chore: allow vision with vless encryption

2025-12-19 16:30:07 +08:00 · 2025-08-17 16:14:20 +08:00 · 2025-08-17 16:14:20 +08:00 · b481eca4a4
commit b481eca4a4
parent eb028b65fc
4 changed files with 34 additions and 6 deletions
--- a/adapter/outbound/vless.go
+++ b/adapter/outbound/vless.go
@ -3,7 +3,6 @@ package outbound
 import (
 	"context"
 	"crypto/tls"
-	"errors"
 	"fmt"
 	"net"
 	"net/http"
@ -457,11 +456,6 @@ func NewVless(option VlessOption) (*Vless, error) {
 	if err != nil {
 		return nil, err
 	}
-	if v.encryption != nil {
-		if option.Flow != "" {
-			return nil, errors.New(`vless "encryption" doesn't support "flow" yet`)
-		}
-	}

 	v.realityConfig, err = v.option.RealityOpts.Parse()
 	if err != nil {
--- a/listener/inbound/vless_test.go
+++ b/listener/inbound/vless_test.go
@ -102,6 +102,11 @@ func TestInboundVless_Encryption(t *testing.T) {
 			Encryption: "8min-vless-mlkem768client-" + clientBase64,
 		}
 		testInboundVless(t, inboundOptions, outboundOptions)
+		t.Run("xtls-rprx-vision", func(t *testing.T) {
+			outboundOptions := outboundOptions
+			outboundOptions.Flow = "xtls-rprx-vision"
+			testInboundVless(t, inboundOptions, outboundOptions)
+		})
 	})
 	t.Run("-xored-", func(t *testing.T) {
 		inboundOptions := inbound.VlessOption{
--- a/listener/sing_vless/server.go
+++ b/listener/sing_vless/server.go
@ -43,6 +43,22 @@ func init() {
 		}
 		return true, tlsConn.NetConn(), reflect.TypeOf(tlsConn.Conn).Elem(), unsafe.Pointer(tlsConn.Conn)
 	})
+
+	vless.RegisterTLS(func(conn net.Conn) (loaded bool, netConn net.Conn, reflectType reflect.Type, reflectPointer unsafe.Pointer) {
+		tlsConn, loaded := common.Cast[*encryption.ClientConn](conn)
+		if !loaded {
+			return
+		}
+		return true, tlsConn.Conn, reflect.TypeOf(tlsConn).Elem(), unsafe.Pointer(tlsConn)
+	})
+
+	vless.RegisterTLS(func(conn net.Conn) (loaded bool, netConn net.Conn, reflectType reflect.Type, reflectPointer unsafe.Pointer) {
+		tlsConn, loaded := common.Cast[*encryption.ServerConn](conn)
+		if !loaded {
+			return
+		}
+		return true, tlsConn.Conn, reflect.TypeOf(tlsConn).Elem(), unsafe.Pointer(tlsConn)
+	})
 }

 type Listener struct {
--- a/transport/vless/vision/vision.go
+++ b/transport/vless/vision/vision.go
@ -12,6 +12,7 @@ import (

 	N "github.com/metacubex/mihomo/common/net"
 	tlsC "github.com/metacubex/mihomo/component/tls"
+	"github.com/metacubex/mihomo/transport/vless/encryption"

 	"github.com/gofrs/uuid/v5"
 	"github.com/metacubex/sing/common"
@ -58,6 +59,18 @@ func NewConn(conn connWithUpstream, userUUID *uuid.UUID) (*Conn, error) {
 		t = reflect.TypeOf(underlying.Conn).Elem()
 		//log.Debugln("t:%v", t)
 		p = unsafe.Pointer(underlying.Conn)
+	case *encryption.ClientConn:
+		//log.Debugln("type *encryption.ClientConn")
+		c.Conn = underlying.Conn
+		c.tlsConn = underlying
+		t = reflect.TypeOf(underlying).Elem()
+		p = unsafe.Pointer(underlying)
+	case *encryption.ServerConn:
+		//log.Debugln("type *encryption.ServerConn")
+		c.Conn = underlying.Conn
+		c.tlsConn = underlying
+		t = reflect.TypeOf(underlying).Elem()
+		p = unsafe.Pointer(underlying)
 	default:
 		return nil, fmt.Errorf(`failed to use vision, maybe "security" is not "tls" or "utls"`)
 	}