Update On Tue Sep 9 20:33:59 CEST 2025

2025-09-26 20:21:35 +08:00 · 2025-09-09 20:34:00 +02:00
parent 74d2e7092c
commit c5f9cfaa06
251 changed files with 2262 additions and 1496 deletions
--- a/small/luci-app-passwall/Makefile
+++ b/small/luci-app-passwall/Makefile
@@ -184,7 +184,6 @@ define Package/$(PKG_NAME)/conffiles
 /usr/share/passwall/rules/lanlist_ipv4
 /usr/share/passwall/rules/lanlist_ipv6
 /usr/share/passwall/rules/domains_excluded
-/www/luci-static/resources/qrcode.min.js
 endef

 define Package/$(PKG_NAME)/postrm
--- a/small/luci-app-passwall/htdocs/luci-static/resources/view/passwall/qrcode.min.js
+++ b/small/luci-app-passwall/htdocs/luci-static/resources/view/passwall/qrcode.min.js
--- a/small/luci-app-passwall/luasrc/model/cbi/passwall/client/type/ray.lua
+++ b/small/luci-app-passwall/luasrc/model/cbi/passwall/client/type/ray.lua
@@ -40,7 +40,9 @@ o:value("socks", translate("Socks"))
 o:value("shadowsocks", translate("Shadowsocks"))
 o:value("trojan", translate("Trojan"))
 o:value("wireguard", translate("WireGuard"))
-o:value("_balancing", translate("Balancing"))
+if api.compare_versions(xray_version, ">=", "1.8.12") then
+	o:value("_balancing", translate("Balancing"))
+end
 o:value("_shunt", translate("Shunt"))
 o:value("_iface", translate("Custom Interface"))

@@ -96,7 +98,7 @@ m.uci:foreach(appname, "socks", function(s)
 end)

 -- 负载均衡列表
-local o = s:option(DynamicList, _n("balancing_node"), translate("Load balancing node list"), translate("Load balancing node list, <a target='_blank' href='https://xtls.github.io/config/routing.html#balancerobject'>document</a>"))
+o = s:option(DynamicList, _n("balancing_node"), translate("Load balancing node list"), translate("Load balancing node list, <a target='_blank' href='https://xtls.github.io/config/routing.html#balancerobject'>document</a>"))
 o:depends({ [_n("protocol")] = "_balancing" })
 local valid_ids = {}
 for k, v in pairs(nodes_table) do
@@ -120,76 +122,62 @@ function o.custom_write(self, section, value)
 	api.uci:set_list(appname, section, "balancing_node", result)
 end

-local o = s:option(ListValue, _n("balancingStrategy"), translate("Balancing Strategy"))
+o = s:option(ListValue, _n("balancingStrategy"), translate("Balancing Strategy"))
 o:depends({ [_n("protocol")] = "_balancing" })
 o:value("random")
 o:value("roundRobin")
 o:value("leastPing")
 o:value("leastLoad")
-o.default = "leastLoad"
+o.default = "random"

 -- Fallback Node
-if api.compare_versions(xray_version, ">=", "1.8.10") then
-	local o = s:option(ListValue, _n("fallback_node"), translate("Fallback Node"))
-	if api.compare_versions(xray_version, ">=", "1.8.12") then
-		o:depends({ [_n("protocol")] = "_balancing" })
-	else
-		o:depends({ [_n("balancingStrategy")] = "leastPing" })
-	end
-	local function check_fallback_chain(fb)
-		for k, v in pairs(fallback_table) do
-			if v.fallback == fb then
-				fallback_table[k] = nil
-				check_fallback_chain(v.id)
-			end
+o = s:option(ListValue, _n("fallback_node"), translate("Fallback Node"))
+o:value("", translate("Close(Not use)"))
+o:depends({ [_n("protocol")] = "_balancing" })
+local function check_fallback_chain(fb)
+	for k, v in pairs(fallback_table) do
+		if v.fallback == fb then
+			fallback_table[k] = nil
+			check_fallback_chain(v.id)
 		end
 	end
-	-- 检查fallback链，去掉会形成闭环的balancer节点
-	if is_balancer then
-		check_fallback_chain(arg[1])
-	end
-	for k, v in pairs(fallback_table) do o:value(v.id, v.remark) end
-	for k, v in pairs(nodes_table) do o:value(v.id, v.remark) end
 end
+-- 检查fallback链，去掉会形成闭环的balancer节点
+if is_balancer then
+	check_fallback_chain(arg[1])
+end
+for k, v in pairs(fallback_table) do o:value(v.id, v.remark) end
+for k, v in pairs(nodes_table) do o:value(v.id, v.remark) end

