package ss import ( "crypto" "crypto/tls" "crypto/x509" "time" "github.com/go-gost/core/bypass" mdata "github.com/go-gost/core/metadata" "github.com/go-gost/go-shadowsocks2/core" mdutil "github.com/go-gost/x/metadata/util" "github.com/go-gost/x/registry" ) type metadata struct { key string hash string readTimeout time.Duration sniffing bool sniffingTimeout time.Duration sniffingWebsocket bool sniffingWebsocketSampleRate float64 certificate *x509.Certificate privateKey crypto.PrivateKey alpn string mitmBypass bypass.Bypass users []core.UserConfig } func (h *ssHandler) parseMetadata(md mdata.Metadata) (err error) { h.md.readTimeout = mdutil.GetDuration(md, "readTimeout") if h.md.readTimeout <= 0 { h.md.readTimeout = 15 * time.Second } usersMap := mdutil.GetStringMapString(md, "users") for name, pass := range usersMap { h.md.users = append(h.md.users, core.UserConfig{ Name: name, Password: pass, }) } h.md.key = mdutil.GetString(md, "key") h.md.hash = mdutil.GetString(md, "hash") h.md.sniffing = mdutil.GetBool(md, "sniffing") h.md.sniffingTimeout = mdutil.GetDuration(md, "sniffing.timeout") h.md.sniffingWebsocket = mdutil.GetBool(md, "sniffing.websocket") h.md.sniffingWebsocketSampleRate = mdutil.GetFloat(md, "sniffing.websocket.sampleRate") certFile := mdutil.GetString(md, "mitm.certFile", "mitm.caCertFile") keyFile := mdutil.GetString(md, "mitm.keyFile", "mitm.caKeyFile") if certFile != "" && keyFile != "" { tlsCert, err := tls.LoadX509KeyPair(certFile, keyFile) if err != nil { return err } h.md.certificate, err = x509.ParseCertificate(tlsCert.Certificate[0]) if err != nil { return err } h.md.privateKey = tlsCert.PrivateKey } h.md.alpn = mdutil.GetString(md, "mitm.alpn") h.md.mitmBypass = registry.BypassRegistry().Get(mdutil.GetString(md, "mitm.bypass")) return }