feat: 下载订阅日志中增加请求的 User-Agent

chore: Change network request method

.github/workflows/main.yml

@@ -0,0 +1,83 @@
+name: build
+on:
+  push:
+    branches:
+      - master
+    paths:
+      - "backend/package.json"
+  pull_request:
+    branches:
+      - master
+    paths:
+      - "backend/package.json"
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+        with:
+          ref: "master"
+      - name: Set up Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: "20"
+      - name: Install dependencies
+        run: |
+          npm install -g pnpm
+          cd backend && pnpm i --no-frozen-lockfile
+      - name: Test
+        run: |
+          cd backend
+          pnpm test
+      - name: Build
+        run: |
+          cd backend
+          pnpm run build
+      - name: Bundle
+        run: |
+          cd backend
+          pnpm run bundle
+      - id: tag
+        name: Generate release tag
+        run: |
+          cd backend
+          SUBSTORE_RELEASE=`node --eval="process.stdout.write(require('./package.json').version)"`
+          echo "release_tag=$SUBSTORE_RELEASE" >> $GITHUB_OUTPUT
+      - name: Prepare release
+        run: |
+          cd backend
+          pnpm i -D conventional-changelog-cli
+          pnpm run changelog
+      - name: Release
+        uses: softprops/action-gh-release@v1
+        if: ${{ success() }}
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          body_path: ./backend/CHANGELOG.md
+          tag_name: ${{ steps.tag.outputs.release_tag }}
+          # generate_release_notes: true
+          files: |
+            ./backend/sub-store.min.js
+            ./backend/dist/sub-store-0.min.js
+            ./backend/dist/sub-store-1.min.js
+            ./backend/dist/sub-store-parser.loon.min.js
+            ./backend/dist/cron-sync-artifacts.min.js
+            ./backend/dist/sub-store.bundle.js
+      - name: Git push assets to "release" branch
+        run: |
+          cd backend/dist || exit 1
+          git init
+          git config --local user.name "github-actions[bot]"
+          git config --local user.email "github-actions[bot]@users.noreply.github.com"
+          git checkout -b release
+          git add .
+          git commit -m "release: ${{ steps.tag.outputs.release_tag }}"
+          git remote add origin "https://${{ github.actor }}:${{ secrets.GITHUB_TOKEN }}@github.com/${{ github.repository }}"
+          git push -f -u origin release
+      - name: Sync to GitLab
+        env:
+          GITLAB_PIPELINE_TOKEN: ${{ secrets.GITLAB_PIPELINE_TOKEN }}
+        run: |
+          curl -X POST --fail -F token=$GITLAB_PIPELINE_TOKEN -F ref=master https://gitlab.com/api/v4/projects/48891296/trigger/pipeline

.gitignore

@@ -1,3 +1,4 @@
+.DS_Store
 # json config
 sub-store.json
 root.json
@@ -86,7 +87,7 @@ out
 
 # Nuxt.js build / generate output
 .nuxt
-dist
+# dist
 
 # Gatsby files
 .cache/
@@ -117,4 +118,20 @@ dist
 .yarn/unplugged
 .yarn/build-state.yml
 .yarn/install-state.gz
-.pnp.*
+.pnp.*
+
+# Editor directories and files
+.idea
+.vscode
+*.suo
+*.ntvs*
+*.njsproj
+*.sln
+*.sw?
+
+# Dist files
+backend/dist/*
+!backend/dist/.gitkeep
+backend/sub-store.min.js
+
+CHANGELOG.md

.idea/.gitignore

@@ -1,5 +0,0 @@
-# Default ignored files
-/shelf/
-/workspace.xml
-# Editor-based HTTP Client requests
-/httpRequests/

.idea/MagicStore.iml

@@ -1,12 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<module type="WEB_MODULE" version="4">
-  <component name="NewModuleRootManager">
-    <content url="file://$MODULE_DIR$">
-      <excludeFolder url="file://$MODULE_DIR$/.tmp" />
-      <excludeFolder url="file://$MODULE_DIR$/temp" />
-      <excludeFolder url="file://$MODULE_DIR$/tmp" />
-    </content>
-    <orderEntry type="inheritedJdk" />
-    <orderEntry type="sourceFolder" forTests="false" />
-  </component>
-</module>

.idea/dictionaries/pengym.xml

@@ -1,7 +0,0 @@
-<component name="ProjectDictionaryState">
-  <dictionary name="pengym">
-    <words>
-      <w>obfs</w>
-    </words>
-  </dictionary>
-</component>

.idea/inspectionProfiles/Project_Default.xml

@@ -1,6 +0,0 @@
-<component name="InspectionProjectProfileManager">
-  <profile version="1.0">
-    <option name="myName" value="Project Default" />
-    <inspection_tool class="JSCheckFunctionSignatures" enabled="false" level="WEAK WARNING" enabled_by_default="false" />
-  </profile>
-</component>

.idea/misc.xml

@@ -1,6 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="JavaScriptSettings">
-    <option name="languageLevel" value="ES6" />
-  </component>
-</project>

.idea/modules.xml

@@ -1,8 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="ProjectModuleManager">
-    <modules>
-      <module fileurl="file://$PROJECT_DIR$/.idea/MagicStore.iml" filepath="$PROJECT_DIR$/.idea/MagicStore.iml" />
-    </modules>
-  </component>
-</project>

.idea/vcs.xml

@@ -1,6 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="VcsDirectoryMappings">
-    <mapping directory="$PROJECT_DIR$" vcs="Git" />
-  </component>
-</project>

LICENSE

@@ -0,0 +1,663 @@
+                   GNU AFFERO GENERAL PUBLIC LICENSE
+                       Version 3, 19 November 2007
+
+               Copyright (c) 2015 Ayuntamiento de Madrid
+
+ Copyright (C) 2007 Free Software Foundation, Inc. <http://fsf.org/>
+ Everyone is permitted to copy and distribute verbatim copies
+ of this license document, but changing it is not allowed.
+
+                            Preamble
+
+  The GNU Affero General Public License is a free, copyleft license for
+software and other kinds of works, specifically designed to ensure
+cooperation with the community in the case of network server software.
+
+  The licenses for most software and other practical works are designed
+to take away your freedom to share and change the works.  By contrast,
+our General Public Licenses are intended to guarantee your freedom to
+share and change all versions of a program--to make sure it remains free
+software for all its users.
+
+  When we speak of free software, we are referring to freedom, not
+price.  Our General Public Licenses are designed to make sure that you
+have the freedom to distribute copies of free software (and charge for
+them if you wish), that you receive source code or can get it if you
+want it, that you can change the software or use pieces of it in new
+free programs, and that you know you can do these things.
+
+  Developers that use our General Public Licenses protect your rights
+with two steps: (1) assert copyright on the software, and (2) offer
+you this License which gives you legal permission to copy, distribute
+and/or modify the software.
+
+  A secondary benefit of defending all users' freedom is that
+improvements made in alternate versions of the program, if they
+receive widespread use, become available for other developers to
+incorporate.  Many developers of free software are heartened and
+encouraged by the resulting cooperation.  However, in the case of
+software used on network servers, this result may fail to come about.
+The GNU General Public License permits making a modified version and
+letting the public access it on a server without ever releasing its
+source code to the public.
+
+  The GNU Affero General Public License is designed specifically to
+ensure that, in such cases, the modified source code becomes available
+to the community.  It requires the operator of a network server to
+provide the source code of the modified version running there to the
+users of that server.  Therefore, public use of a modified version, on
+a publicly accessible server, gives the public access to the source
+code of the modified version.
+
+  An older license, called the Affero General Public License and
+published by Affero, was designed to accomplish similar goals.  This is
+a different license, not a version of the Affero GPL, but Affero has
+released a new version of the Affero GPL which permits relicensing under
+this license.
+
+  The precise terms and conditions for copying, distribution and
+modification follow.
+
+                       TERMS AND CONDITIONS
+
+  0. Definitions.
+
+  "This License" refers to version 3 of the GNU Affero General Public License.
+
+  "Copyright" also means copyright-like laws that apply to other kinds of
+works, such as semiconductor masks.
+
+  "The Program" refers to any copyrightable work licensed under this
+License.  Each licensee is addressed as "you".  "Licensees" and
+"recipients" may be individuals or organizations.
+
+  To "modify" a work means to copy from or adapt all or part of the work
+in a fashion requiring copyright permission, other than the making of an
+exact copy.  The resulting work is called a "modified version" of the
+earlier work or a work "based on" the earlier work.
+
+  A "covered work" means either the unmodified Program or a work based
+on the Program.
+
+  To "propagate" a work means to do anything with it that, without
+permission, would make you directly or secondarily liable for
+infringement under applicable copyright law, except executing it on a
+computer or modifying a private copy.  Propagation includes copying,
+distribution (with or without modification), making available to the
+public, and in some countries other activities as well.
+
+  To "convey" a work means any kind of propagation that enables other
+parties to make or receive copies.  Mere interaction with a user through
+a computer network, with no transfer of a copy, is not conveying.
+
+  An interactive user interface displays "Appropriate Legal Notices"
+to the extent that it includes a convenient and prominently visible
+feature that (1) displays an appropriate copyright notice, and (2)
+tells the user that there is no warranty for the work (except to the
+extent that warranties are provided), that licensees may convey the
+work under this License, and how to view a copy of this License.  If
+the interface presents a list of user commands or options, such as a
+menu, a prominent item in the list meets this criterion.
+
+  1. Source Code.
+
+  The "source code" for a work means the preferred form of the work
+for making modifications to it.  "Object code" means any non-source
+form of a work.
+
+  A "Standard Interface" means an interface that either is an official
+standard defined by a recognized standards body, or, in the case of
+interfaces specified for a particular programming language, one that
+is widely used among developers working in that language.
+
+  The "System Libraries" of an executable work include anything, other
+than the work as a whole, that (a) is included in the normal form of
+packaging a Major Component, but which is not part of that Major
+Component, and (b) serves only to enable use of the work with that
+Major Component, or to implement a Standard Interface for which an
+implementation is available to the public in source code form.  A
+"Major Component", in this context, means a major essential component
+(kernel, window system, and so on) of the specific operating system
+(if any) on which the executable work runs, or a compiler used to
+produce the work, or an object code interpreter used to run it.
+
+  The "Corresponding Source" for a work in object code form means all
+the source code needed to generate, install, and (for an executable
+work) run the object code and to modify the work, including scripts to
+control those activities.  However, it does not include the work's
+System Libraries, or general-purpose tools or generally available free
+programs which are used unmodified in performing those activities but
+which are not part of the work.  For example, Corresponding Source
+includes interface definition files associated with source files for
+the work, and the source code for shared libraries and dynamically
+linked subprograms that the work is specifically designed to require,
+such as by intimate data communication or control flow between those
+subprograms and other parts of the work.
+
+  The Corresponding Source need not include anything that users
+can regenerate automatically from other parts of the Corresponding
+Source.
+
+  The Corresponding Source for a work in source code form is that
+same work.
+
+  2. Basic Permissions.
+
+  All rights granted under this License are granted for the term of
+copyright on the Program, and are irrevocable provided the stated
+conditions are met.  This License explicitly affirms your unlimited
+permission to run the unmodified Program.  The output from running a
+covered work is covered by this License only if the output, given its
+content, constitutes a covered work.  This License acknowledges your
+rights of fair use or other equivalent, as provided by copyright law.
+
+  You may make, run and propagate covered works that you do not
+convey, without conditions so long as your license otherwise remains
+in force.  You may convey covered works to others for the sole purpose
+of having them make modifications exclusively for you, or provide you
+with facilities for running those works, provided that you comply with
+the terms of this License in conveying all material for which you do
+not control copyright.  Those thus making or running the covered works
+for you must do so exclusively on your behalf, under your direction
+and control, on terms that prohibit them from making any copies of
+your copyrighted material outside their relationship with you.
+
+  Conveying under any other circumstances is permitted solely under
+the conditions stated below.  Sublicensing is not allowed; section 10
+makes it unnecessary.
+
+  3. Protecting Users' Legal Rights From Anti-Circumvention Law.
+
+  No covered work shall be deemed part of an effective technological
+measure under any applicable law fulfilling obligations under article
+11 of the WIPO copyright treaty adopted on 20 December 1996, or
+similar laws prohibiting or restricting circumvention of such
+measures.
+
+  When you convey a covered work, you waive any legal power to forbid
+circumvention of technological measures to the extent such circumvention
+is effected by exercising rights under this License with respect to
+the covered work, and you disclaim any intention to limit operation or
+modification of the work as a means of enforcing, against the work's
+users, your or third parties' legal rights to forbid circumvention of
+technological measures.
+
+  4. Conveying Verbatim Copies.
+
+  You may convey verbatim copies of the Program's source code as you
+receive it, in any medium, provided that you conspicuously and
+appropriately publish on each copy an appropriate copyright notice;
+keep intact all notices stating that this License and any
+non-permissive terms added in accord with section 7 apply to the code;
+keep intact all notices of the absence of any warranty; and give all
+recipients a copy of this License along with the Program.
+
+  You may charge any price or no price for each copy that you convey,
+and you may offer support or warranty protection for a fee.
+
+  5. Conveying Modified Source Versions.
+
+  You may convey a work based on the Program, or the modifications to
+produce it from the Program, in the form of source code under the
+terms of section 4, provided that you also meet all of these conditions:
+
+    a) The work must carry prominent notices stating that you modified
+    it, and giving a relevant date.
+
+    b) The work must carry prominent notices stating that it is
+    released under this License and any conditions added under section
+    7.  This requirement modifies the requirement in section 4 to
+    "keep intact all notices".
+
+    c) You must license the entire work, as a whole, under this
+    License to anyone who comes into possession of a copy.  This
+    License will therefore apply, along with any applicable section 7
+    additional terms, to the whole of the work, and all its parts,
+    regardless of how they are packaged.  This License gives no
+    permission to license the work in any other way, but it does not
+    invalidate such permission if you have separately received it.
+
+    d) If the work has interactive user interfaces, each must display
+    Appropriate Legal Notices; however, if the Program has interactive
+    interfaces that do not display Appropriate Legal Notices, your
+    work need not make them do so.
+
+  A compilation of a covered work with other separate and independent
+works, which are not by their nature extensions of the covered work,
+and which are not combined with it such as to form a larger program,
+in or on a volume of a storage or distribution medium, is called an
+"aggregate" if the compilation and its resulting copyright are not
+used to limit the access or legal rights of the compilation's users
+beyond what the individual works permit.  Inclusion of a covered work
+in an aggregate does not cause this License to apply to the other
+parts of the aggregate.
+
+  6. Conveying Non-Source Forms.
+
+  You may convey a covered work in object code form under the terms
+of sections 4 and 5, provided that you also convey the
+machine-readable Corresponding Source under the terms of this License,
+in one of these ways:
+
+    a) Convey the object code in, or embodied in, a physical product
+    (including a physical distribution medium), accompanied by the
+    Corresponding Source fixed on a durable physical medium
+    customarily used for software interchange.
+
+    b) Convey the object code in, or embodied in, a physical product
+    (including a physical distribution medium), accompanied by a
+    written offer, valid for at least three years and valid for as
+    long as you offer spare parts or customer support for that product
+    model, to give anyone who possesses the object code either (1) a
+    copy of the Corresponding Source for all the software in the
+    product that is covered by this License, on a durable physical
+    medium customarily used for software interchange, for a price no
+    more than your reasonable cost of physically performing this
+    conveying of source, or (2) access to copy the
+    Corresponding Source from a network server at no charge.
+
+    c) Convey individual copies of the object code with a copy of the
+    written offer to provide the Corresponding Source.  This
+    alternative is allowed only occasionally and noncommercially, and
+    only if you received the object code with such an offer, in accord
+    with subsection 6b.
+
+    d) Convey the object code by offering access from a designated
+    place (gratis or for a charge), and offer equivalent access to the
+    Corresponding Source in the same way through the same place at no
+    further charge.  You need not require recipients to copy the
+    Corresponding Source along with the object code.  If the place to
+    copy the object code is a network server, the Corresponding Source
+    may be on a different server (operated by you or a third party)
+    that supports equivalent copying facilities, provided you maintain
+    clear directions next to the object code saying where to find the
+    Corresponding Source.  Regardless of what server hosts the
+    Corresponding Source, you remain obligated to ensure that it is
+    available for as long as needed to satisfy these requirements.
+
+    e) Convey the object code using peer-to-peer transmission, provided
+    you inform other peers where the object code and Corresponding
+    Source of the work are being offered to the general public at no
+    charge under subsection 6d.
+
+  A separable portion of the object code, whose source code is excluded
+from the Corresponding Source as a System Library, need not be
+included in conveying the object code work.
+
+  A "User Product" is either (1) a "consumer product", which means any
+tangible personal property which is normally used for personal, family,
+or household purposes, or (2) anything designed or sold for incorporation
+into a dwelling.  In determining whether a product is a consumer product,
+doubtful cases shall be resolved in favor of coverage.  For a particular
+product received by a particular user, "normally used" refers to a
+typical or common use of that class of product, regardless of the status
+of the particular user or of the way in which the particular user
+actually uses, or expects or is expected to use, the product.  A product
+is a consumer product regardless of whether the product has substantial
+commercial, industrial or non-consumer uses, unless such uses represent
+the only significant mode of use of the product.
+
+  "Installation Information" for a User Product means any methods,
+procedures, authorization keys, or other information required to install
+and execute modified versions of a covered work in that User Product from
+a modified version of its Corresponding Source.  The information must
+suffice to ensure that the continued functioning of the modified object
+code is in no case prevented or interfered with solely because
+modification has been made.
+
+  If you convey an object code work under this section in, or with, or
+specifically for use in, a User Product, and the conveying occurs as
+part of a transaction in which the right of possession and use of the
+User Product is transferred to the recipient in perpetuity or for a
+fixed term (regardless of how the transaction is characterized), the
+Corresponding Source conveyed under this section must be accompanied
+by the Installation Information.  But this requirement does not apply
+if neither you nor any third party retains the ability to install
+modified object code on the User Product (for example, the work has
+been installed in ROM).
+
+  The requirement to provide Installation Information does not include a
+requirement to continue to provide support service, warranty, or updates
+for a work that has been modified or installed by the recipient, or for
+the User Product in which it has been modified or installed.  Access to a
+network may be denied when the modification itself materially and
+adversely affects the operation of the network or violates the rules and
+protocols for communication across the network.
+
+  Corresponding Source conveyed, and Installation Information provided,
+in accord with this section must be in a format that is publicly
+documented (and with an implementation available to the public in
+source code form), and must require no special password or key for
+unpacking, reading or copying.
+
+  7. Additional Terms.
+
+  "Additional permissions" are terms that supplement the terms of this
+License by making exceptions from one or more of its conditions.
+Additional permissions that are applicable to the entire Program shall
+be treated as though they were included in this License, to the extent
+that they are valid under applicable law.  If additional permissions
+apply only to part of the Program, that part may be used separately
+under those permissions, but the entire Program remains governed by
+this License without regard to the additional permissions.
+
+  When you convey a copy of a covered work, you may at your option
+remove any additional permissions from that copy, or from any part of
+it.  (Additional permissions may be written to require their own
+removal in certain cases when you modify the work.)  You may place
+additional permissions on material, added by you to a covered work,
+for which you have or can give appropriate copyright permission.
+
+  Notwithstanding any other provision of this License, for material you
+add to a covered work, you may (if authorized by the copyright holders of
+that material) supplement the terms of this License with terms:
+
+    a) Disclaiming warranty or limiting liability differently from the
+    terms of sections 15 and 16 of this License; or
+
+    b) Requiring preservation of specified reasonable legal notices or
+    author attributions in that material or in the Appropriate Legal
+    Notices displayed by works containing it; or
+
+    c) Prohibiting misrepresentation of the origin of that material, or
+    requiring that modified versions of such material be marked in
+    reasonable ways as different from the original version; or
+
+    d) Limiting the use for publicity purposes of names of licensors or
+    authors of the material; or
+
+    e) Declining to grant rights under trademark law for use of some
+    trade names, trademarks, or service marks; or
+
+    f) Requiring indemnification of licensors and authors of that
+    material by anyone who conveys the material (or modified versions of
+    it) with contractual assumptions of liability to the recipient, for
+    any liability that these contractual assumptions directly impose on
+    those licensors and authors.
+
+  All other non-permissive additional terms are considered "further
+restrictions" within the meaning of section 10.  If the Program as you
+received it, or any part of it, contains a notice stating that it is
+governed by this License along with a term that is a further
+restriction, you may remove that term.  If a license document contains
+a further restriction but permits relicensing or conveying under this
+License, you may add to a covered work material governed by the terms
+of that license document, provided that the further restriction does
+not survive such relicensing or conveying.
+
+  If you add terms to a covered work in accord with this section, you
+must place, in the relevant source files, a statement of the
+additional terms that apply to those files, or a notice indicating
+where to find the applicable terms.
+
+  Additional terms, permissive or non-permissive, may be stated in the
+form of a separately written license, or stated as exceptions;
+the above requirements apply either way.
+
+  8. Termination.
+
+  You may not propagate or modify a covered work except as expressly
+provided under this License.  Any attempt otherwise to propagate or
+modify it is void, and will automatically terminate your rights under
+this License (including any patent licenses granted under the third
+paragraph of section 11).
+
+  However, if you cease all violation of this License, then your
+license from a particular copyright holder is reinstated (a)
+provisionally, unless and until the copyright holder explicitly and
+finally terminates your license, and (b) permanently, if the copyright
+holder fails to notify you of the violation by some reasonable means
+prior to 60 days after the cessation.
+
+  Moreover, your license from a particular copyright holder is
+reinstated permanently if the copyright holder notifies you of the
+violation by some reasonable means, this is the first time you have
+received notice of violation of this License (for any work) from that
+copyright holder, and you cure the violation prior to 30 days after
+your receipt of the notice.
+
+  Termination of your rights under this section does not terminate the
+licenses of parties who have received copies or rights from you under
+this License.  If your rights have been terminated and not permanently
+reinstated, you do not qualify to receive new licenses for the same
+material under section 10.
+
+  9. Acceptance Not Required for Having Copies.
+
+  You are not required to accept this License in order to receive or
+run a copy of the Program.  Ancillary propagation of a covered work
+occurring solely as a consequence of using peer-to-peer transmission
+to receive a copy likewise does not require acceptance.  However,
+nothing other than this License grants you permission to propagate or
+modify any covered work.  These actions infringe copyright if you do
+not accept this License.  Therefore, by modifying or propagating a
+covered work, you indicate your acceptance of this License to do so.
+
+  10. Automatic Licensing of Downstream Recipients.
+
+  Each time you convey a covered work, the recipient automatically
+receives a license from the original licensors, to run, modify and
+propagate that work, subject to this License.  You are not responsible
+for enforcing compliance by third parties with this License.
+
+  An "entity transaction" is a transaction transferring control of an
+organization, or substantially all assets of one, or subdividing an
+organization, or merging organizations.  If propagation of a covered
+work results from an entity transaction, each party to that
+transaction who receives a copy of the work also receives whatever
+licenses to the work the party's predecessor in interest had or could
+give under the previous paragraph, plus a right to possession of the
+Corresponding Source of the work from the predecessor in interest, if
+the predecessor has it or can get it with reasonable efforts.
+
+  You may not impose any further restrictions on the exercise of the
+rights granted or affirmed under this License.  For example, you may
+not impose a license fee, royalty, or other charge for exercise of
+rights granted under this License, and you may not initiate litigation
+(including a cross-claim or counterclaim in a lawsuit) alleging that
+any patent claim is infringed by making, using, selling, offering for
+sale, or importing the Program or any portion of it.
+
+  11. Patents.
+
+  A "contributor" is a copyright holder who authorizes use under this
+License of the Program or a work on which the Program is based.  The
+work thus licensed is called the contributor's "contributor version".
+
+  A contributor's "essential patent claims" are all patent claims
+owned or controlled by the contributor, whether already acquired or
+hereafter acquired, that would be infringed by some manner, permitted
+by this License, of making, using, or selling its contributor version,
+but do not include claims that would be infringed only as a
+consequence of further modification of the contributor version.  For
+purposes of this definition, "control" includes the right to grant
+patent sublicenses in a manner consistent with the requirements of
+this License.
+
+  Each contributor grants you a non-exclusive, worldwide, royalty-free
+patent license under the contributor's essential patent claims, to
+make, use, sell, offer for sale, import and otherwise run, modify and
+propagate the contents of its contributor version.
+
+  In the following three paragraphs, a "patent license" is any express
+agreement or commitment, however denominated, not to enforce a patent
+(such as an express permission to practice a patent or covenant not to
+sue for patent infringement).  To "grant" such a patent license to a
+party means to make such an agreement or commitment not to enforce a
+patent against the party.
+
+  If you convey a covered work, knowingly relying on a patent license,
+and the Corresponding Source of the work is not available for anyone
+to copy, free of charge and under the terms of this License, through a
+publicly available network server or other readily accessible means,
+then you must either (1) cause the Corresponding Source to be so
+available, or (2) arrange to deprive yourself of the benefit of the
+patent license for this particular work, or (3) arrange, in a manner
+consistent with the requirements of this License, to extend the patent
+license to downstream recipients.  "Knowingly relying" means you have
+actual knowledge that, but for the patent license, your conveying the
+covered work in a country, or your recipient's use of the covered work
+in a country, would infringe one or more identifiable patents in that
+country that you have reason to believe are valid.
+
+  If, pursuant to or in connection with a single transaction or
+arrangement, you convey, or propagate by procuring conveyance of, a
+covered work, and grant a patent license to some of the parties
+receiving the covered work authorizing them to use, propagate, modify
+or convey a specific copy of the covered work, then the patent license
+you grant is automatically extended to all recipients of the covered
+work and works based on it.
+
+  A patent license is "discriminatory" if it does not include within
+the scope of its coverage, prohibits the exercise of, or is
+conditioned on the non-exercise of one or more of the rights that are
+specifically granted under this License.  You may not convey a covered
+work if you are a party to an arrangement with a third party that is
+in the business of distributing software, under which you make payment
+to the third party based on the extent of your activity of conveying
+the work, and under which the third party grants, to any of the
+parties who would receive the covered work from you, a discriminatory
+patent license (a) in connection with copies of the covered work
+conveyed by you (or copies made from those copies), or (b) primarily
+for and in connection with specific products or compilations that
+contain the covered work, unless you entered into that arrangement,
+or that patent license was granted, prior to 28 March 2007.
+
+  Nothing in this License shall be construed as excluding or limiting
+any implied license or other defenses to infringement that may
+otherwise be available to you under applicable patent law.
+
+  12. No Surrender of Others' Freedom.
+
+  If conditions are imposed on you (whether by court order, agreement or
+otherwise) that contradict the conditions of this License, they do not
+excuse you from the conditions of this License.  If you cannot convey a
+covered work so as to satisfy simultaneously your obligations under this
+License and any other pertinent obligations, then as a consequence you may
+not convey it at all.  For example, if you agree to terms that obligate you
+to collect a royalty for further conveying from those to whom you convey
+the Program, the only way you could satisfy both those terms and this
+License would be to refrain entirely from conveying the Program.
+
+  13. Remote Network Interaction; Use with the GNU General Public License.
+
+  Notwithstanding any other provision of this License, if you modify the
+Program, your modified version must prominently offer all users
+interacting with it remotely through a computer network (if your version
+supports such interaction) an opportunity to receive the Corresponding
+Source of your version by providing access to the Corresponding Source
+from a network server at no charge, through some standard or customary
+means of facilitating copying of software.  This Corresponding Source
+shall include the Corresponding Source for any work covered by version 3
+of the GNU General Public License that is incorporated pursuant to the
+following paragraph.
+
+  Notwithstanding any other provision of this License, you have
+permission to link or combine any covered work with a work licensed
+under version 3 of the GNU General Public License into a single
+combined work, and to convey the resulting work.  The terms of this
+License will continue to apply to the part which is the covered work,
+but the work with which it is combined will remain governed by version
+3 of the GNU General Public License.
+
+  14. Revised Versions of this License.
+
+  The Free Software Foundation may publish revised and/or new versions of
+the GNU Affero General Public License from time to time.  Such new versions
+will be similar in spirit to the present version, but may differ in detail to
+address new problems or concerns.
+
+  Each version is given a distinguishing version number.  If the
+Program specifies that a certain numbered version of the GNU Affero General
+Public License "or any later version" applies to it, you have the
+option of following the terms and conditions either of that numbered
+version or of any later version published by the Free Software
+Foundation.  If the Program does not specify a version number of the
+GNU Affero General Public License, you may choose any version ever published
+by the Free Software Foundation.
+
+  If the Program specifies that a proxy can decide which future
+versions of the GNU Affero General Public License can be used, that proxy's
+public statement of acceptance of a version permanently authorizes you
+to choose that version for the Program.
+
+  Later license versions may give you additional or different
+permissions.  However, no additional obligations are imposed on any
+author or copyright holder as a result of your choosing to follow a
+later version.
+
+  15. Disclaimer of Warranty.
+
+  THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY
+APPLICABLE LAW.  EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT
+HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY
+OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,
+THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+PURPOSE.  THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM
+IS WITH YOU.  SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF
+ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
+
+  16. Limitation of Liability.
+
+  IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
+WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS
+THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY
+GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE
+USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF
+DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD
+PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS),
+EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
+SUCH DAMAGES.
+
+  17. Interpretation of Sections 15 and 16.
+
+  If the disclaimer of warranty and limitation of liability provided
+above cannot be given local legal effect according to their terms,
+reviewing courts shall apply local law that most closely approximates
+an absolute waiver of all civil liability in connection with the
+Program, unless a warranty or assumption of liability accompanies a
+copy of the Program in return for a fee.
+
+                     END OF TERMS AND CONDITIONS
+
+            How to Apply These Terms to Your New Programs
+
+  If you develop a new program, and you want it to be of the greatest
+possible use to the public, the best way to achieve this is to make it
+free software which everyone can redistribute and change under these terms.
+
+  To do so, attach the following notices to the program.  It is safest
+to attach them to the start of each source file to most effectively
+state the exclusion of warranty; and each file should have at least
+the "copyright" line and a pointer to where the full notice is found.
+
+    <one line to give the program's name and a brief idea of what it does.>
+    Copyright (C) <year>  <name of author>
+
+    This program is free software: you can redistribute it and/or modify
+    it under the terms of the GNU Affero General Public License as published by
+    the Free Software Foundation, either version 3 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU Affero General Public License for more details.
+
+    You should have received a copy of the GNU Affero General Public License
+    along with this program.  If not, see <http://www.gnu.org/licenses/>.
+
+Also add information on how to contact you by electronic and paper mail.
+
+  If your software can interact with users remotely through a computer
+network, you should also make sure that it provides a way for users to
+get its source.  For example, if your program is a web application, its
+interface could display a "Source" link that leads users to an archive
+of the code.  There are many ways you could offer source, and different
+solutions will be better for different programs; see section 13 for the
+specific requirements.
+
+  You should also get your employer (if you work as a programmer) or school,
+if any, to sign a "copyright disclaimer" for the program, if necessary.
+For more information on this, and how to apply and follow the GNU AGPL, see
+<http://www.gnu.org/licenses/>.

README.md

@@ -1,29 +1,62 @@
-# Sub-Store
-> This project is still under active development. Current version: v0.1 (backend only).
+<div align="center">
+<br>
+<img width="200" src="https://raw.githubusercontent.com/cc63/ICON/main/Sub-Store.png" alt="Sub-Store">
+<br>
+<br>
+<h2 align="center">Sub-Store<h2>
+</div>
+
+<p align="center" color="#6a737d">
+Advanced Subscription Manager for QX, Loon, Surge, Stash and Shadowrocket.
+</p>
+
+[![Build](https://github.com/sub-store-org/Sub-Store/actions/workflows/main.yml/badge.svg)](https://github.com/sub-store-org/Sub-Store/actions/workflows/main.yml) ![GitHub](https://img.shields.io/github/license/sub-store-org/Sub-Store) ![GitHub issues](https://img.shields.io/github/issues/sub-store-org/Sub-Store) ![GitHub closed pull requests](https://img.shields.io/github/issues-pr-closed-raw/Peng-Ym/Sub-Store) ![Lines of code](https://img.shields.io/tokei/lines/github/sub-store-org/Sub-Store) ![Size](https://img.shields.io/github/languages/code-size/sub-store-org/Sub-Store) 
+<a href="https://trendshift.io/repositories/4572" target="_blank"><img src="https://trendshift.io/api/badge/repositories/4572" alt="sub-store-org%2FSub-Store | Trendshift" style="width: 250px; height: 55px;" width="250" height="55"/></a>
+[!["Buy Me A Coffee"](https://www.buymeacoffee.com/assets/img/custom_images/orange_img.png)](https://www.buymeacoffee.com/PengYM)
+   
+Core functionalities:
 
-Subscription manager for QX, Loon and Surge.
-Core functionality:
 1. Conversion among various formats.
 2. Subscription formatting.
-3. Collect multiple subscription in one URL.
+3. Collect multiple subscriptions in one URL.
+
+> The following descriptions of features may not be updated in real-time. Please refer to the actual available features for accurate information.
+   
 ## 1. Subscription Conversion
+
 ### Supported Input Formats
-- [x] SS URI
-- [x] SSR URI
-- [x] V2RayN URI
-- [x] QX (SS, SSR, VMess, Trojan, HTTP)
-- [x] Loon (SS, SSR, VMess, Trojan, HTTP)
-- [x] Surge (SS, VMess, Trojan, HTTP)
+
+- [x] URI(SS, SSR, VMess, VLESS, Trojan, Hysteria, Hysteria 2, TUIC v5, WireGuard)
+- [x] Clash Proxies YAML
+- [x] Clash Proxy JSON(single line)
+- [x] QX (SS, SSR, VMess, Trojan, HTTP, SOCKS5, VLESS)
+- [x] Loon (SS, SSR, VMess, Trojan, HTTP, SOCKS5, SOCKS5-TLS, WireGuard, VLESS, Hysteria 2)
+- [x] Surge (SS, VMess, Trojan, HTTP, SOCKS5, SOCKS5-TLS, TUIC, Snell, Hysteria 2, SSH(Password authentication only), SSR(external, only for macOS), External Proxy Program(only for macOS), WireGuard(Surge to Surge))
+- [x] Surfboard (SS, VMess, Trojan, HTTP, SOCKS5, SOCKS5-TLS, WireGuard(Surfboard to Surfboard))
+- [x] Shadowrocket (SS, SSR, VMess, Trojan, HTTP, SOCKS5, Snell, VLESS, WireGuard, Hysteria, Hysteria 2, TUIC)
+- [x] Clash.Meta (SS, SSR, VMess, Trojan, HTTP, SOCKS5, Snell, VLESS, WireGuard, Hysteria, Hysteria 2, TUIC)
+- [x] Stash (SS, SSR, VMess, Trojan, HTTP, SOCKS5, Snell, VLESS, WireGuard, Hysteria, TUIC)
+- [x] Clash (SS, SSR, VMess, Trojan, HTTP, SOCKS5, Snell, VLESS, WireGuard)
 
 ### Supported Target Platforms
-- [x] QX
-- [x] Loon
+
+- [x] Plain JSON
+- [x] Stash
+- [x] Clash.Meta(mihomo)
+- [x] Clash
+- [x] Surfboard
 - [x] Surge
+- [x] Loon
+- [x] Shadowrocket
+- [x] QX
+- [x] sing-box
+- [x] V2Ray
+- [x] V2Ray URI
 
 ## 2. Subscription Formatting
+
 ### Filtering
-- [x] **Keyword filter**
-- [x] **Discard keywords filter**
+
 - [x] **Regex filter**
 - [x] **Discard regex filter**
 - [x] **Region filter**
@@ -32,13 +65,54 @@ Core functionality:
 - [x] **Script filter**
 
 ### Proxy Operations
+
 - [x] **Set property operator**: set some proxy properties such as `udp`,`tfo`, `skip-cert-verify` etc.
 - [x] **Flag operator**: add flags or remove flags for proxies.
 - [x] **Sort operator**: sort proxies by name.
-- [x] **Keyword sort operator**: sort proxies by keywords (fallback to normal sort).
-- [x] **Keyword rename operator**: replace by keywords in proxy names.
-- [x] **Keyword delete operator**: delete by keywords in proxy names.
+- [x] **Regex sort operator**: sort proxies by keywords (fallback to normal sort).
 - [x] **Regex rename operator**: replace by regex in proxy names.
 - [x] **Regex delete operator**: delete by regex in proxy names.
 - [x] **Script operator**: modify proxy by script.
+- [x] **Resolve Domain Operator**: resolve the domain of nodes to an IP address.
 
+### Development
+
+Install `pnpm`
+
+Go to `backend` directories, install node dependencies:
+
+```
+pnpm i
+```
+
+1. In `backend`, run the backend server on http://localhost:3000
+
+babel(old school)
+
+```
+pnpm start
+```
+
+or
+
+esbuild(experimental)
+
+```
+pnpm run --parallel "/^dev:.*/"
+```
+
+## LICENSE
+
+This project is under the GPL V3 LICENSE.
+
+[![FOSSA Status](https://app.fossa.com/api/projects/git%2Bgithub.com%2FPeng-YM%2FSub-Store.svg?type=large)](https://app.fossa.com/projects/git%2Bgithub.com%2FPeng-YM%2FSub-Store?ref=badge_large)
+
+## Star History
+
+[![Star History Chart](https://api.star-history.com/svg?repos=sub-store-org/sub-store&type=Date)](https://star-history.com/#sub-store-org/sub-store&Date)
+
+
+## Acknowledgements
+
+- Special thanks to @KOP-XIAO for his awesome resource-parser. Please give a [star](https://github.com/KOP-XIAO/QuantumultX) for his great work!
+- Special thanks to @Orz-3 and @58xinian for their awesome icons.

backend/.babelrc

@@ -0,0 +1,27 @@
+{
+    "presets": [
+        [
+            "@babel/preset-env"
+        ]
+    ],
+    "env": {
+        "test": {
+            "presets": [
+                "@babel/preset-env"
+            ]
+        }
+    },
+    "plugins": [
+        [
+            "babel-plugin-relative-path-import",
+            {
+                "paths": [
+                    {
+                        "rootPathPrefix": "@",
+                        "rootPathSuffix": "src"
+                    }
+                ]
+            }
+        ]
+    ]
+}

backend/.eslintrc.json

@@ -0,0 +1,15 @@
+{
+    "ignorePatterns": ["*.min.js", "src/vendor/*.js"],
+    "env": {
+        "browser": true,
+        "es2021": true,
+        "node": true
+    },
+    "extends": "eslint:recommended",
+    "parserOptions": {
+        "ecmaVersion": "latest",
+        "sourceType": "module"
+    },
+    "rules": {
+    }
+}

backend/.prettierrc.json

@@ -0,0 +1,6 @@
+{
+    "singleQuote": true,
+    "trailingComma": "all",
+    "tabWidth": 4,
+    "bracketSpacing": true
+}

backend/banner

@@ -0,0 +1,15 @@
+/**
+ *  ███████╗██╗   ██╗██████╗       ███████╗████████╗ ██████╗ ██████╗ ███████╗
+ *  ██╔════╝██║   ██║██╔══██╗      ██╔════╝╚══██╔══╝██╔═══██╗██╔══██╗██╔════╝
+ *  ███████╗██║   ██║██████╔╝█████╗███████╗   ██║   ██║   ██║██████╔╝█████╗
+ *  ╚════██║██║   ██║██╔══██╗╚════╝╚════██║   ██║   ██║   ██║██╔══██╗██╔══╝
+ *  ███████║╚██████╔╝██████╔╝      ███████║   ██║   ╚██████╔╝██║  ██║███████╗
+ *  ╚══════╝ ╚═════╝ ╚═════╝       ╚══════╝   ╚═╝    ╚═════╝ ╚═╝  ╚═╝╚══════╝
+ * Advanced Subscription Manager for QX, Loon, Surge, Stash and ShadowRocket!
+ * @updated: <%= updated %>
+ * @version: <%= pkg.version %>
+ * @author: Peng-YM
+ * @github: https://github.com/sub-store-org/Sub-Store
+ * @documentation: https://www.notion.so/Sub-Store-6259586994d34c11a4ced5c406264b46
+ */
+

backend/bundle-esbuild.js

@@ -0,0 +1,77 @@
+#!/usr/bin/env node
+const fs = require('fs');
+const path = require('path');
+const { build } = require('esbuild');
+
+!(async () => {
+    const version = JSON.parse(
+        fs.readFileSync(path.join(__dirname, 'package.json'), 'utf-8'),
+    ).version.trim();
+
+    const artifacts = [
+        { src: 'src/main.js', dest: 'sub-store.min.js' },
+        {
+            src: 'src/products/resource-parser.loon.js',
+            dest: 'dist/sub-store-parser.loon.min.js',
+        },
+        {
+            src: 'src/products/cron-sync-artifacts.js',
+            dest: 'dist/cron-sync-artifacts.min.js',
+        },
+        { src: 'src/products/sub-store-0.js', dest: 'dist/sub-store-0.min.js' },
+        { src: 'src/products/sub-store-1.js', dest: 'dist/sub-store-1.min.js' },
+    ];
+
+    for await (const artifact of artifacts) {
+        await build({
+            entryPoints: [artifact.src],
+            bundle: true,
+            minify: true,
+            sourcemap: false,
+            platform: 'browser',
+            format: 'iife',
+            outfile: artifact.dest,
+        });
+    }
+
+    let content = fs.readFileSync(path.join(__dirname, 'sub-store.min.js'), {
+        encoding: 'utf8',
+    });
+    content = content.replace(
+        /eval\(('|")(require\(('|").*?('|")\))('|")\)/g,
+        '$2',
+    );
+    fs.writeFileSync(
+        path.join(__dirname, 'dist/sub-store.no-bundle.js'),
+        content,
+        {
+            encoding: 'utf8',
+        },
+    );
+
+    await build({
+        entryPoints: ['dist/sub-store.no-bundle.js'],
+        bundle: true,
+        minify: true,
+        sourcemap: false,
+        platform: 'node',
+        format: 'cjs',
+        outfile: 'dist/sub-store.bundle.js',
+    });
+    fs.writeFileSync(
+        path.join(__dirname, 'dist/sub-store.bundle.js'),
+        `// SUB_STORE_BACKEND_VERSION: ${version}
+${fs.readFileSync(path.join(__dirname, 'dist/sub-store.bundle.js'), {
+    encoding: 'utf8',
+})}`,
+        {
+            encoding: 'utf8',
+        },
+    );
+})()
+    .catch((e) => {
+        console.log(e);
+    })
+    .finally(() => {
+        console.log('done');
+    });

backend/bundle.js

@@ -0,0 +1,51 @@
+#!/usr/bin/env node
+const fs = require('fs');
+const path = require('path');
+const { build } = require('esbuild');
+
+!(async () => {
+    const version = JSON.parse(
+        fs.readFileSync(path.join(__dirname, 'package.json'), 'utf-8'),
+    ).version.trim();
+
+    let content = fs.readFileSync(path.join(__dirname, 'sub-store.min.js'), {
+        encoding: 'utf8',
+    });
+    content = content.replace(
+        /eval\(('|")(require\(('|").*?('|")\))('|")\)/g,
+        '$2',
+    );
+    fs.writeFileSync(
+        path.join(__dirname, 'dist/sub-store.no-bundle.js'),
+        content,
+        {
+            encoding: 'utf8',
+        },
+    );
+
+    await build({
+        entryPoints: ['dist/sub-store.no-bundle.js'],
+        bundle: true,
+        minify: true,
+        sourcemap: true,
+        platform: 'node',
+        format: 'cjs',
+        outfile: 'dist/sub-store.bundle.js',
+    });
+    fs.writeFileSync(
+        path.join(__dirname, 'dist/sub-store.bundle.js'),
+        `// SUB_STORE_BACKEND_VERSION: ${version}
+${fs.readFileSync(path.join(__dirname, 'dist/sub-store.bundle.js'), {
+    encoding: 'utf8',
+})}`,
+        {
+            encoding: 'utf8',
+        },
+    );
+})()
+    .catch((e) => {
+        console.log(e);
+    })
+    .finally(() => {
+        console.log('done');
+    });

backend/dev-esbuild.js

@@ -0,0 +1,24 @@
+#!/usr/bin/env node
+const { build } = require('esbuild');
+
+!(async () => {
+    const artifacts = [{ src: 'src/main.js', dest: 'sub-store.min.js' }];
+
+    for await (const artifact of artifacts) {
+        await build({
+            entryPoints: [artifact.src],
+            bundle: true,
+            minify: false,
+            sourcemap: false,
+            platform: 'node',
+            format: 'cjs',
+            outfile: artifact.dest,
+        });
+    }
+})()
+    .catch((e) => {
+        console.log(e);
+    })
+    .finally(() => {
+        console.log('done');
+    });

backend/gulpfile.babel.js

@@ -0,0 +1,118 @@
+import fs from 'fs';
+import browserify from 'browserify';
+import gulp from 'gulp';
+import prettier from 'gulp-prettier';
+import header from 'gulp-header';
+import eslint from 'gulp-eslint-new';
+import newFile from 'gulp-file';
+import path from 'path';
+import tap from 'gulp-tap';
+
+import pkg from './package.json';
+
+export function peggy() {
+    return gulp.src('src/**/*.peg').pipe(
+        tap(function (file) {
+            const filename = path.basename(file.path).split('.')[0] + '.js';
+            const raw = fs.readFileSync(file.path, 'utf8');
+            const contents = `import * as peggy from 'peggy';
+const grammars = String.raw\`\n${raw}\n\`;
+let parser;
+export default function getParser() {
+    if (!parser) {
+        parser = peggy.generate(grammars);
+    }
+    return parser;
+}\n`;
+            return newFile(filename, contents).pipe(
+                gulp.dest(path.dirname(file.path)),
+            );
+        }),
+    );
+}
+
+export function lint() {
+    return gulp
+        .src('src/**/*.js')
+        .pipe(eslint({ fix: true }))
+        .pipe(eslint.fix())
+        .pipe(eslint.format())
+        .pipe(eslint.failAfterError());
+}
+
+export function styles() {
+    return gulp
+        .src('src/**/*.js')
+        .pipe(
+            prettier({
+                singleQuote: true,
+                trailingComma: 'all',
+                tabWidth: 4,
+                bracketSpacing: true,
+            }),
+        )
+        .pipe(gulp.dest((file) => file.base));
+}
+
+function scripts(src, dest) {
+    return () => {
+        return browserify(src)
+            .transform('babelify', {
+                presets: [['@babel/preset-env']],
+                plugins: [
+                    [
+                        'babel-plugin-relative-path-import',
+                        {
+                            paths: [
+                                {
+                                    rootPathPrefix: '@',
+                                    rootPathSuffix: 'src',
+                                },
+                            ],
+                        },
+                    ],
+                ],
+            })
+            .plugin('tinyify')
+            .bundle()
+            .pipe(fs.createWriteStream(dest));
+    };
+}
+
+function banner(dest) {
+    return () =>
+        gulp
+            .src(dest)
+            .pipe(
+                header(fs.readFileSync('./banner', 'utf-8'), {
+                    pkg,
+                    updated: new Date().toLocaleString('zh-CN'),
+                }),
+            )
+            .pipe(gulp.dest((file) => file.base));
+}
+
+const artifacts = [
+    { src: 'src/main.js', dest: 'sub-store.min.js' },
+    {
+        src: 'src/products/resource-parser.loon.js',
+        dest: 'dist/sub-store-parser.loon.min.js',
+    },
+    {
+        src: 'src/products/cron-sync-artifacts.js',
+        dest: 'dist/cron-sync-artifacts.min.js',
+    },
+    { src: 'src/products/sub-store-0.js', dest: 'dist/sub-store-0.min.js' },
+    { src: 'src/products/sub-store-1.js', dest: 'dist/sub-store-1.min.js' },
+];
+
+export const build = gulp.series(
+    gulp.parallel(
+        artifacts.map((artifact) => scripts(artifact.src, artifact.dest)),
+    ),
+    gulp.parallel(artifacts.map((artifact) => banner(artifact.dest))),
+);
+
+const all = gulp.series(peggy, lint, styles, build);
+
+export default all;

backend/jsconfig.json

@@ -0,0 +1,8 @@
+{
+  "compilerOptions": {
+    "baseUrl": ".",
+    "paths": {
+      "@/*": ["src/*"]
+    }
+  }
+}

backend/package.json

@@ -1,11 +1,63 @@
 {
-  "name": "sub-store-backend",
-  "version": "0.0.1",
-  "description": "Advanced Subscription Manager for QX, Loon, and Surge.",
-  "main": "sub-store.js",
+  "name": "sub-store",
+  "version": "2.14.315",
+  "description": "Advanced Subscription Manager for QX, Loon, Surge, Stash and ShadowRocket.",
+  "main": "src/main.js",
   "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
+    "preinstall": "npx only-allow pnpm",
+    "test": "gulp peggy && npx cross-env BABEL_ENV=test mocha src/test/**/*.spec.js --require @babel/register --recursive",
+    "serve": "node sub-store.min.js",
+    "start": "nodemon -w src -w package.json --exec babel-node src/main.js",
+    "dev:esbuild": "nodemon -w src -w package.json dev-esbuild.js",
+    "dev:run": "nodemon -w sub-store.min.js sub-store.min.js",
+    "build": "gulp",
+    "bundle": "node bundle.js",
+    "changelog": "conventional-changelog -p cli -i CHANGELOG.md -s"
   },
-  "author": "",
-  "license": "GPL"
-}
+  "author": "Peng-YM",
+  "license": "GPL-3.0",
+  "dependencies": {
+    "@maxmind/geoip2-node": "^5.0.0",
+    "automerge": "1.0.1-preview.7",
+    "body-parser": "^1.19.0",
+    "connect-history-api-fallback": "^2.0.0",
+    "cron": "^3.1.6",
+    "express": "^4.17.1",
+    "http-proxy-middleware": "^2.0.6",
+    "js-base64": "^3.7.2",
+    "lodash": "^4.17.21",
+    "request": "^2.88.2",
+    "requests": "^0.3.0",
+    "semver": "^7.3.7",
+    "static-js-yaml": "^1.0.0",
+    "uuid": "^8.3.2"
+  },
+  "devDependencies": {
+    "@babel/core": "^7.18.0",
+    "@babel/node": "^7.17.10",
+    "@babel/preset-env": "^7.18.0",
+    "@babel/register": "^7.17.7",
+    "@types/gulp": "^4.0.9",
+    "axios": "^0.21.2",
+    "babel-plugin-relative-path-import": "^2.0.1",
+    "babelify": "^10.0.0",
+    "browser-pack-flat": "^3.4.2",
+    "browserify": "^17.0.0",
+    "chai": "^4.3.6",
+    "esbuild": "^0.19.8",
+    "eslint": "^8.16.0",
+    "gulp": "^4.0.2",
+    "gulp-babel": "^8.0.0",
+    "gulp-eslint-new": "^1.4.4",
+    "gulp-file": "^0.4.0",
+    "gulp-header": "^2.0.9",
+    "gulp-prettier": "^4.0.0",
+    "gulp-tap": "^2.0.0",
+    "mocha": "^10.0.0",
+    "nodemon": "^2.0.16",
+    "peggy": "^2.0.1",
+    "prettier": "2.6.2",
+    "prettier-plugin-sort-imports": "^1.6.1",
+    "tinyify": "^3.0.0"
+  }
+}

backend/src/constants.js

@@ -0,0 +1,17 @@
+export const SCHEMA_VERSION_KEY = 'schemaVersion';
+export const SETTINGS_KEY = 'settings';
+export const SUBS_KEY = 'subs';
+export const COLLECTIONS_KEY = 'collections';
+export const FILES_KEY = 'files';
+export const MODULES_KEY = 'modules';
+export const ARTIFACTS_KEY = 'artifacts';
+export const RULES_KEY = 'rules';
+export const GIST_BACKUP_KEY = 'Auto Generated Sub-Store Backup';
+export const GIST_BACKUP_FILE_NAME = 'Sub-Store';
+export const ARTIFACT_REPOSITORY_KEY = 'Sub-Store Artifacts Repository';
+export const RESOURCE_CACHE_KEY = '#sub-store-cached-resource';
+export const HEADERS_RESOURCE_CACHE_KEY = '#sub-store-cached-headers-resource';
+export const CHR_EXPIRATION_TIME_KEY = '#sub-store-chr-expiration-time'; // Custom expiration time key; (Loon|Surge) Default write 1 min
+export const CACHE_EXPIRATION_TIME_MS = 60 * 60 * 1000; // 1 hour
+export const SCRIPT_RESOURCE_CACHE_KEY = '#sub-store-cached-script-resource'; // cached-script-resource CSR
+export const CSR_EXPIRATION_TIME_KEY = '#sub-store-csr-expiration-time'; // Custom expiration time key; (Loon|Surge) Default write 48 hour

backend/src/core/app.js

@@ -0,0 +1,4 @@
+import { OpenAPI } from '@/vendor/open-api';
+
+const $ = new OpenAPI('sub-store');
+export default $;

