Home Explore Help
Sign In
yosoyhendrix
/
Xray-core
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Hide ALPN in ECH

风扇滑翔翼 3 months ago
parent
e6207e3a97
commit
6ca5d991f0
3 changed files with 15 additions and 4 deletions
Split View Show Diff Stats
  1. 1 1
      go.mod
  2. 2 2
      go.sum
  3. 12 1
      transport/internet/tls/tls.go

+ 1 - 1
go.mod
View File 

@@ -13,7 +13,7 @@ require (
 
 	github.com/miekg/dns v1.1.72
 
 	github.com/pelletier/go-toml v1.9.5
 
 	github.com/pires/go-proxyproto v0.11.0
 
-	github.com/refraction-networking/utls v1.8.2
 
+	github.com/refraction-networking/utls v1.8.3-0.20260301010127-aa6edf4b11af
 
 	github.com/sagernet/sing v0.5.1
 
 	github.com/sagernet/sing-shadowsocks v0.2.7
 
 	github.com/stretchr/testify v1.11.1

+ 2 - 2
go.sum
View File 

@@ -51,8 +51,8 @@ github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZb
 
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 
 github.com/quic-go/qpack v0.6.0 h1:g7W+BMYynC1LbYLSqRt8PBg5Tgwxn214ZZR34VIOjz8=
 
 github.com/quic-go/qpack v0.6.0/go.mod h1:lUpLKChi8njB4ty2bFLX2x4gzDqXwUpaO1DP9qMDZII=
 
-github.com/refraction-networking/utls v1.8.2 h1:j4Q1gJj0xngdeH+Ox/qND11aEfhpgoEvV+S9iJ2IdQo=
 
-github.com/refraction-networking/utls v1.8.2/go.mod h1:jkSOEkLqn+S/jtpEHPOsVv/4V4EVnelwbMQl4vCWXAM=
 
+github.com/refraction-networking/utls v1.8.3-0.20260301010127-aa6edf4b11af h1:er2acxbi3N1nvEq6HXHUAR1nTWEJmQfqiGR8EVT9rfs=
 
+github.com/refraction-networking/utls v1.8.3-0.20260301010127-aa6edf4b11af/go.mod h1:jkSOEkLqn+S/jtpEHPOsVv/4V4EVnelwbMQl4vCWXAM=
 
 github.com/rogpeppe/go-internal v1.10.0 h1:TMyTOH3F/DB16zRVcYyreMH6GnZZrwQVAoYjRBZyWFQ=
 
 github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncjaFoBhdsK/akog=
 
 github.com/sagernet/sing v0.5.1 h1:mhL/MZVq0TjuvHcpYcFtmSD1BFOxZ/+8ofbNZcg1k1Y=

+ 12 - 1
transport/internet/tls/tls.go
View File 

@@ -10,6 +10,7 @@ import (
 
 	utls "github.com/refraction-networking/utls"
 
 	"github.com/xtls/xray-core/common/buf"
 
 	"github.com/xtls/xray-core/common/net"
 
+	"github.com/xtls/xray-core/common/utils"
 
 )
 
 
 type Interface interface {
 
@@ -97,6 +98,12 @@ func (c *UConn) WebsocketHandshakeContext(ctx context.Context) error {
 
 	if err := c.BuildHandshakeState(); err != nil {
 
 		return err
 
 	}
 
+	config := *utils.AccessField[*utls.Config](c, "config")
 
+	// Do not modify outer ALPN to http/1.1 if ECH is used
 
+	// Outer ALPN will be h2,http/1.1, and real ALPN in config will be hidden in ECH
 
+	if config.EncryptedClientHelloConfigList != nil {
 
+		return c.HandshakeContext(ctx)
 
+	}
 
 	// Iterate over extensions and check for utls.ALPNExtension
 
 	hasALPNExtension := false
 
 	for _, extension := range c.Extensions {
 
@@ -131,7 +138,7 @@ func GeneraticUClient(c net.Conn, config *tls.Config) *utls.UConn {
 
 }
 
 
 func copyConfig(c *tls.Config) *utls.Config {
 
-	return &utls.Config{
 
+	config := &utls.Config{
 
 		Rand:                           c.Rand,
 
 		RootCAs:                        c.RootCAs,
 
 		ServerName:                     c.ServerName,
 
@@ -140,6 +147,10 @@ func copyConfig(c *tls.Config) *utls.Config {
 
 		KeyLogWriter:                   c.KeyLogWriter,
 
 		EncryptedClientHelloConfigList: c.EncryptedClientHelloConfigList,
 
 	}
 
+	if config.EncryptedClientHelloConfigList != nil {
 
+		config.NextProtos = c.NextProtos
 
+	}
 
+	return config
 
 }
 
 
 func init() {