 -- 探测地址
-local ucpu = s:option(Flag, _n("useCustomProbeUrl"), translate("Use Custom Probe URL"), translate("By default the built-in probe URL will be used, enable this option to use a custom probe URL."))
-ucpu:depends({ [_n("balancingStrategy")] = "leastPing" })
-ucpu:depends({ [_n("balancingStrategy")] = "leastLoad" })
+o = s:option(Flag, _n("useCustomProbeUrl"), translate("Use Custom Probe URL"), translate("By default the built-in probe URL will be used, enable this option to use a custom probe URL."))
+o:depends({ [_n("protocol")] = "_balancing" })

-local pu = s:option(Value, _n("probeUrl"), translate("Probe URL"))
-pu:depends({ [_n("useCustomProbeUrl")] = true })
-pu:value("https://cp.cloudflare.com/", "Cloudflare")
-pu:value("https://www.gstatic.com/generate_204", "Gstatic")
-pu:value("https://www.google.com/generate_204", "Google")
-pu:value("https://www.youtube.com/generate_204", "YouTube")
-pu:value("https://connect.rom.miui.com/generate_204", "MIUI (CN)")
-pu:value("https://connectivitycheck.platform.hicloud.com/generate_204", "HiCloud (CN)")
-pu.default = "https://www.google.com/generate_204"
-pu.description = translate("The URL used to detect the connection status.")
+o = s:option(Value, _n("probeUrl"), translate("Probe URL"))
+o:depends({ [_n("useCustomProbeUrl")] = true })
+o:value("https://cp.cloudflare.com/", "Cloudflare")
+o:value("https://www.gstatic.com/generate_204", "Gstatic")
+o:value("https://www.google.com/generate_204", "Google")
+o:value("https://www.youtube.com/generate_204", "YouTube")
+o:value("https://connect.rom.miui.com/generate_204", "MIUI (CN)")
+o:value("https://connectivitycheck.platform.hicloud.com/generate_204", "HiCloud (CN)")
+o.default = "https://www.google.com/generate_204"
+o.description = translate("The URL used to detect the connection status.")

 -- 探测间隔
-local pi = s:option(Value, _n("probeInterval"), translate("Probe Interval"))
-pi:depends({ [_n("balancingStrategy")] = "leastPing" })
-pi:depends({ [_n("balancingStrategy")] = "leastLoad" })
-pi.default = "1m"
-pi.placeholder = "1m"
-pi.description = translate("The interval between initiating probes.") .. "<br>" ..
+o = s:option(Value, _n("probeInterval"), translate("Probe Interval"))
+o:depends({ [_n("protocol")] = "_balancing" })
+o.default = "1m"
+o.placeholder = "1m"
+o.description = translate("The interval between initiating probes.") .. "<br>" ..
 		translate("The time format is numbers + units, such as '10s', '2h45m', and the supported time units are <code>s</code>, <code>m</code>, <code>h</code>, which correspond to seconds, minutes, and hours, respectively.") .. "<br>" ..
 		translate("When the unit is not filled in, it defaults to seconds.")

-if api.compare_versions(xray_version, ">=", "1.8.12") then
-	ucpu:depends({ [_n("protocol")] = "_balancing" })
-	pi:depends({ [_n("protocol")] = "_balancing" })
-else
-	ucpu:depends({ [_n("balancingStrategy")] = "leastPing" })
-	pi:depends({ [_n("balancingStrategy")] = "leastPing" })
-end
-
 o = s:option(Value, _n("expected"), translate("Preferred Node Count"))
 o:depends({ [_n("balancingStrategy")] = "leastLoad" })
 o.datatype = "uinteger"
 o.default = "2"
+o.placeholder = "2"
 o.description = translate("The load balancer selects the optimal number of nodes, and traffic is randomly distributed among them.")


