456vv
diff --git a/‎README.md
+31-53 b/‎README.md
+31-53
diff --git a/‎cmd/build.bat
+12-7 b/‎cmd/build.bat
+12-7
diff --git a/‎cmd/main/go.mod.bak
+8 b/‎cmd/main/go.mod.bak
+8
diff --git a/‎cmd/main/main.go
+153-44 b/‎cmd/main/main.go
+153-44
@@ -3,48 +3,29 @@ golang proxy, HTTP/HTTPS proxy server, HTTP/HTTPS 代理服务器
 
 命令行：
 -----------------------------------
-    -addr string
-        代理服务器地 (format "0.0.0.0:8080")
-    -dataBufioSize int
-        代理数据交换缓冲区大小，单位字节 (default 10240)
-    -disableCompression
-        禁止传送数据时候进行压缩 (default false)
-    -disableKeepAlives
-        禁止长连接 (default false)
-    -expectContinueTimeout int
-        http1.1过度到http2的等待超时，单位毫秒 (default 1000)
-    -idleConnTimeout int
-        空闲连接超时时，单位毫秒 (default 0)
-    -keepAlive int
-        保持连接心跳检测超时，单位毫秒 (default 30000)
-    -linkPosterior
-        支持连接式代理，如：http://111.222.333.444:8080/https://www.baidu.com/abc/file.zip
-    -log string
-        日志文件(默认留空在控制台显示日志)  (format "./vproxy.txt")
-    -logLevel int
-        日志级别，0)不记录 1)客户端IP 2)认证 3)访问的Host地址 4)路径 5)请求 6)响应 7)错误 (default 0)
-    -maxIdleConns int
-        保持空闲连接(TCP)数量 (default 500)
-    -maxIdleConnsPerHost int
-        保持空闲连接(Host)数量 (default 500)
-    -maxResponseHeaderBytes int
-        读取服务器发来的文件标头大小限制 (default 0)
-    -proxy string
-        代理服务器的上级代理IP地址 (format "http://11.22.33.44:8888" or "socks5://admin:[email protected]:1080")
-    -pwd string
-        密码
-    -responseHeaderTimeout int
-        读取服务器发来的文件标头超时，单位毫秒 (default 0)
-    -timeout int
-        转发连接请求超时，单位毫秒 (default 300000)
-    -tlsHandshakeTimeout int
-        SSL握手超时，单位毫秒 (default 10000)
-    -user string
-        用户名
+      -addr string
+            代理服务器地 (format "0.0.0.0:8080")
+      -dataBufioSize int
+            代理数据交换缓冲区大小，单位字节 (default 10240)
+      -idleConnTimeout int
+            空闲连接超时时，单位毫秒 (default 0)
+      -linkPosterior
+            支持连接式代理，如：http://111.222.333.444:8080/https://www.baidu.com/abc/file.zip
+      -log string
+            日志文件(默认留空在控制台显示日志)  (format "./vproxy.txt")
+      -logLevel int
+            日志级别，0)不记录 1)客户端IP 2)认证 3)访问的Host地址 4)路径 5)请求 6)响应 7)错误 (default 0)
+      -proxy string
+            代理服务器的上级代理IP地址 (format "http://11.22.33.44:8888" or "socks5://admin:[email protected]:1080")
+      -pwd string
+            密码
+      -timeout int
+            转发连接请求超时，单位毫秒 (default 300000)
+      -user string
+            用户名
 
