Mirror/podkop
1
0
Fork 0
mirror of https://github.com/itdoginfo/podkop.git synced 2025-12-18 21:48:16 +03:00
Code Issues Packages Projects Releases Wiki Activity

refactor: Optimize configuration generation

Browse Source
This commit is contained in:
Ivan K
2024-11-30 14:41:24 +03:00
parent 10d74c6a6b
commit 3c6e8366e1
1 changed files with 203 additions and 75 deletions
Download Patch File Download Diff File Expand all files Collapse all files

278
podkop/files/etc/init.d/podkop
View File

@@ -826,36 +826,61 @@ sing_box_config_shadowsocks() {
local STRING="$1" local STRING="$1"
local listen_port="$2" local listen_port="$2"
local encrypted_part=$(echo "$STRING" | cut -d'/' -f3 | cut -d'@' -f1 | base64 --decode) # Определяем тип SS (2022 или old) по наличию : в base64 части
local method=$(echo "$encrypted_part" | cut -d':' -f1) if echo "$STRING" | cut -d'/' -f3 | cut -d'@' -f1 | base64 -d 2>/dev/null | grep -q ":"; then
local password=$(echo "$encrypted_part" | cut -d':' -f2-) # Old SS format
local encrypted_part=$(echo "$STRING" | cut -d'/' -f3 | cut -d'@' -f1 | base64 --decode)
local method=$(echo "$encrypted_part" | cut -d':' -f1)
local password=$(echo "$encrypted_part" | cut -d':' -f2-)
else
# SS 2022 format
local method_and_password=$(echo "$STRING" | cut -d'/' -f3 | cut -d'@' -f1)
local method=$(echo "$method_and_password" | cut -d':' -f1)
local password=$(echo "$method_and_password" | cut -d':' -f2- | sed 's/%3D/=/g')
# Если method в base64, декодируем
if echo "$method" | base64 -d &>/dev/null; then
method=$(echo "$method" | base64 -d)
fi
fi
local server=$(echo "$STRING" | cut -d'@' -f2 | cut -d':' -f1) local server=$(echo "$STRING" | cut -d'@' -f2 | cut -d':' -f1)
local port=$(echo "$STRING" | sed -n 's|.*:\([0-9]\+\).*|\1|p') local port=$(echo "$STRING" | sed -n 's|.*:\([0-9]\+\).*|\1|p')
local label=$(echo "$STRING" | cut -d'#' -f2)
template_config="/etc/podkop/sing-box-shadowsocks-template.json" # Create base config
cat > /tmp/ss_config.json << EOF
{
"log": {
"level": "warn"
},
"inbounds": [
{
"type": "tproxy",
"listen": "::",
"listen_port": $listen_port,
"sniff": false
}
],
"outbounds": [
{
"type": "shadowsocks",
"server": "$server",
"server_port": $port,
"method": "$method",
"password": "$password",
"udp_over_tcp": {
"enabled": true,
"version": 2
}
}
],
"route": {
"auto_detect_interface": true
}
}
EOF
jq --arg server "$server" \ mv /tmp/ss_config.json /etc/sing-box/config.json
--arg port "$port" \
--arg method "$method" \
--arg password "$password" \
--arg listen_port "$listen_port" \
'.inbounds[] |=
if .type == "tproxy" then
.listen_port = ($listen_port | tonumber)
else
.
end |
.outbounds[] |=
if .type == "shadowsocks" then
.server = $server |
.server_port = ($port | tonumber) |
.method = $method |
.password = $password
else
.
end' "$template_config" >/etc/sing-box/config.json
} }
sing_box_config_vless() { sing_box_config_vless() {
@@ -863,68 +888,171 @@ sing_box_config_vless() {
local listen_port="$2" local listen_port="$2"
get_param() { get_param() {
echo "$STRING" | sed -n "s/.*[?&]$1=\([^&?#]*\).*/\1/p" local param="$1"
local value=$(echo "$STRING" | sed -n "s/.*[?&]$param=\([^&?#]*\).*/\1/p" | sed 's/%2F/\//g; s/%2C/,/g; s/%3D/=/g')
echo "$value"
} }
# Extract basic parameters
uuid=$(echo "$STRING" | cut -d'/' -f3 | cut -d'@' -f1) uuid=$(echo "$STRING" | cut -d'/' -f3 | cut -d'@' -f1)
server=$(echo "$STRING" | cut -d'@' -f2 | cut -d':' -f1) server=$(echo "$STRING" | cut -d'@' -f2 | cut -d':' -f1)
port=$(echo "$STRING" | cut -d'@' -f2 | cut -d':' -f2 | cut -d'?' -f1 | awk -F'/' '{print $1}') port=$(echo "$STRING" | cut -d'@' -f2 | cut -d':' -f2 | cut -d'?' -f1 | cut -d'/' -f1)
# Get all possible parameters
type=$(get_param "type") type=$(get_param "type")
flow=$(get_param "flow") security=$(get_param "security")
sni=$(get_param "sni") sni=$(get_param "sni")
fp=$(get_param "fp") fp=$(get_param "fp")
security=$(get_param "security") flow=$(get_param "flow")