backend/src/core/proxy-utils/index.js

@@ -0,0 +1,444 @@
+import YAML from '@/utils/yaml';
+import download from '@/utils/download';
+import {
+    isIPv4,
+    isIPv6,
+    isValidPortNumber,
+    isNotBlank,
+    utf8ArrayToStr,
+} from '@/utils';
+import PROXY_PROCESSORS, { ApplyProcessor } from './processors';
+import PROXY_PREPROCESSORS from './preprocessors';
+import PROXY_PRODUCERS from './producers';
+import PROXY_PARSERS from './parsers';
+import $ from '@/core/app';
+import { FILES_KEY, MODULES_KEY } from '@/constants';
+import { findByName } from '@/utils/database';
+import { produceArtifact } from '@/restful/sync';
+import { getFlag, getISO, MMDB } from '@/utils/geo';
+import Gist from '@/utils/gist';
+
+function preprocess(raw) {
+    for (const processor of PROXY_PREPROCESSORS) {
+        try {
+            if (processor.test(raw)) {
+                $.info(`Pre-processor [${processor.name}] activated`);
+                return processor.parse(raw);
+            }
+        } catch (e) {
+            $.error(`Parser [${processor.name}] failed\n Reason: ${e}`);
+        }
+    }
+    return raw;
+}
+
+function parse(raw) {
+    raw = preprocess(raw);
+    // parse
+    const lines = raw.split('\n');
+    const proxies = [];
+    let lastParser;
+
+    for (let line of lines) {
+        line = line.trim();
+        if (line.length === 0) continue; // skip empty line
+        let success = false;
+
+        // try to parse with last used parser
+        if (lastParser) {
+            const [proxy, error] = tryParse(lastParser, line);
+            if (!error) {
+                proxies.push(lastParse(proxy));
+                success = true;
+            }
+        }
+
+        if (!success) {
+            // search for a new parser
+            for (const parser of PROXY_PARSERS) {
+                const [proxy, error] = tryParse(parser, line);
+                if (!error) {
+                    proxies.push(lastParse(proxy));
+                    lastParser = parser;
+                    success = true;
+                    $.info(`${parser.name} is activated`);
+                    break;
+                }
+            }
+        }
+
+        if (!success) {
+            $.error(`Failed to parse line: ${line}`);
+        }
+    }
+    return proxies;
+}
+
+async function processFn(proxies, operators = [], targetPlatform, source) {
+    for (const item of operators) {
+        // process script
+        let script;
+        let $arguments = {};
+        if (item.type.indexOf('Script') !== -1) {
+            const { mode, content } = item.args;
+            if (mode === 'link') {
+                let noCache;
+                let url = content;
+                if (url.endsWith('#noCache')) {
+                    url = url.replace(/#noCache$/, '');
+                    noCache = true;
+                }
+                // extract link arguments
+                const rawArgs = url.split('#');
+                if (rawArgs.length > 1) {
+                    try {
+                        // 支持 `#${encodeURIComponent(JSON.stringify({arg1: "1"}))}`
+                        $arguments = JSON.parse(decodeURIComponent(rawArgs[1]));
+                    } catch (e) {
+                        for (const pair of rawArgs[1].split('&')) {
+                            const key = pair.split('=')[0];
+                            const value = pair.split('=')[1];
+                            // 部分兼容之前的逻辑 const value = pair.split('=')[1] || true;
+                            $arguments[key] =
+                                value == null || value === ''
+                                    ? true
+                                    : decodeURIComponent(value);
+                        }
+                    }
+                }
+                url = `${url.split('#')[0]}${noCache ? '#noCache' : ''}`;
+                const downloadUrlMatch = url.match(
+                    /^\/api\/(file|module)\/(.+)/,
+                );
+                if (downloadUrlMatch) {
+                    let type = '';
+                    try {
+                        type = downloadUrlMatch?.[1];
+                        let name = downloadUrlMatch?.[2];
+                        if (name == null) {
+                            throw new Error(`本地 ${type} URL 无效: ${url}`);
+                        }
+                        name = decodeURIComponent(name);
+                        const key = type === 'module' ? MODULES_KEY : FILES_KEY;
+                        const item = findByName($.read(key), name);
+                        if (!item) {
+                            throw new Error(`找不到 ${type}: ${name}`);
+                        }
+
+                        if (type === 'module') {
+                            script = item.content;
+                        } else {
+                            script = await produceArtifact({
+                                type: 'file',
+                                name,
+                            });
+                        }
+                    } catch (err) {
+                        $.error(
+                            `Error when loading ${type}: ${item.args.content}.\n Reason: ${err}`,
+                        );
+                        throw new Error(`无法加载 ${type}: ${url}`);
+                    }
+                } else {
+                    // if this is a remote script, download it
+                    try {
+                        script = await download(url);
+                        // $.info(`Script loaded: >>>\n ${script}`);
+                    } catch (err) {
+                        $.error(
+                            `Error when downloading remote script: ${item.args.content}.\n Reason: ${err}`,
+                        );
+                        throw new Error(`无法下载脚本: ${url}`);
+                    }
+                }
+            } else {
+                script = content;
+            }
+        }
+
+        if (!PROXY_PROCESSORS[item.type]) {
+            $.error(`Unknown operator: "${item.type}"`);
+            continue;
+        }
+
+        $.log(
+            `Applying "${item.type}" with arguments:\n >>> ${
+                JSON.stringify(item.args, null, 2) || 'None'
+            }`,
+        );
+        let processor;
+        if (item.type.indexOf('Script') !== -1) {
+            processor = PROXY_PROCESSORS[item.type](
+                script,
+                targetPlatform,
+                $arguments,
+                source,
+            );
+        } else {
+            processor = PROXY_PROCESSORS[item.type](item.args || {});
+        }
+        proxies = await ApplyProcessor(processor, proxies);
+    }
+    return proxies;
+}
+
+function produce(proxies, targetPlatform, type, opts = {}) {
+    const producer = PROXY_PRODUCERS[targetPlatform];
+    if (!producer) {
+        throw new Error(`Target platform: ${targetPlatform} is not supported!`);
+    }
+
+    const sni_off_supported = /Surge|SurgeMac|Shadowrocket/i.test(
+        targetPlatform,
+    );
+
+    // filter unsupported proxies
+    proxies = proxies.filter(
+        (proxy) =>
+            !(proxy.supported && proxy.supported[targetPlatform] === false),
+    );
+
+    proxies = proxies.map((proxy) => {
+        if (!isNotBlank(proxy.name)) {
+            proxy.name = `${proxy.type} ${proxy.server}:${proxy.port}`;
+        }
+        if (proxy['disable-sni']) {
+            if (sni_off_supported) {
+                proxy.sni = 'off';
+            } else if (!['tuic'].includes(proxy.type)) {
+                $.error(
+                    `Target platform ${targetPlatform} does not support sni off. Proxy's fields (sni, tls-fingerprint and skip-cert-verify) will be modified.`,
+                );
+                proxy.sni = '';
+                proxy['skip-cert-verify'] = true;
+                delete proxy['tls-fingerprint'];
+            }
+        }
+        return proxy;
+    });
+
+    $.log(`Producing proxies for target: ${targetPlatform}`);
+    if (typeof producer.type === 'undefined' || producer.type === 'SINGLE') {
+        let localPort = 10000;
+        let list = proxies
+            .map((proxy) => {
+                try {
+                    let line = producer.produce(proxy, type, opts);
+                    if (
+                        line.length > 0 &&
+                        line.includes('__SubStoreLocalPort__')
+                    ) {
+                        line = line.replace(
+                            /__SubStoreLocalPort__/g,
+                            localPort++,
+                        );
+                    }
+                    return line;
+                } catch (err) {
+                    $.error(
+                        `Cannot produce proxy: ${JSON.stringify(
+                            proxy,
+                            null,
+                            2,
+                        )}\nReason: ${err}`,
+                    );
+                    return '';
+                }
+            })
+            .filter((line) => line.length > 0);
+        list = type === 'internal' ? list : list.join('\n');
+        if (
+            targetPlatform.startsWith('Surge') &&
+            proxies.length > 0 &&
+            proxies.every((p) => p.type === 'wireguard')
+        ) {
+            list = `#!name=${proxies[0]?.subName}
+#!desc=${proxies[0]?._desc ?? ''}
+#!category=${proxies[0]?._category ?? ''}
+${list}`;
+        }
+        return list;
+    } else if (producer.type === 'ALL') {
+        return producer.produce(proxies, type, opts);
+    }
+}
+
+export const ProxyUtils = {
+    parse,
+    process: processFn,
+    produce,
+    isIPv4,
+    isIPv6,
+    isIP,
+    yaml: YAML,
+    getFlag,
+    getISO,
+    MMDB,
+    Gist,
+};
+
+function tryParse(parser, line) {
+    if (!safeMatch(parser, line)) return [null, new Error('Parser mismatch')];
+    try {
+        const proxy = parser.parse(line);
+        return [proxy, null];
+    } catch (err) {
+        return [null, err];
+    }
+}
+
+function safeMatch(parser, line) {
+    try {
+        return parser.test(line);
+    } catch (err) {
+        return false;
+    }
+}
+
+function lastParse(proxy) {
+    if (proxy.interface) {
+        proxy['interface-name'] = proxy.interface;
+        delete proxy.interface;
+    }
+    if (isValidPortNumber(proxy.port)) {
+        proxy.port = parseInt(proxy.port, 10);
+    }
+    if (proxy.server) {
+        proxy.server = `${proxy.server}`
+            .trim()
+            .replace(/^\[/, '')
+            .replace(/\]$/, '');
+    }
+    if (proxy.network === 'ws') {
+        if (!proxy['ws-opts'] && (proxy['ws-path'] || proxy['ws-headers'])) {
+            proxy['ws-opts'] = {};
+            if (proxy['ws-path']) {
+                proxy['ws-opts'].path = proxy['ws-path'];
+            }
+            if (proxy['ws-headers']) {
+                proxy['ws-opts'].headers = proxy['ws-headers'];
+            }
+        }
+        delete proxy['ws-path'];
+        delete proxy['ws-headers'];
+    }
+
+    if (proxy.type === 'trojan') {
+        if (proxy.network === 'tcp') {
+            delete proxy.network;
+        }
+    }
+    if (['vless'].includes(proxy.type)) {
+        if (!proxy.network) {
+            proxy.network = 'tcp';
+        }
+    }
+    if (['trojan', 'tuic', 'hysteria', 'hysteria2'].includes(proxy.type)) {
+        proxy.tls = true;
+    }
+    if (proxy.network) {
+        let transportHost = proxy[`${proxy.network}-opts`]?.headers?.Host;
+        let transporthost = proxy[`${proxy.network}-opts`]?.headers?.host;
+        if (proxy.network === 'h2') {
+            if (!transporthost && transportHost) {
+                proxy[`${proxy.network}-opts`].headers.host = transportHost;
+                delete proxy[`${proxy.network}-opts`].headers.Host;
+            }
+        } else if (transporthost && !transportHost) {
+            proxy[`${proxy.network}-opts`].headers.Host = transporthost;
+            delete proxy[`${proxy.network}-opts`].headers.host;
+        }
+    }
+    if (proxy.network === 'h2') {
+        const host = proxy['h2-opts']?.headers?.host;
+        const path = proxy['h2-opts']?.path;
+        if (host && !Array.isArray(host)) {
+            proxy['h2-opts'].headers.host = [host];
+        }
+        if (Array.isArray(path)) {
+            proxy['h2-opts'].path = path[0];
+        }
+    }
+    if (proxy.tls && !proxy.sni) {
+        if (proxy.network) {
+            let transportHost = proxy[`${proxy.network}-opts`]?.headers?.Host;
+            transportHost = Array.isArray(transportHost)
+                ? transportHost[0]
+                : transportHost;
+            if (transportHost) {
+                proxy.sni = transportHost;
+            }
+        }
+        if (!proxy.sni && !isIP(proxy.server)) {
+            proxy.sni = proxy.server;
+        }
+    }
+    // 非 tls, 有 ws/http 传输层, 使用域名的节点, 将设置传输层 Host 防止之后域名解析后丢失域名(不覆盖现有的 Host)
+    if (
+        !proxy.tls &&
+        ['ws', 'http'].includes(proxy.network) &&
+        !proxy[`${proxy.network}-opts`]?.headers?.Host &&
+        !isIP(proxy.server)
+    ) {
+        proxy[`${proxy.network}-opts`] = proxy[`${proxy.network}-opts`] || {};
+        proxy[`${proxy.network}-opts`].headers =
+            proxy[`${proxy.network}-opts`].headers || {};
+        proxy[`${proxy.network}-opts`].headers.Host =
+            ['vmess', 'vless'].includes(proxy.type) && proxy.network === 'http'
+                ? [proxy.server]
+                : proxy.server;
+    }
+    // 统一将 VMess 和 VLESS 的 http 传输层的 path 和 Host 处理为数组
+    if (['vmess', 'vless'].includes(proxy.type) && proxy.network === 'http') {
+        let transportPath = proxy[`${proxy.network}-opts`]?.path;
+        let transportHost = proxy[`${proxy.network}-opts`]?.headers?.Host;
+        if (transportHost && !Array.isArray(transportHost)) {
+            proxy[`${proxy.network}-opts`].headers.Host = [transportHost];
+        }
+        if (transportPath && !Array.isArray(transportPath)) {
+            proxy[`${proxy.network}-opts`].path = [transportPath];
+        }
+    }
+    if (['hysteria', 'hysteria2'].includes(proxy.type) && !proxy.ports) {
+        delete proxy.ports;
+    }
+    if (['vless'].includes(proxy.type)) {
+        // 非 reality, 空 flow 没有意义
+        if (!proxy['reality-opts'] && !proxy.flow) {
+            delete proxy.flow;
+        }
+        if (['http'].includes(proxy.network)) {
+            let transportPath = proxy[`${proxy.network}-opts`]?.path;
+            if (!transportPath) {
+                if (!proxy[`${proxy.network}-opts`]) {
+                    proxy[`${proxy.network}-opts`] = {};
+                }
+                proxy[`${proxy.network}-opts`].path = ['/'];
+            }
+        }
+    }
+    if (typeof proxy.name !== 'string') {
+        if (/^\d+$/.test(proxy.name)) {
+            proxy.name = `${proxy.name}`;
+        } else {
+            try {
+                if (proxy.name?.data) {
+                    proxy.name = Buffer.from(proxy.name.data).toString('utf8');
+                } else {
+                    proxy.name = utf8ArrayToStr(proxy.name);
+                }
+            } catch (e) {
+                $.error(`proxy.name decode failed\nReason: ${e}`);
+                proxy.name = `${proxy.type} ${proxy.server}:${proxy.port}`;
+            }
+        }
+    }
+    if (['', 'off'].includes(proxy.sni)) {
+        proxy['disable-sni'] = true;
+    }
+    return proxy;
+}
+
+function isIP(ip) {
+    return isIPv4(ip) || isIPv6(ip);
+}

backend/src/core/proxy-utils/parsers/peggy/loon.js

@@ -0,0 +1,195 @@
+import * as peggy from 'peggy';
+const grammars = String.raw`
+// global initializer
+{{
+    function $set(obj, path, value) {
+      if (Object(obj) !== obj) return obj;
+      if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+      path
+        .slice(0, -1)
+        .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+        path[path.length - 1]
+      ] = value;
+      return obj;
+    }
+}}
+
+// per-parser initializer
+{
+    const proxy = {};
+    const obfs = {};
+    const transport = {};
+    const $ = {};
+
+    function handleTransport() {
+        if (transport.type === "tcp") { /* do nothing */ }
+        else if (transport.type === "ws") {
+            proxy.network = "ws";
+            $set(proxy, "ws-opts.path", transport.path);
+            $set(proxy, "ws-opts.headers.Host", transport.host);
+        } else if (transport.type === "http") {
+            proxy.network = "http";
+            $set(proxy, "http-opts.path", transport.path);
+            $set(proxy, "http-opts.headers.Host", transport.host);
+        }
+    }
+}
+
+start = (shadowsocksr/shadowsocks/vmess/vless/trojan/https/http/socks5/hysteria2) {
+    return proxy;
+}
+
+shadowsocksr = tag equals "shadowsocksr"i address method password (ssr_protocol/ssr_protocol_param/obfs_ssr/obfs_ssr_param/obfs_host/obfs_uri/fast_open/udp_relay/others)*{
+    proxy.type = "ssr";
+    // handle ssr obfs
+    proxy.obfs = obfs.type;
+}
+shadowsocks = tag equals "shadowsocks"i address method password (obfs_typev obfs_hostv)? (obfs_ss/obfs_host/obfs_uri/fast_open/udp_relay/others)* {
+    proxy.type = "ss";
+    // handle ss obfs
+    if (obfs.type == "http" || obfs.type === "tls") {
+        proxy.plugin = "obfs";
+        $set(proxy, "plugin-opts.mode", obfs.type);
+        $set(proxy, "plugin-opts.host", obfs.host);
+        $set(proxy, "plugin-opts.path", obfs.path);
+    }
+}
+vmess = tag equals "vmess"i address method uuid (transport/transport_host/transport_path/over_tls/tls_host/tls_verification/vmess_alterId/fast_open/udp_relay/others)* {
+    proxy.type = "vmess";
+    proxy.cipher = proxy.cipher || "none";
+    proxy.alterId = proxy.alterId || 0;
+    handleTransport();
+}
+vless = tag equals "vless"i address uuid (transport/transport_host/transport_path/over_tls/tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "vless";
+    handleTransport();
+}
+trojan = tag equals "trojan"i address password (transport/transport_host/transport_path/over_tls/tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "trojan";
+    handleTransport();
+}
+hysteria2 = tag equals "hysteria2"i address password (tls_host/tls_verification/udp_relay/fast_open/download_bandwidth/ecn/others)* {
+    proxy.type = "hysteria2";
+}
+https = tag equals "https"i address (username password)? (tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "http";
+    proxy.tls = true;
+}
+http = tag equals "http"i address (username password)? (fast_open/udp_relay/others)* {
+    proxy.type = "http";
+}
+socks5 = tag equals "socks5"i address (username password)? (over_tls/tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "socks5";
+}
+
+address = comma server:server comma port:port {
+    proxy.server = server;
+    proxy.port = port;
+}
+
+server = ip/domain
+
+ip = & {
+    const start = peg$currPos;
+    let j = start;
+    while (j < input.length) {
+        if (input[j] === ",") break;
+        j++;
+    }
+    peg$currPos = j;
+    $.ip = input.substring(start, j).trim();
+    return true;
+} { return $.ip; }
+
+domain = match:[0-9a-zA-z-_.]+ { 
+    const domain = match.join(""); 
+    if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+        return domain;
+    }
+    throw new Error("Invalid domain: " + domain);
+}
+
+port = digits:[0-9]+ { 
+    const port = parseInt(digits.join(""), 10); 
+    if (port >= 0 && port <= 65535) {
+    	return port;
+    }
+    throw new Error("Invalid port number: " + port);
+}
+
+method = comma cipher:cipher { 
+    proxy.cipher = cipher;
+}
+cipher = ("aes-128-cfb"/"aes-128-ctr"/"aes-128-gcm"/"aes-192-cfb"/"aes-192-ctr"/"aes-192-gcm"/"aes-256-cfb"/"aes-256-ctr"/"aes-256-gcm"/"auto"/"bf-cfb"/"camellia-128-cfb"/"camellia-192-cfb"/"camellia-256-cfb"/"chacha20-ietf-poly1305"/"chacha20-ietf"/"chacha20-poly1305"/"chacha20"/"none"/"rc4-md5"/"rc4"/"salsa20"/"xchacha20-ietf-poly1305");
+
+username = & {
+    let j = peg$currPos; 
+    let start, end;
+    let first = true;
+    while (j < input.length) {
+        if (input[j] === ',') {
+            if (first) {
+                start = j + 1;
+                first = false;
+            } else {
+                end = j;
+                break;
+            }
+        }
+        j++;
+    }
+    const match = input.substring(start, end);
+    if (match.indexOf("=") === -1) {
+        $.username = match;
+        peg$currPos = end;
+        return true;
+    }
+} { proxy.username = $.username; }
+password = comma '"' match:[^"]* '"' { proxy.password = match.join(""); }
+uuid = comma '"' match:[^"]+ '"' { proxy.uuid = match.join(""); }
+
+obfs_typev = comma type:("http"/"tls") { obfs.type = type; }
+obfs_hostv = comma match:[^,]+ { obfs.host = match.join(""); }
+
+obfs_ss = comma "obfs-name" equals type:("http"/"tls") { obfs.type = type; }
+
+obfs_ssr = comma "obfs" equals type:("plain"/"http_simple"/"http_post"/"random_head"/"tls1.2_ticket_auth"/"tls1.2_ticket_fastauth") { obfs.type = type; }
+obfs_ssr_param = comma "obfs-param" equals match:$[^,]+ { proxy["obfs-param"] = match; }
+
+obfs_host = comma "obfs-host" equals host:domain { obfs.host = host; }
+obfs_uri = comma "obfs-uri" equals uri:uri { obfs.path = uri; }
+uri = $[^,]+
+
+transport = comma "transport" equals type:("tcp"/"ws"/"http") { transport.type = type; }
+transport_host = comma "host" equals host:domain { transport.host = host; }
+transport_path = comma "path" equals path:uri { transport.path = path; }
+
+ssr_protocol = comma "protocol" equals protocol:("origin"/"auth_sha1_v4"/"auth_aes128_md5"/"auth_aes128_sha1"/"auth_chain_a"/"auth_chain_b") { proxy.protocol = protocol; }
+ssr_protocol_param = comma "protocol-param" equals param:$[^=,]+ { proxy["protocol-param"] = param; }
+
+vmess_alterId = comma "alterId" equals alterId:$[0-9]+ { proxy.alterId = parseInt(alterId); } 
+
+over_tls = comma "over-tls" equals flag:bool { proxy.tls = flag; }
+tls_host = comma sni:("tls-name"/"sni") equals host:domain { proxy.sni = host; }
+tls_verification = comma "skip-cert-verify" equals flag:bool { proxy["skip-cert-verify"] = flag; }
+
+fast_open = comma "fast-open" equals flag:bool { proxy.tfo = flag; }
+udp_relay = comma "udp" equals flag:bool { proxy.udp = flag; }
+
+ecn = comma "ecn" equals flag:bool { proxy.ecn = flag; }
+download_bandwidth = comma "download-bandwidth" equals match:[^,]+ { proxy.down = match.join(""); }
+
+tag = match:[^=,]* { proxy.name = match.join("").trim(); }
+comma = _ "," _
+equals = _ "=" _
+_ = [ \r\t]*
+bool = b:("true"/"false") { return b === "true" }
+others = comma [^=,]+ equals [^=,]+
+`;
+let parser;
+export default function getParser() {
+    if (!parser) {
+        parser = peggy.generate(grammars);
+    }
+    return parser;
+}

backend/src/core/proxy-utils/parsers/peggy/loon.peg

@@ -0,0 +1,185 @@
+// global initializer
+{{
+    function $set(obj, path, value) {
+      if (Object(obj) !== obj) return obj;
+      if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+      path
+        .slice(0, -1)
+        .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+        path[path.length - 1]
+      ] = value;
+      return obj;
+    }
+}}
+
+// per-parser initializer
+{
+    const proxy = {};
+    const obfs = {};
+    const transport = {};
+    const $ = {};
+
+    function handleTransport() {
+        if (transport.type === "tcp") { /* do nothing */ }
+        else if (transport.type === "ws") {
+            proxy.network = "ws";
+            $set(proxy, "ws-opts.path", transport.path);
+            $set(proxy, "ws-opts.headers.Host", transport.host);
+        } else if (transport.type === "http") {
+            proxy.network = "http";
+            $set(proxy, "http-opts.path", transport.path);
+            $set(proxy, "http-opts.headers.Host", transport.host);
+        }
+    }
+}
+
+start = (shadowsocksr/shadowsocks/vmess/vless/trojan/https/http/socks5/hysteria2) {
+    return proxy;
+}
+
+shadowsocksr = tag equals "shadowsocksr"i address method password (ssr_protocol/ssr_protocol_param/obfs_ssr/obfs_ssr_param/obfs_host/obfs_uri/fast_open/udp_relay/others)*{
+    proxy.type = "ssr";
+    // handle ssr obfs
+    proxy.obfs = obfs.type;
+}
+shadowsocks = tag equals "shadowsocks"i address method password (obfs_typev obfs_hostv)? (obfs_ss/obfs_host/obfs_uri/fast_open/udp_relay/others)* {
+    proxy.type = "ss";
+    // handle ss obfs
+    if (obfs.type == "http" || obfs.type === "tls") {
+        proxy.plugin = "obfs";
+        $set(proxy, "plugin-opts.mode", obfs.type);
+        $set(proxy, "plugin-opts.host", obfs.host);
+        $set(proxy, "plugin-opts.path", obfs.path);
+    }
+}
+vmess = tag equals "vmess"i address method uuid (transport/transport_host/transport_path/over_tls/tls_host/tls_verification/vmess_alterId/fast_open/udp_relay/others)* {
+    proxy.type = "vmess";
+    proxy.cipher = proxy.cipher || "none";
+    proxy.alterId = proxy.alterId || 0;
+    handleTransport();
+}
+vless = tag equals "vless"i address uuid (transport/transport_host/transport_path/over_tls/tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "vless";
+    handleTransport();
+}
+trojan = tag equals "trojan"i address password (transport/transport_host/transport_path/over_tls/tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "trojan";
+    handleTransport();
+}
+hysteria2 = tag equals "hysteria2"i address password (tls_host/tls_verification/udp_relay/fast_open/download_bandwidth/ecn/others)* {
+    proxy.type = "hysteria2";
+}
+https = tag equals "https"i address (username password)? (tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "http";
+    proxy.tls = true;
+}
+http = tag equals "http"i address (username password)? (fast_open/udp_relay/others)* {
+    proxy.type = "http";
+}
+socks5 = tag equals "socks5"i address (username password)? (over_tls/tls_host/tls_verification/fast_open/udp_relay/others)* {
+    proxy.type = "socks5";
+}
+
+address = comma server:server comma port:port {
+    proxy.server = server;
+    proxy.port = port;
+}
+
+server = ip/domain
+
+ip = & {
+    const start = peg$currPos;
+    let j = start;
+    while (j < input.length) {
+        if (input[j] === ",") break;
+        j++;
+    }
+    peg$currPos = j;
+    $.ip = input.substring(start, j).trim();
+    return true;
+} { return $.ip; }
+
+domain = match:[0-9a-zA-z-_.]+ { 
+    const domain = match.join(""); 
+    if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+        return domain;
+    }
+    throw new Error("Invalid domain: " + domain);
+}
+
+port = digits:[0-9]+ { 
+    const port = parseInt(digits.join(""), 10); 
+    if (port >= 0 && port <= 65535) {
+    	return port;
+    }
+    throw new Error("Invalid port number: " + port);
+}
+
+method = comma cipher:cipher { 
+    proxy.cipher = cipher;
+}
+cipher = ("aes-128-cfb"/"aes-128-ctr"/"aes-128-gcm"/"aes-192-cfb"/"aes-192-ctr"/"aes-192-gcm"/"aes-256-cfb"/"aes-256-ctr"/"aes-256-gcm"/"auto"/"bf-cfb"/"camellia-128-cfb"/"camellia-192-cfb"/"camellia-256-cfb"/"chacha20-ietf-poly1305"/"chacha20-ietf"/"chacha20-poly1305"/"chacha20"/"none"/"rc4-md5"/"rc4"/"salsa20"/"xchacha20-ietf-poly1305");
+
+username = & {
+    let j = peg$currPos; 
+    let start, end;
+    let first = true;
+    while (j < input.length) {
+        if (input[j] === ',') {
+            if (first) {
+                start = j + 1;
+                first = false;
+            } else {
+                end = j;
+                break;
+            }
+        }
+        j++;
+    }
+    const match = input.substring(start, end);
+    if (match.indexOf("=") === -1) {
+        $.username = match;
+        peg$currPos = end;
+        return true;
+    }
+} { proxy.username = $.username; }
+password = comma '"' match:[^"]* '"' { proxy.password = match.join(""); }
+uuid = comma '"' match:[^"]+ '"' { proxy.uuid = match.join(""); }
+
+obfs_typev = comma type:("http"/"tls") { obfs.type = type; }
+obfs_hostv = comma match:[^,]+ { obfs.host = match.join(""); }
+
+obfs_ss = comma "obfs-name" equals type:("http"/"tls") { obfs.type = type; }
+
+obfs_ssr = comma "obfs" equals type:("plain"/"http_simple"/"http_post"/"random_head"/"tls1.2_ticket_auth"/"tls1.2_ticket_fastauth") { obfs.type = type; }
+obfs_ssr_param = comma "obfs-param" equals match:$[^,]+ { proxy["obfs-param"] = match; }
+
+obfs_host = comma "obfs-host" equals host:domain { obfs.host = host; }
+obfs_uri = comma "obfs-uri" equals uri:uri { obfs.path = uri; }
+uri = $[^,]+
+
+transport = comma "transport" equals type:("tcp"/"ws"/"http") { transport.type = type; }
+transport_host = comma "host" equals host:domain { transport.host = host; }
+transport_path = comma "path" equals path:uri { transport.path = path; }
+
+ssr_protocol = comma "protocol" equals protocol:("origin"/"auth_sha1_v4"/"auth_aes128_md5"/"auth_aes128_sha1"/"auth_chain_a"/"auth_chain_b") { proxy.protocol = protocol; }
+ssr_protocol_param = comma "protocol-param" equals param:$[^=,]+ { proxy["protocol-param"] = param; }
+
+vmess_alterId = comma "alterId" equals alterId:$[0-9]+ { proxy.alterId = parseInt(alterId); } 
+
+over_tls = comma "over-tls" equals flag:bool { proxy.tls = flag; }
+tls_host = comma sni:("tls-name"/"sni") equals host:domain { proxy.sni = host; }
+tls_verification = comma "skip-cert-verify" equals flag:bool { proxy["skip-cert-verify"] = flag; }
+
+fast_open = comma "fast-open" equals flag:bool { proxy.tfo = flag; }
+udp_relay = comma "udp" equals flag:bool { proxy.udp = flag; }
+
+ecn = comma "ecn" equals flag:bool { proxy.ecn = flag; }
+download_bandwidth = comma "download-bandwidth" equals match:[^,]+ { proxy.down = match.join(""); }
+
+tag = match:[^=,]* { proxy.name = match.join("").trim(); }
+comma = _ "," _
+equals = _ "=" _
+_ = [ \r\t]*
+bool = b:("true"/"false") { return b === "true" }
+others = comma [^=,]+ equals [^=,]+

backend/src/core/proxy-utils/parsers/peggy/qx.js

@@ -0,0 +1,204 @@
+import * as peggy from 'peggy';
+const grammars = String.raw`
+// global initializer
+{{
+    function $set(obj, path, value) {
+      if (Object(obj) !== obj) return obj;
+      if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+      path
+        .slice(0, -1)
+        .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+        path[path.length - 1]
+      ] = value;
+      return obj;
+    }
+}}
+
+// per-parse initializer
+{
+	const proxy = {};
+    const obfs = {};
+    const $ = {};
+
+    function handleObfs() {
+        if (obfs.type === "ws" || obfs.type === "wss") {
+            proxy.network = "ws";
+            if (obfs.type === 'wss') {
+                proxy.tls = true;
+            }
+            $set(proxy, "ws-opts.path", obfs.path);
+            $set(proxy, "ws-opts.headers.Host", obfs.host);
+        } else if (obfs.type === "over-tls") {
+            proxy.tls = true;
+        } else if (obfs.type === "http") {
+            proxy.network = "http";
+            $set(proxy, "http-opts.path", obfs.path);
+            $set(proxy, "http-opts.headers.Host", obfs.host);
+        }
+    }
+}
+
+start = (trojan/shadowsocks/vmess/vless/http/socks5) {
+    return proxy
+}
+
+trojan = "trojan" equals address
+    (password/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/obfs/obfs_host/obfs_uri/tag/udp_relay/udp_over_tcp/fast_open/server_check_url/others)* {
+    proxy.type = "trojan";
+    handleObfs();
+}
+
+shadowsocks = "shadowsocks" equals address
+    (password/method/obfs_ssr/obfs_ss/obfs_host/obfs_uri/ssr_protocol/ssr_protocol_param/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/udp_relay/udp_over_tcp/fast_open/tag/server_check_url/others)* {
+    if (proxy.protocol || proxy.type === "ssr") {
+        proxy.type = "ssr";
+        if (!proxy.protocol) {
+            proxy.protocol = "origin";
+        }
+        // handle ssr obfs
+        if (obfs.host) proxy["obfs-param"] = obfs.host;
+        if (obfs.type) proxy.obfs = obfs.type;
+    } else {
+        proxy.type = "ss";
+        // handle ss obfs
+        if (obfs.type == "http" || obfs.type === "tls") {
+            proxy.plugin = "obfs";
+            $set(proxy, "plugin-opts", {
+                mode: obfs.type
+            });
+        } else if (obfs.type === "ws" || obfs.type === "wss") {
+            proxy.plugin = "v2ray-plugin";
+            $set(proxy, "plugin-opts.mode", "websocket");
+            if (obfs.type === "wss") {
+                $set(proxy, "plugin-opts.tls", true);
+            }
+        } else if (obfs.type === 'over-tls') {
+            throw new Error('ss over-tls is not supported');
+        }
+        if (obfs.type) {
+            $set(proxy, "plugin-opts.host", obfs.host);
+            $set(proxy, "plugin-opts.path", obfs.path);
+        }
+    }
+}
+
+vmess = "vmess" equals address
+    (uuid/method/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/obfs/obfs_host/obfs_uri/udp_relay/udp_over_tcp/fast_open/aead/server_check_url/others)* {
+    proxy.type = "vmess";
+    proxy.cipher = proxy.cipher || "none";
+    if (proxy.aead) {
+        proxy.alterId = 0;
+    } else {
+        proxy.alterId = proxy.alterId || 0;
+    }
+    handleObfs();
+}
+
+vless = "vless" equals address
+    (uuid/method/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/obfs/obfs_host/obfs_uri/udp_relay/udp_over_tcp/fast_open/aead/server_check_url/others)* {
+    proxy.type = "vless";
+    proxy.cipher = proxy.cipher || "none";
+    handleObfs();
+}
+
+http = "http" equals address 
+    (username/password/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/fast_open/udp_relay/udp_over_tcp/server_check_url/others)*{
+    proxy.type = "http";
+}
+
+socks5 = "socks5" equals address
+    (username/password/password/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/fast_open/udp_relay/udp_over_tcp/server_check_url/others)* {
+    proxy.type = "socks5";
+}
+    
+address = server:server ":" port:port {
+    proxy.server = server;
+    proxy.port = port;
+}
+server = ip/domain
+
+domain = match:[0-9a-zA-z-_.]+ { 
+    const domain = match.join(""); 
+    if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+        return domain;
+    }
+}
+
+ip = & {
+    const start = peg$currPos;
+    let end;
+    let j = start;
+    while (j < input.length) {
+        if (input[j] === ",") break;
+        if (input[j] === ":") end = j;
+        j++;
+    }
+    peg$currPos = end || j;
+    $.ip = input.substring(start, end).trim();
+    return true;
+} { return $.ip; }
+
+port = digits:[0-9]+ { 
+    const port = parseInt(digits.join(""), 10); 
+    if (port >= 0 && port <= 65535) {
+    	return port;
+    }
+}
+
+username = comma "username" equals username:[^=,]+ { proxy.username = username.join("").trim(); }
+password = comma "password" equals password:[^=,]+ { proxy.password = password.join("").trim(); }
+uuid = comma "password" equals uuid:[^=,]+ { proxy.uuid = uuid.join("").trim(); }
+
+method = comma "method" equals cipher:cipher { 
+    proxy.cipher = cipher;
+};
+cipher = ("aes-128-cfb"/"aes-128-ctr"/"aes-128-gcm"/"aes-192-cfb"/"aes-192-ctr"/"aes-192-gcm"/"aes-256-cfb"/"aes-256-ctr"/"aes-256-gcm"/"bf-cfb"/"cast5-cfb"/"chacha20-ietf-poly1305"/"chacha20-ietf"/"chacha20-poly1305"/"chacha20"/"des-cfb"/"none"/"rc2-cfb"/"rc4-md5-6"/"rc4-md5"/"salsa20"/"xchacha20-ietf-poly1305");
+aead = comma "aead" equals flag:bool { proxy.aead = flag; }
+
+udp_relay = comma "udp-relay" equals flag:bool { proxy.udp = flag; }
+udp_over_tcp = comma "udp-over-tcp" equals flag:bool { throw new Error("UDP over TCP is not supported"); }
+fast_open = comma "fast-open" equals flag:bool { proxy.tfo = flag; }
+
+over_tls = comma "over-tls" equals flag:bool { proxy.tls = flag; }
+tls_host = comma "tls-host" equals sni:domain { proxy.sni = sni; }
+tls_verification = comma "tls-verification" equals flag:bool { 
+    proxy["skip-cert-verify"] = !flag;
+}
+tls_fingerprint = comma "tls-cert-sha256" equals tls_fingerprint:$[^,]+ { proxy["tls-fingerprint"] = tls_fingerprint.trim(); }
+tls_pubkey_sha256 = comma "tls-pubkey-sha256" equals param:$[^=,]+ { proxy["tls-pubkey-sha256"] = param; }
+tls_alpn = comma "tls-alpn" equals param:$[^=,]+ { proxy["tls-alpn"] = param; }
+tls_no_session_ticket = comma "tls-no-session-ticket" equals flag:bool { 
+    proxy["tls-no-session-ticket"] = flag;
+}
+tls_no_session_reuse = comma "tls-no-session-reuse" equals flag:bool { 
+    proxy["tls-no-session-reuse"] = flag;
+}
+
+obfs_ss = comma "obfs" equals type:("http"/"tls"/"wss"/"ws"/"over-tls") { obfs.type = type; return type; }
+obfs_ssr = comma "obfs" equals type:("plain"/"http_simple"/"http_post"/"random_head"/"tls1.2_ticket_auth"/"tls1.2_ticket_fastauth") { proxy.type = "ssr"; obfs.type = type; return type; }
+obfs = comma "obfs" equals type:("wss"/"ws"/"over-tls"/"http") { obfs.type = type; return type; };
+
+obfs_host = comma "obfs-host" equals host:domain { obfs.host = host; }
+obfs_uri = comma "obfs-uri" equals uri:uri { obfs.path = uri; }
+
+ssr_protocol = comma "ssr-protocol" equals protocol:("origin"/"auth_sha1_v4"/"auth_aes128_md5"/"auth_aes128_sha1"/"auth_chain_a"/"auth_chain_b") { proxy.protocol = protocol; return protocol; }
+ssr_protocol_param = comma "ssr-protocol-param" equals param:$[^=,]+ { proxy["protocol-param"] = param; }
+
+server_check_url = comma "server_check_url" equals param:$[^=,]+ { proxy["test-url"] = param; }
+
+uri = $[^,]+
+
+tag = comma "tag" equals tag:[^=,]+ { proxy.name = tag.join(""); }
+others = comma [^=,]+ equals [^=,]+
+comma = _ "," _
+equals = _ "=" _
+_ = [ \r\t]*
+bool = b:("true"/"false") { return b === "true" }
+`;
+let parser;
+export default function getParser() {
+    if (!parser) {
+        parser = peggy.generate(grammars);
+    }
+    return parser;
+}

backend/src/core/proxy-utils/parsers/peggy/qx.peg

@@ -0,0 +1,194 @@
+// global initializer
+{{
+    function $set(obj, path, value) {
+      if (Object(obj) !== obj) return obj;
+      if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+      path
+        .slice(0, -1)
+        .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+        path[path.length - 1]
+      ] = value;
+      return obj;
+    }
+}}
+
+// per-parse initializer
+{
+	const proxy = {};
+    const obfs = {};
+    const $ = {};
+
+    function handleObfs() {
+        if (obfs.type === "ws" || obfs.type === "wss") {
+            proxy.network = "ws";
+            if (obfs.type === 'wss') {
+                proxy.tls = true;
+            }
+            $set(proxy, "ws-opts.path", obfs.path);
+            $set(proxy, "ws-opts.headers.Host", obfs.host);
+        } else if (obfs.type === "over-tls") {
+            proxy.tls = true;
+        } else if (obfs.type === "http") {
+            proxy.network = "http";
+            $set(proxy, "http-opts.path", obfs.path);
+            $set(proxy, "http-opts.headers.Host", obfs.host);
+        }
+    }
+}
+
+start = (trojan/shadowsocks/vmess/vless/http/socks5) {
+    return proxy
+}
+
+trojan = "trojan" equals address
+    (password/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/obfs/obfs_host/obfs_uri/tag/udp_relay/udp_over_tcp/fast_open/server_check_url/others)* {
+    proxy.type = "trojan";
+    handleObfs();
+}
+
+shadowsocks = "shadowsocks" equals address
+    (password/method/obfs_ssr/obfs_ss/obfs_host/obfs_uri/ssr_protocol/ssr_protocol_param/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/udp_relay/udp_over_tcp/fast_open/tag/server_check_url/others)* {
+    if (proxy.protocol || proxy.type === "ssr") {
+        proxy.type = "ssr";
+        if (!proxy.protocol) {
+            proxy.protocol = "origin";
+        }
+        // handle ssr obfs
+        if (obfs.host) proxy["obfs-param"] = obfs.host;
+        if (obfs.type) proxy.obfs = obfs.type;
+    } else {
+        proxy.type = "ss";
+        // handle ss obfs
+        if (obfs.type == "http" || obfs.type === "tls") {
+            proxy.plugin = "obfs";
+            $set(proxy, "plugin-opts", {
+                mode: obfs.type
+            });
+        } else if (obfs.type === "ws" || obfs.type === "wss") {
+            proxy.plugin = "v2ray-plugin";
+            $set(proxy, "plugin-opts.mode", "websocket");
+            if (obfs.type === "wss") {
+                $set(proxy, "plugin-opts.tls", true);
+            }
+        } else if (obfs.type === 'over-tls') {
+            throw new Error('ss over-tls is not supported');
+        }
+        if (obfs.type) {
+            $set(proxy, "plugin-opts.host", obfs.host);
+            $set(proxy, "plugin-opts.path", obfs.path);
+        }
+    }
+}
+
+vmess = "vmess" equals address
+    (uuid/method/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/obfs/obfs_host/obfs_uri/udp_relay/udp_over_tcp/fast_open/aead/server_check_url/others)* {
+    proxy.type = "vmess";
+    proxy.cipher = proxy.cipher || "none";
+    if (proxy.aead) {
+        proxy.alterId = 0;
+    } else {
+        proxy.alterId = proxy.alterId || 0;
+    }
+    handleObfs();
+}
+
+vless = "vless" equals address
+    (uuid/method/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/obfs/obfs_host/obfs_uri/udp_relay/udp_over_tcp/fast_open/aead/server_check_url/others)* {
+    proxy.type = "vless";
+    proxy.cipher = proxy.cipher || "none";
+    handleObfs();
+}
+
+http = "http" equals address 
+    (username/password/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/fast_open/udp_relay/udp_over_tcp/server_check_url/others)*{
+    proxy.type = "http";
+}
+
+socks5 = "socks5" equals address
+    (username/password/password/over_tls/tls_host/tls_pubkey_sha256/tls_alpn/tls_no_session_ticket/tls_no_session_reuse/tls_fingerprint/tls_verification/tag/fast_open/udp_relay/udp_over_tcp/server_check_url/others)* {
+    proxy.type = "socks5";
+}
+    
+address = server:server ":" port:port {
+    proxy.server = server;
+    proxy.port = port;
+}
+server = ip/domain
+
+domain = match:[0-9a-zA-z-_.]+ { 
+    const domain = match.join(""); 
+    if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+        return domain;
+    }
+}
+
+ip = & {
+    const start = peg$currPos;
+    let end;
+    let j = start;
+    while (j < input.length) {
+        if (input[j] === ",") break;
+        if (input[j] === ":") end = j;
+        j++;
+    }
+    peg$currPos = end || j;
+    $.ip = input.substring(start, end).trim();
+    return true;
+} { return $.ip; }
+
+port = digits:[0-9]+ { 
+    const port = parseInt(digits.join(""), 10); 
+    if (port >= 0 && port <= 65535) {
+    	return port;
+    }
+}
+
+username = comma "username" equals username:[^=,]+ { proxy.username = username.join("").trim(); }
+password = comma "password" equals password:[^=,]+ { proxy.password = password.join("").trim(); }
+uuid = comma "password" equals uuid:[^=,]+ { proxy.uuid = uuid.join("").trim(); }
+
+method = comma "method" equals cipher:cipher { 
+    proxy.cipher = cipher;
+};
+cipher = ("aes-128-cfb"/"aes-128-ctr"/"aes-128-gcm"/"aes-192-cfb"/"aes-192-ctr"/"aes-192-gcm"/"aes-256-cfb"/"aes-256-ctr"/"aes-256-gcm"/"bf-cfb"/"cast5-cfb"/"chacha20-ietf-poly1305"/"chacha20-ietf"/"chacha20-poly1305"/"chacha20"/"des-cfb"/"none"/"rc2-cfb"/"rc4-md5-6"/"rc4-md5"/"salsa20"/"xchacha20-ietf-poly1305");
+aead = comma "aead" equals flag:bool { proxy.aead = flag; }
+
+udp_relay = comma "udp-relay" equals flag:bool { proxy.udp = flag; }
+udp_over_tcp = comma "udp-over-tcp" equals flag:bool { throw new Error("UDP over TCP is not supported"); }
+fast_open = comma "fast-open" equals flag:bool { proxy.tfo = flag; }
+
+over_tls = comma "over-tls" equals flag:bool { proxy.tls = flag; }
+tls_host = comma "tls-host" equals sni:domain { proxy.sni = sni; }
+tls_verification = comma "tls-verification" equals flag:bool { 
+    proxy["skip-cert-verify"] = !flag;
+}
+tls_fingerprint = comma "tls-cert-sha256" equals tls_fingerprint:$[^,]+ { proxy["tls-fingerprint"] = tls_fingerprint.trim(); }
+tls_pubkey_sha256 = comma "tls-pubkey-sha256" equals param:$[^=,]+ { proxy["tls-pubkey-sha256"] = param; }
+tls_alpn = comma "tls-alpn" equals param:$[^=,]+ { proxy["tls-alpn"] = param; }
+tls_no_session_ticket = comma "tls-no-session-ticket" equals flag:bool { 
+    proxy["tls-no-session-ticket"] = flag;
+}
+tls_no_session_reuse = comma "tls-no-session-reuse" equals flag:bool { 
+    proxy["tls-no-session-reuse"] = flag;
+}
+
+obfs_ss = comma "obfs" equals type:("http"/"tls"/"wss"/"ws"/"over-tls") { obfs.type = type; return type; }
+obfs_ssr = comma "obfs" equals type:("plain"/"http_simple"/"http_post"/"random_head"/"tls1.2_ticket_auth"/"tls1.2_ticket_fastauth") { proxy.type = "ssr"; obfs.type = type; return type; }
+obfs = comma "obfs" equals type:("wss"/"ws"/"over-tls"/"http") { obfs.type = type; return type; };
+
+obfs_host = comma "obfs-host" equals host:domain { obfs.host = host; }
+obfs_uri = comma "obfs-uri" equals uri:uri { obfs.path = uri; }
+
+ssr_protocol = comma "ssr-protocol" equals protocol:("origin"/"auth_sha1_v4"/"auth_aes128_md5"/"auth_aes128_sha1"/"auth_chain_a"/"auth_chain_b") { proxy.protocol = protocol; return protocol; }
+ssr_protocol_param = comma "ssr-protocol-param" equals param:$[^=,]+ { proxy["protocol-param"] = param; }
+
+server_check_url = comma "server_check_url" equals param:$[^=,]+ { proxy["test-url"] = param; }
+
+uri = $[^,]+
+
+tag = comma "tag" equals tag:[^=,]+ { proxy.name = tag.join(""); }
+others = comma [^=,]+ equals [^=,]+
+comma = _ "," _
+equals = _ "=" _
+_ = [ \r\t]*
+bool = b:("true"/"false") { return b === "true" }

backend/src/core/proxy-utils/parsers/peggy/surge.js

@@ -0,0 +1,261 @@
+import * as peggy from 'peggy';
+const grammars = String.raw`
+// global initializer
+{{
+    function $set(obj, path, value) {
+      if (Object(obj) !== obj) return obj;
+      if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+      path
+        .slice(0, -1)
+        .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+        path[path.length - 1]
+      ] = value;
+      return obj;
+    }
+}}
+
+// per-parser initializer
+{
+    const proxy = {};
+    const obfs = {};
+    const $ = {};
+
+    function handleWebsocket() {
+        if (obfs.type === "ws") {
+            proxy.network = "ws";
+            $set(proxy, "ws-opts.path", obfs.path);
+            $set(proxy, "ws-opts.headers", obfs['ws-headers']);
+            if (proxy['ws-opts'] && proxy['ws-opts']['headers'] && proxy['ws-opts']['headers'].Host) {
+                proxy['ws-opts']['headers'].Host = proxy['ws-opts']['headers'].Host.replace(/^"(.*)"$/, '$1')
+            }
+        }
+    }
+    function handleShadowTLS() {
+        if (proxy['shadow-tls-password'] && !proxy['shadow-tls-version']) {
+            proxy['shadow-tls-version'] = 2;
+        }
+    }
+}
+
+start = (shadowsocks/vmess/trojan/https/http/snell/socks5/socks5_tls/tuic/tuic_v5/wireguard/hysteria2/ssh) {
+    return proxy;
+}
+
+shadowsocks = tag equals "ss" address (method/passwordk/obfs/obfs_host/obfs_uri/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "ss";
+    // handle obfs
+    if (obfs.type == "http" || obfs.type === "tls") {
+        proxy.plugin = "obfs";
+        $set(proxy, "plugin-opts.mode", obfs.type);
+        $set(proxy, "plugin-opts.host", obfs.host);
+        $set(proxy, "plugin-opts.path", obfs.path);
+    }
+    handleShadowTLS();
+}
+vmess = tag equals "vmess" address (vmess_uuid/vmess_aead/ws/ws_path/ws_headers/method/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls/sni/tls_fingerprint/tls_verification/fast_open/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "vmess";
+    proxy.cipher = proxy.cipher || "none";
+    if (proxy.aead) {
+        proxy.alterId = 0;
+    } else {
+        proxy.alterId = proxy.alterId || 0;
+    }
+    handleWebsocket();
+    handleShadowTLS();
+}
+trojan = tag equals "trojan" address (passwordk/ws/ws_path/ws_headers/tls/sni/tls_fingerprint/tls_verification/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "trojan";
+    handleWebsocket();
+    handleShadowTLS();
+}
+https = tag equals "https" address (username password)? (usernamek passwordk)? (sni/tls_fingerprint/tls_verification/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "http";
+    proxy.tls = true;
+    handleShadowTLS();
+}
+http = tag equals "http" address (username password)? (usernamek passwordk)? (ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "http";
+    handleShadowTLS();
+}
+ssh = tag equals "ssh" address (username password)? (usernamek passwordk)? (server_fingerprint/idle_timeout/private_key/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "ssh";
+    handleShadowTLS();
+}
+snell = tag equals "snell" address (snell_version/snell_psk/obfs/obfs_host/obfs_uri/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/udp_relay/reuse/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "snell";
+    // handle obfs
+    if (obfs.type == "http" || obfs.type === "tls") {
+        $set(proxy, "obfs-opts.mode", obfs.type);
+        $set(proxy, "obfs-opts.host", obfs.host);
+        $set(proxy, "obfs-opts.path", obfs.path);
+    }
+    handleShadowTLS();
+}
+tuic = tag equals "tuic" address (alpn/token/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls_fingerprint/tls_verification/sni/fast_open/tfo/ecn/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "tuic";
+    handleShadowTLS();
+}
+tuic_v5 = tag equals "tuic-v5" address (alpn/passwordk/uuidk/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls_fingerprint/tls_verification/sni/fast_open/tfo/ecn/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "tuic";
+    proxy.version = 5;
+    handleShadowTLS();
+}
+wireguard = tag equals "wireguard" (section_name/no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "wireguard-surge";
+    handleShadowTLS();
+}
+hysteria2 = tag equals "hysteria2" address (no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/sni/tls_verification/passwordk/tls_fingerprint/download_bandwidth/ecn/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "hysteria2";
+    handleShadowTLS();
+}
+socks5 = tag equals "socks5" address (username password)? (usernamek passwordk)? (no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "socks5";
+    handleShadowTLS();
+}
+socks5_tls = tag equals "socks5-tls" address (username password)? (usernamek passwordk)? (no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/sni/tls_fingerprint/tls_verification/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "socks5";
+    proxy.tls = true;
+    handleShadowTLS();
+}
+
+address = comma server:server comma port:port {
+    proxy.server = server;
+    proxy.port = port;
+}
+
+server = ip/domain
+
+ip = & {
+    const start = peg$currPos;
+    let j = start;
+    while (j < input.length) {
+        if (input[j] === ",") break;
+        j++;
+    }
+    peg$currPos = j;
+    $.ip = input.substring(start, j).trim();
+    return true;
+} { return $.ip; }
+
+domain = match:[0-9a-zA-z-_.]+ { 
+    const domain = match.join(""); 
+    if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+        return domain;
+    }
+}
+
+port = digits:[0-9]+ { 
+    const port = parseInt(digits.join(""), 10); 
+    if (port >= 0 && port <= 65535) {
+    	return port;
+    }
+}
+
+username = & {
+    let j = peg$currPos; 
+    let start, end;
+    let first = true;
+    while (j < input.length) {
+        if (input[j] === ',') {
+            if (first) {
+                start = j + 1;
+                first = false;
+            } else {
+                end = j;
+                break;
+            }
+        }
+        j++;
+    }
+    const match = input.substring(start, end);
+    if (match.indexOf("=") === -1) {
+        $.username = match;
+        peg$currPos = end;
+        return true;
+    }
+} { proxy.username = $.username; }
+password = comma match:[^,]+ { proxy.password = match.join(""); }
+
+tls = comma "tls" equals flag:bool { proxy.tls = flag; }
+sni = comma "sni" equals sni:("off"/domain) { 
+    if (sni === "off") {
+        proxy["disable-sni"] = true;
+    } else {
+        proxy.sni = sni;
+    }
+}
+tls_verification = comma "skip-cert-verify" equals flag:bool { proxy["skip-cert-verify"] = flag; }
+tls_fingerprint = comma "server-cert-fingerprint-sha256" equals tls_fingerprint:$[^,]+ { proxy["tls-fingerprint"] = tls_fingerprint.trim(); }
+
+snell_psk = comma "psk" equals match:[^,]+ { proxy.psk = match.join(""); }
+snell_version = comma "version" equals match:$[0-9]+ { proxy.version = parseInt(match.trim()); }
+
+usernamek = comma "username" equals match:[^,]+ { proxy.username = match.join(""); }
+passwordk = comma "password" equals match:[^,]+ { proxy.password = match.join(""); }
+vmess_uuid = comma "username" equals match:[^,]+ { proxy.uuid = match.join(""); }
+vmess_aead = comma "vmess-aead" equals flag:bool { proxy.aead = flag; }
+
+method = comma "encrypt-method" equals cipher:cipher {
+    proxy.cipher = cipher;
+}
+cipher = ("aes-128-cfb"/"aes-128-ctr"/"aes-128-gcm"/"aes-192-cfb"/"aes-192-ctr"/"aes-192-gcm"/"aes-256-cfb"/"aes-256-ctr"/"aes-256-gcm"/"bf-cfb"/"camellia-128-cfb"/"camellia-192-cfb"/"camellia-256-cfb"/"cast5-cfb"/"chacha20-ietf-poly1305"/"chacha20-ietf"/"chacha20-poly1305"/"chacha20"/"des-cfb"/"idea-cfb"/"none"/"rc2-cfb"/"rc4-md5"/"rc4"/"salsa20"/"seed-cfb"/"xchacha20-ietf-poly1305");
+
+ws = comma "ws" equals flag:bool { obfs.type = "ws"; }
+ws_headers = comma "ws-headers" equals headers:$[^,]+ {
+    const pairs = headers.split("|");
+    const result = {};
+    pairs.forEach(pair => {
+        const [key, value] = pair.trim().split(":");
+        result[key.trim()] = value.trim();
+    })
+    obfs["ws-headers"] = result;
+}
+ws_path = comma "ws-path" equals path:uri { obfs.path = path; }
+
+obfs = comma "obfs" equals type:("http"/"tls") { obfs.type = type; }
+obfs_host = comma "obfs-host" equals host:domain { obfs.host = host; };
+obfs_uri = comma "obfs-uri" equals path:uri { obfs.path = path }
+uri = $[^,]+
+
+udp_relay = comma "udp" equals flag:bool { proxy.udp = flag; }
+fast_open = comma "fast-open" equals flag:bool { proxy.tfo = flag; }
+reuse = comma "reuse" equals flag:bool { proxy.reuse = flag; }
+ecn = comma "ecn" equals flag:bool { proxy.ecn = flag; }
+tfo = comma "tfo" equals flag:bool { proxy.tfo = flag; }
+ip_version = comma "ip-version" equals match:[^,]+ { proxy["ip-version"] = match.join(""); }
+section_name = comma "section-name" equals match:[^,]+ { proxy["section-name"] = match.join(""); }
+no_error_alert = comma "no-error-alert" equals match:[^,]+ { proxy["no-error-alert"] = match.join(""); }
+underlying_proxy = comma "underlying-proxy" equals match:[^,]+ { proxy["underlying-proxy"] = match.join(""); }
+download_bandwidth = comma "download-bandwidth" equals match:[^,]+ { proxy.down = match.join(""); }
+test_url = comma "test-url" equals match:[^,]+ { proxy["test-url"] = match.join(""); }
+test_udp = comma "test-udp" equals match:[^,]+ { proxy["test-udp"] = match.join(""); }
+test_timeout = comma "test-timeout" equals match:$[0-9]+ { proxy["test-timeout"] = parseInt(match.trim()); }
+tos = comma "tos" equals match:$[0-9]+ { proxy.tos = parseInt(match.trim()); }
+interface = comma "interface" equals match:[^,]+ { proxy.interface = match.join(""); }
+allow_other_interface = comma "allow-other-interface" equals flag:bool { proxy["allow-other-interface"] = flag; }
+hybrid = comma "hybrid" equals flag:bool { proxy.hybrid = flag; }
+idle_timeout = comma "idle-timeout" equals match:$[0-9]+ { proxy["idle-timeout"] = parseInt(match.trim()); }
+private_key = comma "private-key" equals match:[^,]+ { proxy["keystore-private-key"] = match.join("").replace(/^"(.*)"$/, '$1'); }
+server_fingerprint = comma "server-fingerprint" equals match:[^,]+ { proxy["server-fingerprint"] = match.join("").replace(/^"(.*)"$/, '$1'); }
+block_quic = comma "block-quic" equals match:[^,]+ { proxy["block-quic"] = match.join(""); }
+shadow_tls_version = comma "shadow-tls-version" equals match:$[0-9]+ { proxy["shadow-tls-version"] = parseInt(match.trim()); }
+shadow_tls_sni = comma "shadow-tls-sni" equals match:[^,]+ { proxy["shadow-tls-sni"] = match.join(""); }
+shadow_tls_password = comma "shadow-tls-password" equals match:[^,]+ { proxy["shadow-tls-password"] = match.join(""); }
+token = comma "token" equals match:[^,]+ { proxy.token = match.join(""); }
+alpn = comma "alpn" equals match:[^,]+ { proxy.alpn = match.join(""); }
+uuidk = comma "uuid" equals match:[^,]+ { proxy.uuid = match.join(""); }
+
+tag = match:[^=,]* { proxy.name = match.join("").trim(); }
+comma = _ "," _
+equals = _ "=" _
+_ = [ \r\t]*
+bool = b:("true"/"false") { return b === "true" }
+others = comma [^=,]+ equals [^=,]+
+`;
+let parser;
+export default function getParser() {
+    if (!parser) {
+        parser = peggy.generate(grammars);
+    }
+    return parser;
+}

