Revert "luci-app-ssr-plus: Optimize and fix bugs (#3841)"

This reverts commit 830d3f946c.
2025-04-16 04:13:31 +00:00 · 2020-03-18 21:51:03 +08:00 · 2020-03-18 21:51:03 +08:00 · 94b0ae0126
commit 94b0ae0126
parent 1d9e304dbc
22 changed files with 19573 additions and 641 deletions
--- a/package/lean/luci-app-ssr-plus/Makefile
+++ b/package/lean/luci-app-ssr-plus/Makefile
@ -2,7 +2,7 @@ include $(TOPDIR)/rules.mk

 PKG_NAME:=luci-app-ssr-plus
 PKG_VERSION:=170
-PKG_RELEASE:=4
+PKG_RELEASE:=3

 PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_NAME)

@ -77,6 +77,9 @@ define Package/$(PKG_NAME)/conffiles
 endef

 define Package/$(PKG_NAME)/install
+	$(INSTALL_DIR) $(1)/etc
+	$(INSTALL_DATA) ./root/etc/china_ssr.txt $(1)/etc/china_ssr.txt
+
 	$(INSTALL_DIR) $(1)/etc/config
 	$(INSTALL_CONF) ./root/etc/config/shadowsocksr $(1)/etc/config/shadowsocksr
 	$(INSTALL_DATA) ./root/etc/config/*.list $(1)/etc/config/
@ -115,14 +118,27 @@ endef

 define Package/$(PKG_NAME)/postinst
 #!/bin/sh
-rm -rf /tmp/luci-modulecache/*
-rm -f /tmp/luci-indexcache
+if [ -z "$${IPKG_INSTROOT}" ]; then
+	( . /etc/uci-defaults/luci-ssr-plus ) && rm -f /etc/uci-defaults/luci-ssr-plus
+	rm -f /tmp/luci-indexcache
+	/etc/init.d/shadowsocksr enable >/dev/null 2>&1
+fi
+exit 0
+endef
+
+define Package/$(PKG_NAME)/prerm
+#!/bin/sh
+if [ -z "$${IPKG_INSTROOT}" ]; then
+	/etc/init.d/shadowsocksr disable
+	/etc/init.d/shadowsocksr stop
+fi
+exit 0
 endef

 define Package/$(PKG_NAME)/postrm
 #!/bin/sh
 rm -rf /etc/china_ssr.txt /etc/dnsmasq.ssr /etc/dnsmasq.oversea /etc/config/shadowsocksr /etc/config/black.list \
-		/etc/config/gfw.list /etc/config/white.list /etc/config/netflix.list /etc/config/netflixip.list >/dev/null 2>&1
+		/etc/config/gfw.list /etc/config/white.list >/dev/null 2>&1
 exit 0
 endef

--- a/package/lean/luci-app-ssr-plus/luasrc/controller/shadowsocksr.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/controller/shadowsocksr.lua
@ -26,7 +26,7 @@ function index()
 end

 function subscribe()
-	luci.sys.call("/usr/bin/lua /usr/share/shadowsocksr/subscribe.lua >> /tmp/ssrplus.log 2>&1")
+	luci.sys.call("/usr/bin/lua /usr/share/shadowsocksr/subscribe.lua  >> /tmp/ssrplus.log 2>&1")
 	luci.http.prepare_content("application/json")
 	luci.http.write_json({ ret = 1 })
 end
@ -70,127 +70,136 @@ function check_status()
 end

 function refresh_data()
-	local set =luci.http.formvalue("set")
-	local uci = luci.model.uci.cursor()
-	local icount =0
-	if set == "gfw_data" then
-		refresh_cmd = "wget-ssl --no-check-certificate -O - https://cdn.jsdelivr.net/gh/gfwlist/gfwlist/gfwlist.txt > /tmp/gfw.b64"
-		sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-		if sret == 0 then
-			luci.sys.call("/usr/bin/ssr-gfw")
-			icount = luci.sys.exec("cat /tmp/gfwnew.txt | wc -l")
-			if tonumber(icount) > 1000 then
-				oldcount= l uci.sys.exec("cat /etc/dnsmasq.ssr/gfw_list.conf | wc -l")
-				if tonumber(icount) ~= tonumber(oldcount) then
-					luci.sys.exec("cp -f /tmp/gfwnew.txt /etc/dnsmasq.ssr/gfw_list.conf")
-					luci.sys.exec("cp -f /tmp/gfwnew.txt /tmp/dnsmasq.ssr/gfw_list.conf")
-					luci.sys.call("/etc/init.d/dnsmasq restart")
-					retstring = tostring(tonumber(icount)/2)
-				else
-					retstring ="0"
-				end
-			else
-				retstring = "-1"
-			end
-			luci.sys.exec("rm -f /tmp/gfwnew.txt")
-		else
-			retstring = "-1"
-		end
-	elseif set == "ip_data" then
-		refresh_cmd = "wget-ssl --no-check-certificate -O - " .. uci:get_first('shadowsocksr', 'global', 'chnroute_url', 'https://ispip.clang.cn/all_cn.txt') .. ' > /tmp/china_ssr.txt'
-		sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-		icount = luci.sys.exec("cat /tmp/china_ssr.txt | wc -l")
-		if sret == 0 and tonumber(icount) > 1000 then
-			oldcount = luci.sys.exec("cat /etc/china_ssr.txt | wc -l")
-			if tonumber(icount) ~= tonumber(oldcount) then
-				luci.sys.exec("cp -f /tmp/china_ssr.txt /etc/china_ssr.txt")
-				luci.sys.exec("/etc/init.d/shadowsocksr restart &")
-				retstring = tostring(tonumber(icount))
-			else
-				retstring = "0"
-			end
-		else
-			retstring = "-1"
-		end
-		luci.sys.exec("rm -f /tmp/china_ssr.txt")
-	elseif set == "nfip_data" then
-		refresh_cmd = "wget-ssl --no-check-certificate -O - ".. uci:get_first('shadowsocksr', 'global', 'nfip_url','https://raw.githubusercontent.com/QiuSimons/Netflix_IP/master/NF_only.txt') .." > /tmp/netflixip.list"
-		sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-		icount = luci.sys.exec("cat /tmp/netflixip.list | wc -l")
-		if sret == 0 and tonumber(icount) > 5 then
-			oldcount = luci.sys.exec("cat /etc/config/netflixip.list | wc -l")
-			if tonumber(icount) ~= tonumber(oldcount) then
-				luci.sys.exec("cp -f /tmp/netflixip.list /etc/config/netflixip.list")
-				luci.sys.exec("/etc/init.d/shadowsocksr restart &")
-				retstring = tostring(tonumber(icount))
-			else
-				retstring = "0"
-			end
-		else
-			retstring = "-1"
-		end
-		luci.sys.exec("rm -f /tmp/netflixip.list")
+local set =luci.http.formvalue("set")
+local icount =0
+
+if set == "gfw_data" then
+	refresh_cmd="wget-ssl --no-check-certificate https://cdn.jsdelivr.net/gh/gfwlist/gfwlist/gfwlist.txt -O /tmp/gfw.b64"
+	sret=luci.sys.call(refresh_cmd .. " 2>/dev/null")
+	if sret== 0 then
+	luci.sys.call("/usr/bin/ssr-gfw")
+	icount = luci.sys.exec("cat /tmp/gfwnew.txt | wc -l")
+	if tonumber(icount)>1000 then
+	oldcount=luci.sys.exec("cat /etc/dnsmasq.ssr/gfw_list.conf | wc -l")
+	if tonumber(icount) ~= tonumber(oldcount) then
+		luci.sys.exec("cp -f /tmp/gfwnew.txt /etc/dnsmasq.ssr/gfw_list.conf")
+		luci.sys.exec("cp -f /tmp/gfwnew.txt /tmp/dnsmasq.ssr/gfw_list.conf")
+		luci.sys.call("/etc/init.d/dnsmasq restart")
+		retstring=tostring(math.ceil(tonumber(icount)/2))
 	else
-		refresh_cmd = "wget-ssl --no-check-certificate -O - ".. uci:get_first('shadowsocksr', 'global', 'adblock_url','https://easylist-downloads.adblockplus.org/easylistchina+easylist.txt') .." > /tmp/adnew.conf"
-		sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-		if sret== 0 then
-			luci.sys.call("/usr/bin/ssr-ad")
-			icount = luci.sys.exec("cat /tmp/ad.conf | wc -l")
-			if tonumber(icount) > 100 then
-				if nixio.fs.access("/etc/dnsmasq.ssr/ad.conf") then
-					oldcount = luci.sys.exec("cat /etc/dnsmasq.ssr/ad.conf | wc -l")
-				else
-					oldcount = "0"
-				end
-				if tonumber(icount) ~= tonumber(oldcount) then
-					luci.sys.exec("cp -f /tmp/ad.conf /etc/dnsmasq.ssr/ad.conf")
-					luci.sys.exec("cp -f /tmp/ad.conf /tmp/dnsmasq.ssr/ad.conf")
-					luci.sys.call("/etc/init.d/dnsmasq restart")
-					retstring = tostring(tonumber(icount))
-				else
-					retstring = "0"
-				end
-			else
-				retstring = "-1"
-			end
-			luci.sys.exec("rm -f /tmp/ad.conf")
-		else
-			retstring = "-1"
-		end
+		retstring ="0"
 	end
-	luci.http.prepare_content("application/json")
-	luci.http.write_json({ret=retstring,retcount=icount})
+	else
+	retstring ="-1"
+	end
+	luci.sys.exec("rm -f /tmp/gfwnew.txt ")
+else
+	retstring ="-1"
+end
+elseif set == "ip_data" then
+	if (luci.model.uci.cursor():get_first('shadowsocksr', 'global', 'chnroute', '0') == '1') then
+		refresh_cmd="wget-ssl --no-check-certificate -O - " .. luci.model.uci.cursor():get_first('shadowsocksr', 'global', 'chnroute_url', 'https://ispip.clang.cn/all_cn.txt') .. ' > /tmp/china_ssr.txt 2>/dev/null'
+	else
+		refresh_cmd="wget -O- 'http://ftp.apnic.net/apnic/stats/apnic/delegated-apnic-latest'  2>/dev/null| awk -F\\| '/CN\\|ipv4/ { printf(\"%s/%d\\n\", $4, 32-log($5)/log(2)) }' > /tmp/china_ssr.txt"
+	end
+	sret=luci.sys.call(refresh_cmd)
+	icount = luci.sys.exec("cat /tmp/china_ssr.txt | wc -l")
+	if sret== 0 and tonumber(icount)>1000 then
+		oldcount=luci.sys.exec("cat /etc/china_ssr.txt | wc -l")
+		if tonumber(icount) ~= tonumber(oldcount) then
+			luci.sys.exec("cp -f /tmp/china_ssr.txt /etc/china_ssr.txt")
+			retstring=tostring(tonumber(icount))
+		else
+			retstring ="0"
+		end
+	else
+		retstring ="-1"
+	end
+	luci.sys.exec("rm -f /tmp/china_ssr.txt ")
+elseif set == "nfip_data" then
+  if (luci.model.uci.cursor():get_first('shadowsocksr', 'global', 'netflix', '0') == '1') then
+    refresh_cmd="wget-ssl --no-check-certificate -O - ".. luci.model.uci.cursor():get_first('shadowsocksr', 'global', 'nfip_url', 'https://raw.githubusercontent.com/QiuSimons/Netflix_IP/master/NF_only.txt') .." > /tmp/netflixip.list"
+	else
+    refresh_cmd="wget-ssl --no-check-certificate -O - https://raw.githubusercontent.com/QiuSimons/Netflix_IP/master/NF_only.txt > /tmp/netflixip.list"
+	end
+	sret=luci.sys.call(refresh_cmd)
+	icount = luci.sys.exec("cat /tmp/netflixip.list | wc -l")
+	if sret== 0 and tonumber(icount)>1 then
+		oldcount=luci.sys.exec("cat /etc/config/netflixip.list | wc -l")
+		if tonumber(icount) ~= tonumber(oldcount) then
+			luci.sys.exec("cp -f /tmp/netflixip.list /etc/config/netflixip.list")
+			luci.sys.exec("/etc/init.d/shadowsocksr restart &")
+			retstring=tostring(tonumber(icount))
+		else
+			retstring ="0"
+		end
+	else
+		retstring ="-1"
+	end
+	luci.sys.exec("rm -f /tmp/netflixip.list ")
+else
+if nixio.fs.access("/usr/bin/wget-ssl") then
+	refresh_cmd="wget-ssl --no-check-certificate -O - ".. luci.model.uci.cursor():get_first('shadowsocksr', 'global', 'adblock_url','https://easylist-downloads.adblockplus.org/easylistchina+easylist.txt') .." > /tmp/adnew.conf"
+end
+sret=luci.sys.call(refresh_cmd .. " 2>/dev/null")
+if sret== 0 then
+	luci.sys.call("/usr/bin/ssr-ad")
+	icount = luci.sys.exec("cat /tmp/ad.conf | wc -l")
+	if tonumber(icount)>1000 then
+	if nixio.fs.access("/etc/dnsmasq.ssr/ad.conf") then
+		oldcount=luci.sys.exec("cat /etc/dnsmasq.ssr/ad.conf | wc -l")
+	else
+		oldcount=0
+	end
+	if tonumber(icount) ~= tonumber(oldcount) then
+		luci.sys.exec("cp -f /tmp/ad.conf /etc/dnsmasq.ssr/ad.conf")
+		luci.sys.exec("cp -f /tmp/ad.conf /tmp/dnsmasq.ssr/ad.conf")
+		luci.sys.call("/etc/init.d/dnsmasq restart")
+		retstring=tostring(math.ceil(tonumber(icount)))
+	else
+		retstring ="0"
+	end
+	else
+	retstring ="-1"
+	end
+	luci.sys.exec("rm -f /tmp/ad.conf")
+else
+	retstring ="-1"
+end
+end
+luci.http.prepare_content("application/json")
+luci.http.write_json({ ret=retstring ,retcount=icount})
 end