@@ -674,7 +662,11 @@ end
 -- [[ Mux.Cool ]]--
 o = s:option(Flag, _n("mux"), "Mux", translate("Enable Mux.Cool"))
 o:depends({ [_n("protocol")] = "vmess" })
-o:depends({ [_n("protocol")] = "vless", [_n("flow")] = "" })
+o:depends({ [_n("protocol")] = "vless", [_n("flow")] = "", [_n("transport")] = "raw" })
+o:depends({ [_n("protocol")] = "vless", [_n("transport")] = "ws" })
+o:depends({ [_n("protocol")] = "vless", [_n("transport")] = "ds" })
+o:depends({ [_n("protocol")] = "vless", [_n("transport")] = "grpc" })
+o:depends({ [_n("protocol")] = "vless", [_n("transport")] = "httpupgrade" })
 o:depends({ [_n("protocol")] = "http" })
 o:depends({ [_n("protocol")] = "socks" })
 o:depends({ [_n("protocol")] = "shadowsocks" })
@@ -688,6 +680,7 @@ o:depends({ [_n("mux")] = true })
 o = s:option(Flag, _n("xmux"), "XUDP Mux")
 o.default = 1
 o:depends({ [_n("protocol")] = "vless", [_n("flow")] = "xtls-rprx-vision" })
+o:depends({ [_n("protocol")] = "vless", [_n("transport")] = "xhttp" })

 o = s:option(Value, _n("xudp_concurrency"), translate("XUDP Mux concurrency"))
 o.default = 8
--- a/small/luci-app-passwall/luasrc/view/passwall/node_list/link_share_man.htm
+++ b/small/luci-app-passwall/luasrc/view/passwall/node_list/link_share_man.htm
@@ -27,7 +27,7 @@ local vmess_type = get_core("vmess_type", {{has_xray,"xray"},{has_singbox,"sing-
 local vless_type = get_core("vless_type", {{has_xray,"xray"},{has_singbox,"sing-box"}})
 local hysteria2_type = get_core("hysteria2_type", {{has_hysteria2,"hysteria2"},{has_singbox,"sing-box"}})
 -%>
-<script src="<%=resource%>/qrcode.min.js"></script>
+<script src="<%=resource%>/view/<%=appname%>/qrcode.min.js"></script>
 <script type="text/javascript">//<![CDATA[
 	let has_singbox = "<%=has_singbox%>"
 	let has_xray = "<%=has_xray%>"
--- a/small/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/advanced.lua
+++ b/small/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/advanced.lua
@@ -367,7 +367,7 @@ if is_finded("xray") then
 	o.default = "10-20"
 	o:depends("fragment", true)

-	o = s:option(Value, "fragment_maxsplit", translate("Fragment maxSplit"), translate("Fragmented maxSplit (byte)"))
+	o = s:option(Value, "fragment_maxsplit", translate("Max Split"), translate("Limit the maximum number of splits."))
 	o.default = "100-200"
 	o:depends("fragment", true)

@@ -421,9 +421,9 @@ if is_finded("xray") then
 	o.datatype = "or(uinteger,portrange)"
 	o.rmempty = false

-	o = s:option(Value, "applyto", translate("ApplyTo (IP type)"))
+	o = s:option(Value, "applyto", translate("IP Type"))
 	o.default = "IP"
-	o:value("IP", "IP")
+	o:value("IP", "ALL")
 	o:value("IPV4", "IPv4")
 	o:value("IPV6", "IPv6")
 	o.rmempty = false
--- a/small/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/client-config.lua
+++ b/small/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/client-config.lua
@@ -477,7 +477,7 @@ o.datatype = "uinteger"
 o.rmempty = true
 o.default = "8388608"

-o = s:option(Value, "maxstreamseceivewindow", translate("QUIC maxStreamReceiveWindow"))
+o = s:option(Value, "maxstreamreceivewindow", translate("QUIC maxStreamReceiveWindow"))
 o:depends({type = "hysteria2", flag_quicparam = "1"})
 o.datatype = "uinteger"
 o.rmempty = true
@@ -689,7 +689,7 @@ o:depends({type = "v2ray", v2ray_protocol = "vless"})
 o = s:option(Value, "vless_encryption", translate("VLESS Encryption"))
 o.rmempty = true
 o.default = "none"
-o:value("none")
+o:value("none") 
 o:depends({type = "v2ray", v2ray_protocol = "vless"})

 -- 加密方式
@@ -851,18 +851,6 @@ o.validate = function(self, value)
    return value
 end