backend/src/core/proxy-utils/parsers/peggy/surge.peg

@@ -0,0 +1,251 @@
+// global initializer
+{{
+    function $set(obj, path, value) {
+      if (Object(obj) !== obj) return obj;
+      if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+      path
+        .slice(0, -1)
+        .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+        path[path.length - 1]
+      ] = value;
+      return obj;
+    }
+}}
+
+// per-parser initializer
+{
+    const proxy = {};
+    const obfs = {};
+    const $ = {};
+
+    function handleWebsocket() {
+        if (obfs.type === "ws") {
+            proxy.network = "ws";
+            $set(proxy, "ws-opts.path", obfs.path);
+            $set(proxy, "ws-opts.headers", obfs['ws-headers']);
+            if (proxy['ws-opts'] && proxy['ws-opts']['headers'] && proxy['ws-opts']['headers'].Host) {
+                proxy['ws-opts']['headers'].Host = proxy['ws-opts']['headers'].Host.replace(/^"(.*)"$/, '$1')
+            }
+        }
+    }
+    function handleShadowTLS() {
+        if (proxy['shadow-tls-password'] && !proxy['shadow-tls-version']) {
+            proxy['shadow-tls-version'] = 2;
+        }
+    }
+}
+
+start = (shadowsocks/vmess/trojan/https/http/snell/socks5/socks5_tls/tuic/tuic_v5/wireguard/hysteria2/ssh) {
+    return proxy;
+}
+
+shadowsocks = tag equals "ss" address (method/passwordk/obfs/obfs_host/obfs_uri/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "ss";
+    // handle obfs
+    if (obfs.type == "http" || obfs.type === "tls") {
+        proxy.plugin = "obfs";
+        $set(proxy, "plugin-opts.mode", obfs.type);
+        $set(proxy, "plugin-opts.host", obfs.host);
+        $set(proxy, "plugin-opts.path", obfs.path);
+    }
+    handleShadowTLS();
+}
+vmess = tag equals "vmess" address (vmess_uuid/vmess_aead/ws/ws_path/ws_headers/method/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls/sni/tls_fingerprint/tls_verification/fast_open/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "vmess";
+    proxy.cipher = proxy.cipher || "none";
+    if (proxy.aead) {
+        proxy.alterId = 0;
+    } else {
+        proxy.alterId = proxy.alterId || 0;
+    }
+    handleWebsocket();
+    handleShadowTLS();
+}
+trojan = tag equals "trojan" address (passwordk/ws/ws_path/ws_headers/tls/sni/tls_fingerprint/tls_verification/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/udp_relay/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "trojan";
+    handleWebsocket();
+    handleShadowTLS();
+}
+https = tag equals "https" address (username password)? (usernamek passwordk)? (sni/tls_fingerprint/tls_verification/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "http";
+    proxy.tls = true;
+    handleShadowTLS();
+}
+http = tag equals "http" address (username password)? (usernamek passwordk)? (ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "http";
+    handleShadowTLS();
+}
+ssh = tag equals "ssh" address (username password)? (usernamek passwordk)? (server_fingerprint/idle_timeout/private_key/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "ssh";
+    handleShadowTLS();
+}
+snell = tag equals "snell" address (snell_version/snell_psk/obfs/obfs_host/obfs_uri/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/fast_open/udp_relay/reuse/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "snell";
+    // handle obfs
+    if (obfs.type == "http" || obfs.type === "tls") {
+        $set(proxy, "obfs-opts.mode", obfs.type);
+        $set(proxy, "obfs-opts.host", obfs.host);
+        $set(proxy, "obfs-opts.path", obfs.path);
+    }
+    handleShadowTLS();
+}
+tuic = tag equals "tuic" address (alpn/token/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls_fingerprint/tls_verification/sni/fast_open/tfo/ecn/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "tuic";
+    handleShadowTLS();
+}
+tuic_v5 = tag equals "tuic-v5" address (alpn/passwordk/uuidk/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/no_error_alert/tls_fingerprint/tls_verification/sni/fast_open/tfo/ecn/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "tuic";
+    proxy.version = 5;
+    handleShadowTLS();
+}
+wireguard = tag equals "wireguard" (section_name/no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "wireguard-surge";
+    handleShadowTLS();
+}
+hysteria2 = tag equals "hysteria2" address (no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/sni/tls_verification/passwordk/tls_fingerprint/download_bandwidth/ecn/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "hysteria2";
+    handleShadowTLS();
+}
+socks5 = tag equals "socks5" address (username password)? (usernamek passwordk)? (no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "socks5";
+    handleShadowTLS();
+}
+socks5_tls = tag equals "socks5-tls" address (username password)? (usernamek passwordk)? (no_error_alert/ip_version/underlying_proxy/tos/allow_other_interface/interface/test_url/test_udp/test_timeout/hybrid/sni/tls_fingerprint/tls_verification/fast_open/shadow_tls_version/shadow_tls_sni/shadow_tls_password/block_quic/others)* {
+    proxy.type = "socks5";
+    proxy.tls = true;
+    handleShadowTLS();
+}
+
+address = comma server:server comma port:port {
+    proxy.server = server;
+    proxy.port = port;
+}
+
+server = ip/domain
+
+ip = & {
+    const start = peg$currPos;
+    let j = start;
+    while (j < input.length) {
+        if (input[j] === ",") break;
+        j++;
+    }
+    peg$currPos = j;
+    $.ip = input.substring(start, j).trim();
+    return true;
+} { return $.ip; }
+
+domain = match:[0-9a-zA-z-_.]+ { 
+    const domain = match.join(""); 
+    if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+        return domain;
+    }
+}
+
+port = digits:[0-9]+ { 
+    const port = parseInt(digits.join(""), 10); 
+    if (port >= 0 && port <= 65535) {
+    	return port;
+    }
+}
+
+username = & {
+    let j = peg$currPos; 
+    let start, end;
+    let first = true;
+    while (j < input.length) {
+        if (input[j] === ',') {
+            if (first) {
+                start = j + 1;
+                first = false;
+            } else {
+                end = j;
+                break;
+            }
+        }
+        j++;
+    }
+    const match = input.substring(start, end);
+    if (match.indexOf("=") === -1) {
+        $.username = match;
+        peg$currPos = end;
+        return true;
+    }
+} { proxy.username = $.username; }
+password = comma match:[^,]+ { proxy.password = match.join(""); }
+
+tls = comma "tls" equals flag:bool { proxy.tls = flag; }
+sni = comma "sni" equals sni:("off"/domain) { 
+    if (sni === "off") {
+        proxy["disable-sni"] = true;
+    } else {
+        proxy.sni = sni;
+    }
+}
+tls_verification = comma "skip-cert-verify" equals flag:bool { proxy["skip-cert-verify"] = flag; }
+tls_fingerprint = comma "server-cert-fingerprint-sha256" equals tls_fingerprint:$[^,]+ { proxy["tls-fingerprint"] = tls_fingerprint.trim(); }
+
+snell_psk = comma "psk" equals match:[^,]+ { proxy.psk = match.join(""); }
+snell_version = comma "version" equals match:$[0-9]+ { proxy.version = parseInt(match.trim()); }
+
+usernamek = comma "username" equals match:[^,]+ { proxy.username = match.join(""); }
+passwordk = comma "password" equals match:[^,]+ { proxy.password = match.join(""); }
+vmess_uuid = comma "username" equals match:[^,]+ { proxy.uuid = match.join(""); }
+vmess_aead = comma "vmess-aead" equals flag:bool { proxy.aead = flag; }
+
+method = comma "encrypt-method" equals cipher:cipher {
+    proxy.cipher = cipher;
+}
+cipher = ("aes-128-cfb"/"aes-128-ctr"/"aes-128-gcm"/"aes-192-cfb"/"aes-192-ctr"/"aes-192-gcm"/"aes-256-cfb"/"aes-256-ctr"/"aes-256-gcm"/"bf-cfb"/"camellia-128-cfb"/"camellia-192-cfb"/"camellia-256-cfb"/"cast5-cfb"/"chacha20-ietf-poly1305"/"chacha20-ietf"/"chacha20-poly1305"/"chacha20"/"des-cfb"/"idea-cfb"/"none"/"rc2-cfb"/"rc4-md5"/"rc4"/"salsa20"/"seed-cfb"/"xchacha20-ietf-poly1305");
+
+ws = comma "ws" equals flag:bool { obfs.type = "ws"; }
+ws_headers = comma "ws-headers" equals headers:$[^,]+ {
+    const pairs = headers.split("|");
+    const result = {};
+    pairs.forEach(pair => {
+        const [key, value] = pair.trim().split(":");
+        result[key.trim()] = value.trim();
+    })
+    obfs["ws-headers"] = result;
+}
+ws_path = comma "ws-path" equals path:uri { obfs.path = path; }
+
+obfs = comma "obfs" equals type:("http"/"tls") { obfs.type = type; }
+obfs_host = comma "obfs-host" equals host:domain { obfs.host = host; };
+obfs_uri = comma "obfs-uri" equals path:uri { obfs.path = path }
+uri = $[^,]+
+
+udp_relay = comma "udp" equals flag:bool { proxy.udp = flag; }
+fast_open = comma "fast-open" equals flag:bool { proxy.tfo = flag; }
+reuse = comma "reuse" equals flag:bool { proxy.reuse = flag; }
+ecn = comma "ecn" equals flag:bool { proxy.ecn = flag; }
+tfo = comma "tfo" equals flag:bool { proxy.tfo = flag; }
+ip_version = comma "ip-version" equals match:[^,]+ { proxy["ip-version"] = match.join(""); }
+section_name = comma "section-name" equals match:[^,]+ { proxy["section-name"] = match.join(""); }
+no_error_alert = comma "no-error-alert" equals match:[^,]+ { proxy["no-error-alert"] = match.join(""); }
+underlying_proxy = comma "underlying-proxy" equals match:[^,]+ { proxy["underlying-proxy"] = match.join(""); }
+download_bandwidth = comma "download-bandwidth" equals match:[^,]+ { proxy.down = match.join(""); }
+test_url = comma "test-url" equals match:[^,]+ { proxy["test-url"] = match.join(""); }
+test_udp = comma "test-udp" equals match:[^,]+ { proxy["test-udp"] = match.join(""); }
+test_timeout = comma "test-timeout" equals match:$[0-9]+ { proxy["test-timeout"] = parseInt(match.trim()); }
+tos = comma "tos" equals match:$[0-9]+ { proxy.tos = parseInt(match.trim()); }
+interface = comma "interface" equals match:[^,]+ { proxy.interface = match.join(""); }
+allow_other_interface = comma "allow-other-interface" equals flag:bool { proxy["allow-other-interface"] = flag; }
+hybrid = comma "hybrid" equals flag:bool { proxy.hybrid = flag; }
+idle_timeout = comma "idle-timeout" equals match:$[0-9]+ { proxy["idle-timeout"] = parseInt(match.trim()); }
+private_key = comma "private-key" equals match:[^,]+ { proxy["keystore-private-key"] = match.join("").replace(/^"(.*)"$/, '$1'); }
+server_fingerprint = comma "server-fingerprint" equals match:[^,]+ { proxy["server-fingerprint"] = match.join("").replace(/^"(.*)"$/, '$1'); }
+block_quic = comma "block-quic" equals match:[^,]+ { proxy["block-quic"] = match.join(""); }
+shadow_tls_version = comma "shadow-tls-version" equals match:$[0-9]+ { proxy["shadow-tls-version"] = parseInt(match.trim()); }
+shadow_tls_sni = comma "shadow-tls-sni" equals match:[^,]+ { proxy["shadow-tls-sni"] = match.join(""); }
+shadow_tls_password = comma "shadow-tls-password" equals match:[^,]+ { proxy["shadow-tls-password"] = match.join(""); }
+token = comma "token" equals match:[^,]+ { proxy.token = match.join(""); }
+alpn = comma "alpn" equals match:[^,]+ { proxy.alpn = match.join(""); }
+uuidk = comma "uuid" equals match:[^,]+ { proxy.uuid = match.join(""); }
+
+tag = match:[^=,]* { proxy.name = match.join("").trim(); }
+comma = _ "," _
+equals = _ "=" _
+_ = [ \r\t]*
+bool = b:("true"/"false") { return b === "true" }
+others = comma [^=,]+ equals [^=,]+

backend/src/core/proxy-utils/parsers/peggy/trojan-uri.js

@@ -0,0 +1,141 @@
+import * as peggy from 'peggy';
+const grammars = String.raw`
+// global initializer
+{{
+  function $set(obj, path, value) {
+    if (Object(obj) !== obj) return obj;
+    if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+    path
+      .slice(0, -1)
+      .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+      path[path.length - 1]
+    ] = value;
+    return obj;
+  }
+
+  function toBool(str) {
+    if (typeof str === 'undefined' || str === null) return undefined;
+    return /(TRUE)|1/i.test(str);
+  }
+}}
+
+{
+  const proxy = {};
+  const obfs = {};
+  const $ = {};
+  const params = {};
+}
+
+start = (trojan) {
+  return proxy
+}
+
+trojan = "trojan://" password:password "@" server:server ":" port:port "/"? params? name:name?{
+  proxy.type = "trojan";
+  proxy.password = password;
+  proxy.server = server;
+  proxy.port = port;
+  proxy.name = name;
+
+  // name may be empty
+  if (!proxy.name) {
+    proxy.name = server + ":" + port;
+  }
+};
+
+password = match:$[^@]+ {
+  return decodeURIComponent(match);
+};
+
+server = ip/domain;
+
+domain = match:[0-9a-zA-z-_.]+ { 
+  const domain = match.join(""); 
+  if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+    return domain;
+  }
+}
+
+ip = & {
+  const start = peg$currPos;
+  let end;
+  let j = start;
+  while (j < input.length) {
+    if (input[j] === ",") break;
+    if (input[j] === ":") end = j;
+    j++;
+  }
+  peg$currPos = end || j;
+  $.ip = input.substring(start, end).trim();
+  return true;
+} { return $.ip; }
+
+port = digits:[0-9]+ { 
+  const port = parseInt(digits.join(""), 10); 
+  if (port >= 0 && port <= 65535) {
+    return port;
+  } else {
+    throw new Error("Invalid port: " + port);
+  }
+}
+
+params = "?" head:param tail:("&"@param)* {
+  proxy["skip-cert-verify"] = toBool(params["allowInsecure"]);
+  proxy.sni = params["sni"] || params["peer"];
+
+  if (toBool(params["ws"])) {
+    proxy.network = "ws";
+    $set(proxy, "ws-opts.path", params["wspath"]);
+  }
+  
+  if (params["type"]) {
+    let httpupgrade
+    proxy.network = params["type"]
+    if(proxy.network === 'httpupgrade') {
+      proxy.network = 'ws'
+      httpupgrade = true
+    }
+    if (['grpc'].includes(proxy.network)) {
+        proxy[proxy.network + '-opts'] = {
+            'grpc-service-name': params["serviceName"],
+            '_grpc-type': params["mode"],
+        };
+    } else {
+      if (params["path"]) {
+        $set(proxy, proxy.network+"-opts.path", decodeURIComponent(params["path"]));  
+      }
+      if (params["host"]) {
+        $set(proxy, proxy.network+"-opts.headers.Host", decodeURIComponent(params["host"])); 
+      }
+      if (httpupgrade) {
+        $set(proxy, proxy.network+"-opts.v2ray-http-upgrade", true); 
+        $set(proxy, proxy.network+"-opts.v2ray-http-upgrade-fast-open", true); 
+      }
+    }
+  }
+
+  proxy.udp = toBool(params["udp"]);
+  proxy.tfo = toBool(params["tfo"]);
+}
+
+param = kv/single;
+
+kv = key:$[a-z]i+ "=" value:$[^&#]i* {
+  params[key] = value;
+}
+
+single = key:$[a-z]i+ {
+  params[key] = true;
+};
+
+name = "#" + match:$.* {
+  return decodeURIComponent(match);
+}
+`;
+let parser;
+export default function getParser() {
+    if (!parser) {
+        parser = peggy.generate(grammars);
+    }
+    return parser;
+}

backend/src/core/proxy-utils/parsers/peggy/trojan-uri.peg

@@ -0,0 +1,131 @@
+// global initializer
+{{
+  function $set(obj, path, value) {
+    if (Object(obj) !== obj) return obj;
+    if (!Array.isArray(path)) path = path.toString().match(/[^.[\]]+/g) || [];
+    path
+      .slice(0, -1)
+      .reduce((a, c, i) => (Object(a[c]) === a[c] ? a[c] : (a[c] = Math.abs(path[i + 1]) >> 0 === +path[i + 1] ? [] : {})), obj)[
+      path[path.length - 1]
+    ] = value;
+    return obj;
+  }
+
+  function toBool(str) {
+    if (typeof str === 'undefined' || str === null) return undefined;
+    return /(TRUE)|1/i.test(str);
+  }
+}}
+
+{
+  const proxy = {};
+  const obfs = {};
+  const $ = {};
+  const params = {};
+}
+
+start = (trojan) {
+  return proxy
+}
+
+trojan = "trojan://" password:password "@" server:server ":" port:port "/"? params? name:name?{
+  proxy.type = "trojan";
+  proxy.password = password;
+  proxy.server = server;
+  proxy.port = port;
+  proxy.name = name;
+
+  // name may be empty
+  if (!proxy.name) {
+    proxy.name = server + ":" + port;
+  }
+};
+
+password = match:$[^@]+ {
+  return decodeURIComponent(match);
+};
+
+server = ip/domain;
+
+domain = match:[0-9a-zA-z-_.]+ { 
+  const domain = match.join(""); 
+  if (/(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\.)+[a-z0-9][a-z0-9-]{0,61}[a-z0-9]/.test(domain)) {
+    return domain;
+  }
+}
+
+ip = & {
+  const start = peg$currPos;
+  let end;
+  let j = start;
+  while (j < input.length) {
+    if (input[j] === ",") break;
+    if (input[j] === ":") end = j;
+    j++;
+  }
+  peg$currPos = end || j;
+  $.ip = input.substring(start, end).trim();
+  return true;
+} { return $.ip; }
+
+port = digits:[0-9]+ { 
+  const port = parseInt(digits.join(""), 10); 
+  if (port >= 0 && port <= 65535) {
+    return port;
+  } else {
+    throw new Error("Invalid port: " + port);
+  }
+}
+
+params = "?" head:param tail:("&"@param)* {
+  proxy["skip-cert-verify"] = toBool(params["allowInsecure"]);
+  proxy.sni = params["sni"] || params["peer"];
+
+  if (toBool(params["ws"])) {
+    proxy.network = "ws";
+    $set(proxy, "ws-opts.path", params["wspath"]);
+  }
+  
+  if (params["type"]) {
+    let httpupgrade
+    proxy.network = params["type"]
+    if(proxy.network === 'httpupgrade') {
+      proxy.network = 'ws'
+      httpupgrade = true
+    }
+    if (['grpc'].includes(proxy.network)) {
+        proxy[proxy.network + '-opts'] = {
+            'grpc-service-name': params["serviceName"],
+            '_grpc-type': params["mode"],
+        };
+    } else {
+      if (params["path"]) {
+        $set(proxy, proxy.network+"-opts.path", decodeURIComponent(params["path"]));  
+      }
+      if (params["host"]) {
+        $set(proxy, proxy.network+"-opts.headers.Host", decodeURIComponent(params["host"])); 
+      }
+      if (httpupgrade) {
+        $set(proxy, proxy.network+"-opts.v2ray-http-upgrade", true); 
+        $set(proxy, proxy.network+"-opts.v2ray-http-upgrade-fast-open", true); 
+      }
+    }
+  }
+
+  proxy.udp = toBool(params["udp"]);
+  proxy.tfo = toBool(params["tfo"]);
+}
+
+param = kv/single;
+
+kv = key:$[a-z]i+ "=" value:$[^&#]i* {
+  params[key] = value;
+}
+
+single = key:$[a-z]i+ {
+  params[key] = true;
+};
+
+name = "#" + match:$.* {
+  return decodeURIComponent(match);
+}

backend/src/core/proxy-utils/preprocessors/index.js

@@ -0,0 +1,127 @@
+import { safeLoad } from '@/utils/yaml';
+import { Base64 } from 'js-base64';
+
+function HTML() {
+    const name = 'HTML';
+    const test = (raw) => /^<!DOCTYPE html>/.test(raw);
+    // simply discard HTML
+    const parse = () => '';
+    return { name, test, parse };
+}
+
+function Base64Encoded() {
+    const name = 'Base64 Pre-processor';
+
+    const keys = [
+        'dm1lc3M', // vmess
+        'c3NyOi8v', // ssr://
+        'dHJvamFu', // trojan
+        'c3M6Ly', // ss:/
+        'c3NkOi8v', // ssd://
+        'c2hhZG93', // shadow
+        'aHR0c', // htt
+        'dmxlc3M=', // vless
+        'aHlzdGVyaWEy', // hysteria2
+        'd2lyZWd1YXJkOi8v', // wireguard://
+        'd2c6Ly8=', // wg://
+        'dHVpYzovLw==', // tuic://
+    ];
+
+    const test = function (raw) {
+        return (
+            !/^\w+:\/\/\w+/im.test(raw) &&
+            keys.some((k) => raw.indexOf(k) !== -1)
+        );
+    };
+    const parse = function (raw) {
+        raw = Base64.decode(raw);
+        return raw;
+    };
+    return { name, test, parse };
+}
+
+function Clash() {
+    const name = 'Clash Pre-processor';
+    const test = function (raw) {
+        if (!/proxies/.test(raw)) return false;
+        const content = safeLoad(raw);
+        return content.proxies && Array.isArray(content.proxies);
+    };
+    const parse = function (raw) {
+        // Clash YAML format
+        const {
+            proxies,
+            'global-client-fingerprint': globalClientFingerprint,
+        } = safeLoad(raw);
+        return proxies
+            .map((p) => {
+                // https://github.com/MetaCubeX/mihomo/blob/Alpha/docs/config.yaml#L73C1-L73C26
+                if (globalClientFingerprint && !p['client-fingerprint']) {
+                    p['client-fingerprint'] = globalClientFingerprint;
+                }
+                return JSON.stringify(p);
+            })
+            .join('\n');
+    };
+    return { name, test, parse };
+}
+
+function SSD() {
+    const name = 'SSD Pre-processor';
+    const test = function (raw) {
+        return raw.indexOf('ssd://') === 0;
+    };
+    const parse = function (raw) {
+        // preprocessing for SSD subscription format
+        const output = [];
+        let ssdinfo = JSON.parse(Base64.decode(raw.split('ssd://')[1]));
+        let port = ssdinfo.port;
+        let method = ssdinfo.encryption;
+        let password = ssdinfo.password;
+        // servers config
+        let servers = ssdinfo.servers;
+        for (let i = 0; i < servers.length; i++) {
+            let server = servers[i];
+            method = server.encryption ? server.encryption : method;
+            password = server.password ? server.password : password;
+            let userinfo = Base64.encode(method + ':' + password);
+            let hostname = server.server;
+            port = server.port ? server.port : port;
+            let tag = server.remarks ? server.remarks : i;
+            let plugin = server.plugin_options
+                ? '/?plugin=' +
+                  encodeURIComponent(
+                      server.plugin + ';' + server.plugin_options,
+                  )
+                : '';
+            output[i] =
+                'ss://' +
+                userinfo +
+                '@' +
+                hostname +
+                ':' +
+                port +
+                plugin +
+                '#' +
+                tag;
+        }
+        return output.join('\n');
+    };
+    return { name, test, parse };
+}
+
+function FullConfig() {
+    const name = 'Full Config Preprocessor';
+    const test = function (raw) {
+        return /^(\[server_local\]|\[Proxy\])/gm.test(raw);
+    };
+    const parse = function (raw) {
+        const match = raw.match(
+            /^\[server_local|Proxy\]([\s\S]+?)^\[.+?\](\r?\n|$)/im,
+        )?.[1];
+        return match || raw;
+    };
+    return { name, test, parse };
+}
+
+export default [HTML(), Clash(), Base64Encoded(), SSD(), FullConfig()];

backend/src/core/proxy-utils/processors/index.js

@@ -0,0 +1,932 @@
+import resourceCache from '@/utils/resource-cache';
+import scriptResourceCache from '@/utils/script-resource-cache';
+import { isIPv4, isIPv6 } from '@/utils';
+import { FULL } from '@/utils/logical';
+import { getFlag } from '@/utils/geo';
+import lodash from 'lodash';
+import $ from '@/core/app';
+import { hex_md5 } from '@/vendor/md5';
+import { ProxyUtils } from '@/core/proxy-utils';
+import { produceArtifact } from '@/restful/sync';
+
+import env from '@/utils/env';
+import {
+    getFlowField,
+    getFlowHeaders,
+    parseFlowHeaders,
+    validCheck,
+    flowTransfer,
+    getRmainingDays,
+} from '@/utils/flow';
+
+/**
+ The rule "(name CONTAINS "🇨🇳") AND (port IN [80, 443])" can be expressed as follows:
+ {
+    operator: "AND",
+    child: [
+        {
+            attr: "name",
+            proposition: "CONTAINS",
+            value: "🇨🇳"
+        },
+        {
+            attr: "port",
+            proposition: "IN",
+            value: [80, 443]
+        }
+    ]
+}
+ */
+
+function ConditionalFilter({ rule }) {
+    return {
+        name: 'Conditional Filter',
+        func: (proxies) => {
+            return proxies.map((proxy) => isMatch(rule, proxy));
+        },
+    };
+}
+
+function isMatch(rule, proxy) {
+    // leaf node
+    if (!rule.operator) {
+        switch (rule.proposition) {
+            case 'IN':
+                return rule.value.indexOf(proxy[rule.attr]) !== -1;
+            case 'CONTAINS':
+                if (typeof proxy[rule.attr] !== 'string') return false;
+                return proxy[rule.attr].indexOf(rule.value) !== -1;
+            case 'EQUALS':
+                return proxy[rule.attr] === rule.value;
+            case 'EXISTS':
+                return (
+                    proxy[rule.attr] !== null ||
+                    typeof proxy[rule.attr] !== 'undefined'
+                );
+            default:
+                throw new Error(`Unknown proposition: ${rule.proposition}`);
+        }
+    }
+
+    // operator nodes
+    switch (rule.operator) {
+        case 'AND':
+            return rule.child.every((child) => isMatch(child, proxy));
+        case 'OR':
+            return rule.child.some((child) => isMatch(child, proxy));
+        case 'NOT':
+            return !isMatch(rule.child, proxy);
+        default:
+            throw new Error(`Unknown operator: ${rule.operator}`);
+    }
+}
+
+function QuickSettingOperator(args) {
+    return {
+        name: 'Quick Setting Operator',
+        func: (proxies) => {
+            if (get(args.useless)) {
+                const filter = UselessFilter();
+                const selected = filter.func(proxies);
+                proxies = proxies.filter(
+                    (p, i) => selected[i] && p.port > 0 && p.port <= 65535,
+                );
+            }
+
+            return proxies.map((proxy) => {
+                proxy.udp = get(args.udp, proxy.udp);
+                proxy.tfo = get(args.tfo, proxy.tfo);
+                proxy['fast-open'] = get(args.tfo, proxy['fast-open']);
+                proxy['skip-cert-verify'] = get(
+                    args.scert,
+                    proxy['skip-cert-verify'],
+                );
+                if (proxy.type === 'vmess') {
+                    proxy.aead = get(args['vmess aead'], proxy.aead);
+                }
+                return proxy;
+            });
+        },
+    };
+
+    function get(value, defaultValue) {
+        switch (value) {
+            case 'ENABLED':
+                return true;
+            case 'DISABLED':
+                return false;
+            default:
+                return defaultValue;
+        }
+    }
+}
+
+// add or remove flag for proxies
+function FlagOperator({ mode, tw }) {
+    return {
+        name: 'Flag Operator',
+        func: (proxies) => {
+            return proxies.map((proxy) => {
+                if (mode === 'remove') {
+                    // no flag
+                    proxy.name = removeFlag(proxy.name);
+                } else {
+                    // get flag
+                    const newFlag = getFlag(proxy.name);
+                    // remove old flag
+                    proxy.name = removeFlag(proxy.name);
+                    proxy.name = newFlag + ' ' + proxy.name;
+                    if (tw == 'ws') {
+                        proxy.name = proxy.name.replace(/🇹🇼/g, '🇼🇸');
+                    } else if (tw == 'tw') {
+                        // 不变
+                    } else {
+                        proxy.name = proxy.name.replace(/🇹🇼/g, '🇨🇳');
+                    }
+                }
+                return proxy;
+            });
+        },
+    };
+}
+
+// duplicate handler
+function HandleDuplicateOperator(arg) {
+    const { action, template, link, position } = {
+        ...{
+            action: 'rename',
+            template: '0 1 2 3 4 5 6 7 8 9',
+            link: '-',
+            position: 'back',
+        },
+        ...arg,
+    };
+    return {
+        name: 'Handle Duplicate Operator',
+        func: (proxies) => {
+            if (action === 'delete') {
+                const chosen = {};
+                return proxies.filter((p) => {
+                    if (chosen[p.name]) {
+                        return false;
+                    }
+                    chosen[p.name] = true;
+                    return true;
+                });
+            } else if (action === 'rename') {
+                const numbers = template.split(' ');
+                // count occurrences of each name
+                const counter = {};
+                let maxLen = 0;
+                proxies.forEach((p) => {
+                    if (typeof counter[p.name] === 'undefined')
+                        counter[p.name] = 1;
+                    else counter[p.name]++;
+                    maxLen = Math.max(
+                        counter[p.name].toString().length,
+                        maxLen,
+                    );
+                });
+                const increment = {};
+                return proxies.map((p) => {
+                    if (counter[p.name] > 1) {
+                        if (typeof increment[p.name] == 'undefined')
+                            increment[p.name] = 1;
+                        let num = '';
+                        let cnt = increment[p.name]++;
+                        let numDigits = 0;
+                        while (cnt > 0) {
+                            num = numbers[cnt % 10] + num;
+                            cnt = parseInt(cnt / 10);
+                            numDigits++;
+                        }
+                        // padding
+                        while (numDigits++ < maxLen) {
+                            num = numbers[0] + num;
+                        }
+                        if (position === 'front') {
+                            p.name = num + link + p.name;
+                        } else if (position === 'back') {
+                            p.name = p.name + link + num;
+                        }
+                    }
+                    return p;
+                });
+            }
+        },
+    };
+}
+
+// sort proxies according to their names
+function SortOperator(order = 'asc') {
+    return {
+        name: 'Sort Operator',
+        func: (proxies) => {
+            switch (order) {
+                case 'asc':
+                case 'desc':
+                    return proxies.sort((a, b) => {
+                        let res = a.name > b.name ? 1 : -1;
+                        res *= order === 'desc' ? -1 : 1;
+                        return res;
+                    });
+                case 'random':
+                    return shuffle(proxies);
+                default:
+                    throw new Error('Unknown sort option: ' + order);
+            }
+        },
+    };
+}
+
+// sort by regex
+function RegexSortOperator(expressions) {
+    return {
+        name: 'Regex Sort Operator',
+        func: (proxies) => {
+            expressions = expressions.map((expr) => buildRegex(expr));
+            return proxies.sort((a, b) => {
+                const oA = getRegexOrder(expressions, a.name);
+                const oB = getRegexOrder(expressions, b.name);
+                if (oA && !oB) return -1;
+                if (oB && !oA) return 1;
+                if (oA && oB) return oA < oB ? -1 : 1;
+                if ((!oA && !oB) || (oA && oB && oA === oB))
+                    return a.name < b.name ? -1 : 1; // fallback to normal sort
+            });
+        },
+    };
+}
+
+function getRegexOrder(expressions, str) {
+    let order = null;
+    for (let i = 0; i < expressions.length; i++) {
+        if (expressions[i].test(str)) {
+            order = i + 1; // plus 1 is important! 0 will be treated as false!!!
+            break;
+        }
+    }
+    return order;
+}
+
+// rename by regex
+// keywords: [{expr: "string format regex", now: "now"}]
+function RegexRenameOperator(regex) {
+    return {
+        name: 'Regex Rename Operator',
+        func: (proxies) => {
+            return proxies.map((proxy) => {
+                for (const { expr, now } of regex) {
+                    proxy.name = proxy.name
+                        .replace(buildRegex(expr, 'g'), now)
+                        .trim();
+                }
+                return proxy;
+            });
+        },
+    };
+}
+
+// delete regex operator
+// regex: ['a', 'b', 'c']
+function RegexDeleteOperator(regex) {
+    const regex_ = regex.map((r) => {
+        return {
+            expr: r,
+            now: '',
+        };
+    });
+    return {
+        name: 'Regex Delete Operator',
+        func: RegexRenameOperator(regex_).func,
+    };
+}
+
+/** Script Operator
+ function operator(proxies) {
+            const {arg1} = $arguments;
+
+            // do something
+            return proxies;
+         }
+
+ WARNING:
+ 1. This function name should be `operator`!
+ 2. Always declare variables before using them!
+ */
+function ScriptOperator(script, targetPlatform, $arguments, source) {
+    return {
+        name: 'Script Operator',
+        func: async (proxies) => {
+            let output = proxies;
+            await (async function () {
+                const operator = createDynamicFunction(
+                    'operator',
+                    script,
+                    $arguments,
+                );
+                output = operator(proxies, targetPlatform, { source, ...env });
+            })();
+            return output;
+        },
+        nodeFunc: async (proxies) => {
+            let output = proxies;
+            await (async function () {
+                const operator = createDynamicFunction(
+                    'operator',
+                    `async function operator(input = []) {
+                        if (input && (input.$files || input.$content)) {
+                            let { $content, $files } = input
+                            ${script}
+                            return { $content, $files }
+                        } else {
+                            let proxies = input
+                            let list = []
+                            for await (let $server of proxies) {
+                                ${script}
+                                list.push($server)
+                            }
+                            return list
+                        }
+                      }`,
+                    $arguments,
+                );
+                output = operator(proxies, targetPlatform, { source, ...env });
+            })();
+            return output;
+        },
+    };
+}
+
+function parseIP4P(IP4P) {
+    let server;
+    let port;
+    try {
+        if (!/^2001::[^:]+:[^:]+:[^:]+$/.test(IP4P)) {
+            throw new Error(`Invalid IP4P: ${IP4P}`);
+        }
+        let array = IP4P.split(':');
+
+        port = parseInt(array[2], 16);
+        let ipab = parseInt(array[3], 16);
+        let ipcd = parseInt(array[4], 16);
+        let ipa = ipab >> 8;
+        let ipb = ipab & 0xff;
+        let ipc = ipcd >> 8;
+        let ipd = ipcd & 0xff;
+        server = `${ipa}.${ipb}.${ipc}.${ipd}`;
+        if (port <= 0 || port > 65535) {
+            throw new Error(`Invalid port number: ${port}`);
+        }
+        if (!isIPv4(server)) {
+            throw new Error(`Invalid IP address: ${server}`);
+        }
+    } catch (e) {
+        // throw new Error(`IP4P 解析失败: ${e}`);
+        $.error(`IP4P 解析失败: ${e}`);
+    }
+    return { server, port };
+}
+
+const DOMAIN_RESOLVERS = {
+    Google: async function (domain, type, noCache) {
+        const id = hex_md5(`GOOGLE:${domain}:${type}`);
+        const cached = resourceCache.get(id);
+        if (!noCache && cached) return cached;
+        const resp = await $.http.get({
+            url: `https://8.8.4.4/resolve?name=${encodeURIComponent(
+                domain,
+            )}&type=${type === 'IPv6' ? 'AAAA' : 'A'}`,
+            headers: {
+                accept: 'application/dns-json',
+            },
+        });
+        const body = JSON.parse(resp.body);
+        if (body['Status'] !== 0) {
+            throw new Error(`Status is ${body['Status']}`);
+        }
+        const answers = body['Answer'];
+        if (answers.length === 0) {
+            throw new Error('No answers');
+        }
+        const result = answers[answers.length - 1].data;
+        resourceCache.set(id, result);
+        return result;
+    },
+    'IP-API': async function (domain, type, noCache) {
+        if (['IPv6'].includes(type)) {
+            throw new Error(`域名解析服务提供方 IP-API 不支持 ${type}`);
+        }
+        const id = hex_md5(`IP-API:${domain}`);
+        const cached = resourceCache.get(id);
+        if (!noCache && cached) return cached;
+        const resp = await $.http.get({
+            url: `http://ip-api.com/json/${encodeURIComponent(
+                domain,
+            )}?lang=zh-CN`,
+        });
+        const body = JSON.parse(resp.body);
+        if (body['status'] !== 'success') {
+            throw new Error(`Status is ${body['status']}`);
+        }
+        const result = body.query;
+        resourceCache.set(id, result);
+        return result;
+    },
+    Cloudflare: async function (domain, type, noCache) {
+        const id = hex_md5(`CLOUDFLARE:${domain}:${type}`);
+        const cached = resourceCache.get(id);
+        if (!noCache && cached) return cached;
+        const resp = await $.http.get({
+            url: `https://1.0.0.1/dns-query?name=${encodeURIComponent(
+                domain,
+            )}&type=${type === 'IPv6' ? 'AAAA' : 'A'}`,
+            headers: {
+                accept: 'application/dns-json',
+            },
+        });
+        const body = JSON.parse(resp.body);
+        if (body['Status'] !== 0) {
+            throw new Error(`Status is ${body['Status']}`);
+        }
+        const answers = body['Answer'];
+        if (answers.length === 0) {
+            throw new Error('No answers');
+        }
+        const result = answers[answers.length - 1].data;
+        resourceCache.set(id, result);
+        return result;
+    },
+    Ali: async function (domain, type, noCache) {
+        const id = hex_md5(`ALI:${domain}:${type}`);
+        const cached = resourceCache.get(id);
+        if (!noCache && cached) return cached;
+        const resp = await $.http.get({
+            url: `http://223.6.6.6/resolve?edns_client_subnet=223.6.6.6/24&name=${encodeURIComponent(
+                domain,
+            )}&type=${type === 'IPv6' ? 'AAAA' : 'A'}&short=1`,
+            headers: {
+                accept: 'application/dns-json',
+            },
+        });
+        const answers = JSON.parse(resp.body);
+        if (answers.length === 0) {
+            throw new Error('No answers');
+        }
+        const result = answers[answers.length - 1];
+        resourceCache.set(id, result);
+        return result;
+    },
+    Tencent: async function (domain, type, noCache) {
+        const id = hex_md5(`ALI:${domain}:${type}`);
+        const cached = resourceCache.get(id);
+        if (!noCache && cached) return cached;
+        const resp = await $.http.get({
+            url: `http://119.28.28.28/d?ip=119.28.28.28&type=${
+                type === 'IPv6' ? 'AAAA' : 'A'
+            }&dn=${encodeURIComponent(domain)}`,
+            headers: {
+                accept: 'application/dns-json',
+            },
+        });
+        const answers = resp.body.split(';').map((i) => i.split(',')[0]);
+        if (answers.length === 0 || String(answers) === '0') {
+            throw new Error('No answers');
+        }
+        const result = answers[answers.length - 1];
+        resourceCache.set(id, result);
+        return result;
+    },
+};
+
+function ResolveDomainOperator({ provider, type: _type, filter, cache }) {
+    if (['IPv6', 'IP4P'].includes(_type) && ['IP-API'].includes(provider)) {
+        throw new Error(`域名解析服务提供方 ${provider} 不支持 ${_type}`);
+    }
+    let type = ['IPv6', 'IP4P'].includes(_type) ? 'IPv6' : 'IPv4';
+
+    const resolver = DOMAIN_RESOLVERS[provider];
+    if (!resolver) {
+        throw new Error(`找不到域名解析服务提供方: ${provider}`);
+    }
+    return {
+        name: 'Resolve Domain Operator',
+        func: async (proxies) => {
+            const results = {};
+            const limit = 15; // more than 20 concurrency may result in surge TCP connection shortage.
+            const totalDomain = [
+                ...new Set(
+                    proxies
+                        .filter((p) => !isIP(p.server) && !p['no-resolve'])
+                        .map((c) => c.server),
+                ),
+            ];
+            const totalBatch = Math.ceil(totalDomain.length / limit);
+            for (let i = 0; i < totalBatch; i++) {
+                const currentBatch = [];
+                for (let domain of totalDomain.splice(0, limit)) {
+                    currentBatch.push(
+                        resolver(domain, type, cache === 'disabled')
+                            .then((ip) => {
+                                results[domain] = ip;
+                                $.info(
+                                    `Successfully resolved domain: ${domain} ➟ ${ip}`,
+                                );
+                            })
+                            .catch((err) => {
+                                $.error(
+                                    `Failed to resolve domain: ${domain} with resolver [${provider}]: ${err}`,
+                                );
+                            }),
+                    );
+                }
+                await Promise.all(currentBatch);
+            }
+            proxies.forEach((p) => {
+                if (!p['no-resolve']) {
+                    if (results[p.server]) {
+                        if (_type === 'IP4P') {
+                            const { server, port } = parseIP4P(
+                                results[p.server],
+                            );
+                            if (server && port) {
+                                p._domain = p.server;
+                                p.server = server;
+                                p.port = port;
+                                p.resolved = true;
+                                p._IPv4 = p.server;
+                                if (!isIP(p._IP)) {
+                                    p._IP = p.server;
+                                }
+                            } else {
+                                p.resolved = false;
+                            }
+                        } else {
+                            p._domain = p.server;
+                            p.server = results[p.server];
+                            p.resolved = true;
+                            p[`_${type}`] = p.server;
+                            if (!isIP(p._IP)) {
+                                p._IP = p.server;
+                            }
+                        }
+                    } else {
+                        p.resolved = false;
+                    }
+                }
+            });
+
+            return proxies.filter((p) => {
+                if (filter === 'removeFailed') {
+                    return isIP(p.server) || p['no-resolve'] || p.resolved;
+                } else if (filter === 'IPOnly') {
+                    return isIP(p.server);
+                } else if (filter === 'IPv4Only') {
+                    return isIPv4(p.server);
+                } else if (filter === 'IPv6Only') {
+                    return isIPv6(p.server);
+                } else {
+                    return true;
+                }
+            });
+        },
+    };
+}
+
+function isIP(ip) {
+    return isIPv4(ip) || isIPv6(ip);
+}
+
+ResolveDomainOperator.resolver = DOMAIN_RESOLVERS;
+
+/**************************** Filters ***************************************/
+// filter useless proxies
+function UselessFilter() {
+    const KEYWORDS = [
+        '网址',
+        '流量',
+        '时间',
+        '应急',
+        '过期',
+        'Bandwidth',
+        'expire',
+    ];
+    return {
+        name: 'Useless Filter',
+        func: RegexFilter({
+            regex: KEYWORDS,
+            keep: false,
+        }).func,
+    };
+}
+
+// filter by regions
+function RegionFilter(regions) {
+    const REGION_MAP = {
+        HK: '🇭🇰',
+        TW: '🇹🇼',
+        US: '🇺🇸',
+        SG: '🇸🇬',
+        JP: '🇯🇵',
+        UK: '🇬🇧',
+        DE: '🇩🇪',
+        KR: '🇰🇷',
+    };
+    return {
+        name: 'Region Filter',
+        func: (proxies) => {
+            // this would be high memory usage
+            return proxies.map((proxy) => {
+                const flag = getFlag(proxy.name);
+                return regions.some((r) => REGION_MAP[r] === flag);
+            });
+        },
+    };
+}
+
+// filter by regex
+function RegexFilter({ regex = [], keep = true }) {
+    return {
+        name: 'Regex Filter',
+        func: (proxies) => {
+            return proxies.map((proxy) => {
+                const selected = regex.some((r) => {
+                    return buildRegex(r).test(proxy.name);
+                });
+                return keep ? selected : !selected;
+            });
+        },
+    };
+}
+
+function buildRegex(str, ...options) {
+    options = options.join('');
+    if (str.startsWith('(?i)')) {
+        str = str.substring(4);
+        return new RegExp(str, 'i' + options);
+    } else {
+        return new RegExp(str, options);
+    }
+}
+
+// filter by proxy types
+function TypeFilter(types) {
+    return {
+        name: 'Type Filter',
+        func: (proxies) => {
+            return proxies.map((proxy) => types.some((t) => proxy.type === t));
+        },
+    };
+}
+
+/**
+ Script Example
+
+ function filter(proxies) {
+        return proxies.map(p => {
+            return p.name.indexOf('🇭🇰') !== -1;
+        });
+     }
+
+ WARNING:
+ 1. This function name should be `filter`!
+ 2. Always declare variables before using them!
+ */
+function ScriptFilter(script, targetPlatform, $arguments, source) {
+    return {
+        name: 'Script Filter',
+        func: async (proxies) => {
+            let output = FULL(proxies.length, true);
+            await (async function () {
+                const filter = createDynamicFunction(
+                    'filter',
+                    script,
+                    $arguments,
+                );
+                output = filter(proxies, targetPlatform, { source, ...env });
+            })();
+            return output;
+        },
+        nodeFunc: async (proxies) => {
+            let output = FULL(proxies.length, true);
+            await (async function () {
+                const filter = createDynamicFunction(
+                    'filter',
+                    `async function filter(input = []) {
+                        let proxies = input
+                        let list = []
+                        const fn = async ($server) => {
+                            ${script}
+                        }
+                        for await (let $server of proxies) {
+                            list.push(await fn($server))
+                        }
+                        return list
+                      }`,
+                    $arguments,
+                );
+                output = filter(proxies, targetPlatform, { source, ...env });
+            })();
+            return output;
+        },
+    };
+}
+
+export default {
+    'Useless Filter': UselessFilter,
+    'Region Filter': RegionFilter,
+    'Regex Filter': RegexFilter,
+    'Type Filter': TypeFilter,
+    'Script Filter': ScriptFilter,
+    'Conditional Filter': ConditionalFilter,
+
+    'Quick Setting Operator': QuickSettingOperator,
+    'Flag Operator': FlagOperator,
+    'Sort Operator': SortOperator,
+    'Regex Sort Operator': RegexSortOperator,
+    'Regex Rename Operator': RegexRenameOperator,
+    'Regex Delete Operator': RegexDeleteOperator,
+    'Script Operator': ScriptOperator,
+    'Handle Duplicate Operator': HandleDuplicateOperator,
+    'Resolve Domain Operator': ResolveDomainOperator,
+};
+
+async function ApplyFilter(filter, objs) {
+    // select proxies
+    let selected = FULL(objs.length, true);
+    try {
+        selected = await filter.func(objs);
+    } catch (err) {
+        let funcErr = '';
+        let funcErrMsg = `${err.message ?? err}`;
+        if (funcErrMsg.includes('$server is not defined')) {
+            funcErr = '';
+        } else {
+            $.error(
+                `Cannot apply filter ${filter.name}(function filter)! Reason: ${err}`,
+            );
+            funcErr = `执行 function filter 失败 ${funcErrMsg}; `;
+        }
+        try {
+            selected = await filter.nodeFunc(objs);
+        } catch (err) {
+            $.error(
+                `Cannot apply filter ${filter.name}(shortcut script)! Reason: ${err}`,
+            );
+            let nodeErr = '';
+            let nodeErrMsg = `${err.message ?? err}`;
+            if (funcErr && nodeErrMsg === funcErrMsg) {
+                nodeErr = '';
+                funcErr = `执行失败 ${funcErrMsg}`;
+            } else {
+                nodeErr = `执行快捷过滤脚本 失败 ${nodeErrMsg}`;
+            }
+            throw new Error(`脚本过滤 ${funcErr}${nodeErr}`);
+        }
+    }
+    return objs.filter((_, i) => selected[i]);
+}
+
+async function ApplyOperator(operator, objs) {
+    let output = clone(objs);
+    try {
+        const output_ = await operator.func(output);
+        if (output_) output = output_;
+    } catch (err) {
+        let funcErr = '';
+        let funcErrMsg = `${err.message ?? err}`;
+        if (
+            funcErrMsg.includes('$server is not defined') ||
+            funcErrMsg.includes('$content is not defined') ||
+            funcErrMsg.includes('$files is not defined') ||
+            output?.$files ||
+            output?.$content
+        ) {
+            funcErr = '';
+        } else {
+            $.error(
+                `Cannot apply operator ${operator.name}(function operator)! Reason: ${err}`,
+            );
+            funcErr = `执行 function operator 失败 ${funcErrMsg}; `;
+        }
+        try {
+            const output_ = await operator.nodeFunc(output);
+            if (output_) output = output_;
+        } catch (err) {
+            $.error(
+                `Cannot apply operator ${operator.name}(shortcut script)! Reason: ${err}`,
+            );
+            let nodeErr = '';
+            let nodeErrMsg = `${err.message ?? err}`;
+            if (funcErr && nodeErrMsg === funcErrMsg) {
+                nodeErr = '';
+                funcErr = `执行失败 ${funcErrMsg}`;
+            } else {
+                nodeErr = `执行快捷脚本 失败 ${nodeErrMsg}`;
+            }
+            throw new Error(`脚本操作 ${funcErr}${nodeErr}`);
+        }
+    }
+    return output;
+}
+
+export async function ApplyProcessor(processor, objs) {
+    if (processor.name.indexOf('Filter') !== -1) {
+        return ApplyFilter(processor, objs);
+    } else if (processor.name.indexOf('Operator') !== -1) {
+        return ApplyOperator(processor, objs);
+    }
+}
+
+// shuffle array
+function shuffle(array) {
+    let currentIndex = array.length,
+        temporaryValue,
+        randomIndex;
+
+    // While there remain elements to shuffle...
+    while (0 !== currentIndex) {
+        // Pick a remaining element...
+        randomIndex = Math.floor(Math.random() * currentIndex);
+        currentIndex -= 1;
+
+        // And swap it with the current element.
+        temporaryValue = array[currentIndex];
+        array[currentIndex] = array[randomIndex];
+        array[randomIndex] = temporaryValue;
+    }
+
+    return array;
+}
+
+// deep clone object
+function clone(object) {
+    return JSON.parse(JSON.stringify(object));
+}
+
+// remove flag
+function removeFlag(str) {
+    return str
+        .replace(/[\uD83C][\uDDE6-\uDDFF][\uD83C][\uDDE6-\uDDFF]|🏴‍☠️|🏳️‍🌈/g, '')
+        .trim();
+}
+
+function createDynamicFunction(name, script, $arguments) {
+    const flowUtils = {
+        getFlowField,
+        getFlowHeaders,
+        parseFlowHeaders,
+        flowTransfer,
+        validCheck,
+        getRmainingDays,
+    };
+    if ($.env.isLoon) {
+        return new Function(
+            '$arguments',
+            '$substore',
+            'lodash',
+            '$persistentStore',
+            '$httpClient',
+            '$notification',
+            'ProxyUtils',
+            'scriptResourceCache',
+            'flowUtils',
+            'produceArtifact',
+            `${script}\n return ${name}`,
+        )(
+            $arguments,
+            $,
+            lodash,
+            // eslint-disable-next-line no-undef
+            $persistentStore,
+            // eslint-disable-next-line no-undef
+            $httpClient,
+            // eslint-disable-next-line no-undef
+            $notification,
+            ProxyUtils,
+            scriptResourceCache,
+            flowUtils,
+            produceArtifact,
+        );
+    } else {
+        return new Function(
+            '$arguments',
+            '$substore',
+            'lodash',
+            'ProxyUtils',
+            'scriptResourceCache',
+            'flowUtils',
+            'produceArtifact',
+
+            `${script}\n return ${name}`,
+        )(
+            $arguments,
+            $,
+            lodash,
+            ProxyUtils,
+            scriptResourceCache,
+            flowUtils,
+            produceArtifact,
+        );
+    }
+}

