fix: 修复 SOCKS5 URI

feat: 日志增加 body JSON limit
feat: Shadowrocket 支持前置代理. 补充 demo.js 说明
2025-08-10 00:52:40 +00:00 · 2025-05-21 01:39:30 +08:00 · 2025-05-20 21:16:30 +08:00 · 2025-05-18 17:21:54 +08:00 · 2025-05-17 22:49:12 +08:00 · 2025-05-17 20:22:24 +08:00
18 changed files with 75 additions and 31 deletions
--- a/backend/package.json
+++ b/backend/package.json
@@ -1,6 +1,6 @@
 {
  "name": "sub-store",
-  "version": "2.19.35",
+  "version": "2.19.45",
  "description": "Advanced Subscription Manager for QX, Loon, Surge, Stash and Shadowrocket.",
  "main": "src/main.js",
  "scripts": {
--- a/backend/src/core/proxy-utils/index.js
+++ b/backend/src/core/proxy-utils/index.js
@@ -1,3 +1,4 @@
+import { Base64 } from 'js-base64';
 import { Buffer } from 'buffer';
 import rs from '@/utils/rs';
 import YAML from '@/utils/yaml';
@@ -333,6 +334,8 @@ export const ProxyUtils = {
    downloadFile,
    isValidUUID,
    doh,
+    Buffer,
+    Base64,
 };

 function tryParse(parser, line) {
--- a/backend/src/core/proxy-utils/parsers/index.js
+++ b/backend/src/core/proxy-utils/parsers/index.js
@@ -134,7 +134,7 @@ function URI_SS() {
        };
        content = content.split('#')[0]; // strip proxy name
        // handle IPV4 and IPV6
-        let serverAndPortArray = content.match(/@([^/]*)(\/|$)/);
+        let serverAndPortArray = content.match(/@([^/?]*)(\/|\?|$)/);

        let rawUserInfoStr = decodeURIComponent(content.split('@')[0]); // 其实应该分隔之后, 用户名和密码再 decodeURIComponent. 但是问题不大
        let userInfoStr;
--- a/backend/src/core/proxy-utils/parsers/peggy/qx.js
+++ b/backend/src/core/proxy-utils/parsers/peggy/qx.js
@@ -86,10 +86,10 @@ vmess = "vmess" equals address
    (uuid/method/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/obfs/obfs_host/obfs_uri/udp_relay/udp_over_tcp/fast_open/aead/server_check_url/others)* {
    proxy.type = "vmess";
    proxy.cipher = proxy.cipher || "none";
-    if (proxy.aead) {
-        proxy.alterId = 0;
+    if (proxy.aead === false) {
+        proxy.alterId = 1;
    } else {
-        proxy.alterId = proxy.alterId || 0;
+        proxy.alterId = 0;
    }
    handleObfs();
 }
--- a/backend/src/core/proxy-utils/parsers/peggy/qx.peg
+++ b/backend/src/core/proxy-utils/parsers/peggy/qx.peg
@@ -84,10 +84,10 @@ vmess = "vmess" equals address
    (uuid/method/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/obfs/obfs_host/obfs_uri/udp_relay/udp_over_tcp/fast_open/aead/server_check_url/others)* {
    proxy.type = "vmess";
    proxy.cipher = proxy.cipher || "none";
-    if (proxy.aead) {
-        proxy.alterId = 0;
+    if (proxy.aead === false) {
+        proxy.alterId = 1;
    } else {
-        proxy.alterId = proxy.alterId || 0;
+        proxy.alterId = 0;
    }
    handleObfs();
 }
--- a/backend/src/core/proxy-utils/parsers/peggy/surge.js
+++ b/backend/src/core/proxy-utils/parsers/peggy/surge.js
@@ -55,10 +55,11 @@ shadowsocks = tag equals "ss" address (method/passwordk/obfs/obfs_host/obfs_uri/