-- XHTTP ALPN
-o = s:option(ListValue, "xhttp_alpn", translate("XHTTP ALPN"))
-o.default = ""
-o:value("", translate("Default"))
-o:value("h3")
-o:value("h2")
-o:value("h3,h2")
-o:value("http/1.1")
-o:value("h2,http/1.1")
-o:value("h3,h2,http/1.1")
-o:depends({transport = "xhttp", tls = true})
-
 -- [[ H2部分 ]]--

 -- H2域名
@@ -1179,10 +1167,24 @@ o:depends("xtls", true)
 o:depends("reality", true)
 o.rmempty = true

+-- TLS ALPN
 o = s:option(ListValue, "tls_alpn", translate("TLS ALPN"))
 o.default = ""
 o:value("", translate("Default"))
 o:value("h3")
+o:value("h2")
+o:value("h3,h2")
+o:value("http/1.1")
+o:value("h2,http/1.1")
+o:value("h3,h2,http/1.1")
+o:depends({type = "hysteria2", tls = true})
+o:depends({transport = "xhttp", tls = true})
+
+-- TUIC ALPN
+o = s:option(ListValue, "tuic_alpn", translate("TUIC ALPN"))
+o.default = ""
+o:value("", translate("Default"))
+o:value("h3")
 o:value("spdy/3.1")
 o:value("h3,spdy/3.1")
 o:depends("type", "tuic")
@@ -1196,19 +1198,18 @@ o.description = translate("If true, allowss insecure connection at TLS client, e

 -- [[ Hysteria2 TLS pinSHA256 ]] --
 o = s:option(Value, "pinsha256", translate("Certificate fingerprint"))
-o:depends({type = "hysteria2", insecure = true })
+o:depends("type", "hysteria2")
 o.rmempty = true

-
 -- [[ Mux.Cool ]] --
 o = s:option(Flag, "mux", translate("Mux"), translate("Enable Mux.Cool"))
 o.rmempty = false
 o.default = false
-o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "raw"})
+o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "raw", tls_flow = "none"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "ws"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "kcp"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "httpupgrade"})
-o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "splithttp"})
+o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "xhttp"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "h2"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "quic"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "grpc"})
@@ -1222,6 +1223,8 @@ o:depends({type = "v2ray", v2ray_protocol = "http"})
 o = s:option(Flag, "xmux", translate("Xudp Mux"), translate("Enable Xudp Mux"))
 o.rmempty = false
 o.default = false
+o:depends({type = "v2ray", v2ray_protocol = "vless", tls_flow = "xtls-rprx-vision"})
+o:depends({type = "v2ray", v2ray_protocol = "vless", tls_flow = "xtls-rprx-vision-udp443"})
 o:depends({type = "v2ray", v2ray_protocol = "vless", transport = "xhttp"})

 -- [[ TCP 最大并发连接数 ]]--
@@ -1392,4 +1395,3 @@ if is_finded("kcptun-client") then
 end

 return m
-
--- a/small/luci-app-ssr-plus/luasrc/view/shadowsocksr/ssrurl.htm
+++ b/small/luci-app-ssr-plus/luasrc/view/shadowsocksr/ssrurl.htm
@@ -112,7 +112,7 @@ function import_ssr_url(btn, urlname, sid) {
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.type')[0].value = (ssu[0] === "hy2") ? "hysteria2" : ssu[0];
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.type')[0].dispatchEvent(event);
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.server')[0].value = url.hostname;
-			document.getElementsByName('cbid.shadowsocksr.' + sid + '.server_port')[0].value = url.port || "80";
+			document.getElementsByName('cbid.shadowsocksr.' + sid + '.server_port')[0].value = url.port || "443";
 			if (params.get("lazy") === "1") { 
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.lazy_mode')[0].checked = true;
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.lazy_mode')[0].dispatchEvent(event);
@@ -142,18 +142,22 @@ function import_ssr_url(btn, urlname, sid) {
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.obfs_type')[0].value = params.get("obfs");
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.salamander')[0].value = params.get("obfs-password") || params.get("obfs_password");
 			}
-			if (params.get("sni")) {
+			if (params.get("sni") || params.get("alpn")) {
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls')[0].checked = true; // 设置 flag_obfs 为 true
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls')[0].dispatchEvent(event); // 触发事件
-
-			document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls_host')[0].value = params.get("sni") || "";
+				if (params.get("sni")) {
+					document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls_host')[0].value = params.get("sni") || "";
+				}
+				if (params.get("alpn")) {
+					document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls_alpn')[0].value = params.get("alpn") || "";
+				}
 			}
 			if (params.get("insecure") === "1") { 
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.insecure')[0].checked = true;
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.insecure')[0].dispatchEvent(event);
-				if (params.get("sni")) {
-					document.getElementsByName('cbid.shadowsocksr.' + sid + '.pinsha256')[0].value = params.get("pinsha256") || "";
-				}
+			}
+			if (params.get("pinSHA256")) {
+				document.getElementsByName('cbid.shadowsocksr.' + sid + '.pinsha256')[0].value = params.get("pinSHA256") || "";
 			}
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.alias')[0].value = url.hash ? decodeURIComponent(url.hash.slice(1)) : "";

