You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
326 lines
8.8 KiB
326 lines
8.8 KiB
#!/usr/bin/python
|
|
# -*- coding: UTF-8 -*-
|
|
|
|
import traceback
|
|
from shadowsocks import shell, common
|
|
from configloader import load_config, get_config
|
|
import random
|
|
import getopt
|
|
import sys
|
|
import json
|
|
import base64
|
|
|
|
|
|
class MuJsonLoader(object):
|
|
def __init__(self):
|
|
self.json = None
|
|
|
|
def load(self, path):
|
|
l = "[]"
|
|
try:
|
|
with open(path, 'rb+') as f:
|
|
l = f.read().decode('utf8')
|
|
except:
|
|
pass
|
|
self.json = json.loads(l)
|
|
|
|
def save(self, path):
|
|
if self.json:
|
|
output = json.dumps(self.json, sort_keys=True, indent=4, separators=(',', ': '))
|
|
with open(path, 'a'):
|
|
pass
|
|
with open(path, 'rb+') as f:
|
|
f.write(output.encode('utf8'))
|
|
f.truncate()
|
|
|
|
|
|
class MuMgr(object):
|
|
def __init__(self):
|
|
self.config_path = get_config().MUDB_FILE
|
|
try:
|
|
self.server_addr = get_config().SERVER_PUB_ADDR
|
|
except:
|
|
self.server_addr = '127.0.0.1'
|
|
self.data = MuJsonLoader()
|
|
|
|
if self.server_addr == '127.0.0.1':
|
|
self.server_addr = self.getipaddr()
|
|
|
|
def getipaddr(self, ifname='eth0'):
|
|
import socket
|
|
import struct
|
|
ret = '127.0.0.1'
|
|
try:
|
|
ret = socket.gethostbyname(socket.getfqdn(socket.gethostname()))
|
|
except:
|
|
pass
|
|
if ret == '127.0.0.1':
|
|
try:
|
|
import fcntl
|
|
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
|
|
ret = socket.inet_ntoa(fcntl.ioctl(s.fileno(), 0x8915, struct.pack('256s', ifname[:15]))[20:24])
|
|
except:
|
|
pass
|
|
return ret
|
|
|
|
def ssrlink(self, user, encode):
|
|
protocol = user.get('protocol', '')
|
|
obfs = user.get('obfs', '')
|
|
protocol = protocol.replace("_compatible", "")
|
|
obfs = obfs.replace("_compatible", "")
|
|
link = "%s:%s:%s:%s:%s:%s" % (self.server_addr, user['port'], protocol, user['method'], obfs, common.to_str(base64.urlsafe_b64encode(common.to_bytes(user['passwd']))).replace("=", ""))
|
|
return "ssr://" + (encode and common.to_str(base64.urlsafe_b64encode(common.to_bytes(link))).replace("=", "") or link)
|
|
|
|
def userinfo(self, user):
|
|
ret = ""
|
|
for key in sorted(user):
|
|
if key in ['enable']:
|
|
continue
|
|
ret += '\n'
|
|
if key in ['transfer_enable', 'u', 'd']:
|
|
val = user[key]
|
|
if val / 1024 < 4:
|
|
ret += " %s : %s" % (key, val)
|
|
elif val / 1024 ** 2 < 4:
|
|
val /= float(1024)
|
|
ret += " %s : %s K Bytes" % (key, val)
|
|
elif val / 1024 ** 3 < 4:
|
|
val /= float(1024 ** 2)
|
|
ret += " %s : %s M Bytes" % (key, val)
|
|
else:
|
|
val /= float(1024 ** 3)
|
|
ret += " %s : %s G Bytes" % (key, val)
|
|
else:
|
|
ret += " %s : %s" % (key, user[key])
|
|
ret += "\n " + self.ssrlink(user, False)
|
|
