grpc') {
|
|
$array['transport']['type'] = 'grpc';
|
|
if ($server['networkSettings']) {
|
|
$grpcSettings = $server['networkSettings'];
|
|
if (isset($grpcSettings['serviceName']))
|
|
$array['transport']['service_name'] = $grpcSettings['serviceName'];
|
|
}
|
|
}
|
|
|
|
return $array;
|
|
}
|
|
|
|
protected function buildVless($password, $server)
|
|
{
|
|
$array = [
|
|
"type" => "vless",
|
|
"tag" => $server['name'],
|
|
"server" => $server['host'],
|
|
"server_port" => $server['port'],
|
|
"uuid" => $password,
|
|
"packet_encoding" => "xudp"
|
|
];
|
|
|
|
$tlsSettings = $server['tls_settings'] ?? [];
|
|
|
|
if ($server['tls']) {
|
|
$tlsConfig = [];
|
|
$tlsConfig['enabled'] = true;
|
|
$array['flow'] = !empty($server['flow']) ? $server['flow'] : "";
|
|
$tlsSettings = $server['tls_settings'] ?? [];
|
|
if ($server['tls_settings']) {
|
|
$tlsConfig['insecure'] = isset($tlsSettings['allow_insecure']) && $tlsSettings['allow_insecure'] == 1 ? true : false;
|
|
$tlsConfig['server_name'] = $tlsSettings['server_name'] ?? null;
|
|
if ($server['tls'] == 2) {
|
|
$tlsConfig['reality'] = [
|
|
'enabled' => true,
|
|
'public_key' => $tlsSettings['public_key'],
|
|
'short_id' => $tlsSettings['short_id']
|
|
];
|
|
}
|
|
$fingerprints = ['chrome', 'firefox', 'safari', 'ios', 'edge', 'qq'];
|
|
$tlsConfig['utls'] = [
|
|
"enabled" => true,
|
|
"fingerprint" => $fingerprints[array_rand($fingerprints)]
|
|
];
|
|
}
|
|
$array['tls'] = $tlsConfig;
|
|
}
|
|
|
|
if ($server['network'] === 'tcp') {
|
|
$tcpSettings = $server['network_settings'];
|
|
if (isset($tcpSettings['header']['type']) && $tcpSettings['header']['type'] == 'http')
|
|
$array['transport']['type'] = $tcpSettings['header']['type'];
|
|
if (isset($tcpSettings['header']['request']['path']))
|
|
$array['transport']['path'] = $tcpSettings['header']['request']['path'];
|
|
}
|
|
if ($server['network'] === 'ws') {
|
|
$array['transport']['type'] = 'ws';
|
|
if ($server['network_settings']) {
|
|
$wsSettings = $server['network_settings'];
|
|
if (isset($wsSettings['path']) && !empty($wsSettings['path']))
|
|
$array['transport']['path'] = $wsSettings['path'];
|
|
if (isset($wsSettings['headers']['Host']) && !empty($wsSettings['headers']['Host']))
|
|
$array['transport']['headers'] = ['Host' => array($wsSettings['headers']['Host'])];
|
|
$array['transport']['max_early_data'] = 2560;
|
|
$array['transport']['early_data_header_name'] = 'Sec-WebSocket-Protocol';
|
|
}
|
|
}
|
|
if ($server['network'] === 'grpc') {
|
|
$array['transport']['type'] = 'grpc';
|
|
if ($server['network_settings']) {
|
|
$grpcSettings = $server['network_settings'];
|
|
if (isset($grpcSettings['serviceName']))
|
|
$array['transport']['service_name'] = $grpcSettings['serviceName'];
|
|
}
|
|
}
|
|
if ($server['network'] === 'h2') {
|
|
$array['transport']['type'] = 'http';
|
|
if ($server['network_settings']) {
|
|
$h2Settings = $server['network_settings'];
|
|
if (isset($h2Settings['host']))
|
|
$array['transport']['host'] = array($h2Settings['host']);
|
|
if (isset($h2Settings['path']))
|
|
$array['transport']['path'] = $h2Settings['path'];
|
|
}
|
|
}
|
|
|
|
return $array;
|
|
}
|
|
|
|
protected function buildTrojan($password, $server)
|
|
{
|
|
$array = [];
|
|
$array['tag'] = $server['name'];
|
|
$array['type'] = 'trojan';
|
|
$array['server'] = $server['host'];
|
|
$array['server_port'] = $server['port'];
|
|
$array['password'] = $password;
|
|
|
|
$array['tls'] = [
|
|
'enabled' => true,
|
|
'insecure' => $server['allow_insecure'] ? true : false,
|
|
'server_name' => $server['server_name']
|
|
];
|
|
|
|
if (isset($server['network']) && in_array($server['network'], ["grpc", "ws"])) {
|
|
$array['transport']['type'] = $server['network'];
|
|
// grpc配置
|
|
if ($server['network'] === "grpc" && isset($server['network_settings']['serviceName'])) {
|
|
$array['transport']['service_name'] = $server['network_settings']['serviceName'];
|
|
}
|
|
// ws配置
|
|
if ($server['network'] === "ws") {
|
|
if (isset($server['network_settings']['path'])) {
|
|
$array['transport']['path'] = $server['network_settings']['path'];
|
|
}
|
|
if (isset($server['network_settings']['headers']['Host'])) {
|
|
$array['transport']['headers'] = ['Host' => array($server['network_settings']['headers']['Host'])];
|
|
}
|
|
$array['transport']['max_early_data'] = 2560;
|
|
$array['transport']['early_data_header_name'] = 'Sec-WebSocket-Protocol';
|
|
}
|
|
}
|
|
;
|
|
|
|
return $array;
|
|
}
|
|
|
|
protected function buildHysteria($password, $server, $user)
|
|
{
|
|
$array = [
|
|
'server' => $server['host'],
|
|
'server_port' => $server['port'],
|
|
'tls' => [
|
|
'enabled' => true,
|
|
'insecure' => $server['insecure'] ? true : false,
|
|
'server_name' => $server['server_name']
|
|
]
|
|
];
|
|
|
|
if (is_null($server['version']) || $server['version'] == 1) {
|
|
$array['auth_str'] = $password;
|
|
$array['tag'] = $server['name'];
|
|
$array['type'] = 'hysteria';
|
|
$array['up_mbps'] = $user->speed_limit ? min($server['down_mbps'], $user->speed_limit) : $server['down_mbps'];
|
|
$array['down_mbps'] = $user->speed_limit ? min($server['up_mbps'], $user->speed_limit) : $server['up_mbps'];
|
|
if ($server['is_obfs']) {
|
|
$array['obfs'] = $server['server_key'];
|
|
}
|
|
|
|
$array['disable_mtu_discovery'] = true;
|
|
|
|
} elseif ($server['version'] == 2) {
|
|
$array['password'] = $password;
|
|
$array['tag'] = $server['name'];
|
|
$array['type'] = 'hysteria2';
|
|
$array['password'] = $password;
|
|
$array['up_mbps'] = $user->speed_limit ? min($server['down_mbps'], $user->speed_limit) : $server['down_mbps'];
|
|
$array['down_mbps'] = $user->speed_limit ? min($server['up_mbps'], $user->speed_limit) : $server['up_mbps'];
|
|
|
|
if ($server['is_obfs']) {
|
|
$array['obfs']['type'] = 'salamander';
|
|
$array['obfs']['password'] = $server['server_key'];
|
|
}
|
|
}
|
|
|
|
return $array;
|
|
}
|
|
}
|