backend/src/core/proxy-utils/producers/clash.js

@@ -0,0 +1,182 @@
+import { isPresent } from '@/core/proxy-utils/producers/utils';
+
+export default function Clash_Producer() {
+    const type = 'ALL';
+    const produce = (proxies, type, opts = {}) => {
+        // VLESS XTLS is not supported by Clash
+        // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/docs/config.yaml#L532
+        // github.com/Dreamacro/clash/pull/2891/files
+        // filter unsupported proxies
+        // https://clash.wiki/configuration/outbound.html#shadowsocks
+        const list = proxies
+            .filter((proxy) => {
+                if (opts['include-unsupported-proxy']) return true;
+                if (
+                    ![
+                        'ss',
+                        'ssr',
+                        'vmess',
+                        'vless',
+                        'socks5',
+                        'http',
+                        'snell',
+                        'trojan',
+                        'wireguard',
+                    ].includes(proxy.type) ||
+                    (proxy.type === 'ss' &&
+                        ![
+                            'aes-128-gcm',
+                            'aes-192-gcm',
+                            'aes-256-gcm',
+                            'aes-128-cfb',
+                            'aes-192-cfb',
+                            'aes-256-cfb',
+                            'aes-128-ctr',
+                            'aes-192-ctr',
+                            'aes-256-ctr',
+                            'rc4-md5',
+                            'chacha20-ietf',
+                            'xchacha20',
+                            'chacha20-ietf-poly1305',
+                            'xchacha20-ietf-poly1305',
+                        ].includes(proxy.cipher)) ||
+                    (proxy.type === 'snell' && String(proxy.version) === '4') ||
+                    (proxy.type === 'vless' &&
+                        (typeof proxy.flow !== 'undefined' ||
+                            proxy['reality-opts']))
+                ) {
+                    return false;
+                }
+                return true;
+            })
+            .map((proxy) => {
+                if (proxy.type === 'vmess') {
+                    // handle vmess aead
+                    if (isPresent(proxy, 'aead')) {
+                        if (proxy.aead) {
+                            proxy.alterId = 0;
+                        }
+                        delete proxy.aead;
+                    }
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                    // https://dreamacro.github.io/clash/configuration/outbound.html#vmess
+                    if (
+                        isPresent(proxy, 'cipher') &&
+                        ![
+                            'auto',
+                            'aes-128-gcm',
+                            'chacha20-poly1305',
+                            'none',
+                        ].includes(proxy.cipher)
+                    ) {
+                        proxy.cipher = 'auto';
+                    }
+                } else if (proxy.type === 'wireguard') {
+                    proxy.keepalive =
+                        proxy.keepalive ?? proxy['persistent-keepalive'];
+                    proxy['persistent-keepalive'] = proxy.keepalive;
+                    proxy['preshared-key'] =
+                        proxy['preshared-key'] ?? proxy['pre-shared-key'];
+                    proxy['pre-shared-key'] = proxy['preshared-key'];
+                } else if (proxy.type === 'vless') {
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                }
+
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'http'
+                ) {
+                    let httpPath = proxy['http-opts']?.path;
+                    if (
+                        isPresent(proxy, 'http-opts.path') &&
+                        !Array.isArray(httpPath)
+                    ) {
+                        proxy['http-opts'].path = [httpPath];
+                    }
+                    let httpHost = proxy['http-opts']?.headers?.Host;
+                    if (
+                        isPresent(proxy, 'http-opts.headers.Host') &&
+                        !Array.isArray(httpHost)
+                    ) {
+                        proxy['http-opts'].headers.Host = [httpHost];
+                    }
+                }
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'h2'
+                ) {
+                    let path = proxy['h2-opts']?.path;
+                    if (
+                        isPresent(proxy, 'h2-opts.path') &&
+                        Array.isArray(path)
+                    ) {
+                        proxy['h2-opts'].path = path[0];
+                    }
+                    let host = proxy['h2-opts']?.headers?.host;
+                    if (
+                        isPresent(proxy, 'h2-opts.headers.Host') &&
+                        !Array.isArray(host)
+                    ) {
+                        proxy['h2-opts'].headers.host = [host];
+                    }
+                }
+                if (proxy['plugin-opts']?.tls) {
+                    if (isPresent(proxy, 'skip-cert-verify')) {
+                        proxy['plugin-opts']['skip-cert-verify'] =
+                            proxy['skip-cert-verify'];
+                    }
+                }
+                if (
+                    ['trojan', 'tuic', 'hysteria', 'hysteria2'].includes(
+                        proxy.type,
+                    )
+                ) {
+                    delete proxy.tls;
+                }
+
+                if (proxy['tls-fingerprint']) {
+                    proxy.fingerprint = proxy['tls-fingerprint'];
+                }
+                delete proxy['tls-fingerprint'];
+
+                if (proxy['underlying-proxy']) {
+                    proxy['dialer-proxy'] = proxy['underlying-proxy'];
+                }
+                delete proxy['underlying-proxy'];
+
+                if (isPresent(proxy, 'tls') && typeof proxy.tls !== 'boolean') {
+                    delete proxy.tls;
+                }
+
+                delete proxy.subName;
+                delete proxy.collectionName;
+                delete proxy.id;
+                delete proxy.resolved;
+                for (const key in proxy) {
+                    if (proxy[key] == null || /^_/i.test(key)) {
+                        delete proxy[key];
+                    }
+                }
+                if (
+                    ['grpc'].includes(proxy.network) &&
+                    proxy[`${proxy.network}-opts`]
+                ) {
+                    delete proxy[`${proxy.network}-opts`]['_grpc-type'];
+                }
+                return proxy;
+            });
+        return type === 'internal'
+            ? list
+            : 'proxies:\n' +
+                  list
+                      .map((proxy) => '  - ' + JSON.stringify(proxy) + '\n')
+                      .join('');
+    };
+    return { type, produce };
+}

backend/src/core/proxy-utils/producers/clashmeta.js

@@ -0,0 +1,198 @@
+import { isPresent } from '@/core/proxy-utils/producers/utils';
+
+export default function ClashMeta_Producer() {
+    const type = 'ALL';
+    const produce = (proxies, type, opts = {}) => {
+        const list = proxies
+            .filter((proxy) => {
+                if (opts['include-unsupported-proxy']) return true;
+                if (proxy.type === 'snell' && String(proxy.version) === '4') {
+                    return false;
+                }
+                return true;
+            })
+            .map((proxy) => {
+                if (proxy.type === 'vmess') {
+                    // handle vmess aead
+                    if (isPresent(proxy, 'aead')) {
+                        if (proxy.aead) {
+                            proxy.alterId = 0;
+                        }
+                        delete proxy.aead;
+                    }
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                    // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/docs/config.yaml#L400
+                    // https://stash.wiki/proxy-protocols/proxy-types#vmess
+                    if (
+                        isPresent(proxy, 'cipher') &&
+                        ![
+                            'auto',
+                            'aes-128-gcm',
+                            'chacha20-poly1305',
+                            'none',
+                        ].includes(proxy.cipher)
+                    ) {
+                        proxy.cipher = 'auto';
+                    }
+                } else if (proxy.type === 'tuic') {
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    } else {
+                        proxy.alpn = ['h3'];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                    }
+                    // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/adapter/outbound/tuic.go#L197
+                    if (
+                        (!proxy.token || proxy.token.length === 0) &&
+                        !isPresent(proxy, 'version')
+                    ) {
+                        proxy.version = 5;
+                    }
+                } else if (proxy.type === 'hysteria') {
+                    // auth_str 将会在未来某个时候删除 但是有的机场不规范
+                    if (
+                        isPresent(proxy, 'auth_str') &&
+                        !isPresent(proxy, 'auth-str')
+                    ) {
+                        proxy['auth-str'] = proxy['auth_str'];
+                    }
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                    }
+                } else if (proxy.type === 'wireguard') {
+                    proxy.keepalive =
+                        proxy.keepalive ?? proxy['persistent-keepalive'];
+                    proxy['persistent-keepalive'] = proxy.keepalive;
+                    proxy['preshared-key'] =
+                        proxy['preshared-key'] ?? proxy['pre-shared-key'];
+                    proxy['pre-shared-key'] = proxy['preshared-key'];
+                } else if (proxy.type === 'vless') {
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                } else if (proxy.type === 'ss') {
+                    if (
+                        isPresent(proxy, 'shadow-tls-password') &&
+                        !isPresent(proxy, 'plugin')
+                    ) {
+                        proxy.plugin = 'shadow-tls';
+                        proxy['plugin-opts'] = {
+                            host: proxy['shadow-tls-sni'],
+                            password: proxy['shadow-tls-password'],
+                            version: proxy['shadow-tls-version'],
+                        };
+                    }
+                }
+
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'http'
+                ) {
+                    let httpPath = proxy['http-opts']?.path;
+                    if (
+                        isPresent(proxy, 'http-opts.path') &&
+                        !Array.isArray(httpPath)
+                    ) {
+                        proxy['http-opts'].path = [httpPath];
+                    }
+                    let httpHost = proxy['http-opts']?.headers?.Host;
+                    if (
+                        isPresent(proxy, 'http-opts.headers.Host') &&
+                        !Array.isArray(httpHost)
+                    ) {
+                        proxy['http-opts'].headers.Host = [httpHost];
+                    }
+                }
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'h2'
+                ) {
+                    let path = proxy['h2-opts']?.path;
+                    if (
+                        isPresent(proxy, 'h2-opts.path') &&
+                        Array.isArray(path)
+                    ) {
+                        proxy['h2-opts'].path = path[0];
+                    }
+                    let host = proxy['h2-opts']?.headers?.host;
+                    if (
+                        isPresent(proxy, 'h2-opts.headers.Host') &&
+                        !Array.isArray(host)
+                    ) {
+                        proxy['h2-opts'].headers.host = [host];
+                    }
+                }
+
+                if (proxy['plugin-opts']?.tls) {
+                    if (isPresent(proxy, 'skip-cert-verify')) {
+                        proxy['plugin-opts']['skip-cert-verify'] =
+                            proxy['skip-cert-verify'];
+                    }
+                }
+                if (
+                    ['trojan', 'tuic', 'hysteria', 'hysteria2'].includes(
+                        proxy.type,
+                    )
+                ) {
+                    delete proxy.tls;
+                }
+
+                if (proxy['tls-fingerprint']) {
+                    proxy.fingerprint = proxy['tls-fingerprint'];
+                }
+                delete proxy['tls-fingerprint'];
+
+                if (proxy['underlying-proxy']) {
+                    proxy['dialer-proxy'] = proxy['underlying-proxy'];
+                }
+                delete proxy['underlying-proxy'];
+
+                if (isPresent(proxy, 'tls') && typeof proxy.tls !== 'boolean') {
+                    delete proxy.tls;
+                }
+                delete proxy.subName;
+                delete proxy.collectionName;
+                delete proxy.id;
+                delete proxy.resolved;
+                for (const key in proxy) {
+                    if (proxy[key] == null || /^_/i.test(key)) {
+                        delete proxy[key];
+                    }
+                }
+                if (
+                    ['grpc'].includes(proxy.network) &&
+                    proxy[`${proxy.network}-opts`]
+                ) {
+                    delete proxy[`${proxy.network}-opts`]['_grpc-type'];
+                }
+                return proxy;
+            });
+
+        return type === 'internal'
+            ? list
+            : 'proxies:\n' +
+                  list
+                      .map((proxy) => '  - ' + JSON.stringify(proxy) + '\n')
+                      .join('');
+    };
+    return { type, produce };
+}

backend/src/core/proxy-utils/producers/index.js

@@ -0,0 +1,37 @@
+import Surge_Producer from './surge';
+import SurgeMac_Producer from './surgemac';
+import Clash_Producer from './clash';
+import ClashMeta_Producer from './clashmeta';
+import Stash_Producer from './stash';
+import Loon_Producer from './loon';
+import URI_Producer from './uri';
+import V2Ray_Producer from './v2ray';
+import QX_Producer from './qx';
+import Shadowrocket_Producer from './shadowrocket';
+import Surfboard_Producer from './surfboard';
+import singbox_Producer from './sing-box';
+
+function JSON_Producer() {
+    const type = 'ALL';
+    const produce = (proxies, type) =>
+        type === 'internal' ? proxies : JSON.stringify(proxies, null, 2);
+    return { type, produce };
+}
+
+export default {
+    QX: QX_Producer(),
+    QuantumultX: QX_Producer(),
+    Surge: Surge_Producer(),
+    SurgeMac: SurgeMac_Producer(),
+    Loon: Loon_Producer(),
+    Clash: Clash_Producer(),
+    ClashMeta: ClashMeta_Producer(),
+    URI: URI_Producer(),
+    V2Ray: V2Ray_Producer(),
+    JSON: JSON_Producer(),
+    Stash: Stash_Producer(),
+    Shadowrocket: Shadowrocket_Producer(),
+    ShadowRocket: Shadowrocket_Producer(),
+    Surfboard: Surfboard_Producer(),
+    'sing-box': singbox_Producer(),
+};

backend/src/core/proxy-utils/producers/loon.js

@@ -0,0 +1,443 @@
+/* eslint-disable no-case-declarations */
+const targetPlatform = 'Loon';
+import { isPresent, Result } from './utils';
+import { isIPv4, isIPv6 } from '@/utils';
+
+export default function Loon_Producer() {
+    const produce = (proxy) => {
+        switch (proxy.type) {
+            case 'ss':
+                return shadowsocks(proxy);
+            case 'ssr':
+                return shadowsocksr(proxy);
+            case 'trojan':
+                return trojan(proxy);
+            case 'vmess':
+                return vmess(proxy);
+            case 'vless':
+                return vless(proxy);
+            case 'http':
+                return http(proxy);
+            case 'socks5':
+                return socks5(proxy);
+            case 'wireguard':
+                return wireguard(proxy);
+            case 'hysteria2':
+                return hysteria2(proxy);
+        }
+        throw new Error(
+            `Platform ${targetPlatform} does not support proxy type: ${proxy.type}`,
+        );
+    };
+    return { produce };
+}
+
+function shadowsocks(proxy) {
+    const result = new Result(proxy);
+    if (
+        ![
+            'rc4',
+            'rc4-md5',
+            'aes-128-cfb',
+            'aes-192-cfb',
+            'aes-256-cfb',
+            'aes-128-ctr',
+            'aes-192-ctr',
+            'aes-256-ctr',
+            'bf-cfb',
+            'camellia-128-cfb',
+            'camellia-192-cfb',
+            'camellia-256-cfb',
+            'salsa20',
+            'chacha20',
+            'chacha20-ietf',
+            'aes-128-gcm',
+            'aes-192-gcm',
+            'aes-256-gcm',
+            'chacha20-ietf-poly1305',
+            'xchacha20-ietf-poly1305',
+        ].includes(proxy.cipher)
+    ) {
+        throw new Error(`cipher ${proxy.cipher} is not supported`);
+    }
+    result.append(
+        `${proxy.name}=shadowsocks,${proxy.server},${proxy.port},${proxy.cipher},"${proxy.password}"`,
+    );
+
+    // obfs
+    if (isPresent(proxy, 'plugin')) {
+        if (proxy.plugin === 'obfs') {
+            result.append(`,obfs-name=${proxy['plugin-opts'].mode}`);
+            result.appendIfPresent(
+                `,obfs-host=${proxy['plugin-opts'].host}`,
+                'plugin-opts.host',
+            );
+            result.appendIfPresent(
+                `,obfs-uri=${proxy['plugin-opts'].path}`,
+                'plugin-opts.path',
+            );
+        } else {
+            throw new Error(`plugin ${proxy.plugin} is not supported`);
+        }
+    }
+
+    // tfo
+    result.appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    if (proxy.udp) {
+        result.append(`,udp=true`);
+    }
+
+    return result.toString();
+}
+
+function shadowsocksr(proxy) {
+    const result = new Result(proxy);
+    result.append(
+        `${proxy.name}=shadowsocksr,${proxy.server},${proxy.port},${proxy.cipher},"${proxy.password}"`,
+    );
+
+    // ssr protocol
+    result.append(`,protocol=${proxy.protocol}`);
+    result.appendIfPresent(
+        `,protocol-param=${proxy['protocol-param']}`,
+        'protocol-param',
+    );
+
+    // obfs
+    result.appendIfPresent(`,obfs=${proxy.obfs}`, 'obfs');
+    result.appendIfPresent(`,obfs-param=${proxy['obfs-param']}`, 'obfs-param');
+
+    // tfo
+    result.appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    if (proxy.udp) {
+        result.append(`,udp=true`);
+    }
+
+    return result.toString();
+}
+
+function trojan(proxy) {
+    const result = new Result(proxy);
+    result.append(
+        `${proxy.name}=trojan,${proxy.server},${proxy.port},"${proxy.password}"`,
+    );
+    if (proxy.network === 'tcp') {
+        delete proxy.network;
+    }
+    // transport
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            result.append(`,transport=ws`);
+            result.appendIfPresent(
+                `,path=${proxy['ws-opts']?.path}`,
+                'ws-opts.path',
+            );
+            result.appendIfPresent(
+                `,host=${proxy['ws-opts']?.headers?.Host}`,
+                'ws-opts.headers.Host',
+            );
+        } else {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+    }
+
+    // tls verification
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // sni
+    result.appendIfPresent(`,tls-name=${proxy.sni}`, 'sni');
+
+    // tfo
+    result.appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    if (proxy.udp) {
+        result.append(`,udp=true`);
+    }
+
+    return result.toString();
+}
+
+function vmess(proxy) {
+    const result = new Result(proxy);
+    result.append(
+        `${proxy.name}=vmess,${proxy.server},${proxy.port},${proxy.cipher},"${proxy.uuid}"`,
+    );
+    if (proxy.network === 'tcp') {
+        delete proxy.network;
+    }
+    // transport
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            result.append(`,transport=ws`);
+            result.appendIfPresent(
+                `,path=${proxy['ws-opts']?.path}`,
+                'ws-opts.path',
+            );
+            result.appendIfPresent(
+                `,host=${proxy['ws-opts']?.headers?.Host}`,
+                'ws-opts.headers.Host',
+            );
+        } else if (proxy.network === 'http') {
+            result.append(`,transport=http`);
+            let httpPath = proxy['http-opts']?.path;
+            let httpHost = proxy['http-opts']?.headers?.Host;
+            result.appendIfPresent(
+                `,path=${Array.isArray(httpPath) ? httpPath[0] : httpPath}`,
+                'http-opts.path',
+            );
+            result.appendIfPresent(
+                `,host=${Array.isArray(httpHost) ? httpHost[0] : httpHost}`,
+                'http-opts.headers.Host',
+            );
+        } else {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+    } else {
+        result.append(`,transport=tcp`);
+    }
+
+    // tls
+    result.appendIfPresent(`,over-tls=${proxy.tls}`, 'tls');
+
+    // tls verification
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // sni
+    result.appendIfPresent(`,tls-name=${proxy.sni}`, 'sni');
+
+    // AEAD
+    if (isPresent(proxy, 'aead')) {
+        result.append(`,alterId=0`);
+    } else {
+        result.append(`,alterId=${proxy.alterId}`);
+    }
+
+    // tfo
+    result.appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    if (proxy.udp) {
+        result.append(`,udp=true`);
+    }
+    return result.toString();
+}
+
+function vless(proxy) {
+    if (proxy['reality-opts']) {
+        throw new Error(`VLESS REALITY is unsupported`);
+    }
+    const result = new Result(proxy);
+    result.append(
+        `${proxy.name}=vless,${proxy.server},${proxy.port},"${proxy.uuid}"`,
+    );
+    if (proxy.network === 'tcp') {
+        delete proxy.network;
+    }
+    // transport
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            result.append(`,transport=ws`);
+            result.appendIfPresent(
+                `,path=${proxy['ws-opts']?.path}`,
+                'ws-opts.path',
+            );
+            result.appendIfPresent(
+                `,host=${proxy['ws-opts']?.headers?.Host}`,
+                'ws-opts.headers.Host',
+            );
+        } else if (proxy.network === 'http') {
+            result.append(`,transport=http`);
+            let httpPath = proxy['http-opts']?.path;
+            let httpHost = proxy['http-opts']?.headers?.Host;
+            result.appendIfPresent(
+                `,path=${Array.isArray(httpPath) ? httpPath[0] : httpPath}`,
+                'http-opts.path',
+            );
+            result.appendIfPresent(
+                `,host=${Array.isArray(httpHost) ? httpHost[0] : httpHost}`,
+                'http-opts.headers.Host',
+            );
+        } else {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+    } else {
+        result.append(`,transport=tcp`);
+    }
+
+    // tls
+    result.appendIfPresent(`,over-tls=${proxy.tls}`, 'tls');
+
+    // tls verification
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // sni
+    result.appendIfPresent(`,tls-name=${proxy.sni}`, 'sni');
+
+    // tfo
+    result.appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    if (proxy.udp) {
+        result.append(`,udp=true`);
+    }
+    return result.toString();
+}
+
+function http(proxy) {
+    const result = new Result(proxy);
+    const type = proxy.tls ? 'https' : 'http';
+    result.append(`${proxy.name}=${type},${proxy.server},${proxy.port}`);
+    result.appendIfPresent(`,${proxy.username}`, 'username');
+    result.appendIfPresent(`,"${proxy.password}"`, 'password');
+
+    // sni
+    result.appendIfPresent(`,sni=${proxy.sni}`, 'sni');
+
+    // tls verification
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // tfo
+    result.appendIfPresent(`,tfo=${proxy.tfo}`, 'tfo');
+
+    return result.toString();
+}
+function socks5(proxy) {
+    const result = new Result(proxy);
+    result.append(`${proxy.name}=socks5,${proxy.server},${proxy.port}`);
+    result.appendIfPresent(`,${proxy.username}`, 'username');
+    result.appendIfPresent(`,"${proxy.password}"`, 'password');
+
+    // tls
+    result.appendIfPresent(`,over-tls=${proxy.tls}`, 'tls');
+
+    // sni
+    result.appendIfPresent(`,sni=${proxy.sni}`, 'sni');
+
+    // tls verification
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // tfo
+    result.appendIfPresent(`,tfo=${proxy.tfo}`, 'tfo');
+
+    return result.toString();
+}
+
+function wireguard(proxy) {
+    if (Array.isArray(proxy.peers) && proxy.peers.length > 0) {
+        proxy.server = proxy.peers[0].server;
+        proxy.port = proxy.peers[0].port;
+        proxy.ip = proxy.peers[0].ip;
+        proxy.ipv6 = proxy.peers[0].ipv6;
+        proxy['public-key'] = proxy.peers[0]['public-key'];
+        proxy['preshared-key'] = proxy.peers[0]['pre-shared-key'];
+        // https://github.com/MetaCubeX/mihomo/blob/0404e35be8736b695eae018a08debb175c1f96e6/docs/config.yaml#L717
+        proxy['allowed-ips'] = proxy.peers[0]['allowed-ips'];
+        proxy.reserved = proxy.peers[0].reserved;
+    }
+    const result = new Result(proxy);
+    result.append(`${proxy.name}=wireguard`);
+
+    result.appendIfPresent(`,interface-ip=${proxy.ip}`, 'ip');
+    result.appendIfPresent(`,interface-ipv6=${proxy.ipv6}`, 'ipv6');
+
+    result.appendIfPresent(
+        `,private-key="${proxy['private-key']}"`,
+        'private-key',
+    );
+    result.appendIfPresent(`,mtu=${proxy.mtu}`, 'mtu');
+
+    if (proxy.dns) {
+        if (Array.isArray(proxy.dns)) {
+            proxy.dnsv6 = proxy.dns.find((i) => isIPv6(i));
+            let dns = proxy.dns.find((i) => isIPv4(i));
+            if (!dns) {
+                dns = proxy.dns.find((i) => !isIPv4(i) && !isIPv6(i));
+            }
+            proxy.dns = dns;
+        }
+    }
+    result.appendIfPresent(`,dns=${proxy.dns}`, 'dns');
+    result.appendIfPresent(`,dnsv6=${proxy.dnsv6}`, 'dnsv6');
+    result.appendIfPresent(
+        `,keepalive=${proxy['persistent-keepalive']}`,
+        'persistent-keepalive',
+    );
+    result.appendIfPresent(`,keepalive=${proxy.keepalive}`, 'keepalive');
+    const allowedIps = Array.isArray(proxy['allowed-ips'])
+        ? proxy['allowed-ips'].join(',')
+        : proxy['allowed-ips'];
+    let reserved = Array.isArray(proxy.reserved)
+        ? proxy.reserved.join(',')
+        : proxy.reserved;
+    if (reserved) {
+        reserved = `,reserved=[${reserved}]`;
+    }
+    let presharedKey = proxy['preshared-key'] ?? proxy['pre-shared-key'];
+    if (presharedKey) {
+        presharedKey = `,preshared-key="${presharedKey}"`;
+    }
+    result.append(
+        `,peers=[{public-key="${proxy['public-key']}",allowed-ips="${
+            allowedIps ?? '0.0.0.0/0,::/0'
+        }",endpoint=${proxy.server}:${proxy.port}${reserved ?? ''}${
+            presharedKey ?? ''
+        }}]`,
+    );
+
+    return result.toString();
+}
+
+function hysteria2(proxy) {
+    if (proxy.obfs || proxy['obfs-password']) {
+        throw new Error(`obfs is unsupported`);
+    }
+    const result = new Result(proxy);
+    result.append(`${proxy.name}=Hysteria2,${proxy.server},${proxy.port}`);
+
+    result.appendIfPresent(`,"${proxy.password}"`, 'password');
+
+    // sni
+    result.appendIfPresent(`,tls-name=${proxy.sni}`, 'sni');
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // tfo
+    result.appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    if (proxy.udp) {
+        result.append(`,udp=true`);
+    }
+
+    // download-bandwidth
+    result.appendIfPresent(
+        `,download-bandwidth=${`${proxy['down']}`.match(/\d+/)?.[0] || 0}`,
+        'down',
+    );
+
+    result.appendIfPresent(`,ecn=${proxy.ecn}`, 'ecn');
+
+    return result.toString();
+}

backend/src/core/proxy-utils/producers/qx.js

@@ -0,0 +1,584 @@
+import { isPresent, Result } from './utils';
+
+const targetPlatform = 'QX';
+
+export default function QX_Producer() {
+    // eslint-disable-next-line no-unused-vars
+    const produce = (proxy, type, opts = {}) => {
+        switch (proxy.type) {
+            case 'ss':
+                return shadowsocks(proxy);
+            case 'ssr':
+                return shadowsocksr(proxy);
+            case 'trojan':
+                return trojan(proxy);
+            case 'vmess':
+                return vmess(proxy);
+            case 'http':
+                return http(proxy);
+            case 'socks5':
+                return socks5(proxy);
+            case 'vless':
+                return vless(proxy);
+        }
+        throw new Error(
+            `Platform ${targetPlatform} does not support proxy type: ${proxy.type}`,
+        );
+    };
+    return { produce };
+}
+
+function shadowsocks(proxy) {
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+    if (!proxy.cipher) {
+        proxy.cipher = 'none';
+    }
+    if (
+        ![
+            'none',
+            'rc4-md5',
+            'rc4-md5-6',
+            'aes-128-cfb',
+            'aes-192-cfb',
+            'aes-256-cfb',
+            'aes-128-ctr',
+            'aes-192-ctr',
+            'aes-256-ctr',
+            'bf-cfb',
+            'cast5-cfb',
+            'des-cfb',
+            'rc2-cfb',
+            'salsa20',
+            'chacha20',
+            'chacha20-ietf',
+            'aes-128-gcm',
+            'aes-192-gcm',
+            'aes-256-gcm',
+            'chacha20-ietf-poly1305',
+            'xchacha20-ietf-poly1305',
+        ].includes(proxy.cipher)
+    ) {
+        throw new Error(`cipher ${proxy.cipher} is not supported`);
+    }
+    append(`shadowsocks=${proxy.server}:${proxy.port}`);
+    append(`,method=${proxy.cipher}`);
+    append(`,password=${proxy.password}`);
+
+    // obfs
+    if (needTls(proxy)) {
+        proxy.tls = true;
+    }
+    if (isPresent(proxy, 'plugin')) {
+        if (proxy.plugin === 'obfs') {
+            const opts = proxy['plugin-opts'];
+            append(`,obfs=${opts.mode}`);
+        } else if (
+            proxy.plugin === 'v2ray-plugin' &&
+            proxy['plugin-opts'].mode === 'websocket'
+        ) {
+            const opts = proxy['plugin-opts'];
+            if (opts.tls) append(`,obfs=wss`);
+            else append(`,obfs=ws`);
+        } else {
+            throw new Error(`plugin is not supported`);
+        }
+        appendIfPresent(
+            `,obfs-host=${proxy['plugin-opts'].host}`,
+            'plugin-opts.host',
+        );
+        appendIfPresent(
+            `,obfs-uri=${proxy['plugin-opts'].path}`,
+            'plugin-opts.path',
+        );
+    }
+
+    if (needTls(proxy)) {
+        appendIfPresent(
+            `,tls-pubkey-sha256=${proxy['tls-pubkey-sha256']}`,
+            'tls-pubkey-sha256',
+        );
+        appendIfPresent(`,tls-alpn=${proxy['tls-alpn']}`, 'tls-alpn');
+        appendIfPresent(
+            `,tls-no-session-ticket=${proxy['tls-no-session-ticket']}`,
+            'tls-no-session-ticket',
+        );
+        appendIfPresent(
+            `,tls-no-session-reuse=${proxy['tls-no-session-reuse']}`,
+            'tls-no-session-reuse',
+        );
+        // tls fingerprint
+        appendIfPresent(
+            `,tls-cert-sha256=${proxy['tls-fingerprint']}`,
+            'tls-fingerprint',
+        );
+
+        // tls verification
+        appendIfPresent(
+            `,tls-verification=${!proxy['skip-cert-verify']}`,
+            'skip-cert-verify',
+        );
+        appendIfPresent(`,tls-host=${proxy.sni}`, 'sni');
+    }
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+
+function shadowsocksr(proxy) {
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+
+    append(`shadowsocks=${proxy.server}:${proxy.port}`);
+    append(`,method=${proxy.cipher}`);
+    append(`,password=${proxy.password}`);
+
+    // ssr protocol
+    append(`,ssr-protocol=${proxy.protocol}`);
+    appendIfPresent(
+        `,ssr-protocol-param=${proxy['protocol-param']}`,
+        'protocol-param',
+    );
+
+    // obfs
+    appendIfPresent(`,obfs=${proxy.obfs}`, 'obfs');
+    appendIfPresent(`,obfs-host=${proxy['obfs-param']}`, 'obfs-param');
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+
+function trojan(proxy) {
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+
+    append(`trojan=${proxy.server}:${proxy.port}`);
+    append(`,password=${proxy.password}`);
+
+    // obfs ws
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            if (needTls(proxy)) append(`,obfs=wss`);
+            else append(`,obfs=ws`);
+            appendIfPresent(
+                `,obfs-uri=${proxy['ws-opts']?.path}`,
+                'ws-opts.path',
+            );
+            appendIfPresent(
+                `,obfs-host=${proxy['ws-opts']?.headers?.Host}`,
+                'ws-opts.headers.Host',
+            );
+        } else {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+    }
+
+    // over tls
+    if (proxy.network !== 'ws' && needTls(proxy)) {
+        append(`,over-tls=true`);
+    }
+
+    if (needTls(proxy)) {
+        appendIfPresent(
+            `,tls-pubkey-sha256=${proxy['tls-pubkey-sha256']}`,
+            'tls-pubkey-sha256',
+        );
+        appendIfPresent(`,tls-alpn=${proxy['tls-alpn']}`, 'tls-alpn');
+        appendIfPresent(
+            `,tls-no-session-ticket=${proxy['tls-no-session-ticket']}`,
+            'tls-no-session-ticket',
+        );
+        appendIfPresent(
+            `,tls-no-session-reuse=${proxy['tls-no-session-reuse']}`,
+            'tls-no-session-reuse',
+        );
+        // tls fingerprint
+        appendIfPresent(
+            `,tls-cert-sha256=${proxy['tls-fingerprint']}`,
+            'tls-fingerprint',
+        );
+
+        // tls verification
+        appendIfPresent(
+            `,tls-verification=${!proxy['skip-cert-verify']}`,
+            'skip-cert-verify',
+        );
+        appendIfPresent(`,tls-host=${proxy.sni}`, 'sni');
+    }
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+
+function vmess(proxy) {
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+
+    append(`vmess=${proxy.server}:${proxy.port}`);
+
+    // cipher
+    let cipher;
+    if (proxy.cipher === 'auto') {
+        cipher = 'chacha20-ietf-poly1305';
+    } else {
+        cipher = proxy.cipher;
+    }
+    append(`,method=${cipher}`);
+
+    append(`,password=${proxy.uuid}`);
+
+    // obfs
+    if (needTls(proxy)) {
+        proxy.tls = true;
+    }
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            if (proxy.tls) append(`,obfs=wss`);
+            else append(`,obfs=ws`);
+        } else if (proxy.network === 'http') {
+            append(`,obfs=http`);
+        } else {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+        let transportPath = proxy[`${proxy.network}-opts`]?.path;
+        let transportHost = proxy[`${proxy.network}-opts`]?.headers?.Host;
+        appendIfPresent(
+            `,obfs-uri=${
+                Array.isArray(transportPath) ? transportPath[0] : transportPath
+            }`,
+            `${proxy.network}-opts.path`,
+        );
+        appendIfPresent(
+            `,obfs-host=${
+                Array.isArray(transportHost) ? transportHost[0] : transportHost
+            }`,
+            `${proxy.network}-opts.headers.Host`,
+        );
+    } else {
+        // over-tls
+        if (proxy.tls) append(`,obfs=over-tls`);
+    }
+
+    if (needTls(proxy)) {
+        appendIfPresent(
+            `,tls-pubkey-sha256=${proxy['tls-pubkey-sha256']}`,
+            'tls-pubkey-sha256',
+        );
+        appendIfPresent(`,tls-alpn=${proxy['tls-alpn']}`, 'tls-alpn');
+        appendIfPresent(
+            `,tls-no-session-ticket=${proxy['tls-no-session-ticket']}`,
+            'tls-no-session-ticket',
+        );
+        appendIfPresent(
+            `,tls-no-session-reuse=${proxy['tls-no-session-reuse']}`,
+            'tls-no-session-reuse',
+        );
+        // tls fingerprint
+        appendIfPresent(
+            `,tls-cert-sha256=${proxy['tls-fingerprint']}`,
+            'tls-fingerprint',
+        );
+
+        // tls verification
+        appendIfPresent(
+            `,tls-verification=${!proxy['skip-cert-verify']}`,
+            'skip-cert-verify',
+        );
+        appendIfPresent(`,tls-host=${proxy.sni}`, 'sni');
+    }
+
+    // AEAD
+    if (isPresent(proxy, 'aead')) {
+        append(`,aead=${proxy.aead}`);
+    } else {
+        append(`,aead=${proxy.alterId === 0}`);
+    }
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+function vless(proxy) {
+    if (typeof proxy.flow !== 'undefined' || proxy['reality-opts']) {
+        throw new Error(`VLESS XTLS/REALITY is not supported`);
+    }
+
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+
+    append(`vless=${proxy.server}:${proxy.port}`);
+
+    // The method field for vless should be none.
+    let cipher = 'none';
+    // if (proxy.cipher === 'auto') {
+    //     cipher = 'chacha20-ietf-poly1305';
+    // } else {
+    //     cipher = proxy.cipher;
+    // }
+    append(`,method=${cipher}`);
+
+    append(`,password=${proxy.uuid}`);
+
+    // obfs
+    if (needTls(proxy)) {
+        proxy.tls = true;
+    }
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            if (proxy.tls) append(`,obfs=wss`);
+            else append(`,obfs=ws`);
+        } else if (proxy.network === 'http') {
+            append(`,obfs=http`);
+        } else if (!['tcp'].includes(proxy.network)) {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+        let transportPath = proxy[`${proxy.network}-opts`]?.path;
+        let transportHost = proxy[`${proxy.network}-opts`]?.headers?.Host;
+        appendIfPresent(
+            `,obfs-uri=${
+                Array.isArray(transportPath) ? transportPath[0] : transportPath
+            }`,
+            `${proxy.network}-opts.path`,
+        );
+        appendIfPresent(
+            `,obfs-host=${
+                Array.isArray(transportHost) ? transportHost[0] : transportHost
+            }`,
+            `${proxy.network}-opts.headers.Host`,
+        );
+    } else {
+        // over-tls
+        if (proxy.tls) append(`,obfs=over-tls`);
+    }
+
+    if (needTls(proxy)) {
+        appendIfPresent(
+            `,tls-pubkey-sha256=${proxy['tls-pubkey-sha256']}`,
+            'tls-pubkey-sha256',
+        );
+        appendIfPresent(`,tls-alpn=${proxy['tls-alpn']}`, 'tls-alpn');
+        appendIfPresent(
+            `,tls-no-session-ticket=${proxy['tls-no-session-ticket']}`,
+            'tls-no-session-ticket',
+        );
+        appendIfPresent(
+            `,tls-no-session-reuse=${proxy['tls-no-session-reuse']}`,
+            'tls-no-session-reuse',
+        );
+        // tls fingerprint
+        appendIfPresent(
+            `,tls-cert-sha256=${proxy['tls-fingerprint']}`,
+            'tls-fingerprint',
+        );
+
+        // tls verification
+        appendIfPresent(
+            `,tls-verification=${!proxy['skip-cert-verify']}`,
+            'skip-cert-verify',
+        );
+        appendIfPresent(`,tls-host=${proxy.sni}`, 'sni');
+    }
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+
+function http(proxy) {
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+
+    append(`http=${proxy.server}:${proxy.port}`);
+    appendIfPresent(`,username=${proxy.username}`, 'username');
+    appendIfPresent(`,password=${proxy.password}`, 'password');
+
+    // tls
+    if (needTls(proxy)) {
+        proxy.tls = true;
+    }
+    appendIfPresent(`,over-tls=${proxy.tls}`, 'tls');
+
+    if (needTls(proxy)) {
+        appendIfPresent(
+            `,tls-pubkey-sha256=${proxy['tls-pubkey-sha256']}`,
+            'tls-pubkey-sha256',
+        );
+        appendIfPresent(`,tls-alpn=${proxy['tls-alpn']}`, 'tls-alpn');
+        appendIfPresent(
+            `,tls-no-session-ticket=${proxy['tls-no-session-ticket']}`,
+            'tls-no-session-ticket',
+        );
+        appendIfPresent(
+            `,tls-no-session-reuse=${proxy['tls-no-session-reuse']}`,
+            'tls-no-session-reuse',
+        );
+        // tls fingerprint
+        appendIfPresent(
+            `,tls-cert-sha256=${proxy['tls-fingerprint']}`,
+            'tls-fingerprint',
+        );
+
+        // tls verification
+        appendIfPresent(
+            `,tls-verification=${!proxy['skip-cert-verify']}`,
+            'skip-cert-verify',
+        );
+        appendIfPresent(`,tls-host=${proxy.sni}`, 'sni');
+    }
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+
+function socks5(proxy) {
+    const result = new Result(proxy);
+    const append = result.append.bind(result);
+    const appendIfPresent = result.appendIfPresent.bind(result);
+
+    append(`socks5=${proxy.server}:${proxy.port}`);
+    appendIfPresent(`,username=${proxy.username}`, 'username');
+    appendIfPresent(`,password=${proxy.password}`, 'password');
+
+    // tls
+    if (needTls(proxy)) {
+        proxy.tls = true;
+    }
+    appendIfPresent(`,over-tls=${proxy.tls}`, 'tls');
+
+    if (needTls(proxy)) {
+        appendIfPresent(
+            `,tls-pubkey-sha256=${proxy['tls-pubkey-sha256']}`,
+            'tls-pubkey-sha256',
+        );
+        appendIfPresent(`,tls-alpn=${proxy['tls-alpn']}`, 'tls-alpn');
+        appendIfPresent(
+            `,tls-no-session-ticket=${proxy['tls-no-session-ticket']}`,
+            'tls-no-session-ticket',
+        );
+        appendIfPresent(
+            `,tls-no-session-reuse=${proxy['tls-no-session-reuse']}`,
+            'tls-no-session-reuse',
+        );
+        // tls fingerprint
+        appendIfPresent(
+            `,tls-cert-sha256=${proxy['tls-fingerprint']}`,
+            'tls-fingerprint',
+        );
+
+        // tls verification
+        appendIfPresent(
+            `,tls-verification=${!proxy['skip-cert-verify']}`,
+            'skip-cert-verify',
+        );
+        appendIfPresent(`,tls-host=${proxy.sni}`, 'sni');
+    }
+
+    // tfo
+    appendIfPresent(`,fast-open=${proxy.tfo}`, 'tfo');
+
+    // udp
+    appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    // server_check_url
+    result.appendIfPresent(
+        `,server_check_url=${proxy['test-url']}`,
+        'test-url',
+    );
+
+    // tag
+    append(`,tag=${proxy.name}`);
+
+    return result.toString();
+}
+
+function needTls(proxy) {
+    return proxy.tls;
+}

backend/src/core/proxy-utils/producers/shadowrocket.js

@@ -0,0 +1,202 @@
+import { isPresent } from '@/core/proxy-utils/producers/utils';
+
+export default function ShadowRocket_Producer() {
+    const type = 'ALL';
+    const produce = (proxies, type, opts = {}) => {
+        const list = proxies
+            .filter((proxy) => {
+                if (opts['include-unsupported-proxy']) return true;
+                if (proxy.type === 'snell' && String(proxy.version) === '4') {
+                    return false;
+                }
+                return true;
+            })
+            .map((proxy) => {
+                if (proxy.type === 'vmess') {
+                    // handle vmess aead
+                    if (isPresent(proxy, 'aead')) {
+                        if (proxy.aead) {
+                            proxy.alterId = 0;
+                        }
+                        delete proxy.aead;
+                    }
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                    // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/docs/config.yaml#L400
+                    // https://stash.wiki/proxy-protocols/proxy-types#vmess
+                    if (
+                        isPresent(proxy, 'cipher') &&
+                        ![
+                            'auto',
+                            'aes-128-gcm',
+                            'chacha20-poly1305',
+                            'none',
+                        ].includes(proxy.cipher)
+                    ) {
+                        proxy.cipher = 'auto';
+                    }
+                } else if (proxy.type === 'tuic') {
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    } else {
+                        proxy.alpn = ['h3'];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                    }
+                    // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/adapter/outbound/tuic.go#L197
+                    if (
+                        (!proxy.token || proxy.token.length === 0) &&
+                        !isPresent(proxy, 'version')
+                    ) {
+                        proxy.version = 5;
+                    }
+                } else if (proxy.type === 'hysteria') {
+                    // auth_str 将会在未来某个时候删除 但是有的机场不规范
+                    if (
+                        isPresent(proxy, 'auth_str') &&
+                        !isPresent(proxy, 'auth-str')
+                    ) {
+                        proxy['auth-str'] = proxy['auth_str'];
+                    }
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                    }
+                } else if (proxy.type === 'hysteria2') {
+                    if (proxy['obfs-password'] && proxy.obfs == 'salamander') {
+                        proxy.obfs = proxy['obfs-password'];
+                        delete proxy['obfs-password'];
+                    }
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                    }
+                } else if (proxy.type === 'wireguard') {
+                    proxy.keepalive =
+                        proxy.keepalive ?? proxy['persistent-keepalive'];
+                    proxy['persistent-keepalive'] = proxy.keepalive;
+                    proxy['preshared-key'] =
+                        proxy['preshared-key'] ?? proxy['pre-shared-key'];
+                    proxy['pre-shared-key'] = proxy['preshared-key'];
+                } else if (proxy.type === 'vless') {
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                }
+
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'http'
+                ) {
+                    let httpPath = proxy['http-opts']?.path;
+                    if (
+                        isPresent(proxy, 'http-opts.path') &&
+                        !Array.isArray(httpPath)
+                    ) {
+                        proxy['http-opts'].path = [httpPath];
+                    }
+                    let httpHost = proxy['http-opts']?.headers?.Host;
+                    if (
+                        isPresent(proxy, 'http-opts.headers.Host') &&
+                        !Array.isArray(httpHost)
+                    ) {
+                        proxy['http-opts'].headers.Host = [httpHost];
+                    }
+                }
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'h2'
+                ) {
+                    let path = proxy['h2-opts']?.path;
+                    if (
+                        isPresent(proxy, 'h2-opts.path') &&
+                        Array.isArray(path)
+                    ) {
+                        proxy['h2-opts'].path = path[0];
+                    }
+                    let host = proxy['h2-opts']?.headers?.host;
+                    if (
+                        isPresent(proxy, 'h2-opts.headers.Host') &&
+                        !Array.isArray(host)
+                    ) {
+                        proxy['h2-opts'].headers.host = [host];
+                    }
+                }
+                if (proxy['plugin-opts']?.tls) {
+                    if (isPresent(proxy, 'skip-cert-verify')) {
+                        proxy['plugin-opts']['skip-cert-verify'] =
+                            proxy['skip-cert-verify'];
+                    }
+                }
+                if (
+                    ['trojan', 'tuic', 'hysteria', 'hysteria2'].includes(
+                        proxy.type,
+                    )
+                ) {
+                    delete proxy.tls;
+                }
+
+                if (proxy['tls-fingerprint']) {
+                    proxy.fingerprint = proxy['tls-fingerprint'];
+                }
+                delete proxy['tls-fingerprint'];
+
+                if (proxy['underlying-proxy']) {
+                    proxy['dialer-proxy'] = proxy['underlying-proxy'];
+                }
+                delete proxy['underlying-proxy'];
+
+                if (isPresent(proxy, 'tls') && typeof proxy.tls !== 'boolean') {
+                    delete proxy.tls;
+                }
+                delete proxy.subName;
+                delete proxy.collectionName;
+                delete proxy.id;
+                delete proxy.resolved;
+                for (const key in proxy) {
+                    if (proxy[key] == null || /^_/i.test(key)) {
+                        delete proxy[key];
+                    }
+                }
+                if (
+                    ['grpc'].includes(proxy.network) &&
+                    proxy[`${proxy.network}-opts`]
+                ) {
+                    delete proxy[`${proxy.network}-opts`]['_grpc-type'];
+                }
+                return proxy;
+            });
+        return type === 'internal'
+            ? list
+            : 'proxies:\n' +
+                  list
+                      .map((proxy) => {
+                          return '  - ' + JSON.stringify(proxy) + '\n';
+                      })
+                      .join('');
+    };
+    return { type, produce };
+}