@@ -368,11 +372,11 @@ function import_ssr_url(btn, urlname, sid) {
 				params.get("type") == "http" ? "h2" : 
 				(["xhttp", "splithttp"].includes(params.get("type")) ? "xhttp" : 
 				(["tcp", "raw"].includes(params.get("type")) ? "raw" : 
-				(params.get("type") || "tcp")));
+				(params.get("type") || "raw")));
 			document.getElementsByName('cbid.shadowsocksr.' + sid + '.transport')[0].dispatchEvent(event);
 			if (params.get("security") === "tls") {
 				if (params.get("type") == "xhttp" || params.get("type") == "splithttp") {
-					document.getElementsByName('cbid.shadowsocksr.' + sid + '.xhttp_alpn')[0].value = params.get("alpn") || "";
+					document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls_alpn')[0].value = params.get("alpn") || "";
 				}
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.fingerprint')[0].value = params.get("fp") || "";
 			}
@@ -500,7 +504,7 @@ function import_ssr_url(btn, urlname, sid) {
 					document.getElementsByName('cbid.shadowsocksr.' + sid + '.fingerprint')[0].value = ssm.fp;
 				}
 				if (ssm.net == "xhttp" || ssm.net == "splithttp") {
-					document.getElementsByName('cbid.shadowsocksr.' + sid + '.xhttp_alpn')[0].value = ssm.alpn;
+					document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls_alpn')[0].value = ssm.alpn;
 				}
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.tls_host')[0].value = ssm.sni || ssm.host;
 				if (ssm.ech !== "" && ssm.ech !== undefined) {
@@ -508,6 +512,11 @@ function import_ssr_url(btn, urlname, sid) {
 					document.getElementsByName('cbid.shadowsocksr.' + sid + '.enable_ech')[0].dispatchEvent(event); // 触发事件
 					document.getElementsByName('cbid.shadowsocksr.' + sid + '.ech_config')[0].value = ssm.ech;
 				}
+				if (((ssm.allowInsecure !== undefined) ? ssm.allowInsecure : ssm.allowlnsecure) === "true" ||
+				((ssm.allowInsecure !== undefined) ? ssm.allowInsecure : ssm.allowlnsecure) === "1") {
+					document.getElementsByName('cbid.shadowsocksr.' + sid + '.insecure')[0].checked = true; // 设置 insecure 为 true
+					document.getElementsByName('cbid.shadowsocksr.' + sid + '.insecure')[0].dispatchEvent(event); // 触发事件
+				}
 			}
 			if (ssm.mux !== undefined) {
 				document.getElementsByName('cbid.shadowsocksr.' + sid + '.mux')[0].checked = true;
@@ -570,6 +579,10 @@ function import_ssr_url(btn, urlname, sid) {
 						dispatchEventIfExists('cbid.shadowsocksr.' + sid + '.enable_ech', event); // 触发事件
 						setElementValue('cbid.shadowsocksr.' + sid + '.ech_config', params.get("ech") || "");
 					}
+					if (params.get("allowInsecure") === "1") {
+						setElementValue('cbid.shadowsocksr.' + sid + '.insecure', true); // 设置 insecure 为 true
+						dispatchEventIfExists('cbid.shadowsocksr.' + sid + '.insecure', event); // 触发事件
+					}
 				}
 				if (params.get("security") === "reality") {
 					setElementValue('cbid.shadowsocksr.' + sid + '.reality_publickey', params.get("pbk") ? decodeURIComponent(params.get("pbk")) : "");
@@ -584,7 +597,7 @@ function import_ssr_url(btn, urlname, sid) {
 				setElementValue('cbid.shadowsocksr.' + sid + '.tls_flow', params.get("flow") || "none");
 				dispatchEventIfExists('cbid.shadowsocksr.' + sid + '.tls_flow', event);