 vmess = tag equals "vmess" address (vmess_uuid/vmess_aead/ws/ws_path/ws_headers/method/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls/sni/tls_fingerprint/tls_verification/fast_open/tfo/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
    proxy.type = "vmess";
    proxy.cipher = proxy.cipher || "none";
+    // Surfboard 与 Surge 默认不一致, 不管 Surfboard https://getsurfboard.com/docs/profile-format/proxy/external-proxy/vmess
    if (proxy.aead) {
        proxy.alterId = 0;
    } else {
-        proxy.alterId = proxy.alterId || 0;
+        proxy.alterId = 1;
    }
    handleWebsocket();
    handleShadowTLS();
--- a/backend/src/core/proxy-utils/parsers/peggy/surge.peg
+++ b/backend/src/core/proxy-utils/parsers/peggy/surge.peg
@@ -53,10 +53,11 @@ shadowsocks = tag equals "ss" address (method/passwordk/obfs/obfs_host/obfs_uri/
 vmess = tag equals "vmess" address (vmess_uuid/vmess_aead/ws/ws_path/ws_headers/method/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls/sni/tls_fingerprint/tls_verification/fast_open/tfo/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
    proxy.type = "vmess";
    proxy.cipher = proxy.cipher || "none";
+    // Surfboard 与 Surge 默认不一致, 不管 Surfboard https://getsurfboard.com/docs/profile-format/proxy/external-proxy/vmess
    if (proxy.aead) {
        proxy.alterId = 0;
    } else {
-        proxy.alterId = proxy.alterId || 0;
+        proxy.alterId = 1;
    }
    handleWebsocket();
    handleShadowTLS();
--- a/backend/src/core/proxy-utils/processors/index.js
+++ b/backend/src/core/proxy-utils/processors/index.js
@@ -1141,6 +1141,10 @@ function createDynamicFunction(name, script, $arguments, $options) {
            '$httpClient',
            '$notification',
            'ProxyUtils',
+            'yaml',
+            'Buffer',
+            'b64d',
+            'b64e',
            'scriptResourceCache',
            'flowUtils',
            'produceArtifact',
@@ -1158,6 +1162,10 @@ function createDynamicFunction(name, script, $arguments, $options) {
            // eslint-disable-next-line no-undef
            $notification,
            ProxyUtils,
+            ProxyUtils.yaml,
+            ProxyUtils.Buffer,
+            ProxyUtils.Base64.decode,
+            ProxyUtils.Base64.encode,
            scriptResourceCache,
            flowUtils,
            produceArtifact,
@@ -1170,6 +1178,10 @@ function createDynamicFunction(name, script, $arguments, $options) {
            '$substore',
            'lodash',
            'ProxyUtils',
+            'yaml',
+            'Buffer',
+            'b64d',
+            'b64e',
            'scriptResourceCache',
            'flowUtils',
            'produceArtifact',
@@ -1181,6 +1193,10 @@ function createDynamicFunction(name, script, $arguments, $options) {
            $,
            lodash,
            ProxyUtils,
+            ProxyUtils.yaml,
+            ProxyUtils.Buffer,
+            ProxyUtils.Base64.decode,
+            ProxyUtils.Base64.encode,
            scriptResourceCache,
            flowUtils,
            produceArtifact,
--- a/backend/src/core/proxy-utils/producers/loon.js
+++ b/backend/src/core/proxy-utils/producers/loon.js
@@ -365,7 +365,7 @@ function vmess(proxy) {