backend/src/core/proxy-utils/producers/sing-box.js

@@ -0,0 +1,818 @@
+import ClashMeta_Producer from './clashmeta';
+import $ from '@/core/app';
+import { isIPv4, isIPv6 } from '@/utils';
+
+const detourParser = (proxy, parsedProxy) => {
+    if (proxy['dialer-proxy']) parsedProxy.detour = proxy['dialer-proxy'];
+};
+const tfoParser = (proxy, parsedProxy) => {
+    parsedProxy.tcp_fast_open = false;
+    if (proxy.tfo) parsedProxy.tcp_fast_open = true;
+    if (proxy.tcp_fast_open) parsedProxy.tcp_fast_open = true;
+    if (proxy['tcp-fast-open']) parsedProxy.tcp_fast_open = true;
+    if (!parsedProxy.tcp_fast_open) delete parsedProxy.tcp_fast_open;
+};
+
+const smuxParser = (smux, proxy) => {
+    if (!smux || !smux.enabled) return;
+    proxy.multiplex = { enabled: true };
+    proxy.multiplex.protocol = smux.protocol;
+    if (smux['max-connections'])
+        proxy.multiplex.max_connections = parseInt(
+            `${smux['max-connections']}`,
+            10,
+        );
+    if (smux['max-streams'])
+        proxy.multiplex.max_streams = parseInt(`${smux['max-streams']}`, 10);
+    if (smux['min-streams'])
+        proxy.multiplex.min_streams = parseInt(`${smux['min-streams']}`, 10);
+    if (smux.padding) proxy.multiplex.padding = true;
+};
+
+const wsParser = (proxy, parsedProxy) => {
+    const transport = { type: 'ws', headers: {} };
+    if (proxy['ws-opts']) {
+        const { path: wsPath = '', headers: wsHeaders = {} } = proxy['ws-opts'];
+        if (wsPath !== '') transport.path = `${wsPath}`;
+        if (Object.keys(wsHeaders).length > 0) {
+            const headers = {};
+            for (const key of Object.keys(wsHeaders)) {
+                let value = wsHeaders[key];
+                if (value === '') continue;
+                if (!Array.isArray(value)) value = [`${value}`];
+                if (value.length > 0) headers[key] = value;
+            }
+            const { Host: wsHost } = headers;
+            if (wsHost.length === 1)
+                for (const item of `Host:${wsHost[0]}`.split('\n')) {
+                    const [key, value] = item.split(':');
+                    if (value.trim() === '') continue;
+                    headers[key.trim()] = value.trim().split(',');
+                }
+            transport.headers = headers;
+        }
+    }
+    if (proxy['ws-headers']) {
+        const headers = {};
+        for (const key of Object.keys(proxy['ws-headers'])) {
+            let value = proxy['ws-headers'][key];
+            if (value === '') continue;
+            if (!Array.isArray(value)) value = [`${value}`];
+            if (value.length > 0) headers[key] = value;
+        }
+        const { Host: wsHost } = headers;
+        if (wsHost.length === 1)
+            for (const item of `Host:${wsHost[0]}`.split('\n')) {
+                const [key, value] = item.split(':');
+                if (value.trim() === '') continue;
+                headers[key.trim()] = value.trim().split(',');
+            }
+        for (const key of Object.keys(headers))
+            transport.headers[key] = headers[key];
+    }
+    if (proxy['ws-path'] && proxy['ws-path'] !== '')
+        transport.path = `${proxy['ws-path']}`;
+    if (transport.path) {
+        const reg = /^(.*?)(?:\?ed=(\d+))?$/;
+        // eslint-disable-next-line no-unused-vars
+        const [_, path = '', ed = ''] = reg.exec(transport.path);
+        transport.path = path;
+        if (ed !== '') {
+            transport.early_data_header_name = 'Sec-WebSocket-Protocol';
+            transport.max_early_data = parseInt(ed, 10);
+        }
+    }
+
+    if (parsedProxy.tls.insecure)
+        parsedProxy.tls.server_name = transport.headers.Host[0];
+    if (proxy['ws-opts'] && proxy['ws-opts']['v2ray-http-upgrade']) {
+        transport.type = 'httpupgrade';
+        if (transport.headers.Host) {
+            transport.host = transport.headers.Host[0];
+            delete transport.headers.Host;
+        }
+        if (transport.max_early_data) delete transport.max_early_data;
+        if (transport.early_data_header_name)
+            delete transport.early_data_header_name;
+    }
+    for (const key of Object.keys(transport.headers)) {
+        const value = transport.headers[key];
+        if (value.length === 1) transport.headers[key] = value[0];
+    }
+    parsedProxy.transport = transport;
+};
+
+const h1Parser = (proxy, parsedProxy) => {
+    const transport = { type: 'http', headers: {} };
+    if (proxy['http-opts']) {
+        const {
+            method = '',
+            path: h1Path = '',
+            headers: h1Headers = {},
+        } = proxy['http-opts'];
+        if (method !== '') transport.method = method;
+        if (Array.isArray(h1Path)) {
+            transport.path = `${h1Path[0]}`;
+        } else if (h1Path !== '') transport.path = `${h1Path}`;
+        for (const key of Object.keys(h1Headers)) {
+            let value = h1Headers[key];
+            if (value === '') continue;
+            if (key.toLowerCase() === 'host') {
+                let host = value;
+                if (!Array.isArray(host))
+                    host = `${host}`.split(',').map((i) => i.trim());
+                if (host.length > 0) transport.host = host;
+                continue;
+            }
+            if (!Array.isArray(value))
+                value = `${value}`.split(',').map((i) => i.trim());
+            if (value.length > 0) transport.headers[key] = value;
+        }
+    }
+    if (proxy['http-host'] && proxy['http-host'] !== '') {
+        let host = proxy['http-host'];
+        if (!Array.isArray(host))
+            host = `${host}`.split(',').map((i) => i.trim());
+        if (host.length > 0) transport.host = host;
+    }
+    if (!transport.host) return;
+    if (proxy['http-path'] && proxy['http-path'] !== '') {
+        const path = proxy['http-path'];
+        if (Array.isArray(path)) {
+            transport.path = `${path[0]}`;
+        } else if (path !== '') transport.path = `${path}`;
+    }
+    if (parsedProxy.tls.insecure)
+        parsedProxy.tls.server_name = transport.host[0];
+    if (transport.host.length === 1) transport.host = transport.host[0];
+    for (const key of Object.keys(transport.headers)) {
+        const value = transport.headers[key];
+        if (value.length === 1) transport.headers[key] = value[0];
+    }
+    parsedProxy.transport = transport;
+};
+
+const h2Parser = (proxy, parsedProxy) => {
+    const transport = { type: 'http' };
+    if (proxy['h2-opts']) {
+        let { host = '', path = '' } = proxy['h2-opts'];
+        if (path !== '') transport.path = `${path}`;
+        if (host !== '') {
+            if (!Array.isArray(host))
+                host = `${host}`.split(',').map((i) => i.trim());
+            if (host.length > 0) transport.host = host;
+        }
+    }
+    if (proxy['h2-host'] && proxy['h2-host'] !== '') {
+        let host = proxy['h2-host'];
+        if (!Array.isArray(host))
+            host = `${host}`.split(',').map((i) => i.trim());
+        if (host.length > 0) transport.host = host;
+    }
+    if (proxy['h2-path'] && proxy['h2-path'] !== '')
+        transport.path = `${proxy['h2-path']}`;
+    parsedProxy.tls.enabled = true;
+    if (parsedProxy.tls.insecure)
+        parsedProxy.tls.server_name = transport.host[0];
+    if (transport.host.length === 1) transport.host = transport.host[0];
+    parsedProxy.transport = transport;
+};
+
+const grpcParser = (proxy, parsedProxy) => {
+    const transport = { type: 'grpc' };
+    if (proxy['grpc-opts']) {
+        const serviceName = proxy['grpc-opts']['grpc-service-name'];
+        if (serviceName != null && serviceName !== '')
+            transport.service_name = `${serviceName}`;
+    }
+    parsedProxy.transport = transport;
+};
+
+const tlsParser = (proxy, parsedProxy) => {
+    if (proxy.tls) parsedProxy.tls.enabled = true;
+    if (proxy.servername && proxy.servername !== '')
+        parsedProxy.tls.server_name = proxy.servername;
+    if (proxy.peer && proxy.peer !== '')
+        parsedProxy.tls.server_name = proxy.peer;
+    if (proxy.sni && proxy.sni !== '') parsedProxy.tls.server_name = proxy.sni;
+    if (proxy['skip-cert-verify']) parsedProxy.tls.insecure = true;
+    if (proxy.insecure) parsedProxy.tls.insecure = true;
+    if (proxy['disable-sni']) parsedProxy.tls.disable_sni = true;
+    if (typeof proxy.alpn === 'string') {
+        parsedProxy.tls.alpn = [proxy.alpn];
+    } else if (Array.isArray(proxy.alpn)) parsedProxy.tls.alpn = proxy.alpn;
+    if (proxy.ca) parsedProxy.tls.certificate_path = `${proxy.ca}`;
+    if (proxy.ca_str) parsedProxy.tls.certificate = proxy.ca_sStr;
+    if (proxy['ca-str']) parsedProxy.tls.certificate = proxy['ca-str'];
+    if (proxy['client-fingerprint'] && proxy['client-fingerprint'] !== '')
+        parsedProxy.tls.utls = {
+            enabled: true,
+            fingerprint: proxy['client-fingerprint'],
+        };
+    if (proxy['reality-opts']) {
+        parsedProxy.tls.reality = { enabled: true };
+        if (proxy['reality-opts']['public-key'])
+            parsedProxy.tls.reality.public_key =
+                proxy['reality-opts']['public-key'];
+        if (proxy['reality-opts']['short-id'])
+            parsedProxy.tls.reality.short_id =
+                proxy['reality-opts']['short-id'];
+    }
+    if (!parsedProxy.tls.enabled) delete parsedProxy.tls;
+};
+
+const sshParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'ssh',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.username) parsedProxy.user = proxy.username;
+    if (proxy.password) parsedProxy.password = proxy.password;
+    // https://wiki.metacubex.one/config/proxies/ssh
+    // https://sing-box.sagernet.org/zh/configuration/outbound/ssh
+    if (proxy['privateKey']) parsedProxy.private_key_path = proxy['privateKey'];
+    if (proxy['private-key'])
+        parsedProxy.private_key_path = proxy['private-key'];
+    if (proxy['private-key-passphrase'])
+        parsedProxy.private_key_passphrase = proxy['private-key-passphrase'];
+    if (proxy['server-fingerprint']) {
+        parsedProxy.host_key = [proxy['server-fingerprint']];
+        // https://manual.nssurge.com/policy/ssh.html
+        // Surge only supports curve25519-sha256 as the kex algorithm and aes128-gcm as the encryption algorithm. It means that the SSH server must use OpenSSH v7.3 or above. (It should not be a problem since OpenSSH 7.3 was released on 2016-08-01.)
+        // TODO: ?
+        parsedProxy.host_key_algorithms = [
+            proxy['server-fingerprint'].split(' ')[0],
+        ];
+    }
+    if (proxy['host-key']) parsedProxy.host_key = proxy['host-key'];
+    if (proxy['host-key-algorithms'])
+        parsedProxy.host_key_algorithms = proxy['host-key-algorithms'];
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    return parsedProxy;
+};
+
+const httpParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'http',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        tls: { enabled: false, server_name: proxy.server, insecure: false },
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.username) parsedProxy.username = proxy.username;
+    if (proxy.password) parsedProxy.password = proxy.password;
+    if (proxy.headers) {
+        parsedProxy.headers = {};
+        for (const k of Object.keys(proxy.headers)) {
+            parsedProxy.headers[k] = `${proxy.headers[k]}`;
+        }
+        if (Object.keys(parsedProxy.headers).length === 0)
+            delete parsedProxy.headers;
+    }
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    tlsParser(proxy, parsedProxy);
+    return parsedProxy;
+};
+
+const socks5Parser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'socks',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        password: proxy.password,
+        version: '5',
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.username) parsedProxy.username = proxy.username;
+    if (proxy.password) parsedProxy.password = proxy.password;
+    if (proxy.uot) parsedProxy.udp_over_tcp = true;
+    if (proxy['udp-over-tcp']) parsedProxy.udp_over_tcp = true;
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    return parsedProxy;
+};
+
+const shadowTLSParser = (proxy = {}) => {
+    const ssPart = {
+        tag: proxy.name,
+        type: 'shadowsocks',
+        method: proxy.cipher,
+        password: proxy.password,
+        detour: `${proxy.name}_shadowtls`,
+    };
+    const stPart = {
+        tag: `${proxy.name}_shadowtls`,
+        type: 'shadowtls',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        version: proxy['plugin-opts'].version,
+        password: proxy['plugin-opts'].password,
+        tls: {
+            enabled: true,
+            server_name: proxy['plugin-opts'].host,
+            utls: {
+                enabled: true,
+                fingerprint: proxy['client-fingerprint'],
+            },
+        },
+    };
+    if (stPart.server_port < 0 || stPart.server_port > 65535)
+        throw '端口值非法';
+    if (proxy['fast-open'] === true) stPart.udp_fragment = true;
+    tfoParser(proxy, stPart);
+    detourParser(proxy, stPart);
+    smuxParser(proxy.smux, ssPart);
+    return { type: 'ss-with-st', ssPart, stPart };
+};
+const ssParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'shadowsocks',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        method: proxy.cipher,
+        password: proxy.password,
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.uot) parsedProxy.udp_over_tcp = true;
+    if (proxy['udp-over-tcp']) parsedProxy.udp_over_tcp = true;
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    if (proxy.plugin) {
+        const optArr = [];
+        if (proxy.plugin === 'obfs') {
+            parsedProxy.plugin = 'obfs-local';
+            parsedProxy.plugin_opts = '';
+            if (proxy['obfs-host'])
+                proxy['plugin-opts'].host = proxy['obfs-host'];
+            Object.keys(proxy['plugin-opts']).forEach((k) => {
+                switch (k) {
+                    case 'mode':
+                        optArr.push(`obfs=${proxy['plugin-opts'].mode}`);
+                        break;
+                    case 'host':
+                        optArr.push(`obfs-host=${proxy['plugin-opts'].host}`);
+                        break;
+                    default:
+                        optArr.push(`${k}=${proxy['plugin-opts'][k]}`);
+                        break;
+                }
+            });
+        }
+        if (proxy.plugin === 'v2ray-plugin') {
+            parsedProxy.plugin = 'v2ray-plugin';
+            if (proxy['ws-host']) proxy['plugin-opts'].host = proxy['ws-host'];
+            if (proxy['ws-path']) proxy['plugin-opts'].path = proxy['ws-path'];
+            Object.keys(proxy['plugin-opts']).forEach((k) => {
+                switch (k) {
+                    case 'tls':
+                        if (proxy['plugin-opts'].tls) optArr.push('tls');
+                        break;
+                    case 'host':
+                        optArr.push(`host=${proxy['plugin-opts'].host}`);
+                        break;
+                    case 'path':
+                        optArr.push(`path=${proxy['plugin-opts'].path}`);
+                        break;
+                    case 'headers':
+                        optArr.push(
+                            `headers=${JSON.stringify(
+                                proxy['plugin-opts'].headers,
+                            )}`,
+                        );
+                        break;
+                    case 'mux':
+                        if (proxy['plugin-opts'].mux)
+                            parsedProxy.multiplex = { enabled: true };
+                        break;
+                    default:
+                        optArr.push(`${k}=${proxy['plugin-opts'][k]}`);
+                }
+            });
+        }
+        parsedProxy.plugin_opts = optArr.join(';');
+    }
+
+    return parsedProxy;
+};
+// eslint-disable-next-line no-unused-vars
+const ssrParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'shadowsocksr',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        method: proxy.cipher,
+        password: proxy.password,
+        obfs: proxy.obfs,
+        protocol: proxy.protocol,
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy['obfs-param']) parsedProxy.obfs_param = proxy['obfs-param'];
+    if (proxy['protocol-param'] && proxy['protocol-param'] !== '')
+        parsedProxy.protocol_param = proxy['protocol-param'];
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+
+const vmessParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'vmess',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        uuid: proxy.uuid,
+        security: proxy.cipher,
+        alter_id: parseInt(`${proxy.alterId}`, 10),
+        tls: { enabled: false, server_name: proxy.server, insecure: false },
+    };
+    if (
+        [
+            'auto',
+            'none',
+            'zero',
+            'aes-128-gcm',
+            'chacha20-poly1305',
+            'aes-128-ctr',
+        ].indexOf(parsedProxy.security) === -1
+    )
+        parsedProxy.security = 'auto';
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.xudp) parsedProxy.packet_encoding = 'xudp';
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    if (proxy.network === 'ws') wsParser(proxy, parsedProxy);
+    if (proxy.network === 'h2') h2Parser(proxy, parsedProxy);
+    if (proxy.network === 'http') h1Parser(proxy, parsedProxy);
+    if (proxy.network === 'grpc') grpcParser(proxy, parsedProxy);
+
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    tlsParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+
+const vlessParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'vless',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        uuid: proxy.uuid,
+        tls: { enabled: false, server_name: proxy.server, insecure: false },
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    if (proxy.flow === 'xtls-rprx-vision') parsedProxy.flow = proxy.flow;
+    if (proxy.network === 'ws') wsParser(proxy, parsedProxy);
+    if (proxy.network === 'grpc') grpcParser(proxy, parsedProxy);
+
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    tlsParser(proxy, parsedProxy);
+    return parsedProxy;
+};
+const trojanParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'trojan',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        password: proxy.password,
+        tls: { enabled: true, server_name: proxy.server, insecure: false },
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    if (proxy.network === 'grpc') grpcParser(proxy, parsedProxy);
+    if (proxy.network === 'ws') wsParser(proxy, parsedProxy);
+
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    tlsParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+const hysteriaParser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'hysteria',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        disable_mtu_discovery: false,
+        tls: { enabled: true, server_name: proxy.server, insecure: false },
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.auth_str) parsedProxy.auth_str = `${proxy.auth_str}`;
+    if (proxy['auth-str']) parsedProxy.auth_str = `${proxy['auth-str']}`;
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    // eslint-disable-next-line no-control-regex
+    const reg = new RegExp('^[0-9]+[ \t]*[KMGT]*[Bb]ps$');
+    if (reg.test(`${proxy.up}`)) {
+        parsedProxy.up = `${proxy.up}`;
+    } else {
+        parsedProxy.up_mbps = parseInt(`${proxy.up}`, 10);
+    }
+    if (reg.test(`${proxy.down}`)) {
+        parsedProxy.down = `${proxy.down}`;
+    } else {
+        parsedProxy.down_mbps = parseInt(`${proxy.down}`, 10);
+    }
+    if (proxy.obfs) parsedProxy.obfs = proxy.obfs;
+    if (proxy.recv_window_conn)
+        parsedProxy.recv_window_conn = proxy.recv_window_conn;
+    if (proxy['recv-window-conn'])
+        parsedProxy.recv_window_conn = proxy['recv-window-conn'];
+    if (proxy.recv_window) parsedProxy.recv_window = proxy.recv_window;
+    if (proxy['recv-window']) parsedProxy.recv_window = proxy['recv-window'];
+    if (proxy.disable_mtu_discovery) {
+        if (typeof proxy.disable_mtu_discovery === 'boolean') {
+            parsedProxy.disable_mtu_discovery = proxy.disable_mtu_discovery;
+        } else {
+            if (proxy.disable_mtu_discovery === 1)
+                parsedProxy.disable_mtu_discovery = true;
+        }
+    }
+    tlsParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    tfoParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+const hysteria2Parser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'hysteria2',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        password: proxy.password,
+        obfs: {},
+        tls: { enabled: true, server_name: proxy.server, insecure: false },
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy.up) parsedProxy.up_mbps = parseInt(`${proxy.up}`, 10);
+    if (proxy.down) parsedProxy.down_mbps = parseInt(`${proxy.down}`, 10);
+    if (proxy.obfs === 'salamander') parsedProxy.obfs.type = 'salamander';
+    if (proxy['obfs-password'])
+        parsedProxy.obfs.password = proxy['obfs-password'];
+    if (!parsedProxy.obfs.type) delete parsedProxy.obfs;
+    tlsParser(proxy, parsedProxy);
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+const tuic5Parser = (proxy = {}) => {
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'tuic',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        uuid: proxy.uuid,
+        password: proxy.password,
+        tls: { enabled: true, server_name: proxy.server, insecure: false },
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    if (
+        proxy['congestion-controller'] &&
+        proxy['congestion-controller'] !== 'cubic'
+    )
+        parsedProxy.congestion_control = proxy['congestion-controller'];
+    if (proxy['udp-relay-mode'] && proxy['udp-relay-mode'] !== 'native')
+        parsedProxy.udp_relay_mode = proxy['udp-relay-mode'];
+    if (proxy['reduce-rtt']) parsedProxy.zero_rtt_handshake = true;
+    if (proxy['udp-over-stream']) parsedProxy.udp_over_stream = true;
+    if (proxy['heartbeat-interval'])
+        parsedProxy.heartbeat = `${proxy['heartbeat-interval']}ms`;
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    tlsParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+
+const wireguardParser = (proxy = {}) => {
+    const local_address = ['ip', 'ipv6']
+        .map((i) => proxy[i])
+        .map((i) => {
+            if (isIPv4(i)) return `${i}/32`;
+            if (isIPv6(i)) return `${i}/128`;
+        })
+        .filter((i) => i);
+    const parsedProxy = {
+        tag: proxy.name,
+        type: 'wireguard',
+        server: proxy.server,
+        server_port: parseInt(`${proxy.port}`, 10),
+        local_address,
+        private_key: proxy['private-key'],
+        peer_public_key: proxy['public-key'],
+        pre_shared_key: proxy['pre-shared-key'],
+        reserved: [],
+    };
+    if (parsedProxy.server_port < 0 || parsedProxy.server_port > 65535)
+        throw 'invalid port';
+    if (proxy['fast-open']) parsedProxy.udp_fragment = true;
+    if (typeof proxy.reserved === 'string') {
+        parsedProxy.reserved = proxy.reserved;
+    } else if (Array.isArray(proxy.reserved)) {
+        for (const r of proxy.reserved) parsedProxy.reserved.push(r);
+    } else {
+        delete parsedProxy.reserved;
+    }
+    if (proxy.peers && proxy.peers.length > 0) {
+        parsedProxy.peers = [];
+        for (const p of proxy.peers) {
+            const peer = {
+                server: p.server,
+                server_port: parseInt(`${p.port}`, 10),
+                public_key: p['public-key'],
+                allowed_ips: p['allowed-ips'] || p.allowed_ips,
+                reserved: [],
+            };
+            if (typeof p.reserved === 'string') {
+                peer.reserved.push(p.reserved);
+            } else if (Array.isArray(p.reserved)) {
+                for (const r of p.reserved) peer.reserved.push(r);
+            } else {
+                delete peer.reserved;
+            }
+            if (p['pre-shared-key']) peer.pre_shared_key = p['pre-shared-key'];
+            parsedProxy.peers.push(peer);
+        }
+    }
+    tfoParser(proxy, parsedProxy);
+    detourParser(proxy, parsedProxy);
+    smuxParser(proxy.smux, parsedProxy);
+    return parsedProxy;
+};
+
+export default function singbox_Producer() {
+    const type = 'ALL';
+    const produce = (proxies, type, opts = {}) => {
+        const list = [];
+        ClashMeta_Producer()
+            .produce(proxies, 'internal', { 'include-unsupported-proxy': true })
+            .map((proxy) => {
+                try {
+                    switch (proxy.type) {
+                        case 'ssh':
+                            list.push(sshParser(proxy));
+                            break;
+                        case 'http':
+                            list.push(httpParser(proxy));
+                            break;
+                        case 'socks5':
+                            if (proxy.tls) {
+                                throw new Error(
+                                    `Platform sing-box does not support proxy type: ${proxy.type} with tls`,
+                                );
+                            } else {
+                                list.push(socks5Parser(proxy));
+                            }
+                            break;
+                        case 'ss':
+                            // if (!proxy.cipher) {
+                            //     proxy.cipher = 'none';
+                            // }
+                            // if (
+                            //     ![
+                            //         '2022-blake3-aes-128-gcm',
+                            //         '2022-blake3-aes-256-gcm',
+                            //         '2022-blake3-chacha20-poly1305',
+                            //         'aes-128-cfb',
+                            //         'aes-128-ctr',
+                            //         'aes-128-gcm',
+                            //         'aes-192-cfb',
+                            //         'aes-192-ctr',
+                            //         'aes-192-gcm',
+                            //         'aes-256-cfb',
+                            //         'aes-256-ctr',
+                            //         'aes-256-gcm',
+                            //         'chacha20-ietf',
+                            //         'chacha20-ietf-poly1305',
+                            //         'none',
+                            //         'rc4-md5',
+                            //         'xchacha20',
+                            //         'xchacha20-ietf-poly1305',
+                            //     ].includes(proxy.cipher)
+                            // ) {
+                            //     throw new Error(
+                            //         `cipher ${proxy.cipher} is not supported`,
+                            //     );
+                            // }
+                            if (proxy.plugin === 'shadow-tls') {
+                                const { ssPart, stPart } =
+                                    shadowTLSParser(proxy);
+                                list.push(ssPart);
+                                list.push(stPart);
+                            } else {
+                                list.push(ssParser(proxy));
+                            }
+                            break;
+                        case 'ssr':
+                            if (opts['include-unsupported-proxy']) {
+                                list.push(ssrParser(proxy));
+                            } else {
+                                throw new Error(
+                                    `Platform sing-box does not support proxy type: ${proxy.type}`,
+                                );
+                            }
+                            break;
+                        case 'vmess':
+                            if (
+                                !proxy.network ||
+                                ['ws', 'grpc', 'h2', 'http'].includes(
+                                    proxy.network,
+                                )
+                            ) {
+                                list.push(vmessParser(proxy));
+                            } else {
+                                throw new Error(
+                                    `Platform sing-box does not support proxy type: ${proxy.type} with network ${proxy.network}`,
+                                );
+                            }
+                            break;
+                        case 'vless':
+                            if (
+                                !proxy.flow ||
+                                ['xtls-rprx-vision'].includes(proxy.flow)
+                            ) {
+                                list.push(vlessParser(proxy));
+                            } else {
+                                throw new Error(
+                                    `Platform sing-box does not support proxy type: ${proxy.type} with flow ${proxy.flow}`,
+                                );
+                            }
+                            break;
+                        case 'trojan':
+                            if (!proxy.flow) {
+                                list.push(trojanParser(proxy));
+                            } else {
+                                throw new Error(
+                                    `Platform sing-box does not support proxy type: ${proxy.type} with flow ${proxy.flow}`,
+                                );
+                            }
+                            break;
+                        case 'hysteria':
+                            list.push(hysteriaParser(proxy));
+                            break;
+                        case 'hysteria2':
+                            list.push(hysteria2Parser(proxy));
+                            break;
+                        case 'tuic':
+                            if (!proxy.token || proxy.token.length === 0) {
+                                list.push(tuic5Parser(proxy));
+                            } else {
+                                throw new Error(
+                                    `Platform sing-box does not support proxy type: TUIC v4`,
+                                );
+                            }
+                            break;
+                        case 'wireguard':
+                            list.push(wireguardParser(proxy));
+                            break;
+                        default:
+                            throw new Error(
+                                `Platform sing-box does not support proxy type: ${proxy.type}`,
+                            );
+                    }
+                } catch (e) {
+                    // console.log(e);
+                    $.error(e.message ?? e);
+                }
+            });
+
+        return type === 'internal'
+            ? list
+            : JSON.stringify({ outbounds: list }, null, 2);
+    };
+    return { type, produce };
+}

backend/src/core/proxy-utils/producers/stash.js

@@ -0,0 +1,289 @@
+import { isPresent } from '@/core/proxy-utils/producers/utils';
+
+export default function Stash_Producer() {
+    const type = 'ALL';
+    const produce = (proxies, type, opts = {}) => {
+        // https://stash.wiki/proxy-protocols/proxy-types#shadowsocks
+        const list = proxies
+            .filter((proxy) => {
+                if (opts['include-unsupported-proxy']) return true;
+                if (
+                    ![
+                        'ss',
+                        'ssr',
+                        'vmess',
+                        'socks5',
+                        'http',
+                        'snell',
+                        'trojan',
+                        'tuic',
+                        'vless',
+                        'wireguard',
+                        'hysteria',
+                        'hysteria2',
+                    ].includes(proxy.type) ||
+                    (proxy.type === 'ss' &&
+                        ![
+                            'aes-128-gcm',
+                            'aes-192-gcm',
+                            'aes-256-gcm',
+                            'aes-128-cfb',
+                            'aes-192-cfb',
+                            'aes-256-cfb',
+                            'aes-128-ctr',
+                            'aes-192-ctr',
+                            'aes-256-ctr',
+                            'rc4-md5',
+                            'chacha20-ietf',
+                            'xchacha20',
+                            'chacha20-ietf-poly1305',
+                            'xchacha20-ietf-poly1305',
+                        ].includes(proxy.cipher)) ||
+                    (proxy.type === 'snell' && String(proxy.version) === '4') ||
+                    (proxy.type === 'vless' && proxy['reality-opts'])
+                ) {
+                    return false;
+                }
+                return true;
+            })
+            .map((proxy) => {
+                if (proxy.type === 'vmess') {
+                    // handle vmess aead
+                    if (isPresent(proxy, 'aead')) {
+                        if (proxy.aead) {
+                            proxy.alterId = 0;
+                        }
+                        delete proxy.aead;
+                    }
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                    // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/docs/config.yaml#L400
+                    // https://stash.wiki/proxy-protocols/proxy-types#vmess
+                    if (
+                        isPresent(proxy, 'cipher') &&
+                        ![
+                            'auto',
+                            'aes-128-gcm',
+                            'chacha20-poly1305',
+                            'none',
+                        ].includes(proxy.cipher)
+                    ) {
+                        proxy.cipher = 'auto';
+                    }
+                } else if (proxy.type === 'tuic') {
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    } else {
+                        proxy.alpn = ['h3'];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                        delete proxy.tfo;
+                    }
+                    // https://github.com/MetaCubeX/Clash.Meta/blob/Alpha/adapter/outbound/tuic.go#L197
+                    if (
+                        (!proxy.token || proxy.token.length === 0) &&
+                        !isPresent(proxy, 'version')
+                    ) {
+                        proxy.version = 5;
+                    }
+                } else if (proxy.type === 'hysteria') {
+                    // auth_str 将会在未来某个时候删除 但是有的机场不规范
+                    if (
+                        isPresent(proxy, 'auth_str') &&
+                        !isPresent(proxy, 'auth-str')
+                    ) {
+                        proxy['auth-str'] = proxy['auth_str'];
+                    }
+                    if (isPresent(proxy, 'alpn')) {
+                        proxy.alpn = Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : [proxy.alpn];
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                        delete proxy.tfo;
+                    }
+                    if (
+                        isPresent(proxy, 'down') &&
+                        !isPresent(proxy, 'down-speed')
+                    ) {
+                        proxy['down-speed'] = proxy.down;
+                        delete proxy.down;
+                    }
+                    if (
+                        isPresent(proxy, 'up') &&
+                        !isPresent(proxy, 'up-speed')
+                    ) {
+                        proxy['up-speed'] = proxy.up;
+                        delete proxy.up;
+                    }
+                    if (isPresent(proxy, 'down-speed')) {
+                        proxy['down-speed'] =
+                            `${proxy['down-speed']}`.match(/\d+/)?.[0] || 0;
+                    }
+                    if (isPresent(proxy, 'up-speed')) {
+                        proxy['up-speed'] =
+                            `${proxy['up-speed']}`.match(/\d+/)?.[0] || 0;
+                    }
+                } else if (proxy.type === 'hysteria2') {
+                    if (
+                        isPresent(proxy, 'password') &&
+                        !isPresent(proxy, 'auth')
+                    ) {
+                        proxy.auth = proxy.password;
+                        delete proxy.password;
+                    }
+                    if (
+                        isPresent(proxy, 'tfo') &&
+                        !isPresent(proxy, 'fast-open')
+                    ) {
+                        proxy['fast-open'] = proxy.tfo;
+                        delete proxy.tfo;
+                    }
+                    if (
+                        isPresent(proxy, 'down') &&
+                        !isPresent(proxy, 'down-speed')
+                    ) {
+                        proxy['down-speed'] = proxy.down;
+                        delete proxy.down;
+                    }
+                    if (
+                        isPresent(proxy, 'up') &&
+                        !isPresent(proxy, 'up-speed')
+                    ) {
+                        proxy['up-speed'] = proxy.up;
+                        delete proxy.up;
+                    }
+                    if (isPresent(proxy, 'down-speed')) {
+                        proxy['down-speed'] =
+                            `${proxy['down-speed']}`.match(/\d+/)?.[0] || 0;
+                    }
+                    if (isPresent(proxy, 'up-speed')) {
+                        proxy['up-speed'] =
+                            `${proxy['up-speed']}`.match(/\d+/)?.[0] || 0;
+                    }
+                } else if (proxy.type === 'wireguard') {
+                    proxy.keepalive =
+                        proxy.keepalive ?? proxy['persistent-keepalive'];
+                    proxy['persistent-keepalive'] = proxy.keepalive;
+                    proxy['preshared-key'] =
+                        proxy['preshared-key'] ?? proxy['pre-shared-key'];
+                    proxy['pre-shared-key'] = proxy['preshared-key'];
+                } else if (proxy.type === 'vless') {
+                    if (isPresent(proxy, 'sni')) {
+                        proxy.servername = proxy.sni;
+                        delete proxy.sni;
+                    }
+                }
+
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'http'
+                ) {
+                    let httpPath = proxy['http-opts']?.path;
+                    if (
+                        isPresent(proxy, 'http-opts.path') &&
+                        !Array.isArray(httpPath)
+                    ) {
+                        proxy['http-opts'].path = [httpPath];
+                    }
+                    let httpHost = proxy['http-opts']?.headers?.Host;
+                    if (
+                        isPresent(proxy, 'http-opts.headers.Host') &&
+                        !Array.isArray(httpHost)
+                    ) {
+                        proxy['http-opts'].headers.Host = [httpHost];
+                    }
+                }
+                if (
+                    ['vmess', 'vless'].includes(proxy.type) &&
+                    proxy.network === 'h2'
+                ) {
+                    let path = proxy['h2-opts']?.path;
+                    if (
+                        isPresent(proxy, 'h2-opts.path') &&
+                        Array.isArray(path)
+                    ) {
+                        proxy['h2-opts'].path = path[0];
+                    }
+                    let host = proxy['h2-opts']?.headers?.host;
+                    if (
+                        isPresent(proxy, 'h2-opts.headers.Host') &&
+                        !Array.isArray(host)
+                    ) {
+                        proxy['h2-opts'].headers.host = [host];
+                    }
+                }
+                if (proxy['plugin-opts']?.tls) {
+                    if (isPresent(proxy, 'skip-cert-verify')) {
+                        proxy['plugin-opts']['skip-cert-verify'] =
+                            proxy['skip-cert-verify'];
+                    }
+                }
+                if (
+                    ['trojan', 'tuic', 'hysteria', 'hysteria2'].includes(
+                        proxy.type,
+                    )
+                ) {
+                    delete proxy.tls;
+                }
+                if (proxy['tls-fingerprint']) {
+                    proxy['server-cert-fingerprint'] = proxy['tls-fingerprint'];
+                }
+                delete proxy['tls-fingerprint'];
+
+                if (proxy['underlying-proxy']) {
+                    proxy['dialer-proxy'] = proxy['underlying-proxy'];
+                }
+                delete proxy['underlying-proxy'];
+
+                if (isPresent(proxy, 'tls') && typeof proxy.tls !== 'boolean') {
+                    delete proxy.tls;
+                }
+
+                if (proxy['test-url']) {
+                    proxy['benchmark-url'] = proxy['test-url'];
+                    delete proxy['test-url'];
+                }
+                if (proxy['test-timeout']) {
+                    proxy['benchmark-timeout'] = proxy['test-timeout'];
+                    delete proxy['test-timeout'];
+                }
+
+                delete proxy.subName;
+                delete proxy.collectionName;
+                delete proxy.id;
+                delete proxy.resolved;
+                for (const key in proxy) {
+                    if (proxy[key] == null || /^_/i.test(key)) {
+                        delete proxy[key];
+                    }
+                }
+                if (
+                    ['grpc'].includes(proxy.network) &&
+                    proxy[`${proxy.network}-opts`]
+                ) {
+                    delete proxy[`${proxy.network}-opts`]['_grpc-type'];
+                }
+                return proxy;
+            });
+        return type === 'internal'
+            ? list
+            : 'proxies:\n' +
+                  list
+                      .map((proxy) => '  - ' + JSON.stringify(proxy) + '\n')
+                      .join('');
+    };
+    return { type, produce };
+}

backend/src/core/proxy-utils/producers/surfboard.js

@@ -0,0 +1,226 @@
+import { Result, isPresent } from './utils';
+import { isNotBlank } from '@/utils';
+// import $ from '@/core/app';
+
+const targetPlatform = 'Surfboard';
+
+export default function Surfboard_Producer() {
+    const produce = (proxy) => {
+        proxy.name = proxy.name.replace(/=/g, '');
+        switch (proxy.type) {
+            case 'ss':
+                return shadowsocks(proxy);
+            case 'trojan':
+                return trojan(proxy);
+            case 'vmess':
+                return vmess(proxy);
+            case 'http':
+                return http(proxy);
+            case 'socks5':
+                return socks5(proxy);
+            case 'wireguard-surge':
+                return wireguard(proxy);
+        }
+        throw new Error(
+            `Platform ${targetPlatform} does not support proxy type: ${proxy.type}`,
+        );
+    };
+    return { produce };
+}
+
+function shadowsocks(proxy) {
+    const result = new Result(proxy);
+    result.append(`${proxy.name}=${proxy.type},${proxy.server},${proxy.port}`);
+    if (
+        ![
+            'aes-128-gcm',
+            'aes-192-gcm',
+            'aes-256-gcm',
+            'chacha20-ietf-poly1305',
+            'xchacha20-ietf-poly1305',
+            'rc4',
+            'rc4-md5',
+            'aes-128-cfb',
+            'aes-192-cfb',
+            'aes-256-cfb',
+            'aes-128-ctr',
+            'aes-192-ctr',
+            'aes-256-ctr',
+            'bf-cfb',
+            'camellia-128-cfb',
+            'camellia-192-cfb',
+            'camellia-256-cfb',
+            'salsa20',
+            'chacha20',
+            'chacha20-ietf',
+        ].includes(proxy.cipher)
+    ) {
+        throw new Error(`cipher ${proxy.cipher} is not supported`);
+    }
+    result.append(`,encrypt-method=${proxy.cipher}`);
+    result.appendIfPresent(`,password=${proxy.password}`, 'password');
+
+    // obfs
+    if (isPresent(proxy, 'plugin')) {
+        if (proxy.plugin === 'obfs') {
+            result.append(`,obfs=${proxy['plugin-opts'].mode}`);
+            result.appendIfPresent(
+                `,obfs-host=${proxy['plugin-opts'].host}`,
+                'plugin-opts.host',
+            );
+            result.appendIfPresent(
+                `,obfs-uri=${proxy['plugin-opts'].path}`,
+                'plugin-opts.path',
+            );
+        } else {
+            throw new Error(`plugin ${proxy.plugin} is not supported`);
+        }
+    }
+
+    // udp
+    result.appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    return result.toString();
+}
+
+function trojan(proxy) {
+    const result = new Result(proxy);
+    result.append(`${proxy.name}=${proxy.type},${proxy.server},${proxy.port}`);
+    result.appendIfPresent(`,password=${proxy.password}`, 'password');
+
+    // transport
+    handleTransport(result, proxy);
+
+    // tls
+    result.appendIfPresent(`,tls=${proxy.tls}`, 'tls');
+
+    // tls verification
+    result.appendIfPresent(`,sni=${proxy.sni}`, 'sni');
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // tfo
+    result.appendIfPresent(`,tfo=${proxy.tfo}`, 'tfo');
+
+    // udp
+    result.appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    return result.toString();
+}
+
+function vmess(proxy) {
+    const result = new Result(proxy);
+    result.append(`${proxy.name}=${proxy.type},${proxy.server},${proxy.port}`);
+    result.appendIfPresent(`,username=${proxy.uuid}`, 'uuid');
+
+    // transport
+    handleTransport(result, proxy);
+
+    // AEAD
+    if (isPresent(proxy, 'aead')) {
+        result.append(`,vmess-aead=${proxy.aead}`);
+    } else {
+        result.append(`,vmess-aead=${proxy.alterId === 0}`);
+    }
+
+    // tls
+    result.appendIfPresent(`,tls=${proxy.tls}`, 'tls');
+
+    // tls verification
+    result.appendIfPresent(`,sni=${proxy.sni}`, 'sni');
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // udp
+    result.appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    return result.toString();
+}
+
+function http(proxy) {
+    const result = new Result(proxy);
+    const type = proxy.tls ? 'https' : 'http';
+    result.append(`${proxy.name}=${type},${proxy.server},${proxy.port}`);
+    result.appendIfPresent(`,${proxy.username}`, 'username');
+    result.appendIfPresent(`,${proxy.password}`, 'password');
+
+    // tls verification
+    result.appendIfPresent(`,sni=${proxy.sni}`, 'sni');
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // udp
+    result.appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    return result.toString();
+}
+
+function socks5(proxy) {
+    const result = new Result(proxy);
+    const type = proxy.tls ? 'socks5-tls' : 'socks5';
+    result.append(`${proxy.name}=${type},${proxy.server},${proxy.port}`);
+    result.appendIfPresent(`,${proxy.username}`, 'username');
+    result.appendIfPresent(`,${proxy.password}`, 'password');
+
+    // tls verification
+    result.appendIfPresent(`,sni=${proxy.sni}`, 'sni');
+    result.appendIfPresent(
+        `,skip-cert-verify=${proxy['skip-cert-verify']}`,
+        'skip-cert-verify',
+    );
+
+    // udp
+    result.appendIfPresent(`,udp-relay=${proxy.udp}`, 'udp');
+
+    return result.toString();
+}
+
+function wireguard(proxy) {
+    const result = new Result(proxy);
+
+    result.append(`${proxy.name}=wireguard`);
+
+    result.appendIfPresent(
+        `,section-name=${proxy['section-name']}`,
+        'section-name',
+    );
+
+    return result.toString();
+}
+
+function handleTransport(result, proxy) {
+    if (isPresent(proxy, 'network')) {
+        if (proxy.network === 'ws') {
+            result.append(`,ws=true`);
+            if (isPresent(proxy, 'ws-opts')) {
+                result.appendIfPresent(
+                    `,ws-path=${proxy['ws-opts'].path}`,
+                    'ws-opts.path',
+                );
+                if (isPresent(proxy, 'ws-opts.headers')) {
+                    const headers = proxy['ws-opts'].headers;
+                    const value = Object.keys(headers)
+                        .map((k) => {
+                            let v = headers[k];
+                            if (['Host'].includes(k)) {
+                                v = `"${v}"`;
+                            }
+                            return `${k}:${v}`;
+                        })
+                        .join('|');
+                    if (isNotBlank(value)) {
+                        result.append(`,ws-headers=${value}`);
+                    }
+                }
+            }
+        } else {
+            throw new Error(`network ${proxy.network} is unsupported`);
+        }
+    }
+}

backend/src/core/proxy-utils/producers/surgemac.js

@@ -0,0 +1,104 @@
+import { Result } from './utils';
+import Surge_Producer from './surge';
+import { isIPv4, isIPv6, isPresent } from '@/utils';
+import $ from '@/core/app';
+
+const targetPlatform = 'SurgeMac';
+
+const surge_Producer = Surge_Producer();
+
+export default function SurgeMac_Producer() {
+    const produce = (proxy) => {
+        switch (proxy.type) {
+            case 'external':
+                return external(proxy);
+            case 'ssr':
+                return shadowsocksr(proxy);
+            default:
+                return surge_Producer.produce(proxy);
+        }
+    };
+    return { produce };
+}
+function external(proxy) {
+    const result = new Result(proxy);
+    if (!proxy.exec || !proxy['local-port']) {
+        throw new Error(`${proxy.type}: exec and local-port are required`);
+    }
+    result.append(
+        `${proxy.name}=external,exec="${proxy.exec}",local-port=${proxy['local-port']}`,
+    );
+
+    if (Array.isArray(proxy.args)) {
+        proxy.args.map((args) => {
+            result.append(`,args="${args}"`);
+        });
+    }
+    if (Array.isArray(proxy.addresses)) {
+        proxy.addresses.map((addresses) => {
+            result.append(`,addresses=${addresses}`);
+        });
+    }
+
+    result.appendIfPresent(
+        `,no-error-alert=${proxy['no-error-alert']}`,
+        'no-error-alert',
+    );
+
+    // tfo
+    if (isPresent(proxy, 'tfo')) {
+        result.append(`,tfo=${proxy['tfo']}`);
+    } else if (isPresent(proxy, 'fast-open')) {
+        result.append(`,tfo=${proxy['fast-open']}`);
+    }
+
+    // test-url
+    result.appendIfPresent(`,test-url=${proxy['test-url']}`, 'test-url');
+
+    // block-quic
+    result.appendIfPresent(`,block-quic=${proxy['block-quic']}`, 'block-quic');
+
+    return result.toString();
+}
+function shadowsocksr(proxy) {
+    const external_proxy = {
+        ...proxy,
+        type: 'external',
+        exec: proxy.exec || '/usr/local/bin/ssr-local',
+        'local-port': '__SubStoreLocalPort__',
+        args: [],
+        addresses: [],
+        'local-address':
+            proxy.local_address ?? proxy['local-address'] ?? '127.0.0.1',
+    };
+
+    // https://manual.nssurge.com/policy/external-proxy.html
+    if (isIP(proxy.server)) {
+        external_proxy.addresses.push(proxy.server);
+    } else {
+        $.log(
+            `Platform ${targetPlatform}, proxy type ${proxy.type}: addresses should be an IP address, but got ${proxy.server}`,
+        );
+    }
+
+    for (const [key, value] of Object.entries({
+        cipher: '-m',
+        obfs: '-o',
+        password: '-k',
+        port: '-p',
+        protocol: '-O',
+        'protocol-param': '-G',
+        server: '-s',
+        'local-port': '-l',
+        'local-address': '-b',
+    })) {
+        external_proxy.args.push(value);
+        external_proxy.args.push(external_proxy[key]);
+    }
+
+    return external(external_proxy);
+}
+
+function isIP(ip) {
+    return isIPv4(ip) || isIPv6(ip);
+}

backend/src/core/proxy-utils/producers/uri.js

@@ -0,0 +1,483 @@
+/* eslint-disable no-case-declarations */
+import { Base64 } from 'js-base64';
+import { isIPv6 } from '@/utils';
+
+export default function URI_Producer() {
+    const type = 'SINGLE';
+    const produce = (proxy) => {
+        let result = '';
+        delete proxy.subName;
+        delete proxy.collectionName;
+        delete proxy.id;
+        delete proxy.resolved;
+        for (const key in proxy) {
+            if (proxy[key] == null || /^_/i.test(key)) {
+                delete proxy[key];
+            }
+        }
+        if (['trojan', 'tuic', 'hysteria', 'hysteria2'].includes(proxy.type)) {
+            delete proxy.tls;
+        }
+        if (proxy.server && isIPv6(proxy.server)) {
+            proxy.server = `[${proxy.server}]`;
+        }
+        switch (proxy.type) {
+            case 'ss':
+                const userinfo = `${proxy.cipher}:${proxy.password}`;
+                result = `ss://${Base64.encode(userinfo)}@${proxy.server}:${
+                    proxy.port
+                }${proxy.plugin ? '/' : ''}`;
+                if (proxy.plugin) {
+                    result += '?plugin=';
+                    const opts = proxy['plugin-opts'];
+                    switch (proxy.plugin) {
+                        case 'obfs':
+                            result += encodeURIComponent(
+                                `simple-obfs;obfs=${opts.mode}${
+                                    opts.host ? ';obfs-host=' + opts.host : ''
+                                }`,
+                            );
+                            break;
+                        case 'v2ray-plugin':
+                            result += encodeURIComponent(
+                                `v2ray-plugin;obfs=${opts.mode}${
+                                    opts.host ? ';obfs-host' + opts.host : ''
+                                }${opts.tls ? ';tls' : ''}`,
+                            );
+                            break;
+                        default:
+                            throw new Error(
+                                `Unsupported plugin option: ${proxy.plugin}`,
+                            );
+                    }
+                }
+                if (proxy['udp-over-tcp']) {
+                    result = `${result}${proxy.plugin ? '&' : '?'}uot=1`;
+                }
+                if (proxy.tfo) {
+                    result = `${result}${
+                        proxy.plugin || proxy['udp-over-tcp'] ? '&' : '?'
+                    }tfo=1`;
+                }
+                result += `#${encodeURIComponent(proxy.name)}`;
+                break;
+            case 'ssr':
+                result = `${proxy.server}:${proxy.port}:${proxy.protocol}:${
+                    proxy.cipher
+                }:${proxy.obfs}:${Base64.encode(proxy.password)}/`;
+                result += `?remarks=${Base64.encode(proxy.name)}${
+                    proxy['obfs-param']
+                        ? '&obfsparam=' + Base64.encode(proxy['obfs-param'])
+                        : ''
+                }${
+                    proxy['protocol-param']
+                        ? '&protocolparam=' +
+                          Base64.encode(proxy['protocol-param'])
+                        : ''
+                }`;
+                result = 'ssr://' + Base64.encode(result);
+                break;
+            case 'vmess':
+                // V2RayN URI format
+                let type = '';
+                let net = proxy.network || 'tcp';
+                if (proxy.network === 'http') {
+                    net = 'tcp';
+                    type = 'http';
+                } else if (
+                    proxy.network === 'ws' &&
+                    proxy['ws-opts']?.['v2ray-http-upgrade']
+                ) {
+                    net = 'httpupgrade';
+                }
+                result = {
+                    v: '2',
+                    ps: proxy.name,
+                    add: proxy.server,
+                    port: proxy.port,
+                    id: proxy.uuid,
+                    type,
+                    aid: 0,
+                    net,
+                    tls: proxy.tls ? 'tls' : '',
+                };
+                if (proxy.tls && proxy.sni) {
+                    result.sni = proxy.sni;
+                }
+                // obfs
+                if (proxy.network) {
+                    let vmessTransportPath =
+                        proxy[`${proxy.network}-opts`]?.path;
+                    let vmessTransportHost =
+                        proxy[`${proxy.network}-opts`]?.headers?.Host;
+                    if (vmessTransportPath) {
+                        result.path = Array.isArray(vmessTransportPath)
+                            ? vmessTransportPath[0]
+                            : vmessTransportPath;
+                    }
+                    if (vmessTransportHost) {
+                        result.host = Array.isArray(vmessTransportHost)
+                            ? vmessTransportHost[0]
+                            : vmessTransportHost;
+                    }
+                    if (['grpc'].includes(proxy.network)) {
+                        result.path =
+                            proxy[`${proxy.network}-opts`]?.[
+                                'grpc-service-name'
+                            ];
+                        // https://github.com/XTLS/Xray-core/issues/91
+                        result.type =
+                            proxy[`${proxy.network}-opts`]?.['_grpc-type'] ||
+                            'gun';
+                    }
+                }
+                result = 'vmess://' + Base64.encode(JSON.stringify(result));
+                break;
+            case 'vless':
+                let security = 'none';
+                const isReality = proxy['reality-opts'];
+                let sid = '';
+                let pbk = '';
+                if (isReality) {
+                    security = 'reality';
+                    const publicKey = proxy['reality-opts']?.['public-key'];
+                    if (publicKey) {
+                        pbk = `&pbk=${encodeURIComponent(publicKey)}`;
+                    }
+                    const shortId = proxy['reality-opts']?.['short-id'];
+                    if (shortId) {
+                        sid = `&sid=${encodeURIComponent(shortId)}`;
+                    }
+                } else if (proxy.tls) {
+                    security = 'tls';
+                }
+                let alpn = '';
+                if (proxy.alpn) {
+                    alpn = `&alpn=${encodeURIComponent(
+                        Array.isArray(proxy.alpn)
+                            ? proxy.alpn
+                            : proxy.alpn.join(','),
+                    )}`;
+                }
+                let allowInsecure = '';
+                if (proxy['skip-cert-verify']) {
+                    allowInsecure = `&allowInsecure=1`;
+                }
+                let sni = '';
+                if (proxy.sni) {
+                    sni = `&sni=${encodeURIComponent(proxy.sni)}`;
+                }
+                let fp = '';
+                if (proxy['client-fingerprint']) {
+                    fp = `&fp=${encodeURIComponent(
+                        proxy['client-fingerprint'],
+                    )}`;
+                }
+                let flow = '';
+                if (proxy.flow) {
+                    flow = `&flow=${encodeURIComponent(proxy.flow)}`;
+                }
+                let vlessType = proxy.network;
+                if (
+                    proxy.network === 'ws' &&
+                    proxy['ws-opts']?.['v2ray-http-upgrade']
+                ) {
+                    vlessType = 'httpupgrade';
+                }
+
+                let vlessTransport = `&type=${encodeURIComponent(vlessType)}`;
+                if (['grpc'].includes(proxy.network)) {
+                    // https://github.com/XTLS/Xray-core/issues/91
+                    vlessTransport += `&mode=${encodeURIComponent(
+                        proxy[`${proxy.network}-opts`]?.['_grpc-type'] || 'gun',
+                    )}`;
+                }
+
+                let vlessTransportServiceName =
+                    proxy[`${proxy.network}-opts`]?.[
+                        `${proxy.network}-service-name`
+                    ];
+                let vlessTransportPath = proxy[`${proxy.network}-opts`]?.path;
+                let vlessTransportHost =
+                    proxy[`${proxy.network}-opts`]?.headers?.Host;
+                if (vlessTransportPath) {
+                    vlessTransport += `&path=${encodeURIComponent(
+                        Array.isArray(vlessTransportPath)
+                            ? vlessTransportPath[0]
+                            : vlessTransportPath,
+                    )}`;
+                }
+                if (vlessTransportHost) {
+                    vlessTransport += `&host=${encodeURIComponent(
+                        Array.isArray(vlessTransportHost)
+                            ? vlessTransportHost[0]
+                            : vlessTransportHost,
+                    )}`;
+                }
+                if (vlessTransportServiceName) {
+                    vlessTransport += `&serviceName=${encodeURIComponent(
+                        vlessTransportServiceName,
+                    )}`;
+                }
+
+                result = `vless://${proxy.uuid}@${proxy.server}:${
+                    proxy.port
+                }?security=${encodeURIComponent(
+                    security,
+                )}${vlessTransport}${alpn}${allowInsecure}${sni}${fp}${flow}${sid}${pbk}#${encodeURIComponent(
+                    proxy.name,
+                )}`;
+                break;
+            case 'trojan':
+                let trojanTransport = '';
+                if (proxy.network) {
+                    let trojanType = proxy.network;
+                    if (
+                        proxy.network === 'ws' &&
+                        proxy['ws-opts']?.['v2ray-http-upgrade']
+                    ) {
+                        trojanType = 'httpupgrade';
+                    }
+                    trojanTransport = `&type=${encodeURIComponent(trojanType)}`;
+                    if (['grpc'].includes(proxy.network)) {
+                        let trojanTransportServiceName =
+                            proxy[`${proxy.network}-opts`]?.[
+                                `${proxy.network}-service-name`
+                            ];
+                        if (trojanTransportServiceName) {
+                            trojanTransport += `&serviceName=${encodeURIComponent(
+                                trojanTransportServiceName,
+                            )}`;
+                        }
+                        trojanTransport += `&mode=${encodeURIComponent(
+                            proxy[`${proxy.network}-opts`]?.['_grpc-type'] ||
+                                'gun',
+                        )}`;
+                    }
+                    let trojanTransportPath =
+                        proxy[`${proxy.network}-opts`]?.path;
+                    let trojanTransportHost =
+                        proxy[`${proxy.network}-opts`]?.headers?.Host;
+                    if (trojanTransportPath) {
+                        trojanTransport += `&path=${encodeURIComponent(
+                            Array.isArray(trojanTransportPath)
+                                ? trojanTransportPath[0]
+                                : trojanTransportPath,
+                        )}`;
+                    }
+                    if (trojanTransportHost) {
+                        trojanTransport += `&host=${encodeURIComponent(
+                            Array.isArray(trojanTransportHost)
+                                ? trojanTransportHost[0]
+                                : trojanTransportHost,
+                        )}`;
+                    }
+                }
+                result = `trojan://${proxy.password}@${proxy.server}:${
+                    proxy.port
+                }?sni=${encodeURIComponent(proxy.sni || proxy.server)}${
+                    proxy['skip-cert-verify'] ? '&allowInsecure=1' : ''
+                }${trojanTransport}#${encodeURIComponent(proxy.name)}`;
+                break;
+            case 'hysteria2':
+                let hysteria2params = [];
+                if (proxy['skip-cert-verify']) {
+                    hysteria2params.push(`insecure=1`);
+                }
+                if (proxy.obfs) {
+                    hysteria2params.push(
+                        `obfs=${encodeURIComponent(proxy.obfs)}`,
+                    );
+                    if (proxy['obfs-password']) {
+                        hysteria2params.push(
+                            `obfs-password=${encodeURIComponent(
+                                proxy['obfs-password'],
+                            )}`,
+                        );
+                    }
+                }
+                if (proxy.sni) {
+                    hysteria2params.push(
+                        `sni=${encodeURIComponent(proxy.sni)}`,
+                    );
+                }
+                if (proxy.ports) {
+                    hysteria2params.push(`mport=${proxy.ports}`);
+                }
+                if (proxy['tls-fingerprint']) {
+                    hysteria2params.push(
+                        `pinSHA256=${encodeURIComponent(
+                            proxy['tls-fingerprint'],
+                        )}`,
+                    );
+                }
+                if (proxy.tfo) {
+                    hysteria2params.push(`fastopen=1`);
+                }
+                result = `hysteria2://${encodeURIComponent(proxy.password)}@${
+                    proxy.server
+                }:${proxy.port}?${hysteria2params.join(
+                    '&',
+                )}#${encodeURIComponent(proxy.name)}`;
+                break;
+            case 'hysteria':
+                let hysteriaParams = [];
+                Object.keys(proxy).forEach((key) => {
+                    if (!['name', 'type', 'server', 'port'].includes(key)) {
+                        const i = key.replace(/-/, '_');
+                        if (['alpn'].includes(key)) {
+                            if (proxy[key]) {
+                                hysteriaParams.push(
+                                    `${i}=${encodeURIComponent(
+                                        Array.isArray(proxy[key])
+                                            ? proxy[key][0]
+                                            : proxy[key],
+                                    )}`,
+                                );
+                            }
+                        } else if (['skip-cert-verify'].includes(key)) {
+                            if (proxy[key]) {
+                                hysteriaParams.push(`insecure=1`);
+                            }
+                        } else if (['tfo', 'fast-open'].includes(key)) {
+                            if (
+                                proxy[key] &&
+                                !hysteriaParams.includes('fastopen=1')
+                            ) {
+                                hysteriaParams.push(`fastopen=1`);
+                            }
+                        } else if (['ports'].includes(key)) {
+                            hysteriaParams.push(`mport=${proxy[key]}`);
+                        } else if (['auth-str'].includes(key)) {
+                            hysteriaParams.push(`auth=${proxy[key]}`);
+                        } else if (['up'].includes(key)) {
+                            hysteriaParams.push(`upmbps=${proxy[key]}`);
+                        } else if (['down'].includes(key)) {
+                            hysteriaParams.push(`downmbps=${proxy[key]}`);
+                        } else if (['_obfs'].includes(key)) {
+                            hysteriaParams.push(`obfs=${proxy[key]}`);
+                        } else if (['obfs'].includes(key)) {
+                            hysteriaParams.push(`obfsParam=${proxy[key]}`);
+                        } else if (['sni'].includes(key)) {
+                            hysteriaParams.push(`peer=${proxy[key]}`);
+                        } else if (proxy[key]) {
+                            hysteriaParams.push(
+                                `${i}=${encodeURIComponent(proxy[key])}`,
+                            );
+                        }
+                    }
+                });
+
+                result = `hysteria://${proxy.server}:${
+                    proxy.port
+                }?${hysteriaParams.join('&')}#${encodeURIComponent(
+                    proxy.name,
+                )}`;
+                break;
+
+            case 'tuic':
+                if (!proxy.token || proxy.token.length === 0) {
+                    let tuicParams = [];
+                    Object.keys(proxy).forEach((key) => {
+                        if (
+                            ![
+                                'name',
+                                'type',
+                                'uuid',
+                                'password',
+                                'server',
+                                'port',
+                            ].includes(key)
+                        ) {
+                            const i = key.replace(/-/, '_');
+                            if (['alpn'].includes(key)) {
+                                if (proxy[key]) {
+                                    tuicParams.push(
+                                        `${i}=${encodeURIComponent(
+                                            Array.isArray(proxy[key])
+                                                ? proxy[key][0]
+                                                : proxy[key],
+                                        )}`,
+                                    );
+                                }
+                            } else if (['skip-cert-verify'].includes(key)) {
+                                if (proxy[key]) {
+                                    tuicParams.push(`allow_insecure=1`);
+                                }
+                            } else if (['tfo', 'fast-open'].includes(key)) {
+                                if (
+                                    proxy[key] &&
+                                    !tuicParams.includes('fast_open=1')
+                                ) {
+                                    tuicParams.push(`fast_open=1`);
+                                }
+                            } else if (
+                                ['disable-sni', 'reduce-rtt'].includes(key) &&
+                                proxy[key]
+                            ) {
+                                tuicParams.push(`${i}=1`);
+                            } else if (proxy[key]) {
+                                tuicParams.push(
+                                    `${i}=${encodeURIComponent(proxy[key])}`,
+                                );
+                            }
+                        }
+                    });
+
+                    result = `tuic://${encodeURIComponent(
+                        proxy.uuid,
+                    )}:${encodeURIComponent(proxy.password)}@${proxy.server}:${
+                        proxy.port
+                    }?${tuicParams.join('&')}#${encodeURIComponent(
+                        proxy.name,
+                    )}`;
+                }
+                break;
+            case 'wireguard':
+                let wireguardParams = [];
+
+                Object.keys(proxy).forEach((key) => {
+                    if (
+                        ![
+                            'name',
+                            'type',
+                            'server',
+                            'port',
+                            'ip',
+                            'ipv6',
+                            'private-key',
+                        ].includes(key)
+                    ) {
+                        if (['public-key'].includes(key)) {
+                            wireguardParams.push(`publickey=${proxy[key]}`);
+                        } else if (['udp'].includes(key)) {
+                            if (proxy[key]) {
+                                wireguardParams.push(`${key}=1`);
+                            }
+                        } else if (proxy[key]) {
+                            wireguardParams.push(
+                                `${key}=${encodeURIComponent(proxy[key])}`,
+                            );
+                        }
+                    }
+                });
+                if (proxy.ip && proxy.ipv6) {
+                    wireguardParams.push(
+                        `address=${proxy.ip}/32,${proxy.ipv6}/128`,
+                    );
+                } else if (proxy.ip) {
+                    wireguardParams.push(`address=${proxy.ip}/32`);
+                } else if (proxy.ipv6) {
+                    wireguardParams.push(`address=${proxy.ipv6}/128`);
+                }
+                result = `wireguard://${encodeURIComponent(
+                    proxy['private-key'],
+                )}@${proxy.server}:${proxy.port}/?${wireguardParams.join(
+                    '&',
+                )}#${encodeURIComponent(proxy.name)}`;
+                break;
+        }
+        return result;
+    };
+    return { type, produce };
+}