     命令行例子：vproxy -addr 0.0.0.0:8080
 
-
 列表：
 -----------------------------------
 ```go
@@ -58,23 +39,20 @@ const
     Response                                                                     // 响应
     Error                                                                        // 错误
 )
-type Config struct {                                                     // 配置
-    LinkPosterior     bool                                                       // 支持连接后面的，如：http://192.168.2.31/http://www.baidu.com/
-    DataBufioSize     int                                                        // 缓冲区大小
-    Auth              func(username, password string) bool                       // 认证
-    Timeout           time.Duration                                              // 转发连接请求超时
-    Deadline          time.Time                                                  // 转发连接请求超时
-}
+
 type Proxy struct {                                                      // 代理
-    *Config                                                                      // 配置
-    Addr        string                                                           // 代理IP地址
-    Server      http.Server                                                      // 服务器
-    Transport   http.RoundTripper                                                // 代理
-    ErrorLogLevel LogLevel                                                       // 日志级别
-    ErrorLog    *log.Logger                                                      // 日志
+    LinkPosterior   bool                                                             // 支持连接后面的，如：http://192.168.2.31/http://www.baidu.com/
+    DataBufioSize   int                                                              // 缓冲区大小
+    Auth            func(username, password string) bool                             // 认证
+    Addr        string                                                               // 代理IP地址
+    Server      http.Server                                                          // 服务器
+    DialContext func(ctx context.Context, network, address string) (net.Conn, error) // 拨号
+    ErrorLog    *log.Logger                                                          // 日志
+    ErrorLogLevel LogLevel                                                           // 日志级别
 }
     func (p *Proxy) ServeHTTP(rw http.ResponseWriter, req *http.Request)         // 处理
-    func (p *Proxy) ListenAndServ() error                                        // 监听
+    func (p *Proxy) ListenAndServe() error                                       // 监听
     func (p *Proxy) Serve(l net.Listener) error                                  // 监听
     func (p *Proxy) Close() error                                                // 关闭代理
+
 ```
@@ -1,17 +1,22 @@
+cd /D ./main
+set GOPROXY=https://goproxy.cn,https://mirrors.aliyun.com/goproxy/,https://gocenter.io,https://proxy.golang.org,https://goproxy.io,https://athens.azurefd.net,direct
+set GOSUMDB=sum.golang.org
+
 set GOOS=windows
 set GOARCH=amd64
-go build -o ./bin/vproxy-win-amd64.exe -ldflags="-s -w" ./main/main.go
+go build -o ../bin/vproxy-win-amd64.exe -ldflags="-s -w"
+
 set GOOS=linux
 set GOARCH=amd64
-go build -o ./bin/vproxy-linux-amd64 -ldflags="-s -w" ./main/main.go
+go build -o ../bin/vproxy-linux-amd64 -ldflags="-s -w"
 set GOARCH=386
-go build -o ./bin/vproxy-linux-386 -ldflags="-s -w" ./main/main.go
+go build -o ../bin/vproxy-linux-386 -ldflags="-s -w"
 set GOARCH=arm
 set GOARM=7
-go build -o ./bin/vproxy-linux-armv7 -ldflags="-s -w" ./main/main.go
+go build -o ../bin/vproxy-linux-armv7 -ldflags="-s -w"
 set GOARCH=arm64
-go build -o ./bin/vproxy-linux-arm64 -ldflags="-s -w" ./main/main.go
+go build -o ../bin/vproxy-linux-arm64 -ldflags="-s -w"
 set GOARCH=mips
-go build -o ./bin/vproxy-linux-mips -ldflags="-s -w" ./main/main.go
+go build -o ../bin/vproxy-linux-mips -ldflags="-s -w"
 
-upx -9 ./bin/*
+upx -9 ../bin/*
@@ -0,0 +1,8 @@
+module main
+
+go 1.15
+
+replace github.com/456vv/vsocks5 => ../../../vsocks5
+
+replace github.com/456vv/vproxy => ../../../vproxy
+
@@ -2,9 +2,11 @@ package main
 
 import (
 	"github.com/456vv/vproxy"
+	"github.com/456vv/vsocks5"
+	"github.com/456vv/vconn"
+    "golang.org/x/crypto/ssh"
     "net"
     "net/http"
-    //"crypto/tls"
     "net/url"
     "time"
     "flag"
@@ -13,6 +15,9 @@ import (
     "io"
     "os"
     "context"
+    "bytes"
+    "errors"
+    "encoding/base64"
 )
 