    // AEAD
    if (isPresent(proxy, 'aead')) {
-        result.append(`,alterId=0`);
+        result.append(`,alterId=${proxy.aead ? 0 : 1}`);
    } else {
        result.append(`,alterId=${proxy.alterId}`);
    }
--- a/backend/src/core/proxy-utils/producers/qx.js
+++ b/backend/src/core/proxy-utils/producers/qx.js
@@ -7,7 +7,7 @@ export default function QX_Producer() {
    const produce = (proxy, type, opts = {}) => {
        switch (proxy.type) {
            case 'ss':
-                return shadowsocks(proxy, opts['include-unsupported-proxy']);
+                return shadowsocks(proxy);
            case 'ssr':
                return shadowsocksr(proxy);
            case 'trojan':
@@ -28,7 +28,7 @@ export default function QX_Producer() {
    return { produce };
 }

-function shadowsocks(proxy, includeUnsupportedProxy) {
+function shadowsocks(proxy) {
    const result = new Result(proxy);
    const append = result.append.bind(result);
    const appendIfPresent = result.appendIfPresent.bind(result);
@@ -58,9 +58,8 @@ function shadowsocks(proxy, includeUnsupportedProxy) {
            'aes-256-gcm',
            'chacha20-ietf-poly1305',
            'xchacha20-ietf-poly1305',
-            ...(includeUnsupportedProxy
-                ? ['2022-blake3-aes-128-gcm', '2022-blake3-aes-256-gcm']
-                : []),
+            '2022-blake3-aes-128-gcm',
+            '2022-blake3-aes-256-gcm',
        ].includes(proxy.cipher)
    ) {
        throw new Error(`cipher ${proxy.cipher} is not supported`);
--- a/backend/src/core/proxy-utils/producers/shadowrocket.js
+++ b/backend/src/core/proxy-utils/producers/shadowrocket.js
@@ -11,11 +11,6 @@ export default function Shadowrocket_Producer() {
                    return false;
                } else if (['mieru', 'anytls'].includes(proxy.type)) {
                    return false;
-                } else if (proxy['underlying-proxy'] || proxy['dialer-proxy']) {
-                    $.error(
-                        `Shadowrocket 不支持前置代理字段. 已过滤节点 ${proxy.name}. 请使用 App 内的 "代理通过" 功能`,
-                    );
-                    return false;
                }
                return true;
            })
--- a/backend/src/core/proxy-utils/producers/uri.js
+++ b/backend/src/core/proxy-utils/producers/uri.js
@@ -33,7 +33,9 @@ export default function URI_Producer() {
        switch (proxy.type) {
            case 'socks5':
                result = `socks://${encodeURIComponent(
-                    Base64.encode(`${proxy.username}:${proxy.password}`),
+                    Base64.encode(
+                        `${proxy.username ?? ''}:${proxy.password ?? ''}`,
+                    ),
                )}@${proxy.server}:${proxy.port}#${proxy.name}`;
                break;
            case 'ss':
--- a/backend/src/restful/file.js
+++ b/backend/src/restful/file.js
@@ -64,6 +64,7 @@ async function getFile(req, res) {
        ignoreFailedRemoteFile,
        proxy,
        noCache,
+        produceType,
    } = req.query;
    let $options = {
        _req: {
@@ -128,6 +129,10 @@ async function getFile(req, res) {
    if (noCache) {
        $.info(`指定不使用缓存: ${noCache}`);
    }
+    if (produceType) {
+        produceType = decodeURIComponent(produceType);
+        $.info(`指定生产类型: ${produceType}`);
+    }

    const allFiles = $.read(FILES_KEY);
    const file = findByName(allFiles, name);
@@ -144,6 +149,7 @@ async function getFile(req, res) {
                $options,
                proxy,
                noCache,
+                produceType,
            });

            try {
--- a/backend/src/restful/miscs.js
+++ b/backend/src/restful/miscs.js
@@ -49,11 +49,17 @@ export default function register($app) {
            success(res);
        });

-    // Redirect sub.store to vercel webpage
-    $app.get('/', async (req, res) => {
-        // 302 redirect
-        res.set('location', 'https://sub-store.vercel.app/').status(302).end();
-    });
+    if (ENV().isNode) {
+        $app.get('/', getEnv);
+    } else {
+        // Redirect sub.store to vercel webpage
+        $app.get('/', async (req, res) => {
+            // 302 redirect
+            res.set('location', 'https://sub-store.vercel.app/')
+                .status(302)
+                .end();
+        });
+    }