backend/src/core/proxy-utils/producers/utils.js

@@ -0,0 +1,30 @@
+import _ from 'lodash';
+
+export class Result {
+    constructor(proxy) {
+        this.proxy = proxy;
+        this.output = [];
+    }
+
+    append(data) {
+        if (typeof data === 'undefined') {
+            throw new Error('required field is missing');
+        }
+        this.output.push(data);
+    }
+
+    appendIfPresent(data, attr) {
+        if (isPresent(this.proxy, attr)) {
+            this.append(data);
+        }
+    }
+
+    toString() {
+        return this.output.join('');
+    }
+}
+
+export function isPresent(obj, attr) {
+    const data = _.get(obj, attr);
+    return typeof data !== 'undefined' && data !== null;
+}

backend/src/core/proxy-utils/producers/v2ray.js

@@ -0,0 +1,12 @@
+/* eslint-disable no-case-declarations */
+import { Base64 } from 'js-base64';
+import URI_Producer from './uri';
+
+const URI = URI_Producer();
+
+export default function V2Ray_Producer() {
+    const type = 'ALL';
+    const produce = (proxies) =>
+        Base64.encode(proxies.map((proxy) => URI.produce(proxy)).join('\n'));
+    return { type, produce };
+}

backend/src/core/rule-utils/index.js

@@ -0,0 +1,69 @@
+import RULE_PREPROCESSORS from './preprocessors';
+import RULE_PRODUCERS from './producers';
+import RULE_PARSERS from './parsers';
+import $ from '@/core/app';
+
+export const RuleUtils = (function () {
+    function preprocess(raw) {
+        for (const processor of RULE_PREPROCESSORS) {
+            try {
+                if (processor.test(raw)) {
+                    $.info(`Pre-processor [${processor.name}] activated`);
+                    return processor.parse(raw);
+                }
+            } catch (e) {
+                $.error(`Parser [${processor.name}] failed\n Reason: ${e}`);
+            }
+        }
+        return raw;
+    }
+
+    function parse(raw) {
+        raw = preprocess(raw);
+        for (const parser of RULE_PARSERS) {
+            let matched;
+            try {
+                matched = parser.test(raw);
+            } catch (err) {
+                matched = false;
+            }
+            if (matched) {
+                $.info(`Rule parser [${parser.name}] is activated!`);
+                return parser.parse(raw);
+            }
+        }
+    }
+
+    function produce(rules, targetPlatform) {
+        const producer = RULE_PRODUCERS[targetPlatform];
+        if (!producer) {
+            throw new Error(
+                `Target platform: ${targetPlatform} is not supported!`,
+            );
+        }
+        if (
+            typeof producer.type === 'undefined' ||
+            producer.type === 'SINGLE'
+        ) {
+            return rules
+                .map((rule) => {
+                    try {
+                        return producer.func(rule);
+                    } catch (err) {
+                        console.log(
+                            `ERROR: cannot produce rule: ${JSON.stringify(
+                                rule,
+                            )}\nReason: ${err}`,
+                        );
+                        return '';
+                    }
+                })
+                .filter((line) => line.length > 0)
+                .join('\n');
+        } else if (producer.type === 'ALL') {
+            return producer.func(rules);
+        }
+    }
+
+    return { parse, produce };
+})();

backend/src/core/rule-utils/parsers.js

@@ -0,0 +1,59 @@
+const RULE_TYPES_MAPPING = [
+    [/^(DOMAIN|host|HOST)$/, 'DOMAIN'],
+    [/^(DOMAIN-KEYWORD|host-keyword|HOST-KEYWORD)$/, 'DOMAIN-KEYWORD'],
+    [/^(DOMAIN-SUFFIX|host-suffix|HOST-SUFFIX)$/, 'DOMAIN-SUFFIX'],
+    [/^USER-AGENT$/i, 'USER-AGENT'],
+    [/^PROCESS-NAME$/, 'PROCESS-NAME'],
+    [/^(DEST-PORT|DST-PORT)$/, 'DST-PORT'],
+    [/^SRC-IP(-CIDR)?$/, 'SRC-IP'],
+    [/^(IN|SRC)-PORT$/, 'IN-PORT'],
+    [/^PROTOCOL$/, 'PROTOCOL'],
+    [/^IP-CIDR$/i, 'IP-CIDR'],
+    [/^(IP-CIDR6|ip6-cidr|IP6-CIDR)$/, 'IP-CIDR6'],
+    [/^GEOIP$/i, 'GEOIP'],
+    [/^GEOSITE$/i, 'GEOSITE'],
+];
+
+function AllRuleParser() {
+    const name = 'Universal Rule Parser';
+    const test = () => true;
+    const parse = (raw) => {
+        const lines = raw.split('\n');
+        const result = [];
+        for (let line of lines) {
+            line = line.trim();
+            // skip empty line
+            if (line.length === 0) continue;
+            // skip comments
+            if (/\s*#/.test(line)) continue;
+            try {
+                const params = line.split(',').map((w) => w.trim());
+                let rawType = params[0];
+                let matched = false;
+                for (const item of RULE_TYPES_MAPPING) {
+                    const regex = item[0];
+                    if (regex.test(rawType)) {
+                        matched = true;
+                        const rule = {
+                            type: item[1],
+                            content: params[1],
+                        };
+                        if (
+                            ['IP-CIDR', 'IP-CIDR6', 'GEOIP'].includes(rule.type)
+                        ) {
+                            rule.options = params.slice(2);
+                        }
+                        result.push(rule);
+                    }
+                }
+                if (!matched) throw new Error('Invalid rule type: ' + rawType);
+            } catch (e) {
+                console.log(`Failed to parse line: ${line}\n Reason: ${e}`);
+            }
+        }
+        return result;
+    };
+    return { name, test, parse };
+}
+
+export default [AllRuleParser()];

backend/src/core/rule-utils/preprocessors.js

@@ -0,0 +1,18 @@
+function HTML() {
+    const name = 'HTML';
+    const test = (raw) => /^<!DOCTYPE html>/.test(raw);
+    // simply discard HTML
+    const parse = () => '';
+    return { name, test, parse };
+}
+
+function ClashProvider() {
+    const name = 'Clash Provider';
+    const test = (raw) => /^payload:/gm.exec(raw).index >= 0;
+    const parse = (raw) => {
+        return raw.replace('payload:', '').replace(/^\s*-\s*/gm, '');
+    };
+    return { name, test, parse };
+}
+
+export default [HTML(), ClashProvider()];

backend/src/core/rule-utils/producers.js

@@ -0,0 +1,101 @@
+import YAML from '@/utils/yaml';
+
+function QXFilter() {
+    const type = 'SINGLE';
+    const func = (rule) => {
+        // skip unsupported rules
+        const UNSUPPORTED = [
+            'URL-REGEX',
+            'DEST-PORT',
+            'SRC-IP',
+            'IN-PORT',
+            'PROTOCOL',
+            'GEOSITE',
+            'GEOIP',
+        ];
+        if (UNSUPPORTED.indexOf(rule.type) !== -1) return null;
+
+        const TRANSFORM = {
+            'DOMAIN-KEYWORD': 'HOST-KEYWORD',
+            'DOMAIN-SUFFIX': 'HOST-SUFFIX',
+            DOMAIN: 'HOST',
+            'IP-CIDR6': 'IP6-CIDR',
+        };
+
+        // QX does not support the no-resolve option
+        return `${TRANSFORM[rule.type] || rule.type},${rule.content},SUB-STORE`;
+    };
+    return { type, func };
+}
+
+function SurgeRuleSet() {
+    const type = 'SINGLE';
+    const func = (rule) => {
+        const UNSUPPORTED = ['GEOSITE', 'GEOIP'];
+        if (UNSUPPORTED.indexOf(rule.type) !== -1) return null;
+        let output = `${rule.type},${rule.content}`;
+        if (['IP-CIDR', 'IP-CIDR6'].includes(rule.type)) {
+            output +=
+                rule.options?.length > 0 ? `,${rule.options.join(',')}` : '';
+        }
+        return output;
+    };
+    return { type, func };
+}
+
+function LoonRules() {
+    const type = 'SINGLE';
+    const func = (rule) => {
+        // skip unsupported rules
+        const UNSUPPORTED = ['SRC-IP', 'GEOSITE', 'GEOIP'];
+        if (UNSUPPORTED.indexOf(rule.type) !== -1) return null;
+        if (['IP-CIDR', 'IP-CIDR6'].includes(rule.type) && rule.options) {
+            // Loon only supports the no-resolve option
+            rule.options = rule.options.filter((option) =>
+                ['no-resolve'].includes(option),
+            );
+        }
+        return SurgeRuleSet().func(rule);
+    };
+    return { type, func };
+}
+
+function ClashRuleProvider() {
+    const type = 'ALL';
+    const func = (rules) => {
+        const TRANSFORM = {
+            'DEST-PORT': 'DST-PORT',
+            'SRC-IP': 'SRC-IP-CIDR',
+            'IN-PORT': 'SRC-PORT',
+        };
+        const conf = {
+            payload: rules.map((rule) => {
+                let output = `${TRANSFORM[rule.type] || rule.type},${
+                    rule.content
+                }`;
+                if (['IP-CIDR', 'IP-CIDR6', 'GEOIP'].includes(rule.type)) {
+                    if (rule.options) {
+                        // Clash only supports the no-resolve option
+                        rule.options = rule.options.filter((option) =>
+                            ['no-resolve'].includes(option),
+                        );
+                    }
+                    output +=
+                        rule.options?.length > 0
+                            ? `,${rule.options.join(',')}`
+                            : '';
+                }
+                return output;
+            }),
+        };
+        return YAML.dump(conf);
+    };
+    return { type, func };
+}
+
+export default {
+    QX: QXFilter(),
+    Surge: SurgeRuleSet(),
+    Loon: LoonRules(),
+    Clash: ClashRuleProvider(),
+};

backend/src/main.js

@@ -0,0 +1,26 @@
+/**
+ *  ███████╗██╗   ██╗██████╗       ███████╗████████╗ ██████╗ ██████╗ ███████╗
+ *  ██╔════╝██║   ██║██╔══██╗      ██╔════╝╚══██╔══╝██╔═══██╗██╔══██╗██╔════╝
+ *  ███████╗██║   ██║██████╔╝█████╗███████╗   ██║   ██║   ██║██████╔╝█████╗
+ *  ╚════██║██║   ██║██╔══██╗╚════╝╚════██║   ██║   ██║   ██║██╔══██╗██╔══╝
+ *  ███████║╚██████╔╝██████╔╝      ███████║   ██║   ╚██████╔╝██║  ██║███████╗
+ *  ╚══════╝ ╚═════╝ ╚═════╝       ╚══════╝   ╚═╝    ╚═════╝ ╚═╝  ╚═╝╚══════╝
+ * Advanced Subscription Manager for QX, Loon, Surge and Clash.
+ * @author: Peng-YM
+ * @github: https://github.com/sub-store-org/Sub-Store
+ * @documentation: https://www.notion.so/Sub-Store-6259586994d34c11a4ced5c406264b46
+ */
+import { version } from '../package.json';
+console.log(
+    `
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+     Sub-Store -- v${version}
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+`,
+);
+
+import migrate from '@/utils/migration';
+import serve from '@/restful';
+
+migrate();
+serve();

backend/src/products/cron-sync-artifacts.js

@@ -0,0 +1,153 @@
+import { version } from '../../package.json';
+import {
+    SETTINGS_KEY,
+    ARTIFACTS_KEY,
+    SUBS_KEY,
+    COLLECTIONS_KEY,
+} from '@/constants';
+import $ from '@/core/app';
+import { produceArtifact } from '@/restful/sync';
+import { syncToGist } from '@/restful/artifacts';
+import { findByName } from '@/utils/database';
+
+!(async function () {
+    const settings = $.read(SETTINGS_KEY);
+    // if GitHub token is not configured
+    if (!settings.githubUser || !settings.gistToken) return;
+
+    const artifacts = $.read(ARTIFACTS_KEY);
+    if (!artifacts || artifacts.length === 0) return;
+
+    const shouldSync = artifacts.some((artifact) => artifact.sync);
+    if (shouldSync) await doSync();
+})().finally(() => $.done());
+
+async function doSync() {
+    console.log(
+        `
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+     Sub-Store Sync -- v${version}
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+`,
+    );
+
+    $.info('开始同步所有远程配置...');
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    const files = {};
+
+    try {
+        const invalid = [];
+        const allSubs = $.read(SUBS_KEY);
+        const allCols = $.read(COLLECTIONS_KEY);
+        const subNames = [];
+        allArtifacts.map((artifact) => {
+            if (artifact.sync && artifact.source) {
+                if (artifact.type === 'subscription') {
+                    const subName = artifact.source;
+                    const sub = findByName(allSubs, subName);
+                    if (sub && sub.url && !subNames.includes(subName)) {
+                        subNames.push(subName);
+                    }
+                } else if (artifact.type === 'collection') {
+                    const collection = findByName(allCols, artifact.source);
+                    if (collection && Array.isArray(collection.subscriptions)) {
+                        collection.subscriptions.map((subName) => {
+                            const sub = findByName(allSubs, subName);
+                            if (sub && sub.url && !subNames.includes(subName)) {
+                                subNames.push(subName);
+                            }
+                        });
+                    }
+                }
+            }
+        });
+
+        if (subNames.length > 0) {
+            await Promise.all(
+                subNames.map(async (subName) => {
+                    try {
+                        await produceArtifact({
+                            type: 'subscription',
+                            name: subName,
+                        });
+                    } catch (e) {
+                        // $.error(`${e.message ?? e}`);
+                    }
+                }),
+            );
+        }
+        await Promise.all(
+            allArtifacts.map(async (artifact) => {
+                try {
+                    if (artifact.sync && artifact.source) {
+                        $.info(`正在同步云配置：${artifact.name}...`);
+                        const output = await produceArtifact({
+                            type: artifact.type,
+                            name: artifact.source,
+                            platform: artifact.platform,
+                            produceOpts: {
+                                'include-unsupported-proxy':
+                                    artifact.includeUnsupportedProxy,
+                            },
+                        });
+
+                        // if (!output || output.length === 0)
+                        //     throw new Error('该配置的结果为空 不进行上传');
+
+                        files[encodeURIComponent(artifact.name)] = {
+                            content: output,
+                        };
+                    }
+                } catch (e) {
+                    $.error(
+                        `同步配置 ${artifact.name} 发生错误: ${e.message ?? e}`,
+                    );
+                    invalid.push(artifact.name);
+                }
+            }),
+        );
+
+        if (invalid.length > 0) {
+            throw new Error(
+                `同步配置 ${invalid.join(', ')} 发生错误 详情请查看日志`,
+            );
+        }
+
+        const resp = await syncToGist(files);
+        const body = JSON.parse(resp.body);
+
+        for (const artifact of allArtifacts) {
+            if (artifact.sync) {
+                artifact.updated = new Date().getTime();
+                // extract real url from gist
+                let files = body.files;
+                let isGitLab;
+                if (Array.isArray(files)) {
+                    isGitLab = true;
+                    files = Object.fromEntries(
+                        files.map((item) => [item.path, item]),
+                    );
+                }
+                const raw_url =
+                    files[encodeURIComponent(artifact.name)]?.raw_url;
+                const new_url = isGitLab
+                    ? raw_url
+                    : raw_url?.replace(/\/raw\/[^/]*\/(.*)/, '/raw/$1');
+                $.info(
+                    `上传配置完成\n文件列表: ${Object.keys(files).join(
+                        ', ',
+                    )}\n当前文件: ${encodeURIComponent(
+                        artifact.name,
+                    )}\n响应返回的原始链接: ${raw_url}\n处理完的新链接: ${new_url}`,
+                );
+                artifact.url = new_url;
+            }
+        }
+
+        $.write(allArtifacts, ARTIFACTS_KEY);
+        $.notify('🌍 Sub-Store', '全部订阅同步成功！');
+    } catch (e) {
+        $.notify('🌍 Sub-Store', '同步订阅失败', `原因：${e.message ?? e}`);
+        $.error(`无法同步订阅配置到 Gist，原因：${e}`);
+    }
+}

backend/src/products/resource-parser.loon.js

@@ -0,0 +1,80 @@
+/* eslint-disable no-undef */
+import { ProxyUtils } from '@/core/proxy-utils';
+import { RuleUtils } from '@/core/rule-utils';
+import { version } from '../../package.json';
+import download from '@/utils/download';
+
+let result = '';
+let resource = typeof $resource !== 'undefined' ? $resource : '';
+let resourceType = typeof $resourceType !== 'undefined' ? $resourceType : '';
+let resourceUrl = typeof $resourceUrl !== 'undefined' ? $resourceUrl : '';
+
+!(async () => {
+    console.log(
+        `
+    ┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+         Sub-Store -- v${version}
+    ┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+    `,
+    );
+
+    let arg;
+    if (typeof $argument != 'undefined') {
+        arg = Object.fromEntries(
+            $argument.split('&').map((item) => item.split('=')),
+        );
+    } else {
+        arg = {};
+    }
+
+    const RESOURCE_TYPE = {
+        PROXY: 1,
+        RULE: 2,
+    };
+
+    result = resource;
+
+    if (resourceType === RESOURCE_TYPE.PROXY) {
+        try {
+            let proxies = ProxyUtils.parse(resource);
+            result = ProxyUtils.produce(proxies, 'Loon');
+        } catch (e) {
+            console.log('解析器: 使用 resource 出现错误');
+            console.log(e.message ?? e);
+        }
+        if ((!result || /^\s*$/.test(result)) && resourceUrl) {
+            console.log(`解析器: 尝试从 ${resourceUrl} 获取订阅`);
+            try {
+                let raw = await download(resourceUrl, arg?.ua, arg?.timeout);
+                let proxies = ProxyUtils.parse(raw);
+                result = ProxyUtils.produce(proxies, 'Loon');
+            } catch (e) {
+                console.log(e.message ?? e);
+            }
+        }
+    } else if (resourceType === RESOURCE_TYPE.RULE) {
+        try {
+            const rules = RuleUtils.parse(resource);
+            result = RuleUtils.produce(rules, 'Loon');
+        } catch (e) {
+            console.log(e.message ?? e);
+        }
+        if ((!result || /^\s*$/.test(result)) && resourceUrl) {
+            console.log(`解析器: 尝试从 ${resourceUrl} 获取规则`);
+            try {
+                let raw = await download(resourceUrl, arg?.ua, arg?.timeout);
+                let rules = RuleUtils.parse(raw);
+                result = RuleUtils.produce(rules, 'Loon');
+            } catch (e) {
+                console.log(e.message ?? e);
+            }
+        }
+    }
+})()
+    .catch(async (e) => {
+        console.log('解析器: 出现错误');
+        console.log(e.message ?? e);
+    })
+    .finally(() => {
+        $done(result || '');
+    });

backend/src/products/sub-store-0.js

@@ -0,0 +1,43 @@
+/**
+ * 路由拆分 - 本文件只包含不涉及到解析器的 RESTFul API
+ */
+
+import { version } from '../../package.json';
+console.log(
+    `
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+     Sub-Store -- v${version}
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+`,
+);
+
+import migrate from '@/utils/migration';
+import express from '@/vendor/express';
+import $ from '@/core/app';
+import registerCollectionRoutes from '@/restful/collections';
+import registerSubscriptionRoutes from '@/restful/subscriptions';
+import registerArtifactRoutes from '@/restful/artifacts';
+import registerSettingRoutes from '@/restful/settings';
+import registerMiscRoutes from '@/restful/miscs';
+import registerSortRoutes from '@/restful/sort';
+import registerFileRoutes from '@/restful/file';
+import registerModuleRoutes from '@/restful/module';
+
+migrate();
+serve();
+
+function serve() {
+    const $app = express({ substore: $ });
+
+    // register routes
+    registerCollectionRoutes($app);
+    registerSubscriptionRoutes($app);
+    registerFileRoutes($app);
+    registerModuleRoutes($app);
+    registerArtifactRoutes($app);
+    registerSettingRoutes($app);
+    registerSortRoutes($app);
+    registerMiscRoutes($app);
+
+    $app.start();
+}

backend/src/products/sub-store-1.js

@@ -0,0 +1,39 @@
+/**
+ * 路由拆分 - 本文件仅包含使用到解析器的 RESTFul API
+ */
+
+import { version } from '../../package.json';
+import migrate from '@/utils/migration';
+import express from '@/vendor/express';
+import $ from '@/core/app';
+import registerDownloadRoutes from '@/restful/download';
+import registerPreviewRoutes from '@/restful/preview';
+import registerSyncRoutes from '@/restful/sync';
+import registerNodeInfoRoutes from '@/restful/node-info';
+
+console.log(
+    `
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+     Sub-Store -- v${version}
+┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅┅
+`,
+);
+
+migrate();
+serve();
+
+function serve() {
+    const $app = express({ substore: $ });
+
+    // register routes
+    registerDownloadRoutes($app);
+    registerPreviewRoutes($app);
+    registerSyncRoutes($app);
+    registerNodeInfoRoutes($app);
+
+    $app.options('/', (req, res) => {
+        res.status(200).end();
+    });
+
+    $app.start();
+}

backend/src/restful/artifacts.js

@@ -0,0 +1,277 @@
+import $ from '@/core/app';
+
+import {
+    ARTIFACT_REPOSITORY_KEY,
+    ARTIFACTS_KEY,
+    SETTINGS_KEY,
+} from '@/constants';
+import { deleteByName, findByName, updateByName } from '@/utils/database';
+import { failed, success } from '@/restful/response';
+import {
+    InternalServerError,
+    RequestInvalidError,
+    ResourceNotFoundError,
+} from '@/restful/errors';
+import Gist from '@/utils/gist';
+
+export default function register($app) {
+    // Initialization
+    if (!$.read(ARTIFACTS_KEY)) $.write({}, ARTIFACTS_KEY);
+
+    // RESTful APIs
+    $app.get('/api/artifacts/restore', restoreArtifacts);
+
+    $app.route('/api/artifacts')
+        .get(getAllArtifacts)
+        .post(createArtifact)
+        .put(replaceArtifact);
+
+    $app.route('/api/artifact/:name')
+        .get(getArtifact)
+        .patch(updateArtifact)
+        .delete(deleteArtifact);
+}
+
+async function restoreArtifacts(_, res) {
+    $.info('开始恢复远程配置...');
+    try {
+        const { gistToken, syncPlatform } = $.read(SETTINGS_KEY);
+        if (!gistToken) {
+            return Promise.reject('未设置 GitHub Token！');
+        }
+        const manager = new Gist({
+            token: gistToken,
+            key: ARTIFACT_REPOSITORY_KEY,
+            syncPlatform,
+        });
+
+        try {
+            const gist = await manager.locate();
+            if (!gist?.files) {
+                throw new Error(`找不到 Sub-Store Gist 文件列表`);
+            }
+            const allArtifacts = $.read(ARTIFACTS_KEY);
+            const failed = [];
+            Object.keys(gist.files).map((key) => {
+                const filename = gist.files[key]?.filename;
+                if (filename) {
+                    if (encodeURIComponent(filename) !== filename) {
+                        $.error(`文件名 ${filename} 未编码 不保存`);
+                        failed.push(filename);
+                    } else {
+                        const artifact = findByName(allArtifacts, filename);
+                        if (artifact) {
+                            updateByName(allArtifacts, filename, {
+                                ...artifact,
+                                url: gist.files[key]?.raw_url.replace(
+                                    /\/raw\/[^/]*\/(.*)/,
+                                    '/raw/$1',
+                                ),
+                            });
+                        } else {
+                            allArtifacts.push({
+                                name: `${filename}`,
+                                url: gist.files[key]?.raw_url.replace(
+                                    /\/raw\/[^/]*\/(.*)/,
+                                    '/raw/$1',
+                                ),
+                            });
+                        }
+                    }
+                }
+            });
+            $.write(allArtifacts, ARTIFACTS_KEY);
+        } catch (err) {
+            $.error(`查找 Sub-Store Gist 时发生错误: ${err.message ?? err}`);
+            throw err;
+        }
+        success(res);
+    } catch (e) {
+        $.error(`恢复远程配置失败，原因：${e.message ?? e}`);
+        failed(
+            res,
+            new InternalServerError(
+                `FAILED_TO_RESTORE_ARTIFACTS`,
+                `Failed to restore artifacts`,
+                `Reason: ${e.message ?? e}`,
+            ),
+        );
+    }
+}
+
+function getAllArtifacts(req, res) {
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    success(res, allArtifacts);
+}
+
+function replaceArtifact(req, res) {
+    const allArtifacts = req.body;
+    $.write(allArtifacts, ARTIFACTS_KEY);
+    success(res);
+}
+
+async function getArtifact(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    const artifact = findByName(allArtifacts, name);
+
+    if (artifact) {
+        success(res, artifact);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Artifact ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+function createArtifact(req, res) {
+    const artifact = req.body;
+    if (!validateArtifactName(artifact.name)) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'INVALID_ARTIFACT_NAME',
+                `Artifact name ${artifact.name} is invalid.`,
+            ),
+        );
+        return;
+    }
+
+    $.info(`正在创建远程配置：${artifact.name}`);
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    if (findByName(allArtifacts, artifact.name)) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'DUPLICATE_KEY',
+                `Artifact ${artifact.name} already exists.`,
+            ),
+        );
+    } else {
+        allArtifacts.push(artifact);
+        $.write(allArtifacts, ARTIFACTS_KEY);
+        success(res, artifact, 201);
+    }
+}
+
+function updateArtifact(req, res) {
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    let oldName = req.params.name;
+    oldName = decodeURIComponent(oldName);
+    const artifact = findByName(allArtifacts, oldName);
+    if (artifact) {
+        $.info(`正在更新远程配置：${artifact.name}`);
+        const newArtifact = {
+            ...artifact,
+            ...req.body,
+        };
+        if (!validateArtifactName(newArtifact.name)) {
+            failed(
+                res,
+                new RequestInvalidError(
+                    'INVALID_ARTIFACT_NAME',
+                    `Artifact name ${newArtifact.name} is invalid.`,
+                ),
+            );
+            return;
+        }
+        updateByName(allArtifacts, oldName, newArtifact);
+        $.write(allArtifacts, ARTIFACTS_KEY);
+        success(res, newArtifact);
+    } else {
+        failed(
+            res,
+            new RequestInvalidError(
+                'DUPLICATE_KEY',
+                `Artifact ${oldName} already exists.`,
+            ),
+        );
+    }
+}
+
+async function deleteArtifact(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    $.info(`正在删除远程配置：${name}`);
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    try {
+        const artifact = findByName(allArtifacts, name);
+        if (!artifact) throw new Error(`远程配置：${name}不存在！`);
+        if (artifact.updated) {
+            // delete gist
+            const files = {};
+            files[encodeURIComponent(artifact.name)] = {
+                content: '',
+            };
+            if (encodeURIComponent(artifact.name) !== artifact.name) {
+                files[artifact.name] = {
+                    content: '',
+                };
+            }
+
+            // 当别的Sub 删了同步订阅 或 gist里面删了 当前设备没有删除 时 无法删除的bug
+            try {
+                await syncToGist(files);
+            } catch (i) {
+                $.error(`Function syncToGist: ${name} : ${i}`);
+            }
+        }
+        // delete local cache
+        deleteByName(allArtifacts, name);
+        $.write(allArtifacts, ARTIFACTS_KEY);
+        success(res);
+    } catch (err) {
+        $.error(`无法删除远程配置：${name}，原因：${err}`);
+        failed(
+            res,
+            new InternalServerError(
+                `FAILED_TO_DELETE_ARTIFACT`,
+                `Failed to delete artifact ${name}`,
+                `Reason: ${err}`,
+            ),
+        );
+    }
+}
+
+function validateArtifactName(name) {
+    return /^[a-zA-Z0-9._-]*$/.test(name);
+}
+
+async function syncToGist(files) {
+    const { gistToken, syncPlatform } = $.read(SETTINGS_KEY);
+    if (!gistToken) {
+        return Promise.reject('未设置 GitHub Token！');
+    }
+    const manager = new Gist({
+        token: gistToken,
+        key: ARTIFACT_REPOSITORY_KEY,
+        syncPlatform,
+    });
+    const res = await manager.upload(files);
+    let body = {};
+    try {
+        body = JSON.parse(res.body);
+        // eslint-disable-next-line no-empty
+    } catch (e) {}
+
+    const url = body?.html_url ?? body?.web_url;
+    const settings = $.read(SETTINGS_KEY);
+    if (url) {
+        $.log(`同步 Gist 后, 找到 Sub-Store Gist: ${url}`);
+        settings.artifactStore = url;
+        settings.artifactStoreStatus = 'VALID';
+    } else {
+        $.error(`同步 Gist 后, 找不到 Sub-Store Gist`);
+        settings.artifactStoreStatus = 'NOT FOUND';
+    }
+    $.write(settings, SETTINGS_KEY);
+    return res;
+}
+
+export { syncToGist };

backend/src/restful/collections.js

@@ -0,0 +1,131 @@
+import { deleteByName, findByName, updateByName } from '@/utils/database';
+import { COLLECTIONS_KEY, ARTIFACTS_KEY } from '@/constants';
+import { failed, success } from '@/restful/response';
+import $ from '@/core/app';
+import { RequestInvalidError, ResourceNotFoundError } from '@/restful/errors';
+
+export default function register($app) {
+    if (!$.read(COLLECTIONS_KEY)) $.write({}, COLLECTIONS_KEY);
+
+    $app.route('/api/collection/:name')
+        .get(getCollection)
+        .patch(updateCollection)
+        .delete(deleteCollection);
+
+    $app.route('/api/collections')
+        .get(getAllCollections)
+        .post(createCollection)
+        .put(replaceCollection);
+}
+
+// collection API
+function createCollection(req, res) {
+    const collection = req.body;
+    $.info(`正在创建组合订阅：${collection.name}`);
+    if (/\//.test(collection.name)) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'INVALID_NAME',
+                `Collection ${collection.name} is invalid`,
+            ),
+        );
+        return;
+    }
+    const allCols = $.read(COLLECTIONS_KEY);
+    if (findByName(allCols, collection.name)) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'DUPLICATE_KEY',
+                `Collection ${collection.name} already exists.`,
+            ),
+        );
+        return;
+    }
+    allCols.push(collection);
+    $.write(allCols, COLLECTIONS_KEY);
+    success(res, collection, 201);
+}
+
+function getCollection(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    const allCols = $.read(COLLECTIONS_KEY);
+    const collection = findByName(allCols, name);
+    if (collection) {
+        success(res, collection);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                `SUBSCRIPTION_NOT_FOUND`,
+                `Collection ${name} does not exist`,
+                404,
+            ),
+        );
+    }
+}
+
+function updateCollection(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    let collection = req.body;
+    const allCols = $.read(COLLECTIONS_KEY);
+    const oldCol = findByName(allCols, name);
+    if (oldCol) {
+        const newCol = {
+            ...oldCol,
+            ...collection,
+        };
+        $.info(`正在更新组合订阅：${name}...`);
+
+        if (name !== newCol.name) {
+            // update all artifacts referring this collection
+            const allArtifacts = $.read(ARTIFACTS_KEY) || [];
+            for (const artifact of allArtifacts) {
+                if (
+                    artifact.type === 'collection' &&
+                    artifact.source === oldCol.name
+                ) {
+                    artifact.source = newCol.name;
+                }
+            }
+            $.write(allArtifacts, ARTIFACTS_KEY);
+        }
+
+        updateByName(allCols, name, newCol);
+        $.write(allCols, COLLECTIONS_KEY);
+        success(res, newCol);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Collection ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+function deleteCollection(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    $.info(`正在删除组合订阅：${name}`);
+    let allCols = $.read(COLLECTIONS_KEY);
+    deleteByName(allCols, name);
+    $.write(allCols, COLLECTIONS_KEY);
+    success(res);
+}
+
+function getAllCollections(req, res) {
+    const allCols = $.read(COLLECTIONS_KEY);
+    success(res, allCols);
+}
+
+function replaceCollection(req, res) {
+    const allCols = req.body;
+    $.write(allCols, COLLECTIONS_KEY);
+    success(res);
+}

backend/src/restful/download.js

@@ -0,0 +1,529 @@
+import { getPlatformFromHeaders } from '@/utils/user-agent';
+import { ProxyUtils } from '@/core/proxy-utils';
+import { COLLECTIONS_KEY, SUBS_KEY } from '@/constants';
+import { findByName } from '@/utils/database';
+import { getFlowHeaders } from '@/utils/flow';
+import $ from '@/core/app';
+import { failed } from '@/restful/response';
+import { InternalServerError, ResourceNotFoundError } from '@/restful/errors';
+import { produceArtifact } from '@/restful/sync';
+// eslint-disable-next-line no-unused-vars
+import { isIPv4, isIPv6 } from '@/utils';
+import { getISO } from '@/utils/geo';
+import env from '@/utils/env';
+
+export default function register($app) {
+    $app.get('/download/collection/:name', downloadCollection);
+    $app.get('/download/:name', downloadSubscription);
+    $app.get(
+        '/download/collection/:name/api/v1/server/details',
+        async (req, res) => {
+            req.query.platform = 'JSON';
+            req.query.produceType = 'internal';
+            req.query.resultFormat = 'nezha';
+            await downloadCollection(req, res);
+        },
+    );
+    $app.get('/download/:name/api/v1/server/details', async (req, res) => {
+        req.query.platform = 'JSON';
+        req.query.produceType = 'internal';
+        req.query.resultFormat = 'nezha';
+        await downloadSubscription(req, res);
+    });
+    $app.get(
+        '/download/collection/:name/api/v1/monitor/:nezhaIndex',
+        async (req, res) => {
+            req.query.platform = 'JSON';
+            req.query.produceType = 'internal';
+            req.query.resultFormat = 'nezha-monitor';
+            await downloadCollection(req, res);
+        },
+    );
+    $app.get('/download/:name/api/v1/monitor/:nezhaIndex', async (req, res) => {
+        req.query.platform = 'JSON';
+        req.query.produceType = 'internal';
+        req.query.resultFormat = 'nezha-monitor';
+        await downloadSubscription(req, res);
+    });
+}
+
+async function downloadSubscription(req, res) {
+    let { name, nezhaIndex } = req.params;
+    name = decodeURIComponent(name);
+    nezhaIndex = decodeURIComponent(nezhaIndex);
+
+    const platform =
+        req.query.target || getPlatformFromHeaders(req.headers) || 'JSON';
+
+    $.info(
+        `正在下载订阅：${name}\n请求 User-Agent: ${
+            req.headers['user-agent'] || req.headers['User-Agent']
+        }`,
+    );
+    let {
+        url,
+        ua,
+        content,
+        mergeSources,
+        ignoreFailedRemoteSub,
+        produceType,
+        includeUnsupportedProxy,
+        resultFormat,
+    } = req.query;
+    if (url) {
+        url = decodeURIComponent(url);
+        $.info(`指定远程订阅 URL: ${url}`);
+    }
+    if (ua) {
+        ua = decodeURIComponent(ua);
+        $.info(`指定远程订阅 User-Agent: ${ua}`);
+    }
+    if (content) {
+        content = decodeURIComponent(content);
+        $.info(`指定本地订阅: ${content}`);
+    }
+    if (mergeSources) {
+        mergeSources = decodeURIComponent(mergeSources);
+        $.info(`指定合并来源: ${mergeSources}`);
+    }
+    if (ignoreFailedRemoteSub != null && ignoreFailedRemoteSub !== '') {
+        ignoreFailedRemoteSub = decodeURIComponent(ignoreFailedRemoteSub);
+        $.info(`指定忽略失败的远程订阅: ${ignoreFailedRemoteSub}`);
+    }
+    if (produceType) {
+        produceType = decodeURIComponent(produceType);
+        $.info(`指定生产类型: ${produceType}`);
+    }
+    if (includeUnsupportedProxy) {
+        includeUnsupportedProxy = decodeURIComponent(includeUnsupportedProxy);
+        $.info(`包含不支持的节点: ${includeUnsupportedProxy}`);
+    }
+
+    const allSubs = $.read(SUBS_KEY);
+    const sub = findByName(allSubs, name);
+    if (sub) {
+        try {
+            let output = await produceArtifact({
+                type: 'subscription',
+                name,
+                platform,
+                url,
+                ua,
+                content,
+                mergeSources,
+                ignoreFailedRemoteSub,
+                produceType,
+                produceOpts: {
+                    'include-unsupported-proxy': includeUnsupportedProxy,
+                },
+            });
+
+            if (
+                sub.source !== 'local' ||
+                ['localFirst', 'remoteFirst'].includes(sub.mergeSources)
+            ) {
+                try {
+                    url = `${url || sub.url}`
+                        .split(/[\r\n]+/)
+                        .map((i) => i.trim())
+                        .filter((i) => i.length)?.[0];
+
+                    let $arguments = {};
+                    const rawArgs = url.split('#');
+                    url = url.split('#')[0];
+                    if (rawArgs.length > 1) {
+                        try {
+                            // 支持 `#${encodeURIComponent(JSON.stringify({arg1: "1"}))}`
+                            $arguments = JSON.parse(
+                                decodeURIComponent(rawArgs[1]),
+                            );
+                        } catch (e) {
+                            for (const pair of rawArgs[1].split('&')) {
+                                const key = pair.split('=')[0];
+                                const value = pair.split('=')[1];
+                                // 部分兼容之前的逻辑 const value = pair.split('=')[1] || true;
+                                $arguments[key] =
+                                    value == null || value === ''
+                                        ? true
+                                        : decodeURIComponent(value);
+                            }
+                        }
+                    }
+                    if (!$arguments.noFlow) {
+                        // forward flow headers
+                        const flowInfo = await getFlowHeaders(
+                            url,
+                            $arguments.flowUserAgent,
+                            undefined,
+                            sub.proxy,
+                        );
+                        if (flowInfo) {
+                            res.set('subscription-userinfo', flowInfo);
+                        }
+                    }
+                } catch (err) {
+                    $.error(
+                        `订阅 ${name} 获取流量信息时发生错误: ${JSON.stringify(
+                            err,
+                        )}`,
+                    );
+                }
+            }
+            if (sub.subUserinfo) {
+                res.set('subscription-userinfo', sub.subUserinfo);
+            }
+
+            if (platform === 'JSON') {
+                if (resultFormat === 'nezha') {
+                    output = nezhaTransform(output);
+                } else if (resultFormat === 'nezha-monitor') {
+                    nezhaIndex = /^\d+$/.test(nezhaIndex)
+                        ? parseInt(nezhaIndex, 10)
+                        : output.findIndex((i) => i.name === nezhaIndex);
+                    output = await nezhaMonitor(
+                        output[nezhaIndex],
+                        nezhaIndex,
+                        req.query,
+                    );
+                }
+                res.set('Content-Type', 'application/json;charset=utf-8').send(
+                    output,
+                );
+            } else {
+                res.send(output);
+            }
+        } catch (err) {
+            $.notify(
+                `🌍 Sub-Store 下载订阅失败`,
+                `❌ 无法下载订阅：${name}！`,
+                `🤔 原因：${err.message ?? err}`,
+            );
+            $.error(err.message ?? err);
+            failed(
+                res,
+                new InternalServerError(
+                    'INTERNAL_SERVER_ERROR',
+                    `Failed to download subscription: ${name}`,
+                    `Reason: ${err.message ?? err}`,
+                ),
+            );
+        }
+    } else {
+        $.notify(`🌍 Sub-Store 下载订阅失败`, `❌ 未找到订阅：${name}！`);
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Subscription ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+async function downloadCollection(req, res) {
+    let { name, nezhaIndex } = req.params;
+    name = decodeURIComponent(name);
+    nezhaIndex = decodeURIComponent(nezhaIndex);
+
+    const platform =
+        req.query.target || getPlatformFromHeaders(req.headers) || 'JSON';
+
+    const allCols = $.read(COLLECTIONS_KEY);
+    const collection = findByName(allCols, name);
+
+    $.info(
+        `正在下载组合订阅：${name}\n请求 User-Agent: ${
+            req.headers['user-agent'] || req.headers['User-Agent']
+        }`,
+    );
+
+    let {
+        ignoreFailedRemoteSub,
+        produceType,
+        includeUnsupportedProxy,
+        resultFormat,
+    } = req.query;
+
+    if (ignoreFailedRemoteSub != null && ignoreFailedRemoteSub !== '') {
+        ignoreFailedRemoteSub = decodeURIComponent(ignoreFailedRemoteSub);
+        $.info(`指定忽略失败的远程订阅: ${ignoreFailedRemoteSub}`);
+    }
+    if (produceType) {
+        produceType = decodeURIComponent(produceType);
+        $.info(`指定生产类型: ${produceType}`);
+    }
+
+    if (includeUnsupportedProxy) {
+        includeUnsupportedProxy = decodeURIComponent(includeUnsupportedProxy);
+        $.info(`包含不支持的节点: ${includeUnsupportedProxy}`);
+    }
+
+    if (collection) {
+        try {
+            let output = await produceArtifact({
+                type: 'collection',
+                name,
+                platform,
+                ignoreFailedRemoteSub,
+                produceType,
+                produceOpts: {
+                    'include-unsupported-proxy': includeUnsupportedProxy,
+                },
+            });
+
+            // forward flow header from the first subscription in this collection
+            const allSubs = $.read(SUBS_KEY);
+            const subnames = collection.subscriptions;
+            if (subnames.length > 0) {
+                const sub = findByName(allSubs, subnames[0]);
+                if (
+                    sub.source !== 'local' ||
+                    ['localFirst', 'remoteFirst'].includes(sub.mergeSources)
+                ) {
+                    try {
+                        let url = `${sub.url}`
+                            .split(/[\r\n]+/)
+                            .map((i) => i.trim())
+                            .filter((i) => i.length)?.[0];
+
+                        let $arguments = {};
+                        const rawArgs = url.split('#');
+                        url = url.split('#')[0];
+                        if (rawArgs.length > 1) {
+                            try {
+                                // 支持 `#${encodeURIComponent(JSON.stringify({arg1: "1"}))}`
+                                $arguments = JSON.parse(
+                                    decodeURIComponent(rawArgs[1]),
+                                );
+                            } catch (e) {
+                                for (const pair of rawArgs[1].split('&')) {
+                                    const key = pair.split('=')[0];
+                                    const value = pair.split('=')[1];
+                                    // 部分兼容之前的逻辑 const value = pair.split('=')[1] || true;
+                                    $arguments[key] =
+                                        value == null || value === ''
+                                            ? true
+                                            : decodeURIComponent(value);
+                                }
+                            }
+                        }
+                        if (!$arguments.noFlow) {
+                            const flowInfo = await getFlowHeaders(
+                                url,
+                                $arguments.flowUserAgent,
+                                undefined,
+                                sub.proxy,
+                            );
+                            if (flowInfo) {
+                                res.set('subscription-userinfo', flowInfo);
+                            }
+                        }
+                    } catch (err) {
+                        $.error(
+                            `组合订阅 ${name} 中的子订阅 ${
+                                sub.name
+                            } 获取流量信息时发生错误: ${err.message ?? err}`,
+                        );
+                    }
+                }
+                if (sub.subUserinfo) {
+                    res.set('subscription-userinfo', sub.subUserinfo);
+                }
+            }
+
+            if (platform === 'JSON') {
+                if (resultFormat === 'nezha') {
+                    output = nezhaTransform(output);
+                } else if (resultFormat === 'nezha-monitor') {
+                    nezhaIndex = /^\d+$/.test(nezhaIndex)
+                        ? parseInt(nezhaIndex, 10)
+                        : output.findIndex((i) => i.name === nezhaIndex);
+                    output = await nezhaMonitor(
+                        output[nezhaIndex],
+                        nezhaIndex,
+                        req.query,
+                    );
+                }
+                res.set('Content-Type', 'application/json;charset=utf-8').send(
+                    output,
+                );
+            } else {
+                res.send(output);
+            }
+        } catch (err) {
+            $.notify(
+                `🌍 Sub-Store 下载组合订阅失败`,
+                `❌ 下载组合订阅错误：${name}！`,
+                `🤔 原因：${err}`,
+            );
+            failed(
+                res,
+                new InternalServerError(
+                    'INTERNAL_SERVER_ERROR',
+                    `Failed to download collection: ${name}`,
+                    `Reason: ${err.message ?? err}`,
+                ),
+            );
+        }
+    } else {
+        $.notify(
+            `🌍 Sub-Store 下载组合订阅失败`,
+            `❌ 未找到组合订阅：${name}！`,
+        );
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Collection ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+async function nezhaMonitor(proxy, index, query) {
+    const result = {
+        code: 0,
+        message: 'success',
+        result: [],
+    };
+
+    try {
+        const { isLoon, isSurge } = $.env;
+        if (!isLoon && !isSurge)
+            throw new Error('仅支持 Loon 和 Surge(ability=http-client-policy)');
+        const node = ProxyUtils.produce([proxy], isLoon ? 'Loon' : 'Surge');
+        if (!node) throw new Error('当前客户端不兼容此节点');
+        const monitors = proxy._monitors || [
+            {
+                name: 'Cloudflare',
+                url: 'http://cp.cloudflare.com/generate_204',
+                method: 'HEAD',
+                number: 3,
+                timeout: 2000,
+            },
+            {
+                name: 'Google',
+                url: 'http://www.google.com/generate_204',
+                method: 'HEAD',
+                number: 3,
+                timeout: 2000,
+            },
+        ];
+        const number =
+            query.number || Math.max(...monitors.map((i) => i.number)) || 3;
+        for (const monitor of monitors) {
+            const interval = 10 * 60 * 1000;
+            const data = {
+                monitor_id: monitors.indexOf(monitor),
+                server_id: index,
+                monitor_name: monitor.name,
+                server_name: proxy.name,
+                created_at: [],
+                avg_delay: [],
+            };
+            for (let index = 0; index < number; index++) {
+                const startedAt = Date.now();
+                try {
+                    await $.http[(monitor.method || 'HEAD').toLowerCase()]({
+                        timeout: monitor.timeout || 2000,
+                        url: monitor.url,
+                        'policy-descriptor': node,
+                        node,
+                    });
+                    const latency = Date.now() - startedAt;
+                    $.info(`${monitor.name} latency: ${latency}`);
+                    data.avg_delay.push(latency);
+                } catch (e) {
+                    $.error(e);
+                    data.avg_delay.push(0);
+                }
+
+                data.created_at.push(
+                    Date.now() - interval * (monitor.number - index - 1),
+                );
+            }
+
+            result.result.push(data);
+        }
+    } catch (e) {
+        $.error(e);
+        result.result.push({
+            monitor_id: 0,
+            server_id: 0,
+            monitor_name: `❌ ${e.message ?? e}`,
+            server_name: proxy.name,
+            created_at: [Date.now()],
+            avg_delay: [0],
+        });
+    }
+
+    return JSON.stringify(result, null, 2);
+}
+function nezhaTransform(output) {
+    const result = {
+        code: 0,
+        message: 'success',
+        result: [],
+    };
+    output.map((proxy, index) => {
+        // 如果节点上有数据 就取节点上的数据
+        let CountryCode = proxy._geo?.countryCode || proxy._geo?.country;
+        // 简单判断下
+        if (!/^[a-z]{2}$/i.test(CountryCode)) {
+            CountryCode = getISO(proxy.name);
+        }
+        // 简单判断下
+        if (/^[a-z]{2}$/i.test(CountryCode)) {
+            // 如果节点上有数据 就取节点上的数据
+            let now = Math.round(new Date().getTime() / 1000);
+            let time = proxy._unavailable ? 0 : now;
+
+            const uptime = parseInt(proxy._uptime || 0, 10);
+
+            result.result.push({
+                id: index,
+                name: proxy.name,
+                tag: `${proxy._tag ?? ''}`,
+                last_active: time,
+                // 暂时不用处理 现在 VPings App 端的接口支持域名查询
+                // 其他场景使用 自己在 Sub-Store 加一步域名解析
+                valid_ip: proxy._IP || proxy.server,
+                ipv4: proxy._IPv4 || proxy.server,
+                ipv6: proxy._IPv6 || (isIPv6(proxy.server) ? proxy.server : ''),
+                host: {
+                    Platform: 'Sub-Store',
+                    PlatformVersion: env.version,
+                    CPU: [],
+                    MemTotal: 1024,
+                    DiskTotal: 1024,
+                    SwapTotal: 1024,
+                    Arch: '',
+                    Virtualization: '',
+                    BootTime: now - uptime,
+                    CountryCode, // 目前需要
+                    Version: '0.0.1',
+                },
+                status: {
+                    CPU: 0,
+                    MemUsed: 0,
+                    SwapUsed: 0,
+                    DiskUsed: 0,
+                    NetInTransfer: 0,
+                    NetOutTransfer: 0,
+                    NetInSpeed: 0,
+                    NetOutSpeed: 0,
+                    Uptime: uptime,
+                    Load1: 0,
+                    Load5: 0,
+                    Load15: 0,
+                    TcpConnCount: 0,
+                    UdpConnCount: 0,
+                    ProcessCount: 0,
+                },
+            });
+        }
+    });
+    return JSON.stringify(result, null, 2);
+}

backend/src/restful/errors/index.js

@@ -0,0 +1,35 @@
+class BaseError {
+    constructor(code, message, details) {
+        this.code = code;
+        this.message = message;
+        this.details = details;
+    }
+}
+
+export class InternalServerError extends BaseError {
+    constructor(code, message, details) {
+        super(code, message, details);
+        this.type = 'InternalServerError';
+    }
+}
+
+export class RequestInvalidError extends BaseError {
+    constructor(code, message, details) {
+        super(code, message, details);
+        this.type = 'RequestInvalidError';
+    }
+}
+
+export class ResourceNotFoundError extends BaseError {
+    constructor(code, message, details) {
+        super(code, message, details);
+        this.type = 'ResourceNotFoundError';
+    }
+}
+
+export class NetworkError extends BaseError {
+    constructor(code, message, details) {
+        super(code, message, details);
+        this.type = 'NetworkError';
+    }
+}

backend/src/restful/file.js

@@ -0,0 +1,194 @@
+import { deleteByName, findByName, updateByName } from '@/utils/database';
+import { FILES_KEY } from '@/constants';
+import { failed, success } from '@/restful/response';
+import $ from '@/core/app';
+import {
+    RequestInvalidError,
+    ResourceNotFoundError,
+    InternalServerError,
+} from '@/restful/errors';
+import { produceArtifact } from '@/restful/sync';
+
+export default function register($app) {
+    if (!$.read(FILES_KEY)) $.write([], FILES_KEY);
+
+    $app.route('/api/file/:name')
+        .get(getFile)
+        .patch(updateFile)
+        .delete(deleteFile);
+
+    $app.route('/api/wholeFile/:name').get(getWholeFile);
+
+    $app.route('/api/files').get(getAllFiles).post(createFile).put(replaceFile);
+    $app.route('/api/wholeFiles').get(getAllWholeFiles);
+}
+
+// file API
+function createFile(req, res) {
+    const file = req.body;
+    file.name = `${file.name ?? Date.now()}`;
+    $.info(`正在创建文件：${file.name}`);
+    const allFiles = $.read(FILES_KEY);
+    if (findByName(allFiles, file.name)) {
+        return failed(
+            res,
+            new RequestInvalidError(
+                'DUPLICATE_KEY',
+                req.body.name
+                    ? `已存在 name 为 ${file.name} 的文件`
+                    : `无法同时创建相同的文件 可稍后重试`,
+            ),
+        );
+    }
+    allFiles.push(file);
+    $.write(allFiles, FILES_KEY);
+    success(res, file, 201);
+}
+
+async function getFile(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+
+    $.info(`正在下载文件：${name}`);
+    let { url, ua, content, mergeSources, ignoreFailedRemoteFile } = req.query;
+    if (url) {
+        url = decodeURIComponent(url);
+        $.info(`指定远程文件 URL: ${url}`);
+    }
+    if (ua) {
+        ua = decodeURIComponent(ua);
+        $.info(`指定远程文件 User-Agent: ${ua}`);
+    }
+    if (content) {
+        content = decodeURIComponent(content);
+        $.info(`指定本地文件: ${content}`);
+    }
+    if (mergeSources) {
+        mergeSources = decodeURIComponent(mergeSources);
+        $.info(`指定合并来源: ${mergeSources}`);
+    }
+    if (ignoreFailedRemoteFile != null && ignoreFailedRemoteFile !== '') {
+        ignoreFailedRemoteFile = decodeURIComponent(ignoreFailedRemoteFile);
+        $.info(`指定忽略失败的远程文件: ${ignoreFailedRemoteFile}`);
+    }
+
+    const allFiles = $.read(FILES_KEY);
+    const file = findByName(allFiles, name);
+    if (file) {
+        try {
+            const output = await produceArtifact({
+                type: 'file',
+                name,
+                url,
+                ua,
+                content,
+                mergeSources,
+                ignoreFailedRemoteFile,
+            });
+
+            res.set('Content-Type', 'text/plain; charset=utf-8').send(
+                output ?? '',
+            );
+        } catch (err) {
+            $.notify(
+                `🌍 Sub-Store 下载文件失败`,
+                `❌ 无法下载文件：${name}！`,
+                `🤔 原因：${err.message ?? err}`,
+            );
+            $.error(err.message ?? err);
+            failed(
+                res,
+                new InternalServerError(
+                    'INTERNAL_SERVER_ERROR',
+                    `Failed to download file: ${name}`,
+                    `Reason: ${err.message ?? err}`,
+                ),
+            );
+        }
+    } else {
+        $.notify(`🌍 Sub-Store 下载文件失败`, `❌ 未找到文件：${name}！`);
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `File ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+function getWholeFile(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    const allFiles = $.read(FILES_KEY);
+    const file = findByName(allFiles, name);
+    if (file) {
+        success(res, file);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                `FILE_NOT_FOUND`,
+                `File ${name} does not exist`,
+                404,
+            ),
+        );
+    }
+}
+
+function updateFile(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    let file = req.body;
+    const allFiles = $.read(FILES_KEY);
+    const oldFile = findByName(allFiles, name);
+    if (oldFile) {
+        const newFile = {
+            ...oldFile,
+            ...file,
+        };
+        $.info(`正在更新文件：${name}...`);
+
+        updateByName(allFiles, name, newFile);
+        $.write(allFiles, FILES_KEY);
+        success(res, newFile);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `File ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+function deleteFile(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    $.info(`正在删除文件：${name}`);
+    let allFiles = $.read(FILES_KEY);
+    deleteByName(allFiles, name);
+    $.write(allFiles, FILES_KEY);
+    success(res);
+}
+
+function getAllFiles(req, res) {
+    const allFiles = $.read(FILES_KEY);
+    success(
+        res, // eslint-disable-next-line no-unused-vars
+        allFiles.map(({ content, ...rest }) => rest),
+    );
+}
+
+function getAllWholeFiles(req, res) {
+    const allFiles = $.read(FILES_KEY);
+    success(res, allFiles);
+}
+
+function replaceFile(req, res) {
+    const allFiles = req.body;
+    $.write(allFiles, FILES_KEY);
+    success(res);
+}