-				setElementValue('cbid.shadowsocksr.' + sid + '.xhttp_alpn', params.get("alpn") || "");
+				setElementValue('cbid.shadowsocksr.' + sid + '.tls_alpn', params.get("alpn") || "");
 				setElementValue('cbid.shadowsocksr.' + sid + '.fingerprint', params.get("fp") || "");
 				setElementValue('cbid.shadowsocksr.' + sid + '.tls_host', params.get("sni") || "");
 			}
@@ -655,4 +668,3 @@ function import_ssr_url(btn, urlname, sid) {
 <input type="button" class="btn cbi-button cbi-button-apply" value="<%:Import%>" onclick="return import_ssr_url(this, '<%=self.option%>', '<%=self.value%>')" />
 <span id="<%=self.option%>-status"></span>
 <%+cbi/valuefooter%>
-
--- a/small/luci-app-ssr-plus/po/templates/ssr-plus.pot
+++ b/small/luci-app-ssr-plus/po/templates/ssr-plus.pot
--- a/small/luci-app-ssr-plus/po/zh_Hans/ssr-plus.po
+++ b/small/luci-app-ssr-plus/po/zh_Hans/ssr-plus.po
--- a/small/luci-app-ssr-plus/root/usr/share/shadowsocksr/gen_config.lua
+++ b/small/luci-app-ssr-plus/root/usr/share/shadowsocksr/gen_config.lua
@@ -31,7 +31,7 @@ function vmess_vless()
 						id = server.vmess_id,
 						alterId = (server.v2ray_protocol == "vmess" or not server.v2ray_protocol) and tonumber(server.alter_id) or nil,
 						security = (server.v2ray_protocol == "vmess" or not server.v2ray_protocol) and server.security or nil,
-						encryption = (server.v2ray_protocol == "vless") and server.vless_encryption or "none",
+						encryption = (server.v2ray_protocol == "vless") and server.vless_encryption or "none", 
 						flow = (((server.xtls == '1') or (server.tls == '1') or (server.reality == '1')) and (((server.tls_flow ~= "none") and server.tls_flow) or ((server.xhttp_tls_flow ~= "none") and server.xhttp_tls_flow))) or nil
 					}
 				}
@@ -208,14 +208,14 @@ end
 			settings = outbound_settings,
 			-- 底层传输配置
 			streamSettings = (server.v2ray_protocol ~= "wireguard") and {
-				network = server.transport or "tcp",
+				network = server.transport or "raw",
 				security = (server.xtls == '1') and "xtls" or (server.tls == '1') and "tls" or (server.reality == '1') and "reality" or nil,
 				tlsSettings = (server.tls == '1') and {
 					-- tls
 					alpn = (server.transport == "xhttp") and (function()
 						local alpn = {}
-						if server.xhttp_alpn and server.xhttp_alpn ~= "" then
-							string.gsub(server.xhttp_alpn, '[^,]+', function(w)
+						if server.tls_alpn and server.tls_alpn ~= "" then
+							string.gsub(server.tls_alpn, '[^,]+', function(w)
 								table.insert(alpn, w)
 							end)
 						end
@@ -243,8 +243,8 @@ end
 				} or nil,
 				realitySettings = (server.reality == '1') and {
 					publicKey = server.reality_publickey,
-					shortId = server.reality_shortid,
-					spiderX = server.reality_spiderx,
+					shortId = server.reality_shortid or "",
+					spiderX = server.reality_spiderx or "",
 					fingerprint = server.fingerprint,
 					mldsa65Verify = (server.enable_mldsa65verify == '1') and server.reality_mldsa65verify or nil,
 					serverName = server.tls_host
@@ -274,8 +274,8 @@ end
 				} or nil,
 				wsSettings = (server.transport == "ws") and (server.ws_path or server.ws_host or server.tls_host) and {
 					-- ws
-					Host = server.ws_host or server.tls_host or nil,
-					path = server.ws_path,
+					host = server.ws_host or server.tls_host or nil,
+					path = server.ws_path or "/",
 					maxEarlyData = tonumber(server.ws_ed) or nil,
 					earlyDataHeaderName = server.ws_ed_header or nil
 				} or nil,
@@ -474,7 +474,7 @@ local hysteria2 = {