    // handle preflight request for QX
    if (ENV().isQX) {
--- a/backend/src/restful/sync.js
+++ b/backend/src/restful/sync.js
@@ -173,6 +173,9 @@ async function produceArtifact({
                raw.push(sub.content);
            }
        }
+        if (produceType === 'raw') {
+            return (Array.isArray(raw) ? raw : [raw]).flat();
+        }
        // parse proxies
        let proxies = (Array.isArray(raw) ? raw : [raw])
            .map((i) => ProxyUtils.parse(i))
@@ -570,6 +573,9 @@ async function produceArtifact({
                }
            }
        }
+        if (produceType === 'raw') {
+            return (Array.isArray(raw) ? raw : [raw]).flat();
+        }
        const files = (Array.isArray(raw) ? raw : [raw]).flat();
        let filesContent = files
            .filter((i) => i != null && i !== '')
--- a/backend/src/utils/yaml.js
+++ b/backend/src/utils/yaml.js
@@ -34,4 +34,6 @@ export default {
    load,
    safeDump,
    dump,
+    parse: safeLoad,
+    stringify: safeDump,
 };
--- a/backend/src/vendor/express.js
+++ b/backend/src/vendor/express.js
@@ -17,10 +17,12 @@ export default function express({ substore: $, port, host }) {
        const express_ = eval(`require("express")`);
        const bodyParser = eval(`require("body-parser")`);
        const app = express_();
+        const limit = eval('process.env.SUB_STORE_BODY_JSON_LIMIT') || '1mb';
+        $.info(`[BACKEND] body JSON limit: ${limit}`);
        app.use(
            bodyParser.json({
                verify: rawBodySaver,
-                limit: eval('process.env.SUB_STORE_BODY_JSON_LIMIT') || '1mb',
+                limit,
            }),
        );
        app.use(
@@ -36,7 +38,7 @@ export default function express({ substore: $, port, host }) {
        app.start = () => {
            const listener = app.listen(port, host, () => {
                const { address, port } = listener.address();
-                $.info(`[BACKEND] ${address}:${port}`);
+                $.info(`[BACKEND] listening on ${address}:${port}`);
            });
        };
        return app;
--- a/scripts/demo.js
+++ b/scripts/demo.js
@@ -14,10 +14,12 @@ function operator(proxies = [], targetPlatform, context) {
  // 6. `_collectionName` 为组合订阅名, `_collectionDisplayName` 为组合订阅显示名
  // 7. `tls-fingerprint` 为 tls 指纹
  // 8. `underlying-proxy` 为前置代理, 不同平台会自动转换
+  //    例如 $server['underlying-proxy'] = '名称'
  //    只给 mihomo 输出的话, `dialer-proxy` 也行
  //    只给 sing-box 输出的话, `detour` 也行
-  //    只给 egern 输出的话, `prev_hop` 也行
-  //    输出到 Clash/Stash/Shadowrocket 时, 会过滤掉配置了前置代理的节点, 并提示使用对应的功能.
+  //    只给 Egern 输出的话, `prev_hop` 也行
+  //    只给 Shadowrocket 输出的话, `chain` 也行
+  //    输出到 Clash/Stash 时, 会过滤掉配置了前置代理的节点, 并提示使用对应的功能.
  // 9. `trojan`, `tuic`, `hysteria`, `hysteria2`, `juicity` 会在解析时设置 `tls`: true (会使用 tls 类协议的通用逻辑),  输出时删除
  // 10. `sni` 在某些协议里会自动与 `servername` 转换
  // 11. 读取节点的 ca-str 和 _ca (后端文件路径) 字段, 自动计算 fingerprint (参考 https://t.me/zhetengsha/1512)
@@ -120,7 +122,10 @@ function operator(proxies = [], targetPlatform, context) {
  //     downloadFile, // 下载二进制文件, 见 backend/src/utils/download.js
  //     MMDB, // Node.js 环境 可用于模拟 Surge/Loon 的 $utils.ipasn, $utils.ipaso, $utils.geoip. 具体见 https://t.me/zhetengsha/1269
  //     isValidUUID, // 辅助判断是否为有效的 UUID
+  //     Buffer, // https://github.com/feross/buffer
+  //     Base64, // https://github.com/dankogai/js-base64
  // }
+  //  为兼容 https://github.com/xishang0128/sparkle 的 JavaScript 覆写, 也可以直接使用 `b64d`(Base64 解码), `b64e`(Base64 编码), `Buffer`, `yaml`(简单兼容了下 `yaml.parse` 和 `yaml.stringify`)

  // 如果只是为了快速修改或者筛选 可以参考 脚本操作支持节点快捷脚本 https://t.me/zhetengsha/970 和 脚本筛选支持节点快捷脚本 https://t.me/zhetengsha/1009
  // ⚠️ 注意: 函数式(即本文件这样的 function operator() {}) 和快捷操作(下面使用 $server) 只能二选一
Author	SHA1	Message	Date
xream	04e12a4836	fix: 修复 SOCKS5 URI Some checks failed build / build (push) Has been cancelled Details	2025-05-21 01:39:30 +08:00
xream	f94cf7185a	feat: 日志增加 body JSON limit	2025-05-20 21:16:30 +08:00
xream	fa7df51f8c	feat: Shadowrocket 支持前置代理. 补充 demo.js 说明 Some checks failed build / build (push) Has been cancelled Details	2025-05-18 17:21:54 +08:00
xream	18659d1cc8	feat: Node.js 环境下 API / 路由不自动跳转到 sub-store.vercel.app Some checks failed build / build (push) Has been cancelled Details	2025-05-17 22:49:12 +08:00
xream	1d12dc55bd	feat: 单条订阅和文件支持链接参数 produceType raw, 此时返回原始数据的数组	2025-05-17 20:22:24 +08:00
xream	af9a2c86c1	fix: 修复 Surge/Loon VMess aead Some checks failed build / build (push) Has been cancelled Details	2025-05-12 12:26:14 +08:00
xream	98892fa100	fix: 修复 QX VMess aead	2025-05-12 11:06:13 +08:00
xream	6e2411e2c2	doc: demo.js	2025-05-12 01:42:42 +08:00
xream	b3f6876bbd	feat: 兼容 xishang0128/sparkle 的 JavaScript 覆写; ProxyUtils 新增 Buffer, Base64 Some checks failed build / build (push) Has been cancelled Details	2025-05-11 16:21:28 +08:00
xream	d2c3956884	feat: QX 正式支持 SS2022 Some checks failed build / build (push) Has been cancelled Details	2025-05-07 02:59:19 +08:00
xream	21c1e11976	feat: 兼容非标 Shadowsocks URI 输入 Some checks failed build / build (push) Has been cancelled Details	2025-04-28 13:55:15 +08:00