 var (
@@ -22,18 +27,9 @@ var (
     flogLevel = flag.Int("logLevel", 0, "日志级别，0)不记录 1)客户端IP 2)认证 3)访问的Host地址 4)路径 5)请求 6)响应 7)错误 (default 0)")
     faddr = flag.String("addr", "", "代理服务器地 (format \"0.0.0.0:8080\")")
     fproxy = flag.String("proxy", "", "代理服务器的上级代理IP地址 (format \"http://11.22.33.44:8888\" or \"socks5://admin:[email protected]:1080\")")
-    fmaxIdleConns = flag.Int("maxIdleConns", 500, "保持空闲连接(TCP)数量")
-    fmaxIdleConnsPerHost = flag.Int("maxIdleConnsPerHost", 500, "保持空闲连接(Host)数量")
-    fdisableKeepAlives = flag.Bool("disableKeepAlives", false, "禁止长连接 (default false)")
-    fdisableCompression = flag.Bool("disableCompression", false, "禁止传送数据时候进行压缩 (default false)")
-    ftlsHandshakeTimeout = flag.Int64("tlsHandshakeTimeout", 10000, "SSL握手超时，单位毫秒")
     fidleConnTimeout = flag.Int64("idleConnTimeout", 0, "空闲连接超时时，单位毫秒 (default 0)")
-    fexpectContinueTimeout = flag.Int64("expectContinueTimeout", 1000, "http1.1过度到http2的等待超时，单位毫秒")
-    fresponseHeaderTimeout = flag.Int64("responseHeaderTimeout", 0, "读取服务器发来的文件标头超时，单位毫秒 (default 0)")
-    fmaxResponseHeaderBytes = flag.Int64("maxResponseHeaderBytes", 0, "读取服务器发来的文件标头大小限制 (default 0)")
     fdataBufioSize = flag.Int("dataBufioSize", 1024*10, "代理数据交换缓冲区大小，单位字节")
     ftimeout = flag.Int64("timeout", 300000, "转发连接请求超时，单位毫秒")
-    fkeepAlive = flag.Int64("keepAlive", 30000, "保持连接心跳检测超时，单位毫秒")
     flinkPosterior = flag.Bool("linkPosterior", false, "支持连接式代理，如：http://111.222.333.444:8080/https://www.baidu.com/abc/file.zip")
 )
 