ret += "\n " + self.ssrlink(user, True)
|
|
return ret
|
|
|
|
def rand_pass(self):
|
|
return ''.join([random.choice('''ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789~-_=+(){}[]^&%$@''') for i in range(8)])
|
|
|
|
def add(self, user):
|
|
up = {'enable': 1, 'u': 0, 'd': 0, 'method': "aes-128-cfb",
|
|
'protocol': "auth_sha1_v4",
|
|
'obfs': "tls1.2_ticket_auth_compatible",
|
|
'transfer_enable': 1125899906842624}
|
|
up['passwd'] = self.rand_pass()
|
|
up.update(user)
|
|
|
|
self.data.load(self.config_path)
|
|
for row in self.data.json:
|
|
match = False
|
|
if 'user' in user and row['user'] == user['user']:
|
|
match = True
|
|
if 'port' in user and row['port'] == user['port']:
|
|
match = True
|
|
if match:
|
|
print("user [%s] port [%s] already exist" % (row['user'], row['port']))
|
|
return
|
|
self.data.json.append(up)
|
|
print("### add user info %s" % self.userinfo(up))
|
|
self.data.save(self.config_path)
|
|
|
|
def edit(self, user):
|
|
self.data.load(self.config_path)
|
|
for row in self.data.json:
|
|
match = True
|
|
if 'user' in user and row['user'] != user['user']:
|
|
match = False
|
|
if 'port' in user and row['port'] != user['port']:
|
|
match = False
|
|
if match:
|
|
print("edit user [%s]" % (row['user'],))
|
|
row.update(user)
|
|
print("### new user info %s" % self.userinfo(row))
|
|
break
|
|
self.data.save(self.config_path)
|
|
|
|
def delete(self, user):
|
|
self.data.load(self.config_path)
|
|
index = 0
|
|
for row in self.data.json:
|
|
match = True
|
|
if 'user' in user and row['user'] != user['user']:
|
|
match = False
|
|
if 'port' in user and row['port'] != user['port']:
|
|
match = False
|
|
if match:
|
|
print("delete user [%s]" % row['user'])
|
|
del self.data.json[index]
|
|
break
|
|
index += 1
|
|
self.data.save(self.config_path)
|
|
|
|
def clear_ud(self, user):
|
|
up = {'u': 0, 'd': 0}
|
|
self.data.load(self.config_path)
|
|
for row in self.data.json:
|
|
match = True
|
|
if 'user' in user and row['user'] != user['user']:
|
|
match = False
|
|
if 'port' in user and row['port'] != user['port']:
|
|
match = False
|
|
if match:
|
|
row.update(up)
|
|
print("clear user [%s]" % row['user'])
|
|
self.data.save(self.config_path)
|
|
|
|
def list_user(self, user):
|
|
self.data.load(self.config_path)
|
|
if not user:
|
|
for row in self.data.json:
|
|
print("user [%s] port %s" % (row['user'], row['port']))
|
|
return
|
|
for row in self.data.json:
|
|
match = True
|
|
if 'user' in user and row['user'] != user['user']:
|
|
match = False
|
|
if 'port' in user and row['port'] != user['port']:
|
|
match = False
|
|
if match:
|
|
print("### user [%s] info %s" % (row['user'], self.userinfo(row)))
|
|
|
|
|
|
def print_server_help():
|
|
print('''usage: python mujson_manage.py -a|-d|-e|-c|-l [OPTION]...