backend/src/restful/index.js

@@ -0,0 +1,183 @@
+import express from '@/vendor/express';
+import $ from '@/core/app';
+import migrate from '@/utils/migration';
+import download from '@/utils/download';
+import { syncArtifacts } from '@/restful/sync';
+
+import registerSubscriptionRoutes from './subscriptions';
+import registerCollectionRoutes from './collections';
+import registerArtifactRoutes from './artifacts';
+import registerFileRoutes from './file';
+import registerModuleRoutes from './module';
+import registerSyncRoutes from './sync';
+import registerDownloadRoutes from './download';
+import registerSettingRoutes from './settings';
+import registerPreviewRoutes from './preview';
+import registerSortingRoutes from './sort';
+import registerMiscRoutes from './miscs';
+import registerNodeInfoRoutes from './node-info';
+import registerParserRoutes from './parser';
+
+export default function serve() {
+    let port;
+    let host;
+    if ($.env.isNode) {
+        port = eval('process.env.SUB_STORE_BACKEND_API_PORT') || 3000;
+        host = eval('process.env.SUB_STORE_BACKEND_API_HOST') || '::';
+    }
+    const $app = express({ substore: $, port, host });
+    // register routes
+    registerCollectionRoutes($app);
+    registerSubscriptionRoutes($app);
+    registerDownloadRoutes($app);
+    registerPreviewRoutes($app);
+    registerSortingRoutes($app);
+    registerSettingRoutes($app);
+    registerArtifactRoutes($app);
+    registerFileRoutes($app);
+    registerModuleRoutes($app);
+    registerSyncRoutes($app);
+    registerNodeInfoRoutes($app);
+    registerMiscRoutes($app);
+    registerParserRoutes($app);
+
+    $app.start();
+
+    if ($.env.isNode) {
+        const backend_cron = eval('process.env.SUB_STORE_BACKEND_CRON');
+        if (backend_cron) {
+            $.info(`[CRON] ${backend_cron} enabled`);
+            const { CronJob } = eval(`require("cron")`);
+            new CronJob(
+                backend_cron,
+                async function () {
+                    try {
+                        $.info(`[CRON] ${backend_cron} started`);
+                        await syncArtifacts();
+                        $.info(`[CRON] ${backend_cron} finished`);
+                    } catch (e) {
+                        $.error(
+                            `[CRON] ${backend_cron} error: ${e.message ?? e}`,
+                        );
+                    }
+                }, // onTick
+                null, // onComplete
+                true, // start
+                // 'Asia/Shanghai' // timeZone
+            );
+        }
+        const path = eval(`require("path")`);
+        const fs = eval(`require("fs")`);
+        const data_url = eval('process.env.SUB_STORE_DATA_URL');
+        const fe_be_path = eval('process.env.SUB_STORE_FRONTEND_BACKEND_PATH');
+        const fe_port = eval('process.env.SUB_STORE_FRONTEND_PORT') || 3001;
+        const fe_host =
+            eval('process.env.SUB_STORE_FRONTEND_HOST') || host || '::';
+        const fe_path = eval('process.env.SUB_STORE_FRONTEND_PATH');
+        const fe_abs_path = path.resolve(
+            fe_path || path.join(__dirname, 'frontend'),
+        );
+        if (fe_path) {
+            try {
+                fs.accessSync(path.join(fe_abs_path, 'index.html'));
+            } catch (e) {
+                throw new Error(
+                    `[FRONTEND] index.html file not found in ${fe_abs_path}`,
+                );
+            }
+
+            const express_ = eval(`require("express")`);
+            const history = eval(`require("connect-history-api-fallback")`);
+            const { createProxyMiddleware } = eval(
+                `require("http-proxy-middleware")`,
+            );
+
+            const app = express_();
+
+            const staticFileMiddleware = express_.static(fe_path);
+
+            let be_api_rewrite = '';
+            let be_download_rewrite = '';
+            let be_api = '/api/';
+            let be_download = '/download/';
+            if (fe_be_path) {
+                if (!fe_be_path.startsWith('/')) {
+                    throw new Error(
+                        'SUB_STORE_FRONTEND_BACKEND_PATH should start with /',
+                    );
+                }
+                be_api_rewrite = `${
+                    fe_be_path === '/' ? '' : fe_be_path
+                }${be_api}`;
+                be_download_rewrite = `${
+                    fe_be_path === '/' ? '' : fe_be_path
+                }${be_download}`;
+                app.use(
+                    be_api_rewrite,
+                    createProxyMiddleware({
+                        target: `http://127.0.0.1:${port}`,
+                        changeOrigin: true,
+                        pathRewrite: (path) => {
+                            return path.startsWith(be_api_rewrite)
+                                ? path.replace(be_api_rewrite, be_api)
+                                : path;
+                        },
+                    }),
+                );
+                app.use(
+                    be_download_rewrite,
+                    createProxyMiddleware({
+                        target: `http://127.0.0.1:${port}`,
+                        changeOrigin: true,
+                        pathRewrite: (path) => {
+                            return path.startsWith(be_download_rewrite)
+                                ? path.replace(be_download_rewrite, be_download)
+                                : path;
+                        },
+                    }),
+                );
+            }
+
+            app.use(staticFileMiddleware);
+            app.use(
+                history({
+                    disableDotRule: true,
+                    verbose: false,
+                }),
+            );
+            app.use(staticFileMiddleware);
+
+            const listener = app.listen(fe_port, fe_host, () => {
+                const { address: fe_address, port: fe_port } =
+                    listener.address();
+                $.info(`[FRONTEND] ${fe_address}:${fe_port}`);
+                if (fe_be_path) {
+                    $.info(
+                        `[FRONTEND -> BACKEND] ${fe_address}:${fe_port}${be_api_rewrite} -> http://127.0.0.1:${port}${be_api}`,
+                    );
+                    $.info(
+                        `[FRONTEND -> BACKEND] ${fe_address}:${fe_port}${be_download_rewrite} -> http://127.0.0.1:${port}${be_download}`,
+                    );
+                }
+            });
+        }
+        if (data_url) {
+            $.info(`[BACKEND] downloading data from ${data_url}`);
+            download(data_url)
+                .then((content) => {
+                    $.write(content, '#sub-store');
+
+                    $.cache = JSON.parse(content);
+                    $.persistCache();
+
+                    migrate();
+                    $.info(`[BACKEND] restored data from ${data_url}`);
+                })
+                .catch((e) => {
+                    $.error(`[BACKEND] restore data failed`);
+                    console.error(e);
+                    throw e;
+                });
+        }
+    }
+}

backend/src/restful/miscs.js

@@ -0,0 +1,173 @@
+import $ from '@/core/app';
+import { ENV } from '@/vendor/open-api';
+import { failed, success } from '@/restful/response';
+import { updateArtifactStore, updateAvatar } from '@/restful/settings';
+import resourceCache from '@/utils/resource-cache';
+import scriptResourceCache from '@/utils/script-resource-cache';
+import headersResourceCache from '@/utils/headers-resource-cache';
+import {
+    GIST_BACKUP_FILE_NAME,
+    GIST_BACKUP_KEY,
+    SETTINGS_KEY,
+} from '@/constants';
+import { InternalServerError, RequestInvalidError } from '@/restful/errors';
+import Gist from '@/utils/gist';
+import migrate from '@/utils/migration';
+import env from '@/utils/env';
+
+export default function register($app) {
+    // utils
+    $app.get('/api/utils/env', getEnv); // get runtime environment
+    $app.get('/api/utils/backup', gistBackup); // gist backup actions
+    $app.get('/api/utils/refresh', refresh);
+
+    // Storage management
+    $app.route('/api/storage')
+        .get((req, res) => {
+            res.set('content-type', 'application/json')
+                .set(
+                    'content-disposition',
+                    'attachment; filename="sub-store.json"',
+                )
+                .send(
+                    $.env.isNode
+                        ? JSON.stringify($.cache)
+                        : $.read('#sub-store'),
+                );
+        })
+        .post((req, res) => {
+            const { content } = req.body;
+            $.write(content, '#sub-store');
+            if ($.env.isNode) {
+                $.cache = JSON.parse(content);
+                $.persistCache();
+            }
+            migrate();
+            success(res);
+        });
+
+    // Redirect sub.store to vercel webpage
+    $app.get('/', async (req, res) => {
+        // 302 redirect
+        res.set('location', 'https://sub-store.vercel.app/').status(302).end();
+    });
+
+    // handle preflight request for QX
+    if (ENV().isQX) {
+        $app.options('/', async (req, res) => {
+            res.status(200).end();
+        });
+    }
+
+    $app.all('/', (_, res) => {
+        res.send('Hello from sub-store, made with ❤️ by Peng-YM');
+    });
+}
+
+function getEnv(req, res) {
+    success(res, env);
+}
+
+async function refresh(_, res) {
+    // 1. get GitHub avatar and artifact store
+    await updateAvatar();
+    await updateArtifactStore();
+
+    // 2. clear resource cache
+    resourceCache.revokeAll();
+    scriptResourceCache.revokeAll();
+    headersResourceCache.revokeAll();
+    success(res);
+}
+
+async function gistBackup(req, res) {
+    const { action } = req.query;
+    // read token
+    const { gistToken, syncPlatform } = $.read(SETTINGS_KEY);
+    if (!gistToken) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'GIST_TOKEN_NOT_FOUND',
+                `GitHub Token is required for backup!`,
+            ),
+        );
+    } else {
+        const gist = new Gist({
+            token: gistToken,
+            key: GIST_BACKUP_KEY,
+            syncPlatform,
+        });
+        try {
+            let content;
+            const settings = $.read(SETTINGS_KEY);
+            const updated = settings.syncTime;
+            switch (action) {
+                case 'upload':
+                    // update syncTime
+                    settings.syncTime = new Date().getTime();
+                    $.write(settings, SETTINGS_KEY);
+                    content = $.read('#sub-store');
+                    if ($.env.isNode)
+                        content = JSON.stringify($.cache, null, `  `);
+                    $.info(`上传备份中...`);
+                    try {
+                        await gist.upload({
+                            [GIST_BACKUP_FILE_NAME]: { content },
+                        });
+                    } catch (err) {
+                        // restore syncTime if upload failed
+                        settings.syncTime = updated;
+                        $.write(settings, SETTINGS_KEY);
+                        throw err;
+                    }
+                    break;
+                case 'download':
+                    $.info(`还原备份中...`);
+                    content = await gist.download(GIST_BACKUP_FILE_NAME);
+                    try {
+                        if (
+                            Object.keys(JSON.parse(content).settings).length ===
+                            0
+                        ) {
+                            throw new Error(
+                                '备份文件应该至少包含 settings 字段',
+                            );
+                        }
+                    } catch (err) {
+                        $.error(
+                            `Gist 备份文件校验失败, 无法还原\nReason: ${
+                                err.message ?? err
+                            }`,
+                        );
+                        throw new Error('Gist 备份文件校验失败, 无法还原');
+                    }
+                    // restore settings
+                    $.write(content, '#sub-store');
+                    if ($.env.isNode) {
+                        content = JSON.parse(content);
+                        $.cache = content;
+                        $.persistCache();
+                    }
+                    $.info(`perform migration after restoring from gist...`);
+                    migrate();
+                    $.info(`migration completed`);
+                    $.info(`还原备份完成`);
+                    break;
+            }
+            success(res);
+        } catch (err) {
+            $.error(
+                `Failed to ${action} gist data.\nReason: ${err.message ?? err}`,
+            );
+            failed(
+                res,
+                new InternalServerError(
+                    'BACKUP_FAILED',
+                    `Failed to ${action} gist data!`,
+                    `Reason: ${err.message ?? err}`,
+                ),
+            );
+        }
+    }
+}

backend/src/restful/module.js

@@ -0,0 +1,116 @@
+import { deleteByName, findByName, updateByName } from '@/utils/database';
+import { MODULES_KEY } from '@/constants';
+import { failed, success } from '@/restful/response';
+import $ from '@/core/app';
+import { RequestInvalidError, ResourceNotFoundError } from '@/restful/errors';
+import { hex_md5 } from '@/vendor/md5';
+
+export default function register($app) {
+    if (!$.read(MODULES_KEY)) $.write([], MODULES_KEY);
+
+    $app.route('/api/module/:name')
+        .get(getModule)
+        .patch(updateModule)
+        .delete(deleteModule);
+
+    $app.route('/api/modules')
+        .get(getAllModules)
+        .post(createModule)
+        .put(replaceModule);
+}
+
+// module API
+function createModule(req, res) {
+    const module = req.body;
+    module.name = `${module.name ?? hex_md5(JSON.stringify(module))}`;
+    $.info(`正在创建模块：${module.name}`);
+    const allModules = $.read(MODULES_KEY);
+    if (findByName(allModules, module.name)) {
+        return failed(
+            res,
+            new RequestInvalidError(
+                'DUPLICATE_KEY',
+                req.body.name
+                    ? `已存在 name 为 ${module.name} 的模块`
+                    : `已存在相同的模块 请勿重复添加`,
+            ),
+        );
+    }
+    allModules.push(module);
+    $.write(allModules, MODULES_KEY);
+    success(res, module, 201);
+}
+
+function getModule(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    const allModules = $.read(MODULES_KEY);
+    const module = findByName(allModules, name);
+    if (module) {
+        res.set('Content-Type', 'text/plain; charset=utf-8').send(
+            module.content,
+        );
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                `MODULE_NOT_FOUND`,
+                `Module ${name} does not exist`,
+                404,
+            ),
+        );
+    }
+}
+
+function updateModule(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    let module = req.body;
+    const allModules = $.read(MODULES_KEY);
+    const oldModule = findByName(allModules, name);
+    if (oldModule) {
+        const newModule = {
+            ...oldModule,
+            ...module,
+        };
+        $.info(`正在更新模块：${name}...`);
+
+        updateByName(allModules, name, newModule);
+        $.write(allModules, MODULES_KEY);
+        success(res, newModule);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Module ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+function deleteModule(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    $.info(`正在删除模块：${name}`);
+    let allModules = $.read(MODULES_KEY);
+    deleteByName(allModules, name);
+    $.write(allModules, MODULES_KEY);
+    success(res);
+}
+
+function getAllModules(req, res) {
+    const allModules = $.read(MODULES_KEY);
+    success(
+        res,
+        // eslint-disable-next-line no-unused-vars
+        allModules.map(({ content, ...rest }) => rest),
+    );
+}
+
+function replaceModule(req, res) {
+    const allModules = req.body;
+    $.write(allModules, MODULES_KEY);
+    success(res);
+}

backend/src/restful/node-info.js

@@ -0,0 +1,59 @@
+import producer from '@/core/proxy-utils/producers';
+import { HTTP } from '@/vendor/open-api';
+import { failed, success } from '@/restful/response';
+import { NetworkError } from '@/restful/errors';
+
+export default function register($app) {
+    $app.post('/api/utils/node-info', getNodeInfo);
+}
+
+async function getNodeInfo(req, res) {
+    const proxy = req.body;
+    const lang = req.query.lang || 'zh-CN';
+    let shareUrl;
+    try {
+        shareUrl = producer.URI.produce(proxy);
+    } catch (err) {
+        // do nothing
+    }
+
+    try {
+        const $http = HTTP();
+        const info = await $http
+            .get({
+                url: `http://ip-api.com/json/${encodeURIComponent(
+                    `${proxy.server}`
+                        .trim()
+                        .replace(/^\[/, '')
+                        .replace(/\]$/, ''),
+                )}?lang=${lang}`,
+                headers: {
+                    'User-Agent':
+                        'Mozilla/5.0 (Macintosh; Intel Mac OS X 12_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.4 Safari/605.1.15',
+                },
+            })
+            .then((resp) => {
+                const data = JSON.parse(resp.body);
+                if (data.status !== 'success') {
+                    throw new Error(data.message);
+                }
+
+                // remove unnecessary fields
+                delete data.status;
+                return data;
+            });
+        success(res, {
+            shareUrl,
+            info,
+        });
+    } catch (err) {
+        failed(
+            res,
+            new NetworkError(
+                'FAILED_TO_GET_NODE_INFO',
+                `Failed to get node info`,
+                `Reason: ${err}`,
+            ),
+        );
+    }
+}

backend/src/restful/parser.js

@@ -0,0 +1,54 @@
+import { success, failed } from '@/restful/response';
+import { ProxyUtils } from '@/core/proxy-utils';
+import { RuleUtils } from '@/core/rule-utils';
+
+export default function register($app) {
+    $app.route('/api/proxy/parse').post(proxy_parser);
+    $app.route('/api/rule/parse').post(rule_parser);
+}
+
+/***
+ * 感谢 izhangxm 的 PR!
+ * 目前没有节点操作, 没有支持完整参数, 以后再完善一下
+ */
+
+/***
+ * 代理服务器协议转换接口。
+ * 请求方法为POST，数据为json。需要提供data和client字段。
+ * data: string, 协议数据，每行一个或者是clash
+ * client: string, 目标平台名称，见backend/src/core/proxy-utils/producers/index.js
+ *
+ */
+function proxy_parser(req, res) {
+    const { data, client, content, platform } = req.body;
+    var result = {};
+    try {
+        var proxies = ProxyUtils.parse(data ?? content);
+        var par_res = ProxyUtils.produce(proxies, client ?? platform);
+        result['par_res'] = par_res;
+    } catch (err) {
+        failed(res, err);
+        return;
+    }
+    success(res, result);
+}
+/**
+ * 规则转换接口。
+ * 请求方法为POST，数据为json。需要提供data和client字段。
+ * data: string, 多行规则字符串
+ * client: string, 目标平台名称，具体见backend/src/core/rule-utils/producers.js
+ */
+function rule_parser(req, res) {
+    const { data, client, content, platform } = req.body;
+    var result = {};
+    try {
+        const rules = RuleUtils.parse(data ?? content);
+        var par_res = RuleUtils.produce(rules, client ?? platform);
+        result['par_res'] = par_res;
+    } catch (err) {
+        failed(res, err);
+        return;
+    }
+
+    success(res, result);
+}

backend/src/restful/preview.js

@@ -0,0 +1,301 @@
+import { InternalServerError } from './errors';
+import { ProxyUtils } from '@/core/proxy-utils';
+import { findByName } from '@/utils/database';
+import { success, failed } from './response';
+import download from '@/utils/download';
+import { SUBS_KEY } from '@/constants';
+import $ from '@/core/app';
+
+export default function register($app) {
+    $app.post('/api/preview/sub', compareSub);
+    $app.post('/api/preview/collection', compareCollection);
+    $app.post('/api/preview/file', previewFile);
+}
+
+async function previewFile(req, res) {
+    try {
+        const file = req.body;
+        let content;
+        if (
+            file.source === 'local' &&
+            !['localFirst', 'remoteFirst'].includes(file.mergeSources)
+        ) {
+            content = file.content;
+        } else {
+            const errors = {};
+            content = await Promise.all(
+                file.url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)
+                    .map(async (url) => {
+                        try {
+                            return await download(url, file.ua);
+                        } catch (err) {
+                            errors[url] = err;
+                            $.error(
+                                `文件 ${file.name} 的远程文件 ${url} 发生错误: ${err}`,
+                            );
+                            return '';
+                        }
+                    }),
+            );
+
+            if (
+                !file.ignoreFailedRemoteFile &&
+                Object.keys(errors).length > 0
+            ) {
+                throw new Error(
+                    `文件 ${file.name} 的远程文件 ${Object.keys(errors).join(
+                        ', ',
+                    )} 发生错误, 请查看日志`,
+                );
+            }
+            if (file.mergeSources === 'localFirst') {
+                content.unshift(file.content);
+            } else if (file.mergeSources === 'remoteFirst') {
+                content.push(file.content);
+            }
+        }
+        // parse proxies
+        const files = (Array.isArray(content) ? content : [content]).flat();
+        let filesContent = files
+            .filter((i) => i != null && i !== '')
+            .join('\n');
+
+        // apply processors
+        const processed =
+            Array.isArray(file.process) && file.process.length > 0
+                ? await ProxyUtils.process(
+                      { $files: files, $content: filesContent },
+                      file.process,
+                  )
+                : { $content: filesContent, $files: files };
+
+        // produce
+        success(res, {
+            original: filesContent,
+            processed: processed?.$content ?? '',
+        });
+    } catch (err) {
+        $.error(err.message ?? err);
+        failed(
+            res,
+            new InternalServerError(
+                `INTERNAL_SERVER_ERROR`,
+                `Failed to preview file`,
+                `Reason: ${err.message ?? err}`,
+            ),
+        );
+    }
+}
+
+async function compareSub(req, res) {
+    try {
+        const sub = req.body;
+        const target = req.query.target || 'JSON';
+        let content;
+        if (
+            sub.source === 'local' &&
+            !['localFirst', 'remoteFirst'].includes(sub.mergeSources)
+        ) {
+            content = sub.content;
+        } else {
+            const errors = {};
+            content = await Promise.all(
+                sub.url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)
+                    .map(async (url) => {
+                        try {
+                            return await download(
+                                url,
+                                sub.ua,
+                                undefined,
+                                sub.proxy,
+                            );
+                        } catch (err) {
+                            errors[url] = err;
+                            $.error(
+                                `订阅 ${sub.name} 的远程订阅 ${url} 发生错误: ${err}`,
+                            );
+                            return '';
+                        }
+                    }),
+            );
+
+            if (!sub.ignoreFailedRemoteSub && Object.keys(errors).length > 0) {
+                throw new Error(
+                    `订阅 ${sub.name} 的远程订阅 ${Object.keys(errors).join(
+                        ', ',
+                    )} 发生错误, 请查看日志`,
+                );
+            }
+            if (sub.mergeSources === 'localFirst') {
+                content.unshift(sub.content);
+            } else if (sub.mergeSources === 'remoteFirst') {
+                content.push(sub.content);
+            }
+        }
+        // parse proxies
+        const original = (Array.isArray(content) ? content : [content])
+            .map((i) => ProxyUtils.parse(i))
+            .flat();
+
+        // add id
+        original.forEach((proxy, i) => {
+            proxy.id = i;
+            proxy.subName = sub.name;
+        });
+
+        // apply processors
+        const processed = await ProxyUtils.process(
+            original,
+            sub.process || [],
+            target,
+            { [sub.name]: sub },
+        );
+
+        // produce
+        success(res, { original, processed });
+    } catch (err) {
+        $.error(err.message ?? err);
+        failed(
+            res,
+            new InternalServerError(
+                `INTERNAL_SERVER_ERROR`,
+                `Failed to preview subscription`,
+                `Reason: ${err.message ?? err}`,
+            ),
+        );
+    }
+}
+
+async function compareCollection(req, res) {
+    try {
+        const allSubs = $.read(SUBS_KEY);
+        const collection = req.body;
+        const subnames = collection.subscriptions;
+        const results = {};
+        const errors = {};
+        await Promise.all(
+            subnames.map(async (name) => {
+                const sub = findByName(allSubs, name);
+                try {
+                    let raw;
+                    if (
+                        sub.source === 'local' &&
+                        !['localFirst', 'remoteFirst'].includes(
+                            sub.mergeSources,
+                        )
+                    ) {
+                        raw = sub.content;
+                    } else {
+                        const errors = {};
+                        raw = await Promise.all(
+                            sub.url
+                                .split(/[\r\n]+/)
+                                .map((i) => i.trim())
+                                .filter((i) => i.length)
+                                .map(async (url) => {
+                                    try {
+                                        return await download(
+                                            url,
+                                            sub.ua,
+                                            undefined,
+                                            sub.proxy,
+                                        );
+                                    } catch (err) {
+                                        errors[url] = err;
+                                        $.error(
+                                            `订阅 ${sub.name} 的远程订阅 ${url} 发生错误: ${err}`,
+                                        );
+                                        return '';
+                                    }
+                                }),
+                        );
+                        if (
+                            !sub.ignoreFailedRemoteSub &&
+                            Object.keys(errors).length > 0
+                        ) {
+                            throw new Error(
+                                `订阅 ${sub.name} 的远程订阅 ${Object.keys(
+                                    errors,
+                                ).join(', ')} 发生错误, 请查看日志`,
+                            );
+                        }
+                        if (sub.mergeSources === 'localFirst') {
+                            raw.unshift(sub.content);
+                        } else if (sub.mergeSources === 'remoteFirst') {
+                            raw.push(sub.content);
+                        }
+                    }
+                    // parse proxies
+                    let currentProxies = (Array.isArray(raw) ? raw : [raw])
+                        .map((i) => ProxyUtils.parse(i))
+                        .flat();
+
+                    currentProxies.forEach((proxy) => {
+                        proxy.subName = sub.name;
+                        proxy.collectionName = collection.name;
+                    });
+
+                    // apply processors
+                    currentProxies = await ProxyUtils.process(
+                        currentProxies,
+                        sub.process || [],
+                        'JSON',
+                        { [sub.name]: sub, _collection: collection },
+                    );
+                    results[name] = currentProxies;
+                } catch (err) {
+                    errors[name] = err;
+
+                    $.error(
+                        `❌ 处理组合订阅 ${collection.name} 中的子订阅: ${sub.name}时出现错误：${err}！`,
+                    );
+                }
+            }),
+        );
+        if (
+            !collection.ignoreFailedRemoteSub &&
+            Object.keys(errors).length > 0
+        ) {
+            throw new Error(
+                `组合订阅 ${collection.name} 中的子订阅 ${Object.keys(
+                    errors,
+                ).join(', ')} 发生错误, 请查看日志`,
+            );
+        }
+        // merge proxies with the original order
+        const original = Array.prototype.concat.apply(
+            [],
+            subnames.map((name) => results[name] || []),
+        );
+
+        original.forEach((proxy, i) => {
+            proxy.id = i;
+            proxy.collectionName = collection.name;
+        });
+
+        const processed = await ProxyUtils.process(
+            original,
+            collection.process || [],
+            'JSON',
+            { _collection: collection },
+        );
+
+        success(res, { original, processed });
+    } catch (err) {
+        $.error(err.message ?? err);
+        failed(
+            res,
+            new InternalServerError(
+                `INTERNAL_SERVER_ERROR`,
+                `Failed to preview collection`,
+                `Reason: ${err.message ?? err}`,
+            ),
+        );
+    }
+}

backend/src/restful/response.js

@@ -0,0 +1,18 @@
+export function success(resp, data, statusCode) {
+    resp.status(statusCode || 200).json({
+        status: 'success',
+        data,
+    });
+}
+
+export function failed(resp, error, statusCode) {
+    resp.status(statusCode || 500).json({
+        status: 'failed',
+        error: {
+            code: error.code,
+            type: error.type,
+            message: error.message,
+            details: error.details,
+        },
+    });
+}

backend/src/restful/settings.js

@@ -0,0 +1,146 @@
+import { SETTINGS_KEY, ARTIFACT_REPOSITORY_KEY } from '@/constants';
+import { success, failed } from './response';
+import { InternalServerError } from '@/restful/errors';
+import $ from '@/core/app';
+import Gist from '@/utils/gist';
+
+export default function register($app) {
+    const settings = $.read(SETTINGS_KEY);
+    if (!settings) $.write({}, SETTINGS_KEY);
+    $app.route('/api/settings').get(getSettings).patch(updateSettings);
+}
+
+async function getSettings(req, res) {
+    try {
+        let settings = $.read(SETTINGS_KEY);
+        if (!settings) {
+            settings = {};
+            $.write(settings, SETTINGS_KEY);
+        }
+
+        if (!settings.avatarUrl) await updateAvatar();
+        if (!settings.artifactStore) await updateArtifactStore();
+
+        success(res, settings);
+    } catch (e) {
+        $.error(`Failed to get settings: ${e.message ?? e}`);
+        failed(
+            res,
+            new InternalServerError(
+                `FAILED_TO_GET_SETTINGS`,
+                `Failed to get settings`,
+                `Reason: ${e.message ?? e}`,
+            ),
+        );
+    }
+}
+
+async function updateSettings(req, res) {
+    try {
+        const settings = $.read(SETTINGS_KEY);
+        const newSettings = {
+            ...settings,
+            ...req.body,
+        };
+        $.write(newSettings, SETTINGS_KEY);
+        await updateAvatar();
+        await updateArtifactStore();
+        success(res, newSettings);
+    } catch (e) {
+        $.error(`Failed to update settings: ${e.message ?? e}`);
+        failed(
+            res,
+            new InternalServerError(
+                `FAILED_TO_UPDATE_SETTINGS`,
+                `Failed to update settings`,
+                `Reason: ${e.message ?? e}`,
+            ),
+        );
+    }
+}
+
+export async function updateAvatar() {
+    const settings = $.read(SETTINGS_KEY);
+    const { githubUser: username, syncPlatform } = settings;
+    if (username) {
+        if (syncPlatform === 'gitlab') {
+            try {
+                const data = await $.http
+                    .get({
+                        url: `https://gitlab.com/api/v4/users?username=${encodeURIComponent(
+                            username,
+                        )}`,
+                        headers: {
+                            'User-Agent':
+                                'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.141 Safari/537.36',
+                        },
+                    })
+                    .then((resp) => JSON.parse(resp.body));
+                settings.avatarUrl = data[0]['avatar_url'].replace(
+                    /(\?|&)s=\d+(&|$)/,
+                    '$1s=160$2',
+                );
+                $.write(settings, SETTINGS_KEY);
+            } catch (err) {
+                $.error(
+                    `Failed to fetch GitLab avatar for User: ${username}. Reason: ${
+                        err.message ?? err
+                    }`,
+                );
+            }
+        } else {
+            try {
+                const data = await $.http
+                    .get({
+                        url: `https://api.github.com/users/${encodeURIComponent(
+                            username,
+                        )}`,
+                        headers: {
+                            'User-Agent':
+                                'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.141 Safari/537.36',
+                        },
+                    })
+                    .then((resp) => JSON.parse(resp.body));
+                settings.avatarUrl = data['avatar_url'];
+                $.write(settings, SETTINGS_KEY);
+            } catch (err) {
+                $.error(
+                    `Failed to fetch GitHub avatar for User: ${username}. Reason: ${
+                        err.message ?? err
+                    }`,
+                );
+            }
+        }
+    }
+}
+
+export async function updateArtifactStore() {
+    $.log('Updating artifact store');
+    const settings = $.read(SETTINGS_KEY);
+    const { gistToken, syncPlatform } = settings;
+    if (gistToken) {
+        const manager = new Gist({
+            token: gistToken,
+            key: ARTIFACT_REPOSITORY_KEY,
+            syncPlatform,
+        });
+
+        try {
+            const gist = await manager.locate();
+            const url = gist?.html_url ?? gist?.web_url;
+            if (url) {
+                $.log(`找到 Sub-Store Gist: ${url}`);
+                // 只需要保证 token 是对的, 现在 username 错误只会导致头像错误
+                settings.artifactStore = url;
+                settings.artifactStoreStatus = 'VALID';
+            } else {
+                $.error(`找不到 Sub-Store Gist`);
+                settings.artifactStoreStatus = 'NOT FOUND';
+            }
+        } catch (err) {
+            $.error(`查找 Sub-Store Gist 时发生错误: ${err.message ?? err}`);
+            settings.artifactStoreStatus = 'ERROR';
+        }
+        $.write(settings, SETTINGS_KEY);
+    }
+}

backend/src/restful/sort.js

@@ -0,0 +1,49 @@
+import {
+    ARTIFACTS_KEY,
+    COLLECTIONS_KEY,
+    SUBS_KEY,
+    FILES_KEY,
+} from '@/constants';
+import $ from '@/core/app';
+import { success } from '@/restful/response';
+
+export default function register($app) {
+    $app.post('/api/sort/subs', sortSubs);
+    $app.post('/api/sort/collections', sortCollections);
+    $app.post('/api/sort/artifacts', sortArtifacts);
+    $app.post('/api/sort/files', sortFiles);
+}
+
+function sortSubs(req, res) {
+    const orders = req.body;
+    const allSubs = $.read(SUBS_KEY);
+    allSubs.sort((a, b) => orders.indexOf(a.name) - orders.indexOf(b.name));
+    $.write(allSubs, SUBS_KEY);
+    success(res, allSubs);
+}
+
+function sortCollections(req, res) {
+    const orders = req.body;
+    const allCols = $.read(COLLECTIONS_KEY);
+    allCols.sort((a, b) => orders.indexOf(a.name) - orders.indexOf(b.name));
+    $.write(allCols, COLLECTIONS_KEY);
+    success(res, allCols);
+}
+
+function sortArtifacts(req, res) {
+    const orders = req.body;
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    allArtifacts.sort(
+        (a, b) => orders.indexOf(a.name) - orders.indexOf(b.name),
+    );
+    $.write(allArtifacts, ARTIFACTS_KEY);
+    success(res, allArtifacts);
+}
+
+function sortFiles(req, res) {
+    const orders = req.body;
+    const allFiles = $.read(FILES_KEY);
+    allFiles.sort((a, b) => orders.indexOf(a.name) - orders.indexOf(b.name));
+    $.write(allFiles, FILES_KEY);
+    success(res, allFiles);
+}

backend/src/restful/subscriptions.js

@@ -0,0 +1,291 @@
+import {
+    NetworkError,
+    InternalServerError,
+    ResourceNotFoundError,
+    RequestInvalidError,
+} from './errors';
+import { deleteByName, findByName, updateByName } from '@/utils/database';
+import { SUBS_KEY, COLLECTIONS_KEY, ARTIFACTS_KEY } from '@/constants';
+import {
+    getFlowHeaders,
+    parseFlowHeaders,
+    getRmainingDays,
+} from '@/utils/flow';
+import { success, failed } from './response';
+import $ from '@/core/app';
+
+if (!$.read(SUBS_KEY)) $.write({}, SUBS_KEY);
+
+export default function register($app) {
+    $app.get('/api/sub/flow/:name', getFlowInfo);
+
+    $app.route('/api/sub/:name')
+        .get(getSubscription)
+        .patch(updateSubscription)
+        .delete(deleteSubscription);
+
+    $app.route('/api/subs')
+        .get(getAllSubscriptions)
+        .post(createSubscription)
+        .put(replaceSubscriptions);
+}
+
+// subscriptions API
+async function getFlowInfo(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    const allSubs = $.read(SUBS_KEY);
+    const sub = findByName(allSubs, name);
+    if (!sub) {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Subscription ${name} does not exist!`,
+            ),
+            404,
+        );
+        return;
+    }
+    if (
+        sub.source === 'local' &&
+        !['localFirst', 'remoteFirst'].includes(sub.mergeSources)
+    ) {
+        if (sub.subUserinfo) {
+            success(res, {
+                ...parseFlowHeaders(sub.subUserinfo),
+            });
+        } else {
+            failed(
+                res,
+                new RequestInvalidError(
+                    'NO_FLOW_INFO',
+                    'N/A',
+                    `Local subscription ${name} has no flow information!`,
+                ),
+            );
+        }
+        return;
+    }
+    try {
+        let url = `${sub.url}`
+            .split(/[\r\n]+/)
+            .map((i) => i.trim())
+            .filter((i) => i.length)?.[0];
+
+        let $arguments = {};
+        const rawArgs = url.split('#');
+        url = url.split('#')[0];
+        if (rawArgs.length > 1) {
+            try {
+                // 支持 `#${encodeURIComponent(JSON.stringify({arg1: "1"}))}`
+                $arguments = JSON.parse(decodeURIComponent(rawArgs[1]));
+            } catch (e) {
+                for (const pair of rawArgs[1].split('&')) {
+                    const key = pair.split('=')[0];
+                    const value = pair.split('=')[1];
+                    // 部分兼容之前的逻辑 const value = pair.split('=')[1] || true;
+                    $arguments[key] =
+                        value == null || value === ''
+                            ? true
+                            : decodeURIComponent(value);
+                }
+            }
+        }
+        if ($arguments.noFlow) {
+            failed(
+                res,
+                new RequestInvalidError(
+                    'NO_FLOW_INFO',
+                    'N/A',
+                    `Subscription ${name}: noFlow`,
+                ),
+            );
+            return;
+        }
+        if (sub.subUserinfo) {
+            success(res, {
+                ...parseFlowHeaders(sub.subUserinfo),
+                remainingDays: getRmainingDays({
+                    resetDay: $arguments.resetDay,
+                    startDate: $arguments.startDate,
+                    cycleDays: $arguments.cycleDays,
+                }),
+            });
+        } else {
+            const flowHeaders = await getFlowHeaders(
+                url,
+                $arguments.flowUserAgent,
+                undefined,
+                sub.proxy,
+            );
+            if (!flowHeaders) {
+                failed(
+                    res,
+                    new InternalServerError(
+                        'NO_FLOW_INFO',
+                        'No flow info',
+                        `Failed to fetch flow headers`,
+                    ),
+                );
+                return;
+            }
+            success(res, {
+                ...parseFlowHeaders(flowHeaders),
+                remainingDays: getRmainingDays({
+                    resetDay: $arguments.resetDay,
+                    startDate: $arguments.startDate,
+                    cycleDays: $arguments.cycleDays,
+                }),
+            });
+        }
+    } catch (err) {
+        failed(
+            res,
+            new NetworkError(
+                `URL_NOT_ACCESSIBLE`,
+                `The URL for subscription ${name} is inaccessible.`,
+            ),
+        );
+    }
+}
+
+function createSubscription(req, res) {
+    const sub = req.body;
+    $.info(`正在创建订阅： ${sub.name}`);
+    if (/\//.test(sub.name)) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'INVALID_NAME',
+                `Subscription ${sub.name} is invalid`,
+            ),
+        );
+        return;
+    }
+    const allSubs = $.read(SUBS_KEY);
+    if (findByName(allSubs, sub.name)) {
+        failed(
+            res,
+            new RequestInvalidError(
+                'DUPLICATE_KEY',
+                `Subscription ${sub.name} already exists.`,
+            ),
+        );
+        return;
+    }
+    allSubs.push(sub);
+    $.write(allSubs, SUBS_KEY);
+    success(res, sub, 201);
+}
+
+function getSubscription(req, res) {
+    let { name } = req.params;
+    let { raw } = req.query;
+    name = decodeURIComponent(name);
+    const allSubs = $.read(SUBS_KEY);
+    const sub = findByName(allSubs, name);
+    if (sub) {
+        if (raw) {
+            res.set('content-type', 'application/json')
+                .set(
+                    'content-disposition',
+                    `attachment; filename="${encodeURIComponent(name)}.json"`,
+                )
+                .send(JSON.stringify(sub));
+        } else {
+            success(res, sub);
+        }
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                `SUBSCRIPTION_NOT_FOUND`,
+                `Subscription ${name} does not exist`,
+                404,
+            ),
+        );
+    }
+}
+
+function updateSubscription(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name); // the original name
+    let sub = req.body;
+    const allSubs = $.read(SUBS_KEY);
+    const oldSub = findByName(allSubs, name);
+    if (oldSub) {
+        const newSub = {
+            ...oldSub,
+            ...sub,
+        };
+        $.info(`正在更新订阅： ${name}`);
+        // allow users to update the subscription name
+        if (name !== sub.name) {
+            // update all collections refer to this name
+            const allCols = $.read(COLLECTIONS_KEY) || [];
+            for (const collection of allCols) {
+                const idx = collection.subscriptions.indexOf(name);
+                if (idx !== -1) {
+                    collection.subscriptions[idx] = sub.name;
+                }
+            }
+
+            // update all artifacts referring this subscription
+            const allArtifacts = $.read(ARTIFACTS_KEY) || [];
+            for (const artifact of allArtifacts) {
+                if (
+                    artifact.type === 'subscription' &&
+                    artifact.source == name
+                ) {
+                    artifact.source = sub.name;
+                }
+            }
+
+            $.write(allCols, COLLECTIONS_KEY);
+            $.write(allArtifacts, ARTIFACTS_KEY);
+        }
+        updateByName(allSubs, name, newSub);
+        $.write(allSubs, SUBS_KEY);
+        success(res, newSub);
+    } else {
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `Subscription ${name} does not exist!`,
+            ),
+            404,
+        );
+    }
+}
+
+function deleteSubscription(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    $.info(`删除订阅：${name}...`);
+    // delete from subscriptions
+    let allSubs = $.read(SUBS_KEY);
+    deleteByName(allSubs, name);
+    $.write(allSubs, SUBS_KEY);
+    // delete from collections
+    const allCols = $.read(COLLECTIONS_KEY);
+    for (const collection of allCols) {
+        collection.subscriptions = collection.subscriptions.filter(
+            (s) => s !== name,
+        );
+    }
+    $.write(allCols, COLLECTIONS_KEY);
+    success(res);
+}
+
+function getAllSubscriptions(req, res) {
+    const allSubs = $.read(SUBS_KEY);
+    success(res, allSubs);
+}
+
+function replaceSubscriptions(req, res) {
+    const allSubs = req.body;
+    $.write(allSubs, SUBS_KEY);
+    success(res);
+}

backend/src/restful/sync.js

@@ -0,0 +1,699 @@
+import $ from '@/core/app';
+import {
+    ARTIFACTS_KEY,
+    COLLECTIONS_KEY,
+    RULES_KEY,
+    SUBS_KEY,
+    FILES_KEY,
+} from '@/constants';
+import { failed, success } from '@/restful/response';
+import { InternalServerError, ResourceNotFoundError } from '@/restful/errors';
+import { findByName } from '@/utils/database';
+import download from '@/utils/download';
+import { ProxyUtils } from '@/core/proxy-utils';
+import { RuleUtils } from '@/core/rule-utils';
+import { syncToGist } from '@/restful/artifacts';
+
+export default function register($app) {
+    // Initialization
+    if (!$.read(ARTIFACTS_KEY)) $.write({}, ARTIFACTS_KEY);
+
+    // sync all artifacts
+    $app.get('/api/sync/artifacts', syncAllArtifacts);
+    $app.get('/api/sync/artifact/:name', syncArtifact);
+}
+
+async function produceArtifact({
+    type,
+    name,
+    platform,
+    url,
+    ua,
+    content,
+    mergeSources,
+    ignoreFailedRemoteSub,
+    ignoreFailedRemoteFile,
+    produceType,
+    produceOpts = {},
+    subscription,
+}) {
+    platform = platform || 'JSON';
+
+    if (type === 'subscription') {
+        let sub;
+        if (name) {
+            const allSubs = $.read(SUBS_KEY);
+            sub = findByName(allSubs, name);
+            if (!sub) throw new Error(`找不到订阅 ${name}`);
+        } else if (subscription) {
+            sub = subscription;
+        } else {
+            throw new Error('未提供订阅名称或订阅数据');
+        }
+        let raw;
+        if (content && !['localFirst', 'remoteFirst'].includes(mergeSources)) {
+            raw = content;
+        } else if (url) {
+            const errors = {};
+            raw = await Promise.all(
+                url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)
+                    .map(async (url) => {
+                        try {
+                            return await download(
+                                url,
+                                ua || sub.ua,
+                                undefined,
+                                sub.proxy,
+                            );
+                        } catch (err) {
+                            errors[url] = err;
+                            $.error(
+                                `订阅 ${sub.name} 的远程订阅 ${url} 发生错误: ${err}`,
+                            );
+                            return '';
+                        }
+                    }),
+            );
+            let subIgnoreFailedRemoteSub = sub.ignoreFailedRemoteSub;
+            if (ignoreFailedRemoteSub != null && ignoreFailedRemoteSub !== '') {
+                subIgnoreFailedRemoteSub = ignoreFailedRemoteSub;
+            }
+            if (!subIgnoreFailedRemoteSub && Object.keys(errors).length > 0) {
+                throw new Error(
+                    `订阅 ${sub.name} 的远程订阅 ${Object.keys(errors).join(
+                        ', ',
+                    )} 发生错误, 请查看日志`,
+                );
+            }
+            if (mergeSources === 'localFirst') {
+                raw.unshift(content);
+            } else if (mergeSources === 'remoteFirst') {
+                raw.push(content);
+            }
+        } else if (
+            sub.source === 'local' &&
+            !['localFirst', 'remoteFirst'].includes(sub.mergeSources)
+        ) {
+            raw = sub.content;
+        } else {
+            const errors = {};
+            raw = await Promise.all(
+                sub.url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)
+                    .map(async (url) => {
+                        try {
+                            return await download(
+                                url,
+                                ua || sub.ua,
+                                undefined,
+                                sub.proxy,
+                            );
+                        } catch (err) {
+                            errors[url] = err;
+                            $.error(
+                                `订阅 ${sub.name} 的远程订阅 ${url} 发生错误: ${err}`,
+                            );
+                            return '';
+                        }
+                    }),
+            );
+            let subIgnoreFailedRemoteSub = sub.ignoreFailedRemoteSub;
+            if (ignoreFailedRemoteSub != null && ignoreFailedRemoteSub !== '') {
+                subIgnoreFailedRemoteSub = ignoreFailedRemoteSub;
+            }
+            if (!subIgnoreFailedRemoteSub && Object.keys(errors).length > 0) {
+                throw new Error(
+                    `订阅 ${sub.name} 的远程订阅 ${Object.keys(errors).join(
+                        ', ',
+                    )} 发生错误, 请查看日志`,
+                );
+            }
+            if (sub.mergeSources === 'localFirst') {
+                raw.unshift(sub.content);
+            } else if (sub.mergeSources === 'remoteFirst') {
+                raw.push(sub.content);
+            }
+        }
+        // parse proxies
+        let proxies = (Array.isArray(raw) ? raw : [raw])
+            .map((i) => ProxyUtils.parse(i))
+            .flat();
+
+        proxies.forEach((proxy) => {
+            proxy.subName = sub.name;
+        });
+        // apply processors
+        proxies = await ProxyUtils.process(
+            proxies,
+            sub.process || [],
+            platform,
+            { [sub.name]: sub },
+        );
+        if (proxies.length === 0) {
+            throw new Error(`订阅 ${name} 中不含有效节点`);
+        }
+        // check duplicate
+        const exist = {};
+        for (const proxy of proxies) {
+            if (exist[proxy.name]) {
+                $.notify(
+                    '🌍 Sub-Store',
+                    `⚠️ 订阅 ${name} 包含重复节点 ${proxy.name}！`,
+                    '请仔细检测配置！',
+                    {
+                        'media-url':
+                            'https://cdn3.iconfinder.com/data/icons/seo-outline-1/512/25_code_program_programming_develop_bug_search_developer-512.png',
+                    },
+                );
+                break;
+            }
+            exist[proxy.name] = true;
+        }
+        // produce
+        return ProxyUtils.produce(proxies, platform, produceType, produceOpts);
+    } else if (type === 'collection') {
+        const allSubs = $.read(SUBS_KEY);
+        const allCols = $.read(COLLECTIONS_KEY);
+        const collection = findByName(allCols, name);
+        if (!collection) throw new Error(`找不到组合订阅 ${name}`);
+        const subnames = collection.subscriptions;
+        const results = {};
+        const errors = {};
+        let processed = 0;
+
+        await Promise.all(
+            subnames.map(async (name) => {
+                const sub = findByName(allSubs, name);
+                try {
+                    $.info(`正在处理子订阅：${sub.name}...`);
+                    let raw;
+                    if (
+                        sub.source === 'local' &&
+                        !['localFirst', 'remoteFirst'].includes(
+                            sub.mergeSources,
+                        )
+                    ) {
+                        raw = sub.content;
+                    } else {
+                        const errors = {};
+                        raw = await await Promise.all(
+                            sub.url
+                                .split(/[\r\n]+/)
+                                .map((i) => i.trim())
+                                .filter((i) => i.length)
+                                .map(async (url) => {
+                                    try {
+                                        return await download(
+                                            url,
+                                            sub.ua,
+                                            undefined,
+                                            sub.proxy,
+                                        );
+                                    } catch (err) {
+                                        errors[url] = err;
+                                        $.error(
+                                            `订阅 ${sub.name} 的远程订阅 ${url} 发生错误: ${err}`,
+                                        );
+                                        return '';
+                                    }
+                                }),
+                        );
+                        if (
+                            !sub.ignoreFailedRemoteSub &&
+                            Object.keys(errors).length > 0
+                        ) {
+                            throw new Error(
+                                `订阅 ${sub.name} 的远程订阅 ${Object.keys(
+                                    errors,
+                                ).join(', ')} 发生错误, 请查看日志`,
+                            );
+                        }
+                        if (sub.mergeSources === 'localFirst') {
+                            raw.unshift(sub.content);
+                        } else if (sub.mergeSources === 'remoteFirst') {
+                            raw.push(sub.content);
+                        }
+                    }
+                    // parse proxies
+                    let currentProxies = (Array.isArray(raw) ? raw : [raw])
+                        .map((i) => ProxyUtils.parse(i))
+                        .flat();
+
+                    currentProxies.forEach((proxy) => {
+                        proxy.subName = sub.name;
+                        proxy.collectionName = collection.name;
+                    });
+
+                    // apply processors
+                    currentProxies = await ProxyUtils.process(
+                        currentProxies,
+                        sub.process || [],
+                        platform,
+                        { [sub.name]: sub, _collection: collection },
+                    );
+                    results[name] = currentProxies;
+                    processed++;
+                    $.info(
+                        `✅ 子订阅：${sub.name}加载成功，进度--${
+                            100 * (processed / subnames.length).toFixed(1)
+                        }% `,
+                    );
+                } catch (err) {
+                    processed++;
+                    errors[name] = err;
+                    $.error(
+                        `❌ 处理组合订阅中的子订阅: ${
+                            sub.name
+                        }时出现错误：${err}！进度--${
+                            100 * (processed / subnames.length).toFixed(1)
+                        }%`,
+                    );
+                }
+            }),
+        );
+        let collectionIgnoreFailedRemoteSub = collection.ignoreFailedRemoteSub;
+        if (ignoreFailedRemoteSub != null && ignoreFailedRemoteSub !== '') {
+            collectionIgnoreFailedRemoteSub = ignoreFailedRemoteSub;
+        }
+        if (
+            !collectionIgnoreFailedRemoteSub &&
+            Object.keys(errors).length > 0
+        ) {
+            throw new Error(
+                `组合订阅 ${name} 中的子订阅 ${Object.keys(errors).join(
+                    ', ',
+                )} 发生错误, 请查看日志`,
+            );
+        }
+
+        // merge proxies with the original order
+        let proxies = Array.prototype.concat.apply(
+            [],
+            subnames.map((name) => results[name] || []),
+        );
+
+        proxies.forEach((proxy) => {
+            proxy.collectionName = collection.name;
+        });
+
+        // apply own processors
+        proxies = await ProxyUtils.process(
+            proxies,
+            collection.process || [],
+            platform,
+            { _collection: collection },
+        );
+        if (proxies.length === 0) {
+            throw new Error(`组合订阅 ${name} 中不含有效节点`);
+        }
+        // check duplicate
+        const exist = {};
+        for (const proxy of proxies) {
+            if (exist[proxy.name]) {
+                $.notify(
+                    '🌍 Sub-Store',
+                    `⚠️ 组合订阅 ${name} 包含重复节点 ${proxy.name}！`,
+                    '请仔细检测配置！',
+                    {
+                        'media-url':
+                            'https://cdn3.iconfinder.com/data/icons/seo-outline-1/512/25_code_program_programming_develop_bug_search_developer-512.png',
+                    },
+                );
+                break;
+            }
+            exist[proxy.name] = true;
+        }
+        return ProxyUtils.produce(proxies, platform, produceType, produceOpts);
+    } else if (type === 'rule') {
+        const allRules = $.read(RULES_KEY);
+        const rule = findByName(allRules, name);
+        if (!rule) throw new Error(`找不到规则 ${name}`);
+        let rules = [];
+        for (let i = 0; i < rule.urls.length; i++) {
+            const url = rule.urls[i];
+            $.info(
+                `正在处理URL：${url}，进度--${
+                    100 * ((i + 1) / rule.urls.length).toFixed(1)
+                }% `,
+            );
+            try {
+                const { body } = await download(url);
+                const currentRules = RuleUtils.parse(body);
+                rules = rules.concat(currentRules);
+            } catch (err) {
+                $.error(
+                    `处理分流订阅中的URL: ${url}时出现错误：${err}! 该订阅已被跳过。`,
+                );
+            }
+        }
+        // remove duplicates
+        rules = await RuleUtils.process(rules, [
+            { type: 'Remove Duplicate Filter' },
+        ]);
+        // produce output
+        return RuleUtils.produce(rules, platform);
+    } else if (type === 'file') {
+        const allFiles = $.read(FILES_KEY);
+        const file = findByName(allFiles, name);
+        if (!file) throw new Error(`找不到文件 ${name}`);
+        let raw;
+        if (content && !['localFirst', 'remoteFirst'].includes(mergeSources)) {
+            raw = content;
+        } else if (url) {
+            const errors = {};
+            raw = await Promise.all(
+                url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)
+                    .map(async (url) => {
+                        try {
+                            return await download(url, ua || file.ua);
+                        } catch (err) {
+                            errors[url] = err;
+                            $.error(
+                                `文件 ${file.name} 的远程文件 ${url} 发生错误: ${err}`,
+                            );
+                            return '';
+                        }
+                    }),
+            );
+            let fileIgnoreFailedRemoteFile = file.ignoreFailedRemoteFile;
+            if (
+                ignoreFailedRemoteFile != null &&
+                ignoreFailedRemoteFile !== ''
+            ) {
+                fileIgnoreFailedRemoteFile = ignoreFailedRemoteFile;
+            }
+            if (!fileIgnoreFailedRemoteFile && Object.keys(errors).length > 0) {
+                throw new Error(
+                    `文件 ${file.name} 的远程文件 ${Object.keys(errors).join(
+                        ', ',
+                    )} 发生错误, 请查看日志`,
+                );
+            }
+            if (mergeSources === 'localFirst') {
+                raw.unshift(content);
+            } else if (mergeSources === 'remoteFirst') {
+                raw.push(content);
+            }
+        } else if (
+            file.source === 'local' &&
+            !['localFirst', 'remoteFirst'].includes(file.mergeSources)
+        ) {
+            raw = file.content;
+        } else {
+            const errors = {};
+            raw = await Promise.all(
+                file.url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)
+                    .map(async (url) => {
+                        try {
+                            return await download(url, ua || file.ua);
+                        } catch (err) {
+                            errors[url] = err;
+                            $.error(
+                                `文件 ${file.name} 的远程文件 ${url} 发生错误: ${err}`,
+                            );
+                            return '';
+                        }
+                    }),
+            );
+            let fileIgnoreFailedRemoteFile = file.ignoreFailedRemoteFile;
+            if (
+                ignoreFailedRemoteFile != null &&
+                ignoreFailedRemoteFile !== ''
+            ) {
+                fileIgnoreFailedRemoteFile = ignoreFailedRemoteFile;
+            }
+            if (!fileIgnoreFailedRemoteFile && Object.keys(errors).length > 0) {
+                throw new Error(
+                    `文件 ${file.name} 的远程文件 ${Object.keys(errors).join(
+                        ', ',
+                    )} 发生错误, 请查看日志`,
+                );
+            }
+            if (file.mergeSources === 'localFirst') {
+                raw.unshift(file.content);
+            } else if (file.mergeSources === 'remoteFirst') {
+                raw.push(file.content);
+            }
+        }
+        const files = (Array.isArray(raw) ? raw : [raw]).flat();
+        let filesContent = files
+            .filter((i) => i != null && i !== '')
+            .join('\n');
+
+        // apply processors
+        const processed =
+            Array.isArray(file.process) && file.process.length > 0
+                ? await ProxyUtils.process(
+                      { $files: files, $content: filesContent },
+                      file.process,
+                  )
+                : { $content: filesContent, $files: files };
+
+        return processed?.$content ?? '';
+    }
+}
+
+async function syncArtifacts() {
+    $.info('开始同步所有远程配置...');
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    const files = {};
+
+    try {
+        const invalid = [];
+        const allSubs = $.read(SUBS_KEY);
+        const allCols = $.read(COLLECTIONS_KEY);
+        const subNames = [];
+        allArtifacts.map((artifact) => {
+            if (artifact.sync && artifact.source) {
+                if (artifact.type === 'subscription') {
+                    const subName = artifact.source;
+                    const sub = findByName(allSubs, subName);
+                    if (sub && sub.url && !subNames.includes(subName)) {
+                        subNames.push(subName);
+                    }
+                } else if (artifact.type === 'collection') {
+                    const collection = findByName(allCols, artifact.source);
+                    if (collection && Array.isArray(collection.subscriptions)) {
+                        collection.subscriptions.map((subName) => {
+                            const sub = findByName(allSubs, subName);
+                            if (sub && sub.url && !subNames.includes(subName)) {
+                                subNames.push(subName);
+                            }
+                        });
+                    }
+                }
+            }
+        });
+
+        if (subNames.length > 0) {
+            await Promise.all(
+                subNames.map(async (subName) => {
+                    try {
+                        await produceArtifact({
+                            type: 'subscription',
+                            name: subName,
+                        });
+                    } catch (e) {
+                        // $.error(`${e.message ?? e}`);
+                    }
+                }),
+            );
+        }
+
+        await Promise.all(
+            allArtifacts.map(async (artifact) => {
+                try {
+                    if (artifact.sync && artifact.source) {
+                        $.info(`正在同步云配置：${artifact.name}...`);
+                        const output = await produceArtifact({
+                            type: artifact.type,
+                            name: artifact.source,
+                            platform: artifact.platform,
+                            produceOpts: {
+                                'include-unsupported-proxy':
+                                    artifact.includeUnsupportedProxy,
+                            },
+                        });
+
+                        // if (!output || output.length === 0)
+                        //     throw new Error('该配置的结果为空 不进行上传');
+
+                        files[encodeURIComponent(artifact.name)] = {
+                            content: output,
+                        };
+                    }
+                } catch (e) {
+                    $.error(
+                        `同步配置 ${artifact.name} 发生错误: ${e.message ?? e}`,
+                    );
+                    invalid.push(artifact.name);
+                }
+            }),
+        );
+
+        if (invalid.length > 0) {
+            throw new Error(
+                `同步配置 ${invalid.join(', ')} 发生错误 详情请查看日志`,
+            );
+        }
+
+        const resp = await syncToGist(files);
+        const body = JSON.parse(resp.body);
+
+        for (const artifact of allArtifacts) {
+            if (artifact.sync) {
+                artifact.updated = new Date().getTime();
+                // extract real url from gist
+                let files = body.files;
+                let isGitLab;
+                if (Array.isArray(files)) {
+                    isGitLab = true;
+                    files = Object.fromEntries(
+                        files.map((item) => [item.path, item]),
+                    );
+                }
+                const raw_url =
+                    files[encodeURIComponent(artifact.name)]?.raw_url;
+                const new_url = isGitLab
+                    ? raw_url
+                    : raw_url?.replace(/\/raw\/[^/]*\/(.*)/, '/raw/$1');
+                $.info(
+                    `上传配置完成\n文件列表: ${Object.keys(files).join(
+                        ', ',
+                    )}\n当前文件: ${encodeURIComponent(
+                        artifact.name,
+                    )}\n响应返回的原始链接: ${raw_url}\n处理完的新链接: ${new_url}`,
+                );
+                artifact.url = new_url;
+            }
+        }
+
+        $.write(allArtifacts, ARTIFACTS_KEY);
+        $.info('全部订阅同步成功！');
+    } catch (e) {
+        $.error(`同步订阅失败，原因：${e.message ?? e}`);
+        throw e;
+    }
+}
+async function syncAllArtifacts(_, res) {
+    $.info('开始同步所有远程配置...');
+    try {
+        await syncArtifacts();
+        success(res);
+    } catch (e) {
+        $.error(`同步订阅失败，原因：${e.message ?? e}`);
+        failed(
+            res,
+            new InternalServerError(
+                `FAILED_TO_SYNC_ARTIFACTS`,
+                `Failed to sync all artifacts`,
+                `Reason: ${e.message ?? e}`,
+            ),
+        );
+    }
+}
+
+async function syncArtifact(req, res) {
+    let { name } = req.params;
+    name = decodeURIComponent(name);
+    $.info(`开始同步远程配置 ${name}...`);
+    const allArtifacts = $.read(ARTIFACTS_KEY);
+    const artifact = findByName(allArtifacts, name);
+
+    if (!artifact) {
+        $.error(`找不到远程配置 ${name}`);
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_NOT_FOUND',
+                `找不到远程配置 ${name}`,
+            ),
+            404,
+        );
+        return;
+    }
+
+    if (!artifact.source) {
+        $.error(`远程配置 ${name} 未设置来源`);
+        failed(
+            res,
+            new ResourceNotFoundError(
+                'RESOURCE_HAS_NO_SOURCE',
+                `远程配置 ${name} 未设置来源`,
+            ),
+            404,
+        );
+        return;
+    }
+
+    try {
+        const output = await produceArtifact({
+            type: artifact.type,
+            name: artifact.source,
+            platform: artifact.platform,
+            produceOpts: {
+                'include-unsupported-proxy': artifact.includeUnsupportedProxy,
+            },
+        });
+
+        $.info(
+            `正在上传配置：${artifact.name}\n>>>${JSON.stringify(
+                artifact,
+                null,
+                2,
+            )}`,
+        );
+        // if (!output || output.length === 0)
+        //     throw new Error('该配置的结果为空 不进行上传');
+        const resp = await syncToGist({
+            [encodeURIComponent(artifact.name)]: {
+                content: output,
+            },
+        });
+        artifact.updated = new Date().getTime();
+        const body = JSON.parse(resp.body);
+        let files = body.files;
+        let isGitLab;
+        if (Array.isArray(files)) {
+            isGitLab = true;
+            files = Object.fromEntries(files.map((item) => [item.path, item]));
+        }
+        const raw_url = files[encodeURIComponent(artifact.name)]?.raw_url;
+        const new_url = isGitLab
+            ? raw_url
+            : raw_url?.replace(/\/raw\/[^/]*\/(.*)/, '/raw/$1');
+        $.info(
+            `上传配置完成\n文件列表: ${Object.keys(files).join(
+                ', ',
+            )}\n当前文件: ${encodeURIComponent(
+                artifact.name,
+            )}\n响应返回的原始链接: ${raw_url}\n处理完的新链接: ${new_url}`,
+        );
+        artifact.url = new_url;
+        $.write(allArtifacts, ARTIFACTS_KEY);
+        success(res, artifact);
+    } catch (err) {
+        $.error(`远程配置 ${artifact.name} 发生错误: ${err.message ?? err}`);
+        failed(
+            res,
+            new InternalServerError(
+                `FAILED_TO_SYNC_ARTIFACT`,
+                `Failed to sync artifact ${name}`,
+                `Reason: ${err}`,
+            ),
+        );
+    }
+}
+
+export { produceArtifact, syncArtifacts };