 	} or nil,
 	quic = (server.flag_quicparam == "1" ) and {
 		initStreamReceiveWindow = (server.initstreamreceivewindow and server.initstreamreceivewindow or nil),
-		maxStreamReceiveWindow = (server.maxstreamseceivewindow and server.maxstreamseceivewindow or nil),
+		maxStreamReceiveWindow = (server.maxstreamreceivewindow and server.maxstreamreceivewindow or nil),
 		initConnReceiveWindow = (server.initconnreceivewindow and server.initconnreceivewindow or nil),
 		maxConnReceiveWindow = (server.maxconnreceivewindow and server.maxconnreceivewindow or nil),
 		maxIdleTimeout = (tonumber(server.maxidletimeout) and tonumber(server.maxidletimeout) .. "s" or nil),
@@ -482,14 +482,41 @@ local hysteria2 = {
 		disablePathMTUDiscovery = (server.disablepathmtudiscovery == "1") and true or false
 	} or nil,
 	auth = server.hy2_auth,
-	tls = server.tls_host and {
+	tls = (server.tls_host and server.tls_host ~= "") and {
 		sni = server.tls_host,
-		--alpn = server.tls_alpn or nil,
+		alpn = (server.type == "hysteria2") and (function()
+			local alpn = {}
+			if server.tls_alpn and server.tls_alpn ~= "" then
+				string.gsub(server.tls_alpn, '[^,]+', function(w)
+					table.insert(alpn, w)
+				end)
+			end
+			if #alpn > 0 then
+				return alpn
+			else
+				return nil
+			end
+		end)() or nil,
+		--sni = server.tls_host or (server.tls_host and server.tls_alpn) or nil,
 		insecure = (server.insecure == "1") and true or false,
-		pinSHA256 = (server.insecure == "1") and server.pinsha256 or nil
+		pinSHA256 = server.pinsha256 or nil
 	} or {
 		sni = server.server,
-		insecure = (server.insecure == "1") and true or false
+		alpn = (server.type == "hysteria2") and (function()
+			local alpn = {}
+			if server.tls_alpn and server.tls_alpn ~= "" then
+				string.gsub(server.tls_alpn, '[^,]+', function(w)
+					table.insert(alpn, w)
+				end)
+			end
+			if #alpn > 0 then
+				return alpn
+			else
+				return nil
+			end
+		end)() or nil,
+		insecure = (server.insecure == "1") and true or false,
+		pinSHA256 = server.pinsha256 or nil
 	},
 	fast_open = (server.fast_open == "1") and true or false,
 	lazy = (server.lazy_mode == "1") and true or false
@@ -588,8 +615,8 @@ local tuic = {
 			gc_lifetime = server.gc_lifetime and server.gc_lifetime .. "s" or nil,
 			alpn = (server.type == "tuic") and (function()
 				local alpn = {}
-				if server.tls_alpn and server.tls_alpn ~= "" then
-					string.gsub(server.tls_alpn, '[^,]+', function(w)
+				if server.tuic_alpn and server.tuic_alpn ~= "" then
+					string.gsub(server.tuic_alpn, '[^,]+', function(w)
 						table.insert(alpn, w)
 					end)
 				end
@@ -683,4 +710,3 @@ function config:handleIndex(index)
 end
 local f = config:new()
 f:handleIndex(server.type)
-
--- a/small/luci-app-ssr-plus/root/usr/share/shadowsocksr/subscribe.lua
+++ b/small/luci-app-ssr-plus/root/usr/share/shadowsocksr/subscribe.lua
@@ -201,7 +201,7 @@ local function processData(szType, content)
 		result.alias = url.fragment and UrlDecode(url.fragment) or nil
 		result.type = hy2_type
 		result.server = url.host
-		result.server_port = url.port
+		result.server_port = url.port or 443
 		if params.protocol then
 			result.flag_transport = "1"
 			result.transport_protocol = params.protocol or "udp"
@@ -209,24 +209,33 @@ local function processData(szType, content)
 		result.hy2_auth = url.user
 		result.uplink_capacity = tonumber((params.upmbps or ""):match("^(%d+)")) or nil
 		result.downlink_capacity = tonumber((params.downmbps or ""):match("^(%d+)")) or nil