|
|
|
|
Actions:
|
|
-a ADD add/edit a user
|
|
-d DELETE delete a user
|
|
-e EDIT edit a user
|
|
-c CLEAR set u/d to zero
|
|
-l LIST display a user infomation or all users infomation
|
|
|
|
Options:
|
|
-u USER the user name
|
|
-p PORT server port
|
|
-k PASSWORD password
|
|
-m METHOD encryption method, default: aes-128-cfb
|
|
-O PROTOCOL protocol plugin, default: auth_sha1_v4
|
|
-o OBFS obfs plugin, default: tls1.2_ticket_auth_compatible
|
|
-G PROTOCOL_PARAM protocol plugin param
|
|
-g OBFS_PARAM obfs plugin param
|
|
-t TRANSFER max transfer for G bytes, default: 1048576, can be float point number
|
|
-f FORBID set forbidden ports. Example (ban 1~79 and 81~100): -f "1-79,81-100"
|
|
|
|
General options:
|
|
-h, --help show this help message and exit
|
|
''')
|
|
|
|
|
|
def main():
|
|
shortopts = 'adeclu:p:k:O:o:G:g:m:t:f:h'
|
|
longopts = ['help']
|
|
action = None
|
|
user = {}
|
|
fast_set_obfs = {'0': 'plain',
|
|
'+1': 'http_simple_compatible',
|
|
'1': 'http_simple',
|
|
'+2': 'tls1.2_ticket_auth_compatible',
|
|
'2': 'tls1.2_ticket_auth'}
|
|
fast_set_protocol = {'0': 'origin',
|
|
'+1': 'verify_sha1_compatible',
|
|
'1': 'verify_sha1',
|
|
'2': 'auth_sha1',
|
|
'3': 'auth_sha1_v2',
|
|
'4': 'auth_sha1_v4',
|
|
'am': 'auth_aes128_md5',
|
|
'as': 'auth_aes128_sha1',
|
|
}
|
|
fast_set_method = {'a0': 'aes-128-cfb',
|
|
'a1': 'aes-192-cfb',
|
|
'a2': 'aes-256-cfb',
|
|
'r': 'rc4-md5',
|
|
'r6': 'rc4-md5-6',
|
|
'c': 'chacha20',
|
|
'ci': 'chacha20-ietf',
|
|
's': 'salsa20',
|
|
'b': 'bf-cfb',
|
|
'm0': 'camellia-128-cfb',
|
|
'm1': 'camellia-192-cfb',
|
|
'm2': 'camellia-256-cfb',
|
|
'a0t': 'aes-128-ctr',
|
|
'a1t': 'aes-192-ctr',
|
|
'a2t': 'aes-256-ctr'}
|
|
try:
|
|
optlist, args = getopt.getopt(sys.argv[1:], shortopts, longopts)
|
|
for key, value in optlist:
|
|
if key == '-a':
|
|
action = 1
|
|
elif key == '-d':
|
|
action = 2
|
|
elif key == '-e':
|
|
action = 3
|
|
elif key == '-l':
|
|
action = 4
|
|
elif key == '-c':
|
|
action = 0
|
|
elif key == '-u':
|
|
user['user'] = value
|
|
elif key == '-p':
|
|
user['port'] = int(value)
|
|
elif key == '-k':
|
|
user['passwd'] = value
|
|
elif key == '-o':
|
|
if value in fast_set_obfs:
|
|
user['obfs'] = fast_set_obfs[value]
|
|
else:
|
|
user['obfs'] = value
|
|
elif key == '-O':
|
|
if value in fast_set_protocol:
|
|
user['protocol'] = fast_set_protocol[value]
|
|
else:
|
|
user['protocol'] = value
|
|
elif key == '-g':
|
|
user['obfs_param'] = value
|
|
elif key == '-G':
|
|
user['protocol_param'] = value
|
|
elif key == '-m':
|
|
if value in fast_set_method:
|
|
user['method'] = fast_set_method[value]
|
|
else:
|
|
user['method'] = value
|
|
elif key == '-f':
|
|
user['forbidden_port'] = value
|
|
elif key == '-t':
|
|
val = float(value)
|
|
try:
|
|
val = int(value)
|
|
except:
|
|
pass
|
|
user['transfer_enable'] = val * (1024 ** 3)
|
|
elif key in ('-h', '--help'):
|
|
print_server_help()
|
|
sys.exit(0)
|
|
except getopt.GetoptError as e:
|
|
print(e)
|
|
sys.exit(2)
|
|
|
|
manage = MuMgr()
|
|
if action == 0:
|
|
manage.clear_ud(user)
|
|
elif action == 1:
|
|
if 'user' not in user and 'port' in user:
|
|
user['user'] = str(user['port'])
|
|
if 'user' in user and 'port' in user:
|
|
manage.add(user)
|
|
else:
|
|
print("You have to set the port with -p")
|
|
elif action == 2:
|
|
if 'user' in user or 'port' in user:
|
|
manage.delete(user)
|
|
else:
|
|
print("You have to set the user name or port with -u/-p")
|
|
elif action == 3:
|
|
if 'user' in user or 'port' in user:
|
|
manage.edit(user)
|
|
else:
|
|
print("You have to set the user name or port with -u/-p")
|
|
elif action == 4:
|
|
manage.list_user(user)
|
|
elif action is None:
|
|
print_server_help()
|
|
|
|
if __name__ == '__main__':
|
|
main()
|
|
|