@@ -53,50 +49,144 @@ func main(){
         }
         out = file
     }
+    
 	p := &vproxy.Proxy{
-        Config      : &vproxy.Config{
-        	LinkPosterior: *flinkPosterior,
-            DataBufioSize: *fdataBufioSize,
-            Timeout: time.Duration(*ftimeout) * time.Millisecond,
-            KeepAlive: time.Duration(*fkeepAlive) * time.Millisecond,
-        },
+    	LinkPosterior: *flinkPosterior,
+        DataBufioSize: *fdataBufioSize,
         Addr        : *faddr,
-        Transport   : &http.Transport{
-            DisableKeepAlives: *fdisableKeepAlives,
-            DisableCompression: *fdisableCompression,
-            MaxIdleConns: *fmaxIdleConns,
-            MaxIdleConnsPerHost: *fmaxIdleConnsPerHost,
-            IdleConnTimeout: time.Duration(*fidleConnTimeout) * time.Millisecond,
-            ResponseHeaderTimeout: time.Duration(*fresponseHeaderTimeout) * time.Millisecond,
-            MaxResponseHeaderBytes: *fmaxResponseHeaderBytes,
-            TLSHandshakeTimeout:   time.Duration(*ftlsHandshakeTimeout) * time.Millisecond,
-            ExpectContinueTimeout: time.Duration(*fexpectContinueTimeout) * time.Millisecond,
-        },
         ErrorLogLevel: vproxy.LogLevel(*flogLevel),
     }
     p.ErrorLog = log.New(out, "", log.Lshortfile|log.LstdFlags)
     if *fuser != "" {
-        p.Config.Auth = func(username, password string) bool {
+        p.Auth = func(username, password string) bool {
             return username == *fuser && password == *fpwd
         }
      }
-
-    if tr, ok := p.Transport.(*http.Transport); ok && *fproxy != "" {
-		dialer := &net.Dialer{
-			Timeout:   p.Config.Timeout,
-			KeepAlive: p.Config.KeepAlive,
-			DualStack: true,
+	
+    tr := http.DefaultTransport.(*http.Transport)
+    tr.IdleConnTimeout=time.Duration(*fidleConnTimeout) * time.Millisecond
+	dialer := &net.Dialer{
+		Timeout:   time.Duration(*ftimeout) * time.Millisecond,
+		DualStack: true,
+	}
+	p.DialContext=dialer.DialContext
+	
+	if *fproxy != "" {
+		purl, err := url.Parse(*fproxy)
+		if err != nil {
+			fmt.Println("上级代理格式错误：", err)
+			return
 		}
-        tr.Proxy = func(r *http.Request) (*url.URL, error){
-            return url.Parse(*fproxy)
-        }
-        tr.DialContext = func(ctx context.Context, network, addr string) (net.Conn, error){
-            ctx, cancel := context.WithTimeout(ctx, p.Config.Timeout)
-            defer cancel()
-        	return dialer.DialContext(ctx, network, addr)
-        }
-    }
-
+		var puser, ppwd string
+    	if purl.User != nil {
+    		puser = purl.User.Username()
+    		ppwd, _ = purl.User.Password()
+    	}
+		
+		switch purl.Scheme {
+		case "ssh":
+			config := &ssh.ClientConfig{
+				User: puser,
+				Auth: []ssh.AuthMethod{
+					ssh.Password(ppwd),
+				},
+				HostKeyCallback: func(hostname string, remote net.Addr, key ssh.PublicKey) error {
+					log.Println(hostname, remote, key)
+					return nil
+		        },
+		        HostKeyAlgorithms: []string{
+					ssh.KeyAlgoRSA,
+					ssh.KeyAlgoDSA,
+					ssh.KeyAlgoECDSA256,
+					ssh.KeyAlgoECDSA384,
+					ssh.KeyAlgoECDSA521,
+					ssh.KeyAlgoED25519,
+				},
+				Timeout: 5 * time.Second,
+			}
+			
+			sshConn, client, err := sshDial("tcp", purl.Host, config)
+			if err != nil {
+				fmt.Println("代理拨号错误: ", err)
+		        return
+			}
+			defer func(){
+				client.Close()
+			}()
+			
+		    //connectProxy
+			p.DialContext = func(ctx context.Context, network, address string) (net.Conn, error){
+				if cn, ok := sshConn.(vconn.CloseNotifier); ok {
+					select {
+					case <-cn.CloseNotify():
+						sshConn, client, err = sshDial("tcp", purl.Host, config)
+						if err != nil {
+							return nil, err
+						}
+					default:
+					}
+				}
+				
+				return client.Dial(network, address)
+			}
+			
+			//httpProxy
+			tr.DialContext=p.DialContext
+		case "https","http":
+			//httpProxy
+		    tr.Proxy = func(r *http.Request) (*url.URL, error){
+		        return purl, nil
+		    }
+		    
+		    //connectProxy
+			p.DialContext = func(ctx context.Context, network, address string) (net.Conn, error){
+				pconn, err := dialer.Dial(network, purl.Host)
+				if err != nil {
+					return nil, err
+				}
+				
+				if purl.Scheme == "http" {
+					return pconn, err
+				}
+				
+				var pauth string
+				if puser != "" {
+					pauth = "\nProxy-Authorization: Basic " +basicAuth(puser, ppwd)
+				}
+				pconn.Write([]byte(fmt.Sprintf("CONNECT %[1]s HTTP/1.1\r\nHost: %[1]s%s\r\n\r\n", address, pauth)))
+				
+				p := make([]byte, 1024)
+				n, err := pconn.Read(p)
+				if err != nil {
+					return nil, err
+				}
+				if bytes.Compare([]byte("HTTP/1.1 200 Connection established"), p[:n]) != 0 {
+					pconn.Close()
+					return nil, errors.New("https proxy not support")
+				}
+				return pconn, err
+			}
+		case "socks5":
+			//httpProxy
+		    tr.Proxy = func(r *http.Request) (*url.URL, error){
+		        return purl, nil
+		    }
+		    
+		    //connectProxy
+			s5Client := &vsocks5.Client{
+				Username: puser,
+				Password: ppwd,
+				Server: purl.Host,
+			}
+			p.DialContext = func(ctx context.Context, network, address string) (net.Conn, error){
+				return s5Client.Dial(network, address)
+			}
+		default:
+			fmt.Printf("暂时不支持 %s 协议代理！\n", purl.Scheme)
+			return
+		}
+	}
+	
    	defer p.Close()
     err := p.ListenAndServe()
     if err != nil {
@@ -105,3 +195,22 @@ func main(){
 
 
 }
+func sshDial(network, addr string, config *ssh.ClientConfig) (net.Conn, *ssh.Client, error){
+	conn, err := net.DialTimeout(network, addr, config.Timeout)
+	if err != nil {
+		return nil, nil, err
+	}
+	
+	conn = vconn.NewConn(conn)
+	c, chans, reqs, err := ssh.NewClientConn(conn, addr, config)
+	if err != nil {
+		return nil, nil, err
+	}
+	
+	return conn, ssh.NewClient(c, chans, reqs), nil
+}
+
+func basicAuth(username, password string) string {
+	auth := username + ":" + password
+	return base64.StdEncoding.EncodeToString([]byte(auth))
+}