 function check_port()
-	local set = ""
-	local retstring="<br /><br />"
-	local s
-	local server_name = ""
-	local shadowsocksr = "shadowsocksr"
-	local uci = luci.model.uci.cursor()
-	local iret = 1
-	uci:foreach(shadowsocksr, "servers", function(s)
-		if s.alias then
-			server_name = s.alias
-		elseif s.server and s.server_port then
-			server_name = "%s:%s" %{s.server, s.server_port}
-		end
-		iret = luci.sys.call(" ipset add ss_spec_wan_ac " .. s.server .. " 2>/dev/null")
-		socket = nixio.socket("inet", "stream")
-		socket:setopt("socket", "rcvtimeo", 3)
-		socket:setopt("socket", "sndtimeo", 3)
-		ret = socket:connect(s.server,s.server_port)
-		if tostring(ret) == "true" then
-			socket:close()
-			retstring = retstring .. "<font color='green'>[" .. server_name .. "] OK.</font><br />"
-		else
-			retstring = retstring .. "<font color='red'>[" .. server_name .. "] Error.</font><br />"
-		end
-		if iret == 0 then
-			luci.sys.call(" ipset del ss_spec_wan_ac " .. s.server)
-		end
-	end)
-	luci.http.prepare_content("application/json")
-	luci.http.write_json({ret=retstring})
+local set=""
+local retstring="<br /><br />"
+local s
+local server_name = ""
+local shadowsocksr = "shadowsocksr"
+local uci = luci.model.uci.cursor()
+local iret=1
+uci:foreach(shadowsocksr, "servers", function(s)
+	if s.alias then
+		server_name=s.alias
+	elseif s.server and s.server_port then
+		server_name= "%s:%s" %{s.server, s.server_port}
+	end
+	iret=luci.sys.call(" ipset add ss_spec_wan_ac " .. s.server .. " 2>/dev/null")
+	socket = nixio.socket("inet", "stream")
+	socket:setopt("socket", "rcvtimeo", 3)
+	socket:setopt("socket", "sndtimeo", 3)
+	ret=socket:connect(s.server,s.server_port)
+	if  tostring(ret) == "true" then
+	socket:close()
+	retstring =retstring .. "<font color='green'>[" .. server_name .. "] OK.</font><br />"
+	else
+	retstring =retstring .. "<font color='red'>[" .. server_name .. "] Error.</font><br />"
+	end
+	if  iret== 0 then
+	luci.sys.call(" ipset del ss_spec_wan_ac " .. s.server)
+	end
+end)
+luci.http.prepare_content("application/json")
+luci.http.write_json({ ret=retstring })
 end
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/advanced.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/advanced.lua
@ -1,3 +1,4 @@
+
 m = Map("shadowsocksr")
 -- [[ global ]]--
 s = m:section(TypedSection, "global", translate("Server failsafe auto swith and custom update settings"))
@ -26,8 +27,12 @@ o.datatype = "uinteger"
 o:depends("enable_switch", "1")
 o.default = 3

+o = s:option(Flag, "chnroute", translate("Enable Custom Chnroute"))
+o.rmempty = false
+
 o = s:option(Value, "chnroute_url", translate("Chnroute Update url"))
 o.default = "https://ispip.clang.cn/all_cn.txt"
+o:depends("chnroute", "1")

 o = s:option(Flag, "adblock", translate("Enable adblock"))
 o.rmempty = false
@ -37,42 +42,46 @@ o.default = "https://gitee.com/privacy-protection-tools/anti-ad/raw/master/anti-
 o:depends("adblock", "1")
 o.description = translate("Support AdGuardHome and DNSMASQ format list")

+o = s:option(Flag, "netflix", translate("Enable Custom Netflix IP Url"))
+o.rmempty = false
+
 o = s:option(Value, "nfip_url", translate("nfip_url"))
 o.default = "https://raw.githubusercontent.com/QiuSimons/Netflix_IP/master/NF_only.txt"
+o:depends("netflix", "1")
 o.description = translate("Customize Netflix IP Url")

 -- [[ SOCKS Proxy ]]--
 if nixio.fs.access("/usr/bin/microsocks") then
-	s = m:section(TypedSection, "socks5_proxy", translate("SOCKS5 Proxy Server Settings"))
-	s.anonymous = true
-	
-	o = s:option(Flag, "socks", translate("Enable SOCKS5 Proxy Server"))
-	o.rmempty = false
-	
-	o = s:option(Value, "local_port", translate("Local Port"))
-	o.datatype = "port"
-	o.default = 10800
-	o.rmempty = true
-	o:depends("socks", "1")
-	
-	o = s:option(Flag, "auth_enable", translate("Enable Authentication"))
-	o.rmempty = false
-	o.default = "0"
-	o:depends("socks", "1")
-	
-	o = s:option(Value, "username", translate("Username"))
-	o.default = "username"
-	o:depends("auth_enable", "1")
-	
-	o = s:option(Value, "password", translate("Password"))
-	o.password = true
-	o.default = "password"
-	o:depends("auth_enable", "1")
-	
-	o = s:option(Flag, "wan_enable", translate("Enable WAN Access"))
-	o.rmempty = true
-	o.default = "0"
-	o:depends("auth_enable", "1")
-	
+s = m:section(TypedSection, "socks5_proxy", translate("SOCKS5 Proxy Server Settings"))
+s.anonymous = true
+
+o = s:option(Flag, "socks", translate("Enable SOCKS5 Proxy Server"))
+o.rmempty = false
+
+o = s:option(Value, "local_port", translate("Local Port"))
+o.datatype = "port"
+o.default = 10800
+o.rmempty = true
+o:depends("socks", "1")
+
+o = s:option(Flag, "auth_enable", translate("Enable Authentication"))
+o.rmempty = false
+o.default = "0"
+o:depends("socks", "1")
+
+o = s:option(Value, "username", translate("Username"))
+o.default = "username"
+o:depends("auth_enable", "1")
+
+o = s:option(Value, "password", translate("Password"))
+o.password = true
+o.default = "password"
+o:depends("auth_enable", "1")
+
+o = s:option(Flag, "wan_enable", translate("Enable WAN Access"))
+o.rmempty = true
+o.default = "0"
+o:depends("auth_enable", "1")
+
 end
 return m
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/client-config.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/client-config.lua
@ -14,90 +14,92 @@ local function isKcptun(file)
 	if not fs.access(file, "rwx", "rx", "rx") then
 		fs.chmod(file, 755)
 	end
+
 	local str = sys.exec(file .. " -v | awk '{printf $1}'")
 	return (str:lower() == "kcptun")
 end