backend/src/test/proxy-parsers/loon.spec.js

@@ -0,0 +1,144 @@
+import getLoonParser from '@/core/proxy-utils/parsers/peggy/loon';
+import { describe, it } from 'mocha';
+import testcases from './testcases';
+import { expect } from 'chai';
+
+const parser = getLoonParser();
+
+describe('Loon', function () {
+    describe('shadowsocks', function () {
+        it('test shadowsocks simple', function () {
+            const { input, expected } = testcases.SS.SIMPLE;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks obfs + tls', function () {
+            const { input, expected } = testcases.SS.OBFS_TLS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks obfs + http', function () {
+            const { input, expected } = testcases.SS.OBFS_HTTP;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('shadowsocksr', function () {
+        it('test shadowsocksr simple', function () {
+            const { input, expected } = testcases.SSR.SIMPLE;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('trojan', function () {
+        it('test trojan simple', function () {
+            const { input, expected } = testcases.TROJAN.SIMPLE;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + ws', function () {
+            const { input, expected } = testcases.TROJAN.WS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + wss', function () {
+            const { input, expected } = testcases.TROJAN.WSS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('vmess', function () {
+        it('test vmess simple', function () {
+            const { input, expected } = testcases.VMESS.SIMPLE;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vmess + aead', function () {
+            const { input, expected } = testcases.VMESS.AEAD;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vmess + ws', function () {
+            const { input, expected } = testcases.VMESS.WS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vmess + wss', function () {
+            const { input, expected } = testcases.VMESS.WSS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vmess + http', function () {
+            const { input, expected } = testcases.VMESS.HTTP;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vmess + http + tls', function () {
+            const { input, expected } = testcases.VMESS.HTTP_TLS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+    });
+
+    describe('vless', function () {
+        it('test vless simple', function () {
+            const { input, expected } = testcases.VLESS.SIMPLE;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vless + ws', function () {
+            const { input, expected } = testcases.VLESS.WS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vless + wss', function () {
+            const { input, expected } = testcases.VLESS.WSS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vless + http', function () {
+            const { input, expected } = testcases.VLESS.HTTP;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+
+        it('test vless + http + tls', function () {
+            const { input, expected } = testcases.VLESS.HTTP_TLS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected.Loon);
+        });
+    });
+
+    describe('http(s)', function () {
+        it('test http simple', function () {
+            const { input, expected } = testcases.HTTP.SIMPLE;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+
+        it('test http with authentication', function () {
+            const { input, expected } = testcases.HTTP.AUTH;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+
+        it('test https', function () {
+            const { input, expected } = testcases.HTTP.TLS;
+            const proxy = parser.parse(input.Loon);
+            expect(proxy).eql(expected);
+        });
+    });
+});

backend/src/test/proxy-parsers/qx.spec.js

@@ -0,0 +1,142 @@
+import getQXParser from '@/core/proxy-utils/parsers/peggy/qx';
+import { describe, it } from 'mocha';
+import testcases from './testcases';
+import { expect } from 'chai';
+
+const parser = getQXParser();
+
+describe('QX', function () {
+    describe('shadowsocks', function () {
+        it('test shadowsocks simple', function () {
+            const { input, expected } = testcases.SS.SIMPLE;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks obfs + tls', function () {
+            const { input, expected } = testcases.SS.OBFS_TLS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks obfs + http', function () {
+            const { input, expected } = testcases.SS.OBFS_HTTP;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks v2ray-plugin + ws', function () {
+            const { input, expected } = testcases.SS.V2RAY_PLUGIN_WS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks v2ray-plugin + wss', function () {
+            const { input, expected } = testcases.SS.V2RAY_PLUGIN_WSS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('shadowsocksr', function () {
+        it('test shadowsocksr simple', function () {
+            const { input, expected } = testcases.SSR.SIMPLE;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('trojan', function () {
+        it('test trojan simple', function () {
+            const { input, expected } = testcases.TROJAN.SIMPLE;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + ws', function () {
+            const { input, expected } = testcases.TROJAN.WS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + wss', function () {
+            const { input, expected } = testcases.TROJAN.WSS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + tls fingerprint', function () {
+            const { input, expected } = testcases.TROJAN.TLS_FINGERPRINT;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('vmess', function () {
+        it('test vmess simple', function () {
+            const { input, expected } = testcases.VMESS.SIMPLE;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected.QX);
+        });
+
+        it('test vmess aead', function () {
+            const { input, expected } = testcases.VMESS.AEAD;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected.QX);
+        });
+
+        it('test vmess + ws', function () {
+            const { input, expected } = testcases.VMESS.WS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected.QX);
+        });
+
+        it('test vmess + wss', function () {
+            const { input, expected } = testcases.VMESS.WSS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected.QX);
+        });
+
+        it('test vmess + http', function () {
+            const { input, expected } = testcases.VMESS.HTTP;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected.QX);
+        });
+    });
+
+    describe('http', function () {
+        it('test http simple', function () {
+            const { input, expected } = testcases.HTTP.SIMPLE;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test http with authentication', function () {
+            const { input, expected } = testcases.HTTP.AUTH;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test https', function () {
+            const { input, expected } = testcases.HTTP.TLS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('socks5', function () {
+        it('test socks5 simple', function () {
+            const { input, expected } = testcases.SOCKS5.SIMPLE;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test socks5 with authentication', function () {
+            const { input, expected } = testcases.SOCKS5.AUTH;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+
+        it('test socks5 + tls', function () {
+            const { input, expected } = testcases.SOCKS5.TLS;
+            const proxy = parser.parse(input.QX);
+            expect(proxy).eql(expected);
+        });
+    });
+});

backend/src/test/proxy-parsers/surge.spec.js

@@ -0,0 +1,138 @@
+import getSurgeParser from '@/core/proxy-utils/parsers/peggy/surge';
+import { describe, it } from 'mocha';
+import testcases from './testcases';
+import { expect } from 'chai';
+
+const parser = getSurgeParser();
+
+describe('Surge', function () {
+    describe('shadowsocks', function () {
+        it('test shadowsocks simple', function () {
+            const { input, expected } = testcases.SS.SIMPLE;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks obfs + tls', function () {
+            const { input, expected } = testcases.SS.OBFS_TLS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+        it('test shadowsocks obfs + http', function () {
+            const { input, expected } = testcases.SS.OBFS_HTTP;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('trojan', function () {
+        it('test trojan simple', function () {
+            const { input, expected } = testcases.TROJAN.SIMPLE;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + ws', function () {
+            const { input, expected } = testcases.TROJAN.WS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + wss', function () {
+            const { input, expected } = testcases.TROJAN.WSS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test trojan + tls fingerprint', function () {
+            const { input, expected } = testcases.TROJAN.TLS_FINGERPRINT;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('vmess', function () {
+        it('test vmess simple', function () {
+            const { input, expected } = testcases.VMESS.SIMPLE;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected.Surge);
+        });
+
+        it('test vmess aead', function () {
+            const { input, expected } = testcases.VMESS.AEAD;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected.Surge);
+        });
+
+        it('test vmess + ws', function () {
+            const { input, expected } = testcases.VMESS.WS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected.Surge);
+        });
+
+        it('test vmess + wss', function () {
+            const { input, expected } = testcases.VMESS.WSS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected.Surge);
+        });
+    });
+
+    describe('http', function () {
+        it('test http simple', function () {
+            const { input, expected } = testcases.HTTP.SIMPLE;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test http with authentication', function () {
+            const { input, expected } = testcases.HTTP.AUTH;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test https', function () {
+            const { input, expected } = testcases.HTTP.TLS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('socks5', function () {
+        it('test socks5 simple', function () {
+            const { input, expected } = testcases.SOCKS5.SIMPLE;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test socks5 with authentication', function () {
+            const { input, expected } = testcases.SOCKS5.AUTH;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test socks5 + tls', function () {
+            const { input, expected } = testcases.SOCKS5.TLS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+    });
+
+    describe('snell', function () {
+        it('test snell simple', function () {
+            const { input, expected } = testcases.SNELL.SIMPLE;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test snell obfs + http', function () {
+            const { input, expected } = testcases.SNELL.OBFS_HTTP;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+
+        it('test snell obfs + tls', function () {
+            const { input, expected } = testcases.SNELL.OBFS_TLS;
+            const proxy = parser.parse(input.Surge);
+            expect(proxy).eql(expected);
+        });
+    });
+});

backend/src/test/proxy-parsers/testcases.js

@@ -0,0 +1,749 @@
+function createTestCases() {
+    const name = 'name';
+    const server = 'example.com';
+    const port = 10086;
+
+    const cipher = 'chacha20';
+
+    const username = 'username';
+    const password = 'password';
+
+    const obfs_host = 'obfs.com';
+    const obfs_path = '/resource/file';
+
+    const ssr_protocol = 'auth_chain_b';
+    const ssr_protocol_param = 'def';
+    const ssr_obfs = 'tls1.2_ticket_fastauth';
+    const ssr_obfs_param = 'obfs.com';
+
+    const uuid = '23ad6b10-8d1a-40f7-8ad0-e3e35cd32291';
+
+    const sni = 'sni.com';
+
+    const tls_fingerprint =
+        '67:1B:C8:F2:D4:60:DD:A7:EE:60:DA:BB:A3:F9:A4:D7:C8:29:0F:3E:2F:75:B6:A9:46:88:48:7D:D3:97:7E:98';
+
+    const SS = {
+        SIMPLE: {
+            input: {
+                Loon: `${name}=shadowsocks,${server},${port},${cipher},"${password}"`,
+                QX: `shadowsocks=${server}:${port},method=${cipher},password=${password},tag=${name}`,
+                Surge: `${name}=ss,${server},${port},encrypt-method=${cipher},password=${password}`,
+            },
+            expected: {
+                type: 'ss',
+                name,
+                server,
+                port,
+                cipher,
+                password,
+            },
+        },
+        OBFS_TLS: {
+            input: {
+                Loon: `${name}=shadowsocks,${server},${port},${cipher},"${password}",obfs-name=tls,obfs-uri=${obfs_path},obfs-host=${obfs_host}`,
+                QX: `shadowsocks=${server}:${port},method=${cipher},password=${password},obfs=tls,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+                Surge: `${name}=ss,${server},${port},encrypt-method=${cipher},password=${password},obfs=tls,obfs-host=${obfs_host},obfs-uri=${obfs_path}`,
+            },
+            expected: {
+                type: 'ss',
+                name,
+                server,
+                port,
+                cipher,
+                password,
+                plugin: 'obfs',
+                'plugin-opts': {
+                    mode: 'tls',
+                    path: obfs_path,
+                    host: obfs_host,
+                },
+            },
+        },
+        OBFS_HTTP: {
+            input: {
+                Loon: `${name}=shadowsocks,${server},${port},${cipher},"${password}",obfs-name=http,obfs-uri=${obfs_path},obfs-host=${obfs_host}`,
+                QX: `shadowsocks=${server}:${port},method=${cipher},password=${password},obfs=http,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+                Surge: `${name}=ss,${server},${port},encrypt-method=${cipher},password=${password},obfs=http,obfs-host=${obfs_host},obfs-uri=${obfs_path}`,
+            },
+            expected: {
+                type: 'ss',
+                name,
+                server,
+                port,
+                cipher,
+                password,
+                plugin: 'obfs',
+                'plugin-opts': {
+                    mode: 'http',
+                    path: obfs_path,
+                    host: obfs_host,
+                },
+            },
+        },
+        V2RAY_PLUGIN_WS: {
+            input: {
+                QX: `shadowsocks=${server}:${port},method=${cipher},password=${password},obfs=ws,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+            },
+            expected: {
+                type: 'ss',
+                name,
+                server,
+                port,
+                cipher,
+                password,
+                plugin: 'v2ray-plugin',
+                'plugin-opts': {
+                    mode: 'websocket',
+                    path: obfs_path,
+                    host: obfs_host,
+                },
+            },
+        },
+        V2RAY_PLUGIN_WSS: {
+            input: {
+                QX: `shadowsocks=${server}:${port},method=${cipher},password=${password},obfs=wss,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+            },
+            expected: {
+                type: 'ss',
+                name,
+                server,
+                port,
+                cipher,
+                password,
+                plugin: 'v2ray-plugin',
+                'plugin-opts': {
+                    mode: 'websocket',
+                    path: obfs_path,
+                    host: obfs_host,
+                    tls: true,
+                },
+            },
+        },
+    };
+    const SSR = {
+        SIMPLE: {
+            input: {
+                QX: `shadowsocks=${server}:${port},method=${cipher},password=${password},ssr-protocol=${ssr_protocol},ssr-protocol-param=${ssr_protocol_param},obfs=${ssr_obfs},obfs-host=${ssr_obfs_param},tag=${name}`,
+                Loon: `${name}=shadowsocksr,${server},${port},${cipher},"${password}",protocol=${ssr_protocol},protocol-param=${ssr_protocol_param},obfs=${ssr_obfs},obfs-param=${ssr_obfs_param}`,
+            },
+            expected: {
+                type: 'ssr',
+                name,
+                server,
+                port,
+                cipher,
+                password,
+                obfs: ssr_obfs,
+                protocol: ssr_protocol,
+                'obfs-param': ssr_obfs_param,
+                'protocol-param': ssr_protocol_param,
+            },
+        },
+    };
+    const TROJAN = {
+        SIMPLE: {
+            input: {
+                QX: `trojan=${server}:${port},password=${password},tag=${name}`,
+                Loon: `${name}=trojan,${server},${port},"${password}"`,
+                Surge: `${name}=trojan,${server},${port},password=${password}`,
+            },
+            expected: {
+                type: 'trojan',
+                name,
+                server,
+                port,
+                password,
+            },
+        },
+        WS: {
+            input: {
+                QX: `trojan=${server}:${port},password=${password},obfs=ws,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+                Loon: `${name}=trojan,${server},${port},"${password}",transport=ws,path=${obfs_path},host=${obfs_host}`,
+                Surge: `${name}=trojan,${server},${port},password=${password},ws=true,ws-path=${obfs_path},ws-headers=Host:${obfs_host}`,
+            },
+            expected: {
+                type: 'trojan',
+                name,
+                server,
+                port,
+                password,
+                network: 'ws',
+                'ws-opts': {
+                    path: obfs_path,
+                    headers: {
+                        Host: obfs_host,
+                    },
+                },
+            },
+        },
+        WSS: {
+            input: {
+                QX: `trojan=${server}:${port},password=${password},obfs=wss,obfs-host=${obfs_host},obfs-uri=${obfs_path},tls-verification=false,tls-host=${sni},tag=${name}`,
+                Loon: `${name}=trojan,${server},${port},"${password}",transport=ws,path=${obfs_path},host=${obfs_host},over-tls=true,tls-name=${sni},skip-cert-verify=true`,
+                Surge: `${name}=trojan,${server},${port},password=${password},ws=true,ws-path=${obfs_path},ws-headers=Host:${obfs_host},skip-cert-verify=true,sni=${sni},tls=true`,
+            },
+            expected: {
+                type: 'trojan',
+                name,
+                server,
+                port,
+                password,
+                network: 'ws',
+                tls: true,
+                'ws-opts': {
+                    path: obfs_path,
+                    headers: {
+                        Host: obfs_host,
+                    },
+                },
+                'skip-cert-verify': true,
+                sni,
+            },
+        },
+        TLS_FINGERPRINT: {
+            input: {
+                QX: `trojan=${server}:${port},password=${password},tls-verification=false,tls-host=${sni},tls-cert-sha256=${tls_fingerprint},tag=${name},over-tls=true`,
+                Surge: `${name}=trojan,${server},${port},password=${password},skip-cert-verify=true,sni=${sni},tls=true,server-cert-fingerprint-sha256=${tls_fingerprint}`,
+            },
+            expected: {
+                type: 'trojan',
+                name,
+                server,
+                port,
+                password,
+                tls: true,
+                'skip-cert-verify': true,
+                sni,
+                'tls-fingerprint': tls_fingerprint,
+            },
+        },
+    };
+    const VMESS = {
+        SIMPLE: {
+            input: {
+                QX: `vmess=${server}:${port},method=${cipher},password=${uuid},tag=${name}`,
+                Loon: `${name}=vmess,${server},${port},${cipher},"${uuid}"`,
+                Surge: `${name}=vmess,${server},${port},username=${uuid}`,
+            },
+            expected: {
+                QX: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    alterId: 0,
+                },
+                Loon: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    alterId: 0,
+                },
+                Surge: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher: 'none', // Surge lacks support for specifying cipher for vmess protocol!
+                    alterId: 0,
+                },
+            },
+        },
+        AEAD: {
+            input: {
+                QX: `vmess=${server}:${port},method=${cipher},password=${uuid},aead=true,tag=${name}`,
+                Loon: `${name}=vmess,${server},${port},${cipher},"${uuid}",alterId=0`,
+                Surge: `${name}=vmess,${server},${port},username=${uuid},vmess-aead=true`,
+            },
+            expected: {
+                QX: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    aead: true,
+                    alterId: 0,
+                },
+                Loon: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    alterId: 0,
+                },
+                Surge: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher: 'none', // Surge lacks support for specifying cipher for vmess protocol!
+                    alterId: 0,
+                    aead: true,
+                },
+            },
+        },
+        WS: {
+            input: {
+                QX: `vmess=${server}:${port},method=${cipher},password=${uuid},obfs=ws,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+                Loon: `${name}=vmess,${server},${port},${cipher},"${uuid}",transport=ws,host=${obfs_host},path=${obfs_path}`,
+                Surge: `${name}=vmess,${server},${port},username=${uuid},ws=true,ws-path=${obfs_path},ws-headers=Host:${obfs_host}`,
+            },
+            expected: {
+                QX: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    alterId: 0,
+                },
+                Loon: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    alterId: 0,
+                },
+                Surge: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher: 'none', // Surge lacks support for specifying cipher for vmess protocol!
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    alterId: 0,
+                },
+            },
+        },
+        WSS: {
+            input: {
+                QX: `vmess=${server}:${port},method=${cipher},password=${uuid},obfs=wss,obfs-host=${obfs_host},obfs-uri=${obfs_path},tls-verification=false,tls-host=${sni},tag=${name}`,
+                Loon: `${name}=vmess,${server},${port},${cipher},"${uuid}",transport=ws,host=${obfs_host},path=${obfs_path},over-tls=true,tls-name=${sni},skip-cert-verify=true`,
+                Surge: `${name}=vmess,${server},${port},username=${uuid},ws=true,ws-path=${obfs_path},ws-headers=Host:${obfs_host},skip-cert-verify=true,sni=${sni},tls=true`,
+            },
+            expected: {
+                QX: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    tls: true,
+                    'skip-cert-verify': true,
+                    sni,
+                    alterId: 0,
+                },
+                Loon: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    tls: true,
+                    'skip-cert-verify': true,
+                    sni,
+                    alterId: 0,
+                },
+                Surge: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher: 'none', // Surge lacks support for specifying cipher for vmess protocol!
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    tls: true,
+                    'skip-cert-verify': true,
+                    sni,
+                    alterId: 0,
+                },
+            },
+        },
+        HTTP: {
+            input: {
+                QX: `vmess=${server}:${port},method=${cipher},password=${uuid},obfs=http,obfs-host=${obfs_host},obfs-uri=${obfs_path},tag=${name}`,
+                Loon: `${name}=vmess,${server},${port},${cipher},"${uuid}",transport=http,host=${obfs_host},path=${obfs_path}`,
+            },
+            expected: {
+                QX: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'http',
+                    'http-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    alterId: 0,
+                },
+                Loon: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'http',
+                    'http-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    alterId: 0,
+                },
+            },
+        },
+        HTTP_TLS: {
+            input: {
+                Loon: `${name}=vmess,${server},${port},${cipher},"${uuid}",transport=http,host=${obfs_host},path=${obfs_path},over-tls=true,tls-name=${sni},skip-cert-verify=true`,
+            },
+            expected: {
+                Loon: {
+                    type: 'vmess',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    cipher,
+                    network: 'http',
+                    'http-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    tls: true,
+                    'skip-cert-verify': true,
+                    sni,
+                    alterId: 0,
+                },
+            },
+        },
+    };
+    const VLESS = {
+        SIMPLE: {
+            input: {
+                Loon: `${name}=vless,${server},${port},"${uuid}"`,
+            },
+            expected: {
+                Loon: {
+                    type: 'vless',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                },
+            },
+        },
+        WS: {
+            input: {
+                Loon: `${name}=vless,${server},${port},"${uuid}",transport=ws,host=${obfs_host},path=${obfs_path}`,
+            },
+            expected: {
+                Loon: {
+                    type: 'vless',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                },
+            },
+        },
+        WSS: {
+            input: {
+                Loon: `${name}=vless,${server},${port},"${uuid}",transport=ws,host=${obfs_host},path=${obfs_path},over-tls=true,tls-name=${sni},skip-cert-verify=true`,
+            },
+            expected: {
+                Loon: {
+                    type: 'vless',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    network: 'ws',
+                    'ws-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    tls: true,
+                    'skip-cert-verify': true,
+                    sni,
+                },
+            },
+        },
+        HTTP: {
+            input: {
+                Loon: `${name}=vless,${server},${port},"${uuid}",transport=http,host=${obfs_host},path=${obfs_path}`,
+            },
+            expected: {
+                Loon: {
+                    type: 'vless',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    network: 'http',
+                    'http-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                },
+            },
+        },
+        HTTP_TLS: {
+            input: {
+                Loon: `${name}=vless,${server},${port},"${uuid}",transport=http,host=${obfs_host},path=${obfs_path},over-tls=true,tls-name=${sni},skip-cert-verify=true`,
+            },
+            expected: {
+                Loon: {
+                    type: 'vless',
+                    name,
+                    server,
+                    port,
+                    uuid,
+                    network: 'http',
+                    'http-opts': {
+                        path: obfs_path,
+                        headers: {
+                            Host: obfs_host,
+                        },
+                    },
+                    tls: true,
+                    'skip-cert-verify': true,
+                    sni,
+                },
+            },
+        },
+    };
+    const HTTP = {
+        SIMPLE: {
+            input: {
+                Loon: `${name}=http,${server},${port}`,
+                QX: `http=${server}:${port},tag=${name}`,
+                Surge: `${name}=http,${server},${port}`,
+            },
+            expected: {
+                type: 'http',
+                name,
+                server,
+                port,
+            },
+        },
+        AUTH: {
+            input: {
+                Loon: `${name}=http,${server},${port},${username},"${password}"`,
+                QX: `http=${server}:${port},tag=${name},username=${username},password=${password}`,
+                Surge: `${name}=http,${server},${port},${username},${password}`,
+            },
+            expected: {
+                type: 'http',
+                name,
+                server,
+                port,
+                username,
+                password,
+            },
+        },
+        TLS: {
+            input: {
+                Loon: `${name}=https,${server},${port},${username},"${password}",tls-name=${sni},skip-cert-verify=true`,
+                QX: `http=${server}:${port},username=${username},password=${password},over-tls=true,tls-host=${sni},tls-verification=false,tag=${name}`,
+                Surge: `${name}=https,${server},${port},${username},${password},sni=${sni},skip-cert-verify=true`,
+            },
+            expected: {
+                type: 'http',
+                name,
+                server,
+                port,
+                username,
+                password,
+                sni,
+                'skip-cert-verify': true,
+                tls: true,
+            },
+        },
+    };
+    const SOCKS5 = {
+        SIMPLE: {
+            input: {
+                QX: `socks5=${server}:${port},tag=${name}`,
+                Surge: `${name}=socks5,${server},${port}`,
+            },
+            expected: {
+                type: 'socks5',
+                name,
+                server,
+                port,
+            },
+        },
+        AUTH: {
+            input: {
+                QX: `socks5=${server}:${port},tag=${name},username=${username},password=${password}`,
+                Surge: `${name}=socks5,${server},${port},${username},${password}`,
+            },
+            expected: {
+                type: 'socks5',
+                name,
+                server,
+                port,
+                username,
+                password,
+            },
+        },
+        TLS: {
+            input: {
+                QX: `socks5=${server}:${port},username=${username},password=${password},over-tls=true,tls-host=${sni},tls-verification=false,tag=${name}`,
+                Surge: `${name}=socks5-tls,${server},${port},${username},${password},sni=${sni},skip-cert-verify=true`,
+            },
+            expected: {
+                type: 'socks5',
+                name,
+                server,
+                port,
+                username,
+                password,
+                sni,
+                'skip-cert-verify': true,
+                tls: true,
+            },
+        },
+    };
+    const SNELL = {
+        SIMPLE: {
+            input: {
+                Surge: `${name}=snell,${server},${port},psk=${password},version=3`,
+            },
+            expected: {
+                type: 'snell',
+                name,
+                server,
+                port,
+                psk: password,
+                version: 3,
+            },
+        },
+        OBFS_HTTP: {
+            input: {
+                Surge: `${name}=snell,${server},${port},psk=${password},version=3,obfs=http,obfs-host=${obfs_host},obfs-uri=${obfs_path}`,
+            },
+            expected: {
+                type: 'snell',
+                name,
+                server,
+                port,
+                psk: password,
+                version: 3,
+                'obfs-opts': {
+                    mode: 'http',
+                    host: obfs_host,
+                    path: obfs_path,
+                },
+            },
+        },
+        OBFS_TLS: {
+            input: {
+                Surge: `${name}=snell,${server},${port},psk=${password},version=3,obfs=tls,obfs-host=${obfs_host},obfs-uri=${obfs_path}`,
+            },
+            expected: {
+                type: 'snell',
+                name,
+                server,
+                port,
+                psk: password,
+                version: 3,
+                'obfs-opts': {
+                    mode: 'tls',
+                    host: obfs_host,
+                    path: obfs_path,
+                },
+            },
+        },
+    };
+    return {
+        SS,
+        SSR,
+        VMESS,
+        VLESS,
+        TROJAN,
+        HTTP,
+        SOCKS5,
+        SNELL,
+    };
+}
+
+export default createTestCases();

backend/src/utils/database.js

@@ -0,0 +1,17 @@
+export function findByName(list, name) {
+    return list.find((item) => item.name === name);
+}
+
+export function findIndexByName(list, name) {
+    return list.findIndex((item) => item.name === name);
+}
+
+export function deleteByName(list, name) {
+    const idx = findIndexByName(list, name);
+    list.splice(idx, 1);
+}
+
+export function updateByName(list, name, newItem) {
+    const idx = findIndexByName(list, name);
+    list[idx] = newItem;
+}

backend/src/utils/download.js

@@ -0,0 +1,189 @@
+import { SETTINGS_KEY } from '@/constants';
+import { HTTP, ENV } from '@/vendor/open-api';
+import { hex_md5 } from '@/vendor/md5';
+import { getPolicyDescriptor } from '@/utils';
+import resourceCache from '@/utils/resource-cache';
+import headersResourceCache from '@/utils/headers-resource-cache';
+import {
+    getFlowField,
+    getFlowHeaders,
+    parseFlowHeaders,
+    validCheck,
+} from '@/utils/flow';
+import $ from '@/core/app';
+
+const tasks = new Map();
+
+export default async function download(
+    rawUrl,
+    ua,
+    timeout,
+    proxy,
+    skipCustomCache,
+) {
+    let $arguments = {};
+    let url = rawUrl.replace(/#noFlow$/, '');
+    const rawArgs = url.split('#');
+    url = url.split('#')[0];
+    if (rawArgs.length > 1) {
+        try {
+            // 支持 `#${encodeURIComponent(JSON.stringify({arg1: "1"}))}`
+            $arguments = JSON.parse(decodeURIComponent(rawArgs[1]));
+        } catch (e) {
+            for (const pair of rawArgs[1].split('&')) {
+                const key = pair.split('=')[0];
+                const value = pair.split('=')[1];
+                // 部分兼容之前的逻辑 const value = pair.split('=')[1] || true;
+                $arguments[key] =
+                    value == null || value === ''
+                        ? true
+                        : decodeURIComponent(value);
+            }
+        }
+    }
+    const customCacheKey = $arguments?.cacheKey
+        ? `#sub-store-cached-custom-${$arguments?.cacheKey}`
+        : undefined;
+
+    if (customCacheKey && !skipCustomCache) {
+        const cached = $.read(customCacheKey);
+        if (cached) {
+            $.info(
+                `乐观缓存: URL ${url}\n本次返回自定义缓存 ${$arguments?.cacheKey}\n并进行请求 尝试更新缓存`,
+            );
+            download(
+                rawUrl.replace(/(\?|&)cacheKey=.*?(&|$)/, ''),
+                ua,
+                timeout,
+                proxy,
+                true,
+            );
+            return cached;
+        }
+    }
+
+    // const downloadUrlMatch = url.match(/^\/api\/(file|module)\/(.+)/);
+    // if (downloadUrlMatch) {
+    //     let type = downloadUrlMatch?.[1];
+    //     let name = downloadUrlMatch?.[2];
+    //     if (name == null) {
+    //         throw new Error(`本地 ${type} URL 无效: ${url}`);
+    //     }
+    //     name = decodeURIComponent(name);
+    //     const key = type === 'module' ? MODULES_KEY : FILES_KEY;
+    //     const item = findByName($.read(key), name);
+    //     if (!item) {
+    //         throw new Error(`找不到本地 ${type}: ${name}`);
+    //     }
+
+    //     return item.content;
+    // }
+
+    const { isNode, isStash, isLoon, isShadowRocket, isQX } = ENV();
+    const { defaultUserAgent, defaultTimeout, cacheThreshold } =
+        $.read(SETTINGS_KEY);
+    const userAgent = ua || defaultUserAgent || 'clash.meta';
+    const requestTimeout = timeout || defaultTimeout;
+    const id = hex_md5(userAgent + url);
+    if (!isNode && tasks.has(id)) {
+        return tasks.get(id);
+    }
+
+    const http = HTTP({
+        headers: {
+            'User-Agent': userAgent,
+            ...(isStash && proxy
+                ? { 'X-Stash-Selected-Proxy': encodeURIComponent(proxy) }
+                : {}),
+            ...(isShadowRocket && proxy ? { 'X-Surge-Policy': proxy } : {}),
+        },
+        timeout: requestTimeout,
+    });
+
+    let result;
+
+    // try to find in app cache
+    const cached = resourceCache.get(id);
+    if (!$arguments?.noCache && cached && !skipCustomCache) {
+        $.info(`使用缓存: ${url}`);
+        result = cached;
+    } else {
+        $.info(
+            `Downloading...\nUser-Agent: ${userAgent}\nTimeout: ${requestTimeout}\nProxy: ${proxy}\nURL: ${url}`,
+        );
+        try {
+            const { body, headers } = await http.get({
+                url,
+                ...(proxy ? { proxy } : {}),
+                ...(isLoon && proxy ? { node: proxy } : {}),
+                ...(isQX && proxy ? { opts: { policy: proxy } } : {}),
+                ...(proxy ? getPolicyDescriptor(proxy) : {}),
+            });
+
+            if (headers) {
+                const flowInfo = getFlowField(headers);
+                if (flowInfo) {
+                    headersResourceCache.set(url, flowInfo);
+                }
+            }
+            if (body.replace(/\s/g, '').length === 0)
+                throw new Error(new Error('远程资源内容为空'));
+            let shouldCache = true;
+            if (cacheThreshold) {
+                const size = body.length / 1024;
+                if (size > cacheThreshold) {
+                    $.info(
+                        `资源大小 ${size.toFixed(
+                            2,
+                        )} KB 超过了 ${cacheThreshold} KB, 不缓存`,
+                    );
+                    shouldCache = false;
+                }
+            }
+            if (shouldCache) {
+                resourceCache.set(id, body);
+                if (customCacheKey) {
+                    $.info(
+                        `URL ${url}\n写入自定义缓存 ${$arguments?.cacheKey}`,
+                    );
+                    $.write(body, customCacheKey);
+                }
+            }
+
+            result = body;
+        } catch (e) {
+            if (customCacheKey) {
+                const cached = $.read(customCacheKey);
+                if (cached) {
+                    $.info(
+                        `无法下载 URL ${url}: ${
+                            e.message ?? e
+                        }\n使用自定义缓存 ${$arguments?.cacheKey}`,
+                    );
+                    return cached;
+                }
+            }
+            throw new Error(`无法下载 URL ${url}: ${e.message ?? e}`);
+        }
+    }
+
+    // 检查订阅有效性
+
+    if ($arguments?.validCheck) {
+        await validCheck(
+            parseFlowHeaders(
+                await getFlowHeaders(
+                    url,
+                    $arguments.flowUserAgent,
+                    undefined,
+                    proxy,
+                ),
+            ),
+        );
+    }
+
+    if (!isNode) {
+        tasks.set(id, result);
+    }
+    return result;
+}

backend/src/utils/env.js

@@ -0,0 +1,67 @@
+import { version as substoreVersion } from '../../package.json';
+import { ENV } from '@/vendor/open-api';
+
+const {
+    isNode,
+    isQX,
+    isLoon,
+    isSurge,
+    isStash,
+    isShadowRocket,
+    isLanceX,
+    isEgern,
+    isGUIforCores,
+} = ENV();
+let backend = 'Node';
+if (isNode) backend = 'Node';
+if (isQX) backend = 'QX';
+if (isLoon) backend = 'Loon';
+if (isSurge) backend = 'Surge';
+if (isStash) backend = 'Stash';
+if (isShadowRocket) backend = 'ShadowRocket';
+if (isEgern) backend = 'Egern';
+if (isLanceX) backend = 'LanceX';
+if (isGUIforCores) backend = 'GUI.for.Cores';
+
+let meta = {};
+
+try {
+    if (typeof $environment !== 'undefined') {
+        // eslint-disable-next-line no-undef
+        meta.env = $environment;
+    }
+    if (typeof $loon !== 'undefined') {
+        // eslint-disable-next-line no-undef
+        meta.loon = $loon;
+    }
+    if (typeof $script !== 'undefined') {
+        // eslint-disable-next-line no-undef
+        meta.script = $script;
+    }
+    if (typeof $Plugin !== 'undefined') {
+        // eslint-disable-next-line no-undef
+        meta.plugin = $Plugin;
+    }
+    if (isNode) {
+        meta.node = {
+            version: eval('process.version'),
+            argv: eval('process.argv'),
+            filename: eval('__filename'),
+            dirname: eval('__dirname'),
+            env: {},
+        };
+        const env = eval('process.env');
+        for (const key in env) {
+            if (/^SUB_STORE_/.test(key)) {
+                meta.node.env[key] = env[key];
+            }
+        }
+    }
+    // eslint-disable-next-line no-empty
+} catch (e) {}
+
+export default {
+    backend,
+    version: substoreVersion,
+    meta,
+};

backend/src/utils/flow.js

@@ -0,0 +1,227 @@
+import { SETTINGS_KEY } from '@/constants';
+import { HTTP, ENV } from '@/vendor/open-api';
+import { getPolicyDescriptor } from '@/utils';
+import $ from '@/core/app';
+import headersResourceCache from '@/utils/headers-resource-cache';
+
+export function getFlowField(headers) {
+    const subkey = Object.keys(headers).filter((k) =>
+        /SUBSCRIPTION-USERINFO/i.test(k),
+    )[0];
+    return headers[subkey];
+}
+export async function getFlowHeaders(rawUrl, ua, timeout, proxy) {
+    let url = rawUrl;
+    let $arguments = {};
+    const rawArgs = url.split('#');
+    url = url.split('#')[0];
+    if (rawArgs.length > 1) {
+        try {
+            // 支持 `#${encodeURIComponent(JSON.stringify({arg1: "1"}))}`
+            $arguments = JSON.parse(decodeURIComponent(rawArgs[1]));
+        } catch (e) {
+            for (const pair of rawArgs[1].split('&')) {
+                const key = pair.split('=')[0];
+                const value = pair.split('=')[1];
+                // 部分兼容之前的逻辑 const value = pair.split('=')[1] || true;
+                $arguments[key] =
+                    value == null || value === ''
+                        ? true
+                        : decodeURIComponent(value);
+            }
+        }
+    }
+    if ($arguments?.noFlow) {
+        return;
+    }
+    const { isStash, isLoon, isShadowRocket, isQX } = ENV();
+    const cached = headersResourceCache.get(url);
+    let flowInfo;
+    if (!$arguments?.noCache && cached) {
+        // $.info(`使用缓存的流量信息: ${url}`);
+        flowInfo = cached;
+    } else {
+        const { defaultFlowUserAgent, defaultTimeout } = $.read(SETTINGS_KEY);
+        const userAgent =
+            ua ||
+            defaultFlowUserAgent ||
+            'Quantumult%20X/1.0.30 (iPhone14,2; iOS 15.6)';
+        const requestTimeout = timeout || defaultTimeout;
+        const http = HTTP();
+        try {
+            $.info(
+                `使用 HEAD 方法获取流量信息: ${url}, User-Agent: ${
+                    userAgent || ''
+                }`,
+            );
+            const { headers } = await http.head({
+                url: url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)[0],
+                headers: {
+                    'User-Agent': userAgent,
+                    ...(isStash && proxy
+                        ? {
+                              'X-Stash-Selected-Proxy':
+                                  encodeURIComponent(proxy),
+                          }
+                        : {}),
+                    ...(isShadowRocket && proxy
+                        ? { 'X-Surge-Policy': proxy }
+                        : {}),
+                },
+                timeout: requestTimeout,
+                ...(proxy ? { proxy } : {}),
+                ...(isLoon && proxy ? { node: proxy } : {}),
+                ...(isQX && proxy ? { opts: { policy: proxy } } : {}),
+                ...(proxy ? getPolicyDescriptor(proxy) : {}),
+            });
+            flowInfo = getFlowField(headers);
+        } catch (e) {
+            $.error(
+                `使用 HEAD 方法获取流量信息失败: ${url}, User-Agent: ${
+                    userAgent || ''
+                }: ${e.message ?? e}`,
+            );
+        }
+        if (!flowInfo) {
+            $.info(
+                `使用 GET 方法获取流量信息: ${url}, User-Agent: ${
+                    userAgent || ''
+                }`,
+            );
+            const { headers } = await http.get({
+                url: url
+                    .split(/[\r\n]+/)
+                    .map((i) => i.trim())
+                    .filter((i) => i.length)[0],
+                headers: {
+                    'User-Agent': userAgent,
+                },
+                timeout: requestTimeout,
+            });
+            flowInfo = getFlowField(headers);
+        }
+        if (flowInfo) {
+            headersResourceCache.set(url, flowInfo);
+        }
+    }
+
+    return flowInfo;
+}
+export function parseFlowHeaders(flowHeaders) {
+    if (!flowHeaders) return;
+    // unit is KB
+    const uploadMatch = flowHeaders.match(
+        /upload=([-+]?)([0-9]*\.?[0-9]+([eE][-+]?[0-9]+)?)/,
+    );
+    const upload = Number(uploadMatch[1] + uploadMatch[2]);
+
+    const downloadMatch = flowHeaders.match(
+        /download=([-+]?)([0-9]*\.?[0-9]+([eE][-+]?[0-9]+)?)/,
+    );
+    const download = Number(downloadMatch[1] + downloadMatch[2]);
+    const totalMatch = flowHeaders.match(
+        /total=([-+]?)([0-9]*\.?[0-9]+([eE][-+]?[0-9]+)?)/,
+    );
+    const total = Number(totalMatch[1] + totalMatch[2]);
+
+    // optional expire timestamp
+    const expireMatch = flowHeaders.match(
+        /expire=([-+]?)([0-9]*\.?[0-9]+([eE][-+]?[0-9]+)?)/,
+    );
+    const expires = expireMatch
+        ? Number(expireMatch[1] + expireMatch[2])
+        : undefined;
+
+    return { expires, total, usage: { upload, download } };
+}
+export function flowTransfer(flow, unit = 'B') {
+    const unitList = ['B', 'KB', 'MB', 'GB', 'TB', 'PB', 'EB', 'ZB', 'YB'];
+    let unitIndex = unitList.indexOf(unit);
+
+    return flow < 1024 || unitIndex === unitList.length - 1
+        ? { value: flow.toFixed(1), unit: unit }
+        : flowTransfer(flow / 1024, unitList[++unitIndex]);
+}
+
+export function validCheck(flow) {
+    if (!flow) {
+        throw new Error('没有流量信息');
+    }
+    if (flow?.expires && flow.expires * 1000 < Date.now()) {
+        const date = new Date(flow.expires * 1000).toLocaleDateString();
+        throw new Error(`订阅已过期: ${date}`);
+    }
+    if (flow?.total) {
+        const upload = flow.usage?.upload || 0;
+        const download = flow.usage?.download || 0;
+        if (flow.total - upload - download < 0) {
+            const current = upload + download;
+            const currT = flowTransfer(Math.abs(current));
+            currT.value = current < 0 ? '-' + currT.value : currT.value;
+            const totalT = flowTransfer(flow.total);
+            throw new Error(
+                `流量已用完: ${currT.value} ${currT.unit} / ${totalT.value} ${totalT.unit}`,
+            );
+        }
+    }
+}
+
+export function getRmainingDays(opt = {}) {
+    try {
+        let { resetDay, startDate, cycleDays } = opt;
+        if (['string', 'number'].includes(typeof opt)) {
+            resetDay = opt;
+        }
+
+        if (startDate && cycleDays) {
+            cycleDays = parseInt(cycleDays);
+            if (isNaN(cycleDays) || cycleDays <= 0)
+                throw new Error('重置周期应为正整数');
+            if (!startDate || !Date.parse(startDate))
+                throw new Error('开始日期不合法');
+
+            const start = new Date(startDate);
+            const today = new Date();
+            start.setHours(0, 0, 0, 0);
+            today.setHours(0, 0, 0, 0);
+            if (start.getTime() > today.getTime())
+                throw new Error('开始日期应早于现在');
+
+            let resetDate = new Date(startDate);
+            resetDate.setDate(resetDate.getDate() + cycleDays);
+
+            while (resetDate < today) {
+                resetDate.setDate(resetDate.getDate() + cycleDays);
+            }
+
+            resetDate.setHours(0, 0, 0, 0);
+            const timeDiff = resetDate.getTime() - today.getTime();
+            const daysDiff = Math.ceil(timeDiff / (1000 * 3600 * 24));
+
+            return daysDiff;
+        } else {
+            if (!resetDay) return;
+            resetDay = parseInt(resetDay);
+            if (isNaN(resetDay) || resetDay <= 0 || resetDay > 31)
+                throw new Error('月重置日应为 1-31 之间的整数');
+            let now = new Date();
+            let today = now.getDate();
+            let month = now.getMonth();
+            let year = now.getFullYear();
+            let daysInMonth;
+
+            if (resetDay > today) {
+                daysInMonth = 0;
+            } else {
+                daysInMonth = new Date(year, month + 1, 0).getDate();
+            }
+
+            return daysInMonth - today + resetDay;
+        }
+    } catch (e) {
+        $.error(`getRmainingDays failed: ${e.message ?? e}`);
+    }
+}

backend/src/utils/geo.js

@@ -0,0 +1,459 @@
+import $ from '@/core/app';
+
+const ISOFlags = {
+    '🏳️‍🌈': ['EXP', 'BAND'],
+    '🇸🇱': ['TEST', 'SOS'],
+    '🇦🇩': ['AD', 'AND'],
+    '🇦🇪': ['AE', 'ARE'],
+    '🇦🇫': ['AF', 'AFG'],
+    '🇦🇱': ['AL', 'ALB'],
+    '🇦🇲': ['AM', 'ARM'],
+    '🇦🇷': ['AR', 'ARG'],
+    '🇦🇹': ['AT', 'AUT'],
+    '🇦🇺': ['AU', 'AUS'],
+    '🇦🇿': ['AZ', 'AZE'],
+    '🇧🇦': ['BA', 'BIH'],
+    '🇧🇩': ['BD', 'BGD'],
+    '🇧🇪': ['BE', 'BEL'],
+    '🇧🇬': ['BG', 'BGR'],
+    '🇧🇭': ['BH', 'BHR'],
+    '🇧🇷': ['BR', 'BRA'],
+    '🇧🇾': ['BY', 'BLR'],
+    '🇨🇦': ['CA', 'CAN'],
+    '🇨🇭': ['CH', 'CHE'],
+    '🇨🇱': ['CL', 'CHL'],
+    '🇨🇴': ['CO', 'COL'],
+    '🇨🇷': ['CR', 'CRI'],
+    '🇨🇾': ['CY', 'CYP'],
+    '🇨🇿': ['CZ', 'CZE'],
+    '🇩🇪': ['DE', 'DEU'],
+    '🇩🇰': ['DK', 'DNK'],
+    '🇪🇨': ['EC', 'ECU'],
+    '🇪🇪': ['EE', 'EST'],
+    '🇪🇬': ['EG', 'EGY'],
+    '🇪🇸': ['ES', 'ESP'],
+    '🇪🇺': ['EU'],
+    '🇫🇮': ['FI', 'FIN'],
+    '🇫🇷': ['FR', 'FRA'],
+    '🇬🇧': ['GB', 'GBR', 'UK'],
+    '🇬🇪': ['GE', 'GEO'],
+    '🇬🇷': ['GR', 'GRC'],
+    '🇭🇰': ['HK', 'HKG', 'HKT', 'HKBN', 'HGC', 'WTT', 'CMI'],
+    '🇭🇷': ['HR', 'HRV'],
+    '🇭🇺': ['HU', 'HUN'],
+    '🇯🇴': ['JO', 'JOR'],
+    '🇯🇵': ['JP', 'JPN', 'TYO'],
+    '🇰🇪': ['KE', 'KEN'],
+    '🇰🇬': ['KG', 'KGZ'],
+    '🇰🇭': ['KH', 'KGZ'],
+    '🇰🇵': ['KP', 'PRK'],
+    '🇰🇷': ['KR', 'KOR', 'SEL'],
+    '🇰🇿': ['KZ', 'KAZ'],
+    '🇮🇩': ['ID', 'IDN'],
+    '🇮🇪': ['IE', 'IRL'],
+    '🇮🇱': ['IL', 'ISR'],
+    '🇮🇲': ['IM', 'IMN'],
+    '🇮🇳': ['IN', 'IND'],
+    '🇮🇷': ['IR', 'IRN'],
+    '🇮🇸': ['IS', 'ISL'],
+    '🇮🇹': ['IT', 'ITA'],
+    '🇱🇹': ['LT', 'LTU'],
+    '🇱🇺': ['LU', 'LUX'],
+    '🇱🇻': ['LV', 'LVA'],
+    '🇲🇦': ['MA', 'MAR'],
+    '🇲🇩': ['MD', 'MDA'],
+    '🇳🇬': ['NG', 'NGA'],
+    '🇲🇰': ['MK', 'MKD'],
+    '🇲🇳': ['MN', 'MNG'],
+    '🇲🇴': ['MO', 'MAC', 'CTM'],
+    '🇲🇹': ['MT', 'MLT'],
+    '🇲🇽': ['MX', 'MEX'],
+    '🇲🇾': ['MY', 'MYS'],
+    '🇳🇱': ['NL', 'NLD', 'AMS'],
+    '🇳🇴': ['NO', 'NOR'],
+    '