# Reality specific
pbk=$(get_param "pbk") pbk=$(get_param "pbk")
sid=$(get_param "sid") sid=$(get_param "sid")
encoding=$(get_param "packetEncoding")
alpn=$(echo "$(get_param "alpn" | sed 's/%2C/,/g; s/%2F/\//g')" | jq -R -s -c 'split(",")' | sed 's/\\n//g')
label=$(echo "$STRING" | cut -d'#' -f2)
template_config="/etc/podkop/sing-box-vless-template.json" # TLS specific
alpn=$(get_param "alpn")
if [ -z "$alpn" ]; then
alpn="h2,http/1.1"
fi
alpn_json=$(echo "$alpn" | tr ',' '\n' | jq -R . | jq -s .)
jq --arg server "$server" \ # WebSocket specific
--arg port "$port" \ path=$(get_param "path")
--arg uuid "$uuid" \ host=$(get_param "host")
--arg type "$type" \
--arg flow "$flow" \ # Create base config
--arg sni "$sni" \ cat > /tmp/vless_config.json << EOF
--arg fp "$fp" \ {
--arg security "$security" \ "log": {
--arg pbk "$pbk" \ "level": "warn"
--arg sid "$sid" \ },
--argjson alpn "$alpn" \ "inbounds": [
--arg encoding "$encoding" \ {
--arg listen_port "$listen_port" \ "type": "tproxy",
'.inbounds[] |= "listen": "::",
if .type == "tproxy" then "listen_port": $listen_port,
.listen_port = ($listen_port | tonumber) "sniff": false
else }
. ],
end | "outbounds": [
.outbounds[] |= {
(.server = $server | "type": "vless",
.server_port = ($port | tonumber) | "server": "$server",
.uuid = $uuid | "server_port": $port,
if $security == "reality" then "uuid": "$uuid"
if $flow == "" then del(.flow) else .flow = $flow end | EOF
if $encoding == "" then del(.packet_encoding) else .packet_encoding = $encoding end |
.tls.server_name = $sni | # Add transport configuration if needed
.tls.utls.fingerprint = $fp | if [ "$type" = "ws" ]; then
.tls.reality.public_key = $pbk | cat >> /tmp/vless_config.json << EOF
.tls.reality.short_id = $sid ,
elif $security == "tls" then "transport": {
.tls.alpn = $alpn | "type": "ws",
.tls.server_name = $sni | "path": "$path"
del(.flow) | EOF
del(.tls.utls) | if [ -n "$host" ]; then
del(.tls.reality) cat >> /tmp/vless_config.json << EOF
elif $security == "" or $security == "none" then ,
del(.flow) | "headers": {
del(.tls) "Host": "$host"
else }
. EOF
end)' "$template_config" >/etc/sing-box/config.json fi
echo " }" >> /tmp/vless_config.json
elif [ "$type" = "grpc" ]; then
cat >> /tmp/vless_config.json << EOF
,
"transport": {
"type": "grpc"
}
EOF
fi
# Add security configuration
if [ "$security" = "reality" ]; then
if [ -n "$flow" ]; then
echo " ,\"flow\": \"$flow\"" >> /tmp/vless_config.json
fi
cat >> /tmp/vless_config.json << EOF
,
"tls": {
"enabled": true,
"server_name": "$sni",
"utls": {
"enabled": true,
"fingerprint": "$fp"
},
"reality": {
"enabled": true,
"public_key": "$pbk",
"short_id": "$sid"
}
}
EOF
elif [ "$security" = "tls" ]; then
if [ -n "$flow" ]; then
echo " ,\"flow\": \"$flow\"" >> /tmp/vless_config.json
fi
cat >> /tmp/vless_config.json << EOF
,
"tls": {
"enabled": true,
"server_name": "$sni",
"insecure": $([ "$(get_param 'allowInsecure')" = "1" ] && echo "true" || echo "false"),
"utls": {
"enabled": true,
"fingerprint": "$fp"
}
EOF
if [ -n "$alpn" ]; then
echo " ,\"alpn\": $alpn_json" >> /tmp/vless_config.json
fi
echo " }" >> /tmp/vless_config.json
fi
# Close outbound and add route
cat >> /tmp/vless_config.json << EOF
}
],
"route": {
"auto_detect_interface": true
}
}
EOF
mv /tmp/vless_config.json /etc/sing-box/config.json
}
sing_box_config_outbound_json() {
local json_config="$1"
local listen_port="$2"
# Create temporary file with base config structure
cat > /tmp/base_config.json << EOF
{
"log": {
"level": "warn"
},
"inbounds": [
{
"type": "tproxy",
"listen": "::",
"listen_port": $listen_port,
"sniff": false
}
],
"outbounds": [],
"route": {
"auto_detect_interface": true
}
}
EOF
# Add the outbound config using jq
jq --argjson outbound "$json_config" '.outbounds += [$outbound]' /tmp/base_config.json > /etc/sing-box/config.json
# Cleanup
rm -f /tmp/base_config.json
} }
sing_box_config_outbound_shadowsocks() { sing_box_config_outbound_shadowsocks() {