+
 local server_table = {}
 local encrypt_methods = {
-"none",
-"table",
-"rc4",
-"rc4-md5-6",
-"rc4-md5",
-"aes-128-cfb",
-"aes-192-cfb",
-"aes-256-cfb",
-"aes-128-ctr",
-"aes-192-ctr",
-"aes-256-ctr",
-"bf-cfb",
-"camellia-128-cfb",
-"camellia-192-cfb",
-"camellia-256-cfb",
-"cast5-cfb",
-"des-cfb",
-"idea-cfb",
-"rc2-cfb",
-"seed-cfb",
-"salsa20",
-"chacha20",
-"chacha20-ietf",
+	"none",
+	"table",
+	"rc4",
+	"rc4-md5-6",
+	"rc4-md5",
+	"aes-128-cfb",
+	"aes-192-cfb",
+	"aes-256-cfb",
+	"aes-128-ctr",
+	"aes-192-ctr",
+	"aes-256-ctr",
+	"bf-cfb",
+	"camellia-128-cfb",
+	"camellia-192-cfb",
+	"camellia-256-cfb",
+	"cast5-cfb",
+	"des-cfb",
+	"idea-cfb",
+	"rc2-cfb",
+	"seed-cfb",
+	"salsa20",
+	"chacha20",
+	"chacha20-ietf",
 }

 local encrypt_methods_ss = {
-- aead
-"aes-128-gcm",
-"aes-192-gcm",
-"aes-256-gcm",
-"chacha20-ietf-poly1305",
-"xchacha20-ietf-poly1305",
-- stream
-"table",
-"rc4",
-"rc4-md5",
-"aes-128-cfb",
-"aes-192-cfb",
-"aes-256-cfb",
-"aes-128-ctr",
-"aes-192-ctr",
-"aes-256-ctr",
-"bf-cfb",
-"camellia-128-cfb",
-"camellia-192-cfb",
-"camellia-256-cfb",
-"salsa20",
-"chacha20",
-"chacha20-ietf",
+	-- aead
+	"aes-128-gcm",
+	"aes-192-gcm",
+	"aes-256-gcm",
+	"chacha20-ietf-poly1305",
+	"xchacha20-ietf-poly1305",
+	-- stream
+	"table",
+	"rc4",
+	"rc4-md5",
+	"aes-128-cfb",
+	"aes-192-cfb",
+	"aes-256-cfb",
+	"aes-128-ctr",
+	"aes-192-ctr",
+	"aes-256-ctr",
+	"bf-cfb",
+	"camellia-128-cfb",
+	"camellia-192-cfb",
+	"camellia-256-cfb",
+	"salsa20",
+	"chacha20",
+	"chacha20-ietf",
 }

 local protocol = {
-"origin",
-"verify_deflate",
-"auth_sha1_v4",
-"auth_aes128_sha1",
-"auth_aes128_md5",
-"auth_chain_a",
-"auth_chain_b",
-"auth_chain_c",
-"auth_chain_d",
-"auth_chain_e",
-"auth_chain_f",
+	"origin",
+	"verify_deflate",
+	"auth_sha1_v4",
+	"auth_aes128_sha1",
+	"auth_aes128_md5",
+	"auth_chain_a",
+	"auth_chain_b",
+	"auth_chain_c",
+	"auth_chain_d",
+	"auth_chain_e",
+	"auth_chain_f",
 }

 obfs = {
-"plain",
-"http_simple",
-"http_post",
-"random_head",
-"tls1.2_ticket_auth",
+	"plain",
+	"http_simple",
+	"http_post",
+	"random_head",
+	"tls1.2_ticket_auth",
 }

 local securitys = {
-"auto",
-"none",
-"aes-128-gcm",
-"chacha20-poly1305"
+	"auto",
+	"none",
+	"aes-128-gcm",
+	"chacha20-poly1305"
 }


@ -121,17 +123,17 @@ o.value =sid
 o = s:option(ListValue, "type", translate("Server Node Type"))
 o:value("ssr", translate("ShadowsocksR"))
 if nixio.fs.access("/usr/bin/ss-redir") then
-	o:value("ss", translate("Shadowsocks New Version"))
+o:value("ss", translate("Shadowsocks New Version"))
 end
 if nixio.fs.access("/usr/bin/v2ray/v2ray") or nixio.fs.access("/usr/bin/v2ray") then
-	o:value("v2ray", translate("V2Ray"))
+o:value("v2ray", translate("V2Ray"))
 end
 if nixio.fs.access("/usr/sbin/trojan") then
-	o:value("trojan", translate("Trojan"))
+o:value("trojan", translate("Trojan"))
 end
 if nixio.fs.access("/usr/sbin/redsocks2") then
-	o:value("socks5", translate("Socks5"))
-	o:value("tun", translate("Network Tunnel"))
+o:value("socks5", translate("Socks5"))
+o:value("tun", translate("Network Tunnel"))
 end
 o.description = translate("Using incorrect encryption mothod may causes service fail to start")

@ -139,7 +141,7 @@ o = s:option(Value, "alias", translate("Alias(optional)"))

 o = s:option(ListValue, "iface", translate("Network interface to use"))
 for _, e in ipairs(sys.net.devices()) do
-	if e ~= "lo" then o:value(e) end
+		if e ~= "lo" then o:value(e) end
 end
 o:depends("type", "tun")
 o.description = translate("Redirect traffic to this network interface")
@ -408,30 +410,30 @@ cert_dir = "/etc/ssl/private/"
 local path

 http.setfilehandler(
-function(meta, chunk, eof)
-	if not fd then
-		if (not meta) or (not meta.name) or (not meta.file) then return end
-		fd = nixio.open(cert_dir .. meta.file, "w")
-		if not fd then
-			path = translate("Create upload file error.")
-			return
-		end
-	end
-	if chunk and fd then
-		fd:write(chunk)
-	end
-	if eof and fd then
-		fd:close()
-		fd = nil
-		path = '/etc/ssl/private/' .. meta.file .. ''
-	end
-end
-)
+    function(meta, chunk, eof)
+      if not fd then
+        if (not meta) or (not meta.name) or (not meta.file) then return end
+           fd = nixio.open(cert_dir .. meta.file, "w")
+        if not fd then
+           path = translate("Create upload file error.")
+        return
+        end
+     end
+     if chunk and fd then
+     fd:write(chunk)
+     end
+     if eof and fd then
+       fd:close()
+       fd = nil
+       path = '/etc/ssl/private/' .. meta.file .. ''
+    end
+    end
+    )
 if luci.http.formvalue("upload") then
-	local f = luci.http.formvalue("ulfile")
-	if #f <= 0 then
-		path = translate("No specify upload file.")
-	end
+   local f = luci.http.formvalue("ulfile")
+    if #f <= 0 then
+        path = translate("No specify upload file.")
+   end   
 end

 o = s:option(Value, "certpath", translate("Current Certificate Path"))
@ -457,42 +459,42 @@ o.default = 1234
 o.rmempty = false

 if nixio.fs.access("/usr/bin/kcptun-client") then
-	
-	kcp_enable = s:option(Flag, "kcp_enable", translate("KcpTun Enable"), translate("bin:/usr/bin/kcptun-client"))
-	kcp_enable.rmempty = true
-	kcp_enable.default = "0"
-	kcp_enable:depends("type", "ssr")
-	kcp_enable:depends("type", "ss")
-	
-	o = s:option(Value, "kcp_port", translate("KcpTun Port"))
-	o.datatype = "port"
-	o.default = 4000
-	function o.validate(self, value, section)
+
+kcp_enable = s:option(Flag, "kcp_enable", translate("KcpTun Enable"), translate("bin:/usr/bin/kcptun-client"))
+kcp_enable.rmempty = true
+kcp_enable.default = "0"
+kcp_enable:depends("type", "ssr")
+kcp_enable:depends("type", "ss")
+
+o = s:option(Value, "kcp_port", translate("KcpTun Port"))
+o.datatype = "port"
+o.default = 4000
+function o.validate(self, value, section)
 		local kcp_file="/usr/bin/kcptun-client"
 		local enable = kcp_enable:formvalue(section) or kcp_enable.disabled
 		if enable == kcp_enable.enabled then
-			if not fs.access(kcp_file)  then
-				return nil, translate("Haven't a Kcptun executable file")
-			elseif  not isKcptun(kcp_file) then
-				return nil, translate("Not a Kcptun executable file")
-			end
-		end
-		
-		return value
+	if not fs.access(kcp_file)  then
+		return nil, translate("Haven't a Kcptun executable file")
+	elseif  not isKcptun(kcp_file) then
+		return nil, translate("Not a Kcptun executable file")
 	end
-	o:depends("type", "ssr")
-	o:depends("type", "ss")
-	
-	o = s:option(Value, "kcp_password", translate("KcpTun Password"))
-	o.password = true
-	o:depends("type", "ssr")
-	o:depends("type", "ss")
-	
-	o = s:option(Value, "kcp_param", translate("KcpTun Param"))
-	o.default = "--nocomp"
-	o:depends("type", "ssr")
-	o:depends("type", "ss")
-	
+	end
+
+	return value
+end
+o:depends("type", "ssr")
+o:depends("type", "ss")
+
+o = s:option(Value, "kcp_password", translate("KcpTun Password"))
+o.password = true
+o:depends("type", "ssr")
+o:depends("type", "ss")
+
+o = s:option(Value, "kcp_param", translate("KcpTun Param"))
+o.default = "--nocomp"
+o:depends("type", "ssr")
+o:depends("type", "ss")
+
 end

 return m
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/control.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/control.lua
@ -27,9 +27,9 @@ o.rmempty = false
 o = s:taboption("lan_ac", DynamicList, "lan_ac_ips", translate("LAN Host List"))
 o.datatype = "ipaddr"
 luci.ip.neighbors({ family = 4 }, function(entry)
-	if entry.reachable then
-		o:value(entry.dest:string())
-	end
+		if entry.reachable then
+			o:value(entry.dest:string())
+		end
 end)
 o:depends("lan_ac_mode", "w")
 o:depends("lan_ac_mode", "b")
@ -37,25 +37,25 @@ o:depends("lan_ac_mode", "b")
 o = s:taboption("lan_ac", DynamicList, "lan_bp_ips", translate("LAN Bypassed Host List"))
 o.datatype = "ipaddr"
 luci.ip.neighbors({ family = 4 }, function(entry)
-	if entry.reachable then
-		o:value(entry.dest:string())
-	end
+		if entry.reachable then
+			o:value(entry.dest:string())
+		end
 end)

 o = s:taboption("lan_ac", DynamicList, "lan_fp_ips", translate("LAN Force Proxy Host List"))
 o.datatype = "ipaddr"
 luci.ip.neighbors({ family = 4 }, function(entry)
-	if entry.reachable then
-		o:value(entry.dest:string())
-	end
+		if entry.reachable then
+			o:value(entry.dest:string())
+		end
 end)

 o = s:taboption("lan_ac", DynamicList, "lan_gm_ips", translate("Game Mode Host List"))
 o.datatype = "ipaddr"
 luci.ip.neighbors({ family = 4 }, function(entry)
-	if entry.reachable then
-		o:value(entry.dest:string())
-	end
+		if entry.reachable then
+			o:value(entry.dest:string())
+		end
 end)

 -- Part of Self
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/log.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/log.lua
@ -5,12 +5,12 @@ t = f:field(TextValue, "conf")
 t.rmempty = true
 t.rows = 20
 function t.cfgvalue()
-	local logs = luci.util.execi("cat /tmp/ssrplus.log")
-	local s = ""
-	for line in logs do
-		s = line .. "\n" .. s
-	end
-	return s
+local logs = luci.util.execi("cat /tmp/ssrplus.log")
+local s = ""
+for line in logs do
+s = line .. "\n" .. s
+end
+return s
 end
 t.readonly="readonly"

