chore: unconditionally allow clients with passwords for password-free socks5 inbound (#2123)

2025-12-19 08:20:05 +08:00 · 2025-06-24 18:04:42 +08:00 · 2025-06-24 18:04:42 +08:00 · 5c6aa433ca
commit 5c6aa433ca
parent 2c55dc2557
2 changed files with 12 additions and 0 deletions
--- a/component/auth/auth.go
+++ b/component/auth/auth.go
@ -41,3 +41,11 @@ func NewAuthenticator(users []AuthUser) Authenticator {
 	}
 	return au
 }
+
+var AlwaysValid Authenticator = alwaysValid{}
+
+type alwaysValid struct{}
+
+func (alwaysValid) Verify(string, string) bool { return true }
+
+func (alwaysValid) Users() []string { return nil }
--- a/transport/socks5/socks5.go
+++ b/transport/socks5/socks5.go
@ -118,6 +118,10 @@ func ServerHandshake(rw net.Conn, authenticator auth.Authenticator) (addr Addr,
 		return
 	}

+	if nmethods == 1 && buf[0] == 0x02 /* will use password */ && authenticator == nil {
+		authenticator = auth.AlwaysValid
+	}
+
 	// write VER METHOD
 	if authenticator != nil {
 		if _, err = rw.Write([]byte{5, 2}); err != nil {