+		if params.mport then
+			result.flag_port_hopping = "1"
+			result.port_range = params.mport
+		end
 		if params.obfs and params.obfs ~= "none" then
 			result.flag_obfs = "1"
 			result.obfs_type = params.obfs
 			result.salamander = params["obfs-password"] or params["obfs_password"]
 		end
-		if params.sni then
+		if (params.sni and params.sni ~= "") or (params.alpn and params.alpn ~= "") then
 			result.tls = "1"
-			result.tls_host = params.sni
-		end
-		if params.insecure then
-			result.insecure = "1"
 			if params.sni then
-				result.pinsha256 = params.pinSHA256
+				result.tls_host = params.sni
+			end
+			if params.alpn then
+				local alpn = {}
+				for v in params.alpn:gmatch("[^,]+") do
+					table.insert(alpn, v)
+				end
+				result.tls_alpn = alpn
 			end
 		end
-		if params.mport then
-			result.flag_port_hopping = "1"
-			result.port_range = params.mport
+		if params.insecure == "1" then
+			result.insecure = params.insecure
+		end
+		if params.pinSHA256 then
+			result.pinsha256 = params.pinSHA256
 		end
 	elseif szType == 'ssr' then
 		local dat = split(content, "/%?")
@@ -330,15 +339,20 @@ local function processData(szType, content)
 		if info.net == 'quic' then
 			result.quic_guise = info.type
 			result.quic_key = info.key
-			result.quic_security = info.securty
+			result.quic_security = info.security
 		end
 		if info.security then
 			result.security = info.security
 		end
 		if info.tls == "tls" or info.tls == "1" then
 			result.tls = "1"
+			result.fingerprint = info.fp
 			if info.alpn and info.alpn ~= "" then
-				result.xhttp_alpn = info.alpn
+				local alpn = {}
+				for v in info.alpn:gmatch("[^,]+") do
+					table.insert(alpn, v)
+				end
+				result.tls_alpn = alpn
 			end
 			if info.sni and info.sni ~= "" then
 				result.tls_host = info.sni
@@ -347,9 +361,11 @@ local function processData(szType, content)
 			end
 			if info.ech and info.ech ~= "" then
 				result.enable_ech = "1"
-				result.ech_config = params.ech
+				result.ech_config = info.ech
+			end
+			if (info.allowInsecure or info.allowlnsecure) == "true" or (info.allowInsecure or info.allowlnsecure) == "1" then
+				result.insecure = "1"
 			end
-			result.insecure = allow_insecure
 		else
 			result.tls = "0"
 		end
@@ -615,7 +631,7 @@ local function processData(szType, content)
 			-- 处理参数
 			if params.alpn then
 				-- 处理 alpn 参数
-				result.xhttp_alpn = params.alpn
+				result.tls_alpn = params.alpn
 			end

 			if params.sni then
@@ -716,7 +732,7 @@ local function processData(szType, content)
 		result.server_port = url.port
 		result.vmess_id = url.user
 		result.vless_encryption = params.encryption or "none"
-		result.transport = params.type or "tcp"
+		result.transport = params.type or "raw"
 		if result.transport == "tcp" then
 			result.transport = "raw"
 		end
@@ -724,7 +740,13 @@ local function processData(szType, content)
 			result.transport = "xhttp"
 		end
 		result.tls = (params.security == "tls" or params.security == "xtls") and "1" or "0"
-		result.xhttp_alpn = params.alpn or ""
+		if params.alpn and params.alpn ~= "" then
+			local alpn = {}
+			for v in params.alpn:gmatch("[^,]+") do
+				table.insert(alpn, v)
+			end
+			result.tls_alpn = alpn
+		end
 		result.tls_host = params.sni
 		result.tls_flow = (params.security == "tls" or params.security == "reality") and params.flow or nil
 		result.fingerprint = params.fp
@@ -1129,4 +1151,3 @@ if subscribe_url and #subscribe_url > 0 then
 		end
 	end)
 end
-