--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/server-config.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/server-config.lua
@ -6,38 +6,38 @@ local shadowsocksr = "shadowsocksr"
 local sid = arg[1]

 local encrypt_methods = {
-"rc4-md5",
-"rc4-md5-6",
-"rc4",
-"table",
-"aes-128-cfb",
-"aes-192-cfb",
-"aes-256-cfb",
-"aes-128-ctr",
-"aes-192-ctr",
-"aes-256-ctr",
-"bf-cfb",
-"camellia-128-cfb",
-"camellia-192-cfb",
-"camellia-256-cfb",
-"cast5-cfb",
-"des-cfb",
-"idea-cfb",
-"rc2-cfb",
-"seed-cfb",
-"salsa20",
-"chacha20",
-"chacha20-ietf",
+	"rc4-md5",
+	"rc4-md5-6",
+	"rc4",
+	"table",
+	"aes-128-cfb",
+	"aes-192-cfb",
+	"aes-256-cfb",
+	"aes-128-ctr",
+	"aes-192-ctr",
+	"aes-256-ctr",
+	"bf-cfb",
+	"camellia-128-cfb",
+	"camellia-192-cfb",
+	"camellia-256-cfb",
+	"cast5-cfb",
+	"des-cfb",
+	"idea-cfb",
+	"rc2-cfb",
+	"seed-cfb",
+	"salsa20",
+	"chacha20",
+	"chacha20-ietf",
 }

 local protocol = {
-"origin",
+	"origin",
 }

 obfs = {
-"plain",
-"http_simple",
-"http_post",
+	"plain",
+	"http_simple",
+	"http_post",
 }

 m = Map(shadowsocksr, translate("Edit ShadowSocksR Server"))
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/server.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/server.lua
@ -9,46 +9,46 @@ local uci = luci.model.uci.cursor()
 m = Map(shadowsocksr, translate("ShadowSocksR Server"))

 local encrypt_methods = {
-"table",
-"rc4",
-"rc4-md5",
-"rc4-md5-6",
-"aes-128-cfb",
-"aes-192-cfb",
-"aes-256-cfb",
-"aes-128-ctr",
-"aes-192-ctr",
-"aes-256-ctr",
-"bf-cfb",
-"camellia-128-cfb",
-"camellia-192-cfb",
-"camellia-256-cfb",
-"cast5-cfb",
-"des-cfb",
-"idea-cfb",
-"rc2-cfb",
-"seed-cfb",
-"salsa20",
-"chacha20",
-"chacha20-ietf",
+	"table",
+	"rc4",
+	"rc4-md5",
+	"rc4-md5-6",
+	"aes-128-cfb",
+	"aes-192-cfb",
+	"aes-256-cfb",
+	"aes-128-ctr",
+	"aes-192-ctr",
+	"aes-256-ctr",
+	"bf-cfb",
+	"camellia-128-cfb",
+	"camellia-192-cfb",
+	"camellia-256-cfb",
+	"cast5-cfb",
+	"des-cfb",
+	"idea-cfb",
+	"rc2-cfb",
+	"seed-cfb",
+	"salsa20",
+	"chacha20",
+	"chacha20-ietf",
 }

 local protocol = {
-"origin",
-"verify_deflate",
-"auth_sha1_v4",
-"auth_aes128_sha1",
-"auth_aes128_md5",
-"auth_chain_a",
+	"origin",
+	"verify_deflate",
+	"auth_sha1_v4",
+	"auth_aes128_sha1",
+	"auth_aes128_md5",
+	"auth_chain_a",
 }

 obfs = {
-"plain",
-"http_simple",
-"http_post",
-"random_head",
-"tls1.2_ticket_auth",
-"tls1.2_ticket_fastauth",
+	"plain",
+	"http_simple",
+	"http_post",
+	"random_head",
+	"tls1.2_ticket_auth",
+	"tls1.2_ticket_fastauth",
 }

 -- [[ Global Setting ]]--
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/servers.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/servers.lua
@ -6,12 +6,14 @@ local shadowsocksr = "shadowsocksr"
 local uci = luci.model.uci.cursor()
 local server_count = 0
 uci:foreach("shadowsocksr", "servers", function(s)
-	server_count = server_count + 1
+  server_count = server_count + 1
 end)

 local fs  = require "nixio.fs"
 local sys = require "luci.sys"

+local ucic = luci.model.uci.cursor()
+
 m = Map(shadowsocksr,  translate("Servers subscription and manage"))

 -- Server Subscribe
@ -26,7 +28,7 @@ o.description = translate("Auto Update Server subscription, GFW list and CHN rou

 o = s:option(ListValue, "auto_update_time", translate("Update time (every day)"))
 for t = 0,23 do
-	o:value(t, t..":00")
+o:value(t, t..":00")
 end
 o.default=2
 o.rmempty = false
@ -38,7 +40,7 @@ o = s:option(Button,"update_Sub",translate("Update Subscribe List"))
 o.inputstyle = "reload"
 o.description = translate("Update subscribe url list first")
 o.write = function()
-	luci.http.redirect(luci.dispatcher.build_url("admin", "services", "shadowsocksr", "servers"))
+  luci.http.redirect(luci.dispatcher.build_url("admin", "services", "shadowsocksr", "servers"))
 end

 o = s:option(Flag, "switch", translate("Subscribe Default Auto-Switch"))
@ -59,18 +61,18 @@ o = s:option(Button,"delete",translate("Delete All Subscribe Severs"))
 o.inputstyle = "reset"
 o.description = string.format(translate("Server Count") ..  ": %d", server_count)
 o.write = function()
-	uci:delete_all("shadowsocksr", "servers", function(s)
-		if s.hashkey or s.isSubscribe then
-			return true
-		else
-			return false
-		end
-	end)
-	uci:save("shadowsocksr")
-	uci:commit("shadowsocksr")
-	luci.sys.exec("/etc/init.d/shadowsocksr restart")
-	luci.http.redirect(luci.dispatcher.build_url("admin", "services", "shadowsocksr", "servers"))
-	return
+uci:delete_all("shadowsocksr", "servers", function(s)
+  if s.hashkey or s.isSubscribe then
+    return true
+  else
+    return false
+  end
+end)
+uci:save("shadowsocksr") 
+uci:commit("shadowsocksr")
+luci.sys.exec("/etc/init.d/shadowsocksr restart")
+luci.http.redirect(luci.dispatcher.build_url("admin", "services", "shadowsocksr", "servers"))
+return
 end

 -- [[ Servers Manage ]]--
@ -84,7 +86,7 @@ function s.create(...)
 	local sid = TypedSection.create(...)
 	if sid then
 		luci.http.redirect(s.extedit % sid)
-		return
+	return
 	end
 end

@ -115,11 +117,11 @@ o.width="10%"
 node = s:option(Button,"apply_node",translate("Apply"))
 node.inputstyle = "apply"
 node.write = function(self, section)
-	uci:set("shadowsocksr", '@global[0]', 'global_server', section)
-	uci:save("shadowsocksr")
-	uci:commit("shadowsocksr")
-	luci.sys.exec("/etc/init.d/shadowsocksr restart")
-	luci.http.redirect(luci.dispatcher.build_url("admin", "services", "shadowsocksr", "client"))
+  ucic:set("shadowsocksr", '@global[0]', 'global_server', section)
+  ucic:save("shadowsocksr") 
+  ucic:commit("shadowsocksr")
+  luci.sys.exec("/etc/init.d/shadowsocksr restart")
+  luci.http.redirect(luci.dispatcher.build_url("admin", "services", "shadowsocksr", "client"))
 end

 o = s:option(Flag, "switch_enable", translate("Auto Switch"))
--- a/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/status.lua
+++ b/package/lean/luci-app-ssr-plus/luasrc/model/cbi/shadowsocksr/status.lua
@ -1,6 +1,7 @@
 -- Copyright (C) 2017 yushi studio <ywb94@qq.com>
 -- Licensed to the public under the GNU General Public License v3.

+local IPK_Version="3.0.9"
 local m, s, o
 local redir_run=0
 local reudp_run=0
@ -8,11 +9,13 @@ local sock5_run=0
 local server_run=0
 local kcptun_run=0
 local tunnel_run=0
+local udp2raw_run=0
+local udpspeeder_run=0
 local gfw_count=0
 local ad_count=0
 local ip_count=0
 local nfip_count=0
-local uci = luci.model.uci.cursor()
+local ucic = luci.model.uci.cursor()
 local shadowsocksr = "shadowsocksr"
 -- html constants
 font_blue = [[<font color="green">]]
@ -25,66 +28,66 @@ local sys = require "luci.sys"
 local kcptun_version=translate("Unknown")
 local kcp_file="/usr/bin/kcptun-client"
 if not fs.access(kcp_file)  then
-	kcptun_version=translate("Not exist")
+kcptun_version=translate("Not exist")
 else
-	if not fs.access(kcp_file, "rwx", "rx", "rx") then
-		fs.chmod(kcp_file, 755)
-	end
-	kcptun_version=sys.exec(kcp_file .. " -v | awk '{printf $3}'")
-	if not kcptun_version or kcptun_version == "" then
-		kcptun_version = translate("Unknown")
-	end
-	
+if not fs.access(kcp_file, "rwx", "rx", "rx") then
+fs.chmod(kcp_file, 755)
+end
+kcptun_version=sys.exec(kcp_file .. " -v | awk '{printf $3}'")
+if not kcptun_version or kcptun_version == "" then
+kcptun_version = translate("Unknown")
+end
+
 end

 if nixio.fs.access("/etc/dnsmasq.ssr/gfw_list.conf") then
-	gfw_count = tonumber(sys.exec("cat /etc/dnsmasq.ssr/gfw_list.conf | wc -l"))/2
+gfw_count = tonumber(sys.exec("cat /etc/dnsmasq.ssr/gfw_list.conf | wc -l"))/2
 end

 if nixio.fs.access("/etc/dnsmasq.ssr/ad.conf") then
-	ad_count = tonumber(sys.exec("cat /etc/dnsmasq.ssr/ad.conf | wc -l"))
+ad_count=tonumber(sys.exec("cat /etc/dnsmasq.ssr/ad.conf | wc -l"))
 end

 if nixio.fs.access("/etc/china_ssr.txt") then
-	ip_count = tonumber(sys.exec("cat /etc/china_ssr.txt | wc -l"))
+ip_count = sys.exec("cat /etc/china_ssr.txt | wc -l")
 end

 if nixio.fs.access("/etc/config/netflixip.list") then
-	nfip_count = tonumber(sys.exec("cat /etc/config/netflixip.list | wc -l"))
+    nfip_count = sys.exec("cat /etc/config/netflixip.list | wc -l")
 end

 local icount=sys.exec("busybox ps -w | grep ssr-reudp |grep -v grep| wc -l")
 if tonumber(icount)>0 then
-	reudp_run=1
+reudp_run=1
 else
-	icount=sys.exec("busybox ps -w | grep ssr-retcp |grep \"\\-u\"|grep -v grep| wc -l")
-	if tonumber(icount)>0 then
-		reudp_run=1
-	end
+icount=sys.exec("busybox ps -w | grep ssr-retcp |grep \"\\-u\"|grep -v grep| wc -l")
+if tonumber(icount)>0 then
+reudp_run=1
+end
 end

 if luci.sys.call("busybox ps -w | grep ssr-retcp | grep -v grep >/dev/null") == 0 then
-	redir_run=1
+redir_run=1
 end

 if luci.sys.call("busybox ps -w | grep ssr-socks | grep -v grep >/dev/null") == 0 then
-	sock5_run=1
+sock5_run=1
 end

 if luci.sys.call("pidof kcptun-client >/dev/null") == 0 then
-	kcptun_run=1
+kcptun_run=1
 end

 if luci.sys.call("pidof ssr-server >/dev/null") == 0 then
-	server_run=1
+server_run=1
 end

 if luci.sys.call("busybox ps -w | grep ssr-tunnel |grep -v grep >/dev/null") == 0 then
-	tunnel_run=1
+tunnel_run=1
 end

 if luci.sys.call("pidof pdnsd >/dev/null") == 0 or (luci.sys.call("busybox ps -w | grep ssr-dns |grep -v grep >/dev/null") == 0 and luci.sys.call("pidof dns2socks >/dev/null") == 0)then
-	pdnsd_run=1
+pdnsd_run=1
 end

 m = SimpleForm("Version")
@ -94,62 +97,63 @@ m.submit = false
 s=m:field(DummyValue,"redir_run",translate("Global Client"))
 s.rawhtml  = true
 if redir_run == 1 then
-	s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
+s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
 else
-	s.value = translate("Not Running")
+s.value = translate("Not Running")
 end

 s=m:field(DummyValue,"reudp_run",translate("Game Mode UDP Relay"))
 s.rawhtml  = true
 if reudp_run == 1 then
-	s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
+s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
 else
-	s.value = translate("Not Running")
+s.value = translate("Not Running")
 end

-if uci:get_first(shadowsocksr, 'global', 'pdnsd_enable', '0') ~= '0' then
-	s=m:field(DummyValue,"pdnsd_run",translate("DNS Anti-pollution"))
-	s.rawhtml  = true
-	if pdnsd_run == 1 then
-		s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
-	else
-		s.value = translate("Not Running")
-	end
+if ucic:get_first(shadowsocksr, 'global', 'pdnsd_enable', '0') ~= '0' then
+s=m:field(DummyValue,"pdnsd_run",translate("DNS Anti-pollution"))
+s.rawhtml  = true
+if pdnsd_run == 1 then
+s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
+else
+s.value = translate("Not Running")
+end
 end

-if uci:get_first(shadowsocksr, 'socks5_proxy', 'socks', '0') == '1' then
-	if nixio.fs.access("/usr/bin/microsocks") then
-		s=m:field(DummyValue,"sock5_run",translate("SOCKS5 Proxy Server"))
-		s.rawhtml  = true
-		if sock5_run == 1 then
-			s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
-		else
-			s.value = translate("Not Running")
-		end
-	end
+if ucic:get_first(shadowsocksr, 'socks5_proxy', 'socks', '0') == '1' then
+if nixio.fs.access("/usr/bin/microsocks") then
+s=m:field(DummyValue,"sock5_run",translate("SOCKS5 Proxy Server"))
+s.rawhtml  = true
+if sock5_run == 1 then
+s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
+else
+s.value = translate("Not Running")
+end
+end
 end

 if nixio.fs.access("/usr/bin/ssr-server") then
-	s=m:field(DummyValue,"server_run",translate("Global SSR Server"))
-	s.rawhtml  = true
-	if server_run == 1 then
-		s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
-	else
-		s.value = translate("Not Running")
-	end
+s=m:field(DummyValue,"server_run",translate("Global SSR Server"))
+s.rawhtml  = true
+if server_run == 1 then
+s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
+else
+s.value = translate("Not Running")
+end
 end

 if nixio.fs.access("/usr/bin/kcptun-client") then
-	s=m:field(DummyValue,"kcp_version",translate("KcpTun Version"))
-	s.rawhtml  = true
-	s.value =kcptun_version
-	s=m:field(DummyValue,"kcptun_run",translate("KcpTun"))
-	s.rawhtml  = true
-	if kcptun_run == 1 then
-		s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
-	else
-		s.value = translate("Not Running")
-	end
+s=m:field(DummyValue,"kcp_version",translate("KcpTun Version"))
+s.rawhtml  = true
+s.value =kcptun_version
+
+s=m:field(DummyValue,"kcptun_run",translate("KcpTun"))
+s.rawhtml  = true
+if kcptun_run == 1 then
+s.value =font_blue .. bold_on .. translate("Running") .. bold_off .. font_off
+else
+s.value = translate("Not Running")
+end
 end

 s=m:field(DummyValue,"google",translate("Google Connectivity"))
@ -163,23 +167,23 @@ s.template = "shadowsocksr/check"
 s=m:field(DummyValue,"gfw_data",translate("GFW List Data"))
 s.rawhtml  = true
 s.template = "shadowsocksr/refresh"
-s.value = gfw_count .. " " .. translate("Records")
+s.value =tostring(math.ceil(gfw_count)) .. " " .. translate("Records")

 s=m:field(DummyValue,"ip_data",translate("China IP Data"))
 s.rawhtml  = true
 s.template = "shadowsocksr/refresh"
-s.value = ip_count .. " " .. translate("Records")
+s.value =ip_count .. " " .. translate("Records")

 s=m:field(DummyValue,"nfip_data",translate("Netflix IP Data"))
 s.rawhtml  = true
 s.template = "shadowsocksr/refresh"
-s.value = nfip_count .. " " .. translate("Records")
+s.value =nfip_count .. " " .. translate("Records")

-if uci:get_first(shadowsocksr, 'global', 'adblock', '0') == '1' then
-	s=m:field(DummyValue,"ad_data",translate("Advertising Data"))
-	s.rawhtml  = true
-	s.template = "shadowsocksr/refresh"
-	s.value = ad_count .. " " .. translate("Records")
+if ucic:get_first(shadowsocksr, 'global', 'adblock', '0') == '1' then
+s=m:field(DummyValue,"ad_data",translate("Advertising Data"))
+s.rawhtml  = true
+s.template = "shadowsocksr/refresh"
+s.value =ad_count .. " " .. translate("Records")
 end

 s=m:field(DummyValue,"check_port",translate("Check Server Port"))
--- a/package/lean/luci-app-ssr-plus/po/zh-cn/ssr-plus.po
+++ b/package/lean/luci-app-ssr-plus/po/zh-cn/ssr-plus.po
@ -334,6 +334,9 @@ msgstr "启用广告屏蔽"
 msgid "adblock_url"
 msgstr "广告屏蔽订阅"

+msgid "Enable Custom Netflix IP Url"
+msgstr "启用自定义Netflix IP更新URL"
+
 msgid "nfip_url"
 msgstr "Netflix IP更新URL"

@ -349,6 +352,9 @@ msgstr "【广告屏蔽】数据库"
 msgid "Chnroute Setting"
 msgstr "国内IP段数据库更新设置"

+msgid "Enable custom chnroute"
+msgstr "启用自定义更新地址"
+
 msgid "Update url"
 msgstr "更新链接"

--- a/package/lean/luci-app-ssr-plus/root/etc/china_ssr.txt
+++ b/package/lean/luci-app-ssr-plus/root/etc/china_ssr.txt
--- a/package/lean/luci-app-ssr-plus/root/etc/config/black.list
+++ b/package/lean/luci-app-ssr-plus/root/etc/config/black.list
--- a/package/lean/luci-app-ssr-plus/root/etc/config/shadowsocksr
+++ b/package/lean/luci-app-ssr-plus/root/etc/config/shadowsocksr
@ -13,6 +13,7 @@ config global
 	option switch_try_count '3'
 	option adblock '0'
 	option adblock_url 'https://gitee.com/privacy-protection-tools/anti-ad/raw/master/anti-ad-for-dnsmasq.conf'
+	option chnroute '1'
 	option chnroute_url 'https://ispip.clang.cn/all_cn.txt'
 	option nfip_url 'https://raw.githubusercontent.com/QiuSimons/Netflix_IP/master/NF_only.txt'
 	option netflix_server 'same'
--- a/package/lean/luci-app-ssr-plus/root/etc/config/white.list
+++ b/package/lean/luci-app-ssr-plus/root/etc/config/white.list
--- a/package/lean/luci-app-ssr-plus/root/etc/dnsmasq.ssr/ad.conf
+++ b/package/lean/luci-app-ssr-plus/root/etc/dnsmasq.ssr/ad.conf
--- a/package/lean/luci-app-ssr-plus/root/etc/dnsmasq.ssr/gfw_list.conf
+++ b/package/lean/luci-app-ssr-plus/root/etc/dnsmasq.ssr/gfw_list.conf
--- a/package/lean/luci-app-ssr-plus/root/etc/init.d/shadowsocksr
+++ b/package/lean/luci-app-ssr-plus/root/etc/init.d/shadowsocksr
@ -48,8 +48,8 @@ uci_get_by_cfgid() {
 }

 check_host() {
-	local host=$1
-	if echo $host | grep -E "^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$" >/dev/null; then
+  local host=$1
+  if echo $host | grep -E "^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$" >/dev/null; then
 		hostip=$host
 	elif [ "$host" != "${host#*:[0-9a-fA-F]}" ]; then
 		hostip=$host
@ -68,6 +68,7 @@ add_cron() {
 	sed -i '/shadowsocksr/d' $CRON_FILE
 	sed -i '/ssrplus.log/d' $CRON_FILE && echo '0 1 * * * echo "" > /tmp/ssrplus.log' >>$CRON_FILE
 	[ $(uci_get_by_type server_subscribe auto_update 0) -eq 1 ] && echo "0 $(uci_get_by_type server_subscribe auto_update_time) * * * /usr/share/shadowsocksr/ssrplusupdate.sh" >>$CRON_FILE
+
 	crontab $CRON_FILE
 }

@ -223,9 +224,9 @@ start_rules() {
 		proxyport="-m multiport --dports 22,53,587,465,995,993,143,80,443"
 	fi
 	if [ "$NETFLIX_SERVER" != "$GLOBAL_SERVER" ]; then
-		netflix="1"
-	else
-		netflix="0"
+    netflix="1"
+  else
+    netflix="0"
 	fi
 	/usr/bin/ssr-rules \
 	-s "$server" \
@ -309,7 +310,7 @@ start_redir() {
 		-l :$server_port $password $kcp_param
 		kcp_enable_flag=1
 	fi
-
+	
 	gen_config_file $GLOBAL_SERVER 0 $(uci_get_by_name $GLOBAL_SERVER local_port 1234)
 	local stype=$(uci_get_by_name $GLOBAL_SERVER type)
 	if [ "$stype" == "ss" ]; then
@ -326,25 +327,25 @@ start_redir() {
 	elif [ "$stype" == "tun" ]; then
 		sscmd="/usr/sbin/redsocks2"
 	fi
-
-	local ntype=$(uci_get_by_name $NETFLIX_SERVER type)
-	if [ "$ntype" == "ss" ]; then
-		ncmd="/usr/bin/ss-redir"
-		sssock="/usr/bin/ss-local"
-	elif [ "$ntype" == "ssr" ]; then
-		ncmd="/usr/bin/ssr-redir"
-		sssock="/usr/bin/ssr-local"
-	elif [ "$ntype" == "v2ray" ]; then
-		ncmd="/usr/bin/v2ray/v2ray"
-		[ ! -f "$ncmd" ] && ncmd="/usr/bin/v2ray"
-	elif [ "$ntype" == "trojan" ]; then
-		ncmd="/usr/sbin/trojan"
-	elif [ "$ntype" == "socks5" ]; then
-		ncmd="/usr/sbin/redsocks2"
-	elif [ "$ntype" == "tun" ]; then
-		ncmd="/usr/sbin/redsocks2"
-	fi
-
+    
+  local ntype=$(uci_get_by_name $NETFLIX_SERVER type)
+  if [ "$ntype" == "ss" ]; then
+    ncmd="/usr/bin/ss-redir"
+    sssock="/usr/bin/ss-local"
+  elif [ "$ntype" == "ssr" ]; then
+    ncmd="/usr/bin/ssr-redir"
+    sssock="/usr/bin/ssr-local"
+  elif [ "$ntype" == "v2ray" ]; then
+    ncmd="/usr/bin/v2ray/v2ray"
+    [ ! -f "$ncmd" ] && ncmd="/usr/bin/v2ray"
+  elif [ "$ntype" == "trojan" ]; then
+    ncmd="/usr/sbin/trojan"
+  elif [ "$ntype" == "socks5" ]; then
+    ncmd="/usr/sbin/redsocks2"
+  elif [ "$ntype" == "tun" ]; then
+    ncmd="/usr/sbin/redsocks2"
+  fi
+	
 	local utype=$(uci_get_by_name $UDP_RELAY_SERVER type)
 	if [ "$utype" == "ss" ]; then
 		ucmd="/usr/bin/ss-redir"
@ -367,70 +368,71 @@ start_redir() {
 	fi
 	redir_tcp=1
 	if [ "$stype" == "ss" -o "$stype" == "ssr" ]; then
-		local last_config_file=$CONFIG_FILE
-		local pid_file="/var/run/ssr-retcp.pid"
-		for i in $(seq 1 $threads); do
-			$sscmd -c $CONFIG_FILE $ARG_OTA -f /var/run/ssr-retcp_$i.pid >/dev/null 2>&1
-		done
-		echo "$(date "+%Y-%m-%d %H:%M:%S") Shadowsocks/ShadowsocksR $threads Threads Started!" >>/tmp/ssrplus.log
-	elif [ "$stype" == "v2ray" ]; then
-		$sscmd -config /var/etc/v2-ssr-retcp.json >/dev/null 2>&1 &
-		echo "$(date "+%Y-%m-%d %H:%M:%S") $($sscmd -version | head -1) Started!" >>/tmp/ssrplus.log
-	elif [ "$stype" == "trojan" ]; then
-		for i in $(seq 1 $threads); do
-			$sscmd --config /var/etc/trojan-ssr-retcp.json >/dev/null 2>&1 &
-		done
-		echo "$(date "+%Y-%m-%d %H:%M:%S") $($sscmd --version 2>&1 | head -1) , $threads Threads Started!" >>/tmp/ssrplus.log
-	elif [ "$stype" == "socks5" ]; then
-		/usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-retcp.conf" socks5 tcp $(uci_get_by_name $GLOBAL_SERVER local_port) \
-		$(check_host $(uci_get_by_name $GLOBAL_SERVER server)) $(uci_get_by_name $GLOBAL_SERVER server_port) \
-		$(uci_get_by_name $GLOBAL_SERVER auth_enable 0) $(uci_get_by_name $GLOBAL_SERVER username) $(uci_get_by_name $GLOBAL_SERVER password)
-		for i in $(seq 1 $threads); do
-			$sscmd -c /var/etc/redsocks-ssr-retcp.conf >/dev/null 2>&1
-		done
-		echo "$(date "+%Y-%m-%d %H:%M:%S") Socks5 REDIRECT/TPROXY $threads Threads Started!" >>/tmp/ssrplus.log
-	elif [ "$stype" == "tun" ]; then
-		/usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-retcp.conf" vpn $(uci_get_by_name $GLOBAL_SERVER iface "br-lan") $(uci_get_by_name $GLOBAL_SERVER local_port)
-		for i in $(seq 1 $threads); do
-			$sscmd -c /var/etc/redsocks-ssr-retcp.conf >/dev/null 2>&1
-		done
-		echo "$(date "+%Y-%m-%d %H:%M:%S") Network Tunnel REDIRECT $threads Threads Started!" >>/tmp/ssrplus.log
+      local last_config_file=$CONFIG_FILE
+      local pid_file="/var/run/ssr-retcp.pid"
+      for i in $(seq 1 $threads); do
+        $sscmd -c $CONFIG_FILE $ARG_OTA -f /var/run/ssr-retcp_$i.pid >/dev/null 2>&1
+      done        
+      echo "$(date "+%Y-%m-%d %H:%M:%S") Shadowsocks/ShadowsocksR $threads Threads Started!" >>/tmp/ssrplus.log
+   elif [ "$stype" == "v2ray" ]; then
+      $sscmd -config /var/etc/v2-ssr-retcp.json >/dev/null 2>&1 &
+      echo "$(date "+%Y-%m-%d %H:%M:%S") $($sscmd -version | head -1) Started!" >>/tmp/ssrplus.log
+   elif [ "$stype" == "trojan" ]; then
+    for i in $(seq 1 $threads); do
+      $sscmd --config /var/etc/trojan-ssr-retcp.json >/dev/null 2>&1 &
+    done
+    echo "$(date "+%Y-%m-%d %H:%M:%S") $($sscmd --version 2>&1 | head -1) , $threads Threads Started!" >>/tmp/ssrplus.log
+   elif [ "$stype" == "socks5" ]; then
+    /usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-retcp.conf" socks5 tcp $(uci_get_by_name $GLOBAL_SERVER local_port) \
+    $(check_host $(uci_get_by_name $GLOBAL_SERVER server)) $(uci_get_by_name $GLOBAL_SERVER server_port) \
+    $(uci_get_by_name $GLOBAL_SERVER auth_enable 0) $(uci_get_by_name $GLOBAL_SERVER username) $(uci_get_by_name $GLOBAL_SERVER password)
+    for i in $(seq 1 $threads); do
+        $sscmd -c /var/etc/redsocks-ssr-retcp.conf >/dev/null 2>&1
+    done
+    echo "$(date "+%Y-%m-%d %H:%M:%S") Socks5 REDIRECT/TPROXY $threads Threads Started!" >>/tmp/ssrplus.log
+   elif [ "$stype" == "tun" ]; then
+    /usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-retcp.conf" vpn $(uci_get_by_name $GLOBAL_SERVER iface "br-lan") $(uci_get_by_name $GLOBAL_SERVER local_port)
+    for i in $(seq 1 $threads); do
+        $sscmd -c /var/etc/redsocks-ssr-retcp.conf >/dev/null 2>&1
+    done
+    echo "$(date "+%Y-%m-%d %H:%M:%S") Network Tunnel REDIRECT $threads Threads Started!" >>/tmp/ssrplus.log
 	fi
-
+	
 	if [ "$NETFLIX_SERVER" != "$GLOBAL_SERVER" ]; then
-		if [ "$ntype" == "ss" -o "$ntype" == "ssr" ]; then
-			gen_config_file $NETFLIX_SERVER 2 4321
-			gen_config_file $NETFLIX_SERVER 3 1088
-			$sssock -c /var/etc/shadowsocksr_s.json $ARG_OTA -f /var/run/ssr-socksdns.pid >/dev/null 2>&1
-			dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
-			$ncmd -c /var/etc/shadowsocksr_n.json $ARG_OTA -f /var/run/ssr-netflix.pid >/dev/null 2>&1
-		elif [ "$ntype" == "v2ray" ]; then
-			lua /usr/share/shadowsocksr/genv2nfconfig.lua $NETFLIX_SERVER tcp 4321 >/var/etc/v2-ssr-netflix.json
-			$ncmd -config /var/etc/v2-ssr-netflix.json >/dev/null 2>&1 &
-			dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
-		elif [ "$ntype" == "trojan" ]; then
-			lua /usr/share/shadowsocksr/gentrojanconfig.lua $NETFLIX_SERVER nat 4321 >/var/etc/trojan-ssr-netflix.json
-			sed -i 's/\\//g' /var/etc/trojan-ssr-netflix.json
-			$ncmd --config /var/etc/trojan-ssr-netflix.json >/dev/null 2>&1 &
-			lua /usr/share/shadowsocksr/gentrojanconfig.lua $NETFLIX_SERVER client 1088 >/var/etc/trojan-ssr-socksdns.json
-			sed -i 's/\\//g' /var/etc/trojan-ssr-socksdns.json
-			$ncmd --config /var/etc/trojan-ssr-socksdns.json >/dev/null 2>&1 &
-			dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
-		elif [ "$ntype" == "socks5" ]; then
-			/usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-netflix.conf" socks5 tcp 4321 \
-			$(check_host $(uci_get_by_name $NETFLIX_SERVER server)) $(uci_get_by_name $NETFLIX_SERVER server_port) \
-			$(uci_get_by_name $NETFLIX_SERVER auth_enable 0) $(uci_get_by_name $NETFLIX_SERVER username) $(uci_get_by_name $NETFLIX_SERVER password)
-			$ncmd -c /var/etc/redsocks-ssr-netflix.conf >/dev/null 2>&1
-			microsocks -i 127.0.0.1 -p 1088 ssr-socksdns >/dev/null 2>&1 &
-			dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
-		elif [ "$ntype" == "tun" ]; then
-			/usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-netflix.conf" vpn $(uci_get_by_name $NETFLIX_SERVER iface "br-lan") 4321
-			$ncmd -c /var/etc/redsocks-ssr-netflix.conf >/dev/null 2>&1
-			microsocks -i 127.0.0.1 -p 1088 ssr-socksdns >/dev/null 2>&1 &
-			dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
-		fi
-	fi
-
+    if [ "$ntype" == "ss" -o "$ntype" == "ssr" ]; then
+        gen_config_file $NETFLIX_SERVER 2 4321
+        gen_config_file $NETFLIX_SERVER 3 1088
+        $sssock -c /var/etc/shadowsocksr_s.json $ARG_OTA -f /var/run/ssr-socksdns.pid >/dev/null 2>&1
+        dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
+        $ncmd -c /var/etc/shadowsocksr_n.json $ARG_OTA -f /var/run/ssr-netflix.pid >/dev/null 2>&1
+    elif [ "$ntype" == "v2ray" ]; then
+        lua /usr/share/shadowsocksr/genv2nfconfig.lua $NETFLIX_SERVER tcp 4321 >/var/etc/v2-ssr-netflix.json
+        $ncmd -config /var/etc/v2-ssr-netflix.json >/dev/null 2>&1 &
+        dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
+    elif [ "$ntype" == "trojan" ]; then
+        lua /usr/share/shadowsocksr/gentrojanconfig.lua $NETFLIX_SERVER nat 4321 >/var/etc/trojan-ssr-netflix.json
+        sed -i 's/\\//g' /var/etc/trojan-ssr-netflix.json
+        $ncmd --config /var/etc/trojan-ssr-netflix.json >/dev/null 2>&1 &
+        lua /usr/share/shadowsocksr/gentrojanconfig.lua $NETFLIX_SERVER client 1088 >/var/etc/trojan-ssr-socksdns.json
+        sed -i 's/\\//g' /var/etc/trojan-ssr-socksdns.json
+        $ncmd --config /var/etc/trojan-ssr-socksdns.json >/dev/null 2>&1 &
+        dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
+    elif [ "$ntype" == "socks5" ]; then
+        /usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-netflix.conf" socks5 tcp 4321 \
+        $(check_host $(uci_get_by_name $NETFLIX_SERVER server)) $(uci_get_by_name $NETFLIX_SERVER server_port) \
+        $(uci_get_by_name $NETFLIX_SERVER auth_enable 0) $(uci_get_by_name $NETFLIX_SERVER username) $(uci_get_by_name $NETFLIX_SERVER password)
+        $ncmd -c /var/etc/redsocks-ssr-netflix.conf >/dev/null 2>&1
+        microsocks -i 127.0.0.1 -p 1088 ssr-socksdns >/dev/null 2>&1 &
+        dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
+    elif [ "$ntype" == "tun" ]; then
+        /usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-netflix.conf" vpn $(uci_get_by_name $NETFLIX_SERVER iface "br-lan") 4321
+        $ncmd -c /var/etc/redsocks-ssr-netflix.conf >/dev/null 2>&1
+        microsocks -i 127.0.0.1 -p 1088 ssr-socksdns >/dev/null 2>&1 &
+        dns2socks 127.0.0.1:1088 8.8.8.8:53 127.0.0.1:5555 -q >/dev/null 2>&1 &
+    fi
+   fi
+	
+	
 	if [ -n "$UDP_RELAY_SERVER" ]; then
 		redir_udp=1
 		if [ "$utype" == "ss" -o "$utype" == "ssr" ]; then
@ -452,10 +454,10 @@ start_redir() {
 			$ucmd --config /var/etc/trojan-ssr-reudp.json >/dev/null 2>&1 &
 			ipt2socks -U -b 0.0.0.0 -4 -s 127.0.0.1 -p 10801 -l $(uci_get_by_name $UDP_RELAY_SERVER local_port) >/dev/null 2>&1 &
 		elif [ "$utype" == "socks5" ]; then
-			/usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-reudp.conf" socks5 udp $(uci_get_by_name $UDP_RELAY_SERVER local_port) \
-			$(check_host $(uci_get_by_name $UDP_RELAY_SERVER server)) $(uci_get_by_name $UDP_RELAY_SERVER server_port) \
-			$(uci_get_by_name $UDP_RELAY_SERVER auth_enable 0) $(uci_get_by_name $UDP_RELAY_SERVER username) $(uci_get_by_name $UDP_RELAY_SERVER password)
-			$ucmd -c /var/etc/redsocks-ssr-reudp.conf >/dev/null 2>&1
+      	/usr/share/shadowsocksr/genred2config.sh "/var/etc/redsocks-ssr-reudp.conf" socks5 udp $(uci_get_by_name $UDP_RELAY_SERVER local_port) \
+      	$(check_host $(uci_get_by_name $UDP_RELAY_SERVER server)) $(uci_get_by_name $UDP_RELAY_SERVER server_port) \
+      	$(uci_get_by_name $UDP_RELAY_SERVER auth_enable 0) $(uci_get_by_name $UDP_RELAY_SERVER username) $(uci_get_by_name $UDP_RELAY_SERVER password)
+      	$ucmd -c /var/etc/redsocks-ssr-reudp.conf >/dev/null 2>&1
 		elif [ "$stype" == "tun" ]; then
 			redir_udp=0
 			echo "$(date "+%Y-%m-%d %H:%M:%S") Network Tunnel UDP TPROXY Relay not supported!" >>/tmp/ssrplus.log
@ -523,9 +525,9 @@ start_service() {
 	[ $(uci_get_by_name $1 enable 0) == "0" ] && return 1
 	let server_count=server_count+1
 	if [ "$server_count" == "1" ]; then
-		if ! (iptables-save -t filter | grep SSR-SERVER-RULE >/dev/null); then
-			iptables -N SSR-SERVER-RULE && \
-			iptables -t filter -I INPUT -j SSR-SERVER-RULE
+    if ! (iptables-save -t filter | grep SSR-SERVER-RULE >/dev/null); then
+      iptables -N SSR-SERVER-RULE && \
+      iptables -t filter -I INPUT -j SSR-SERVER-RULE
 		fi
 	fi
 	gen_service_file $1 /var/etc/${NAME}_$server_count.json
@ -570,19 +572,19 @@ start_local() {
 	local auth_enable=$(uci_get_by_type socks5_proxy auth_enable 0)
 	local socks_port=$(uci_get_by_type socks5_proxy local_port 1080)
 	if [ "$auth_enable" == "1" ]; then
-		microsocks -i :: -p $socks_port -1 -u $(uci_get_by_type socks5_proxy username) -P $(uci_get_by_type socks5_proxy password) ssr-socks >/dev/null 2>&1 &
+    microsocks -i :: -p $socks_port -1 -u $(uci_get_by_type socks5_proxy username) -P $(uci_get_by_type socks5_proxy password) ssr-socks >/dev/null 2>&1 &
 	else
-		microsocks -i :: -p $socks_port ssr-socks >/dev/null 2>&1 &
+    microsocks -i :: -p $socks_port ssr-socks >/dev/null 2>&1 &
 	fi
 	local_enable=1
 	if [ "$(uci_get_by_type socks5_proxy wan_enable 0)" == "1" ]; then
-		if ! (iptables-save -t filter | grep SSR-SERVER-RULE >/dev/null); then
-			iptables -N SSR-SERVER-RULE && \
-			iptables -t filter -I INPUT -j SSR-SERVER-RULE
-		fi
-		iptables -t filter -A SSR-SERVER-RULE -p tcp --dport $socks_port -j ACCEPT
-		iptables -t filter -A SSR-SERVER-RULE -p udp --dport $socks_port -j ACCEPT
-		gen_serv_include
+    if ! (iptables-save -t filter | grep SSR-SERVER-RULE >/dev/null); then
+      iptables -N SSR-SERVER-RULE && \
+      iptables -t filter -I INPUT -j SSR-SERVER-RULE
+    fi
+    iptables -t filter -A SSR-SERVER-RULE -p tcp --dport $socks_port -j ACCEPT
+    iptables -t filter -A SSR-SERVER-RULE -p udp --dport $socks_port -j ACCEPT
+    gen_serv_include
 	fi
 }

@ -605,12 +607,12 @@ start() {
 		GLOBAL_SERVER=$switch_server
 		switch_enable=1
 	fi
-
+	
 	NETFLIX_SERVER=$(uci_get_by_type global netflix_server same)
 	if [ "$NETFLIX_SERVER" == "same" ]; then
-		NETFLIX_SERVER=$GLOBAL_SERVER
-	fi
-
+    NETFLIX_SERVER=$GLOBAL_SERVER
+  fi
+		
 	if rules; then
 		start_redir
 		mkdir -p /tmp/dnsmasq.d && cp -a /etc/dnsmasq.ssr /tmp/ && cp -a /etc/dnsmasq.oversea /tmp/
@ -660,23 +662,23 @@ start() {
 			service_start /usr/bin/ssr-monitor $server_count $redir_tcp $redir_udp $tunnel_enable $kcp_enable_flag $local_enable $pdnsd_enable_flag $switch_enable
 		fi
 	fi
-
+	
 	ENABLE_SERVER=$(uci_get_by_type global global_server nil)
-	if [ "$ENABLE_SERVER" == "nil" ]; then
-		return 1
-	else
-		STYPE=$(uci_get_by_name $ENABLE_SERVER type nil)
-		if [ "$STYPE" == "nil" ]; then
-			CFGID=$(uci_get_by_cfgid servers type nil)
-			if [ "$CFGID" == "nil" ]; then
-				uci set shadowsocksr.@global[0].global_server='nil'
-			else
-				uci set shadowsocksr.@global[0].global_server=$CFGID
-			fi
-			uci commit shadowsocksr
-			/etc/init.d/shadowsocksr restart
-		fi
-	fi
+  if [ "$ENABLE_SERVER" == "nil" ]; then
+      return 1
+  else
+    STYPE=$(uci_get_by_name $ENABLE_SERVER type nil)
+    if [ "$STYPE" == "nil" ]; then
+      CFGID=$(uci_get_by_cfgid servers type nil)
+      if [ "$CFGID" == "nil" ]; then
+        uci set shadowsocksr.@global[0].global_server='nil'
+      else
+        uci set shadowsocksr.@global[0].global_server=$CFGID
+      fi
+      uci commit shadowsocksr
+      /etc/init.d/shadowsocksr restart
+    fi
+  fi
 }

 boot() {
@ -723,3 +725,4 @@ stop() {
 	fi
 	del_cron
 }
+
--- a/package/lean/luci-app-ssr-plus/root/etc/uci-defaults/luci-ssr-plus
+++ b/package/lean/luci-app-ssr-plus/root/etc/uci-defaults/luci-ssr-plus
@ -13,7 +13,7 @@ uci -q batch <<-EOF >/dev/null
 	commit firewall
 EOF

-killall -q -9 ssr-monitor ss-redir ssr-redir ss-local ssr-local obfs-local v2ray-plugin v2ray trojan ipt2socks ssr-server kcptun-client dns2socks microsocks redsocks2
+killall -q -9 ssr-monitor ss-redir ssr-redir v2ray trojan ipt2socks ssr-server kcptun-client srelay
 /usr/share/shadowsocksr/gfw2ipset.sh
 rm -f /tmp/luci-indexcache
 exit 0
--- a/package/lean/luci-app-ssr-plus/root/usr/bin/ssr-rules
+++ b/package/lean/luci-app-ssr-plus/root/usr/bin/ssr-rules
@ -121,9 +121,9 @@ ipset_r() {
 	for ip in $WAN_FW_IP; do ipset -! add blacklist $ip; done
 	
 	if [ "$NETFLIX" == "1" ]; then
-		$IPT -I SS_SPEC_WAN_AC -p tcp -m set --match-set netflix dst -j REDIRECT --to-ports 4321
+	$IPT -I SS_SPEC_WAN_AC -p tcp -m set --match-set netflix dst -j REDIRECT --to-ports 4321
 	else
-		$IPT -I SS_SPEC_WAN_AC -p tcp -m set --match-set netflix dst -j REDIRECT --to-ports $local_port
+	$IPT -I SS_SPEC_WAN_AC -p tcp -m set --match-set netflix dst -j REDIRECT --to-ports $local_port
 	fi
 	return $?
 }
--- a/package/lean/luci-app-ssr-plus/root/usr/share/shadowsocksr/subscribe.lua
+++ b/package/lean/luci-app-ssr-plus/root/usr/share/shadowsocksr/subscribe.lua
@ -300,10 +300,10 @@ local execute = function()
 					nodes = base64Decode(raw:sub(nEnd + 1, #raw))
 					nodes = jsonParse(nodes)
 					local extra = {
-					airport = nodes.airport,
-					port = nodes.port,
-					encryption = nodes.encryption,
-					password = nodes.password
+						airport = nodes.airport,
+						port = nodes.port,
+						encryption = nodes.encryption,
+						password = nodes.password
 					}
 					local servers = {}
 					-- SS里面包着 干脆直接这样
@ -342,7 +342,7 @@ local execute = function()
 								result.alias:find("防失联地址") or
 								not result.server or
 								result.server:match("[^0-9a-zA-Z%-%.%s]") -- 中文做地址的 也没有人拿中文域名搞，就算中文域也有Puny Code SB 机场
-								then
+							then
 								log('丢弃无效节点: ' .. result.type ..' 节点, ' .. result.alias)
 							else
 								log('成功解析: ' .. result.type ..' 节点, ' .. result.alias)
@ -383,6 +383,7 @@ local execute = function()
 				end
 				log('忽略手动添加的节点: ' .. old.alias)
 			end
+
 		end)
 		for k, v in ipairs(nodeResult) do
 			for kk, vv in ipairs(v) do
--- a/package/lean/luci-app-ssr-plus/root/usr/share/shadowsocksr/update.lua
+++ b/package/lean/luci-app-ssr-plus/root/usr/share/shadowsocksr/update.lua
@ -8,20 +8,20 @@ require 'luci.util'
 require 'luci.jsonc'
 require 'luci.sys'
 local icount =0
-local uci = luci.model.uci.cursor()
+local ucic = luci.model.uci.cursor()

 local log = function(...)
 	print(os.date("%Y-%m-%d %H:%M:%S ") .. table.concat({ ... }, " "))
 end

 log('正在更新【GFW列表】数据库')
-refresh_cmd = "wget-ssl --no-check-certificate -O - https://cdn.jsdelivr.net/gh/gfwlist/gfwlist/gfwlist.txt > /tmp/gfw.b64"
-sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-if sret == 0 then
+	refresh_cmd="wget-ssl --no-check-certificate https://cdn.jsdelivr.net/gh/gfwlist/gfwlist/gfwlist.txt -O /tmp/gfw.b64"
+	sret=luci.sys.call(refresh_cmd .. " 2>/dev/null")
+	if sret== 0 then
 	luci.sys.call("/usr/bin/ssr-gfw")
 	icount = luci.sys.exec("cat /tmp/gfwnew.txt | wc -l")
-	if tonumber(icount) > 1000 then
-		oldcount = luci.sys.exec("cat /etc/dnsmasq.ssr/gfw_list.conf | wc -l")
+	if tonumber(icount)>1000 then
+	oldcount=luci.sys.exec("cat /etc/dnsmasq.ssr/gfw_list.conf | wc -l")
 		if tonumber(icount) ~= tonumber(oldcount) then
 			luci.sys.exec("cp -f /tmp/gfwnew.txt /etc/dnsmasq.ssr/gfw_list.conf")
 			luci.sys.exec("cp -f /tmp/gfwnew.txt /tmp/dnsmasq.ssr/gfw_list.conf")
@ -30,7 +30,7 @@ if sret == 0 then
 			log('你已经是最新数据，无需更新！')
 		end
 	else
-		log('更新失败！')
+	log('更新失败！')
 	end
 	luci.sys.exec("rm -f /tmp/gfwnew.txt")
 else
@ -38,13 +38,17 @@ else
 end

 log('正在更新【国内IP段】数据库')
-refresh_cmd = "wget-ssl --no-check-certificate -O - ".. uci:get_first('shadowsocksr', 'global', 'chnroute_url','https://ispip.clang.cn/all_cn.txt') .." > /tmp/china_ssr.txt"
-sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
+if (ucic:get_first('shadowsocksr', 'global', 'chnroute','0') == '1' ) then
+	refresh_cmd="wget-ssl --no-check-certificate -O - ".. ucic:get_first('shadowsocksr', 'global', 'chnroute_url','https://ispip.clang.cn/all_cn.txt') .." > /tmp/china_ssr.txt 2>/dev/null"
+else
+	refresh_cmd="wget -O- 'http://ftp.apnic.net/apnic/stats/apnic/delegated-apnic-latest'  2>/dev/null| awk -F\\| '/CN\\|ipv4/ { printf(\"%s/%d\\n\", $4, 32-log($5)/log(2)) }' > /tmp/china_ssr.txt"
+end
+sret=luci.sys.call(refresh_cmd)
 icount = luci.sys.exec("cat /tmp/china_ssr.txt | wc -l")
-if sret == 0 then
+if sret== 0 then
 	icount = luci.sys.exec("cat /tmp/china_ssr.txt | wc -l")
-	if tonumber(icount) > 1000 then
-		oldcount = luci.sys.exec("cat /etc/china_ssr.txt | wc -l")
+	if tonumber(icount)>1000 then
+		oldcount=luci.sys.exec("cat /etc/china_ssr.txt | wc -l")
 		if tonumber(icount) ~= tonumber(oldcount) then
 			luci.sys.exec("cp -f /tmp/china_ssr.txt /etc/china_ssr.txt")
 			log('更新成功！ 新的总纪录数：'.. icount)
@ -59,55 +63,35 @@ else
 	log('更新失败！')
 end

-if uci:get_first('shadowsocksr', 'global', 'adblock','0') == "1" then
-	log('正在更新【广告屏蔽】数据库')
-	refresh_cmd = "wget-ssl --no-check-certificate -O - ".. uci:get_first('shadowsocksr', 'global', 'adblock_url','https://easylist-downloads.adblockplus.org/easylistchina+easylist.txt') .." > /tmp/adnew.conf"
-	sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-	if sret == 0 then
-		luci.sys.call("/usr/bin/ssr-ad")
-		icount = luci.sys.exec("cat /tmp/ad.conf | wc -l")
-		if tonumber(icount) > 100 then
-			if nixio.fs.access("/etc/dnsmasq.ssr/ad.conf") then
-				oldcount = luci.sys.exec("cat /etc/dnsmasq.ssr/ad.conf | wc -l")
-			else
-				oldcount = "0"
-			end
-			if tonumber(icount) ~= tonumber(oldcount) then
-				luci.sys.exec("cp -f /tmp/ad.conf /etc/dnsmasq.ssr/ad.conf")
-				luci.sys.exec("cp -f /tmp/ad.conf /tmp/dnsmasq.ssr/ad.conf")
-				log('更新成功！ 新的总纪录数：'.. icount)
-			else
-				log('你已经是最新数据，无需更新！')
-			end
-		else
-			log('更新失败！')
-		end
-		luci.sys.exec("rm -f /tmp/ad.conf")
-	else
-		log('更新失败！')
-	end
+if ucic:get_first('shadowsocksr', 'global', 'adblock','0') == "1" then
+log('正在更新【广告屏蔽】数据库')
+if nixio.fs.access("/usr/bin/wget-ssl") then
+	refresh_cmd="wget-ssl --no-check-certificate -O - ".. ucic:get_first('shadowsocksr', 'global', 'adblock_url','https://easylist-downloads.adblockplus.org/easylistchina+easylist.txt') .." > /tmp/adnew.conf"
 end
-
--[[
-log('正在更新【Netflix IP段】数据库')
-refresh_cmd = "wget-ssl --no-check-certificate -O - ".. uci:get_first('shadowsocksr', 'global', 'nfip_url','https://raw.githubusercontent.com/QiuSimons/Netflix_IP/master/NF_only.txt') .." > /tmp/netflixip.list"
-sret = luci.sys.call(refresh_cmd .. " 2>/dev/null")
-if sret == 0 then
-	luci.sys.call("/usr/bin/ssr-gfw")
-	icount = luci.sys.exec("cat /tmp/netflixip.list | wc -l")
-	if tonumber(icount) > 5 then
-		oldcount = luci.sys.exec("cat /etc/config/netflixip.list | wc -l")
-		if tonumber(icount) ~= tonumber(oldcount) then
-			luci.sys.exec("cp -f /tmp/netflixip.list /etc/config/netflixip.list")
-			log('更新成功！ 新的总纪录数：'.. icount)
-		else
-			log('你已经是最新数据，无需更新！')
-		end
+sret=luci.sys.call(refresh_cmd .. " 2>/dev/null")
+if sret== 0 then
+	luci.sys.call("/usr/bin/ssr-ad")
+	icount = luci.sys.exec("cat /tmp/ad.conf | wc -l")
+	if tonumber(icount)>1000 then
+	if nixio.fs.access("/etc/dnsmasq.ssr/ad.conf") then
+		oldcount=luci.sys.exec("cat /etc/dnsmasq.ssr/ad.conf | wc -l")
 	else
-		log('更新失败！')
+		oldcount=0
 	end
-	luci.sys.exec("rm -f /tmp/netflixip.list")
+	if tonumber(icount) ~= tonumber(oldcount) then
+		luci.sys.exec("cp -f /tmp/ad.conf /etc/dnsmasq.ssr/ad.conf")
+		luci.sys.exec("cp -f /tmp/ad.conf /tmp/dnsmasq.ssr/ad.conf")
+		log('更新成功！ 新的总纪录数：'.. icount)
+	else
+		log('你已经是最新数据，无需更新！')
+	end
+	else
+	log('更新失败！')
+	end
+	luci.sys.exec("rm -f /tmp/ad.conf")
 else
 	log('更新失败！')
 end
--]]
+end
+
+luci.sys.call("/etc/init.d/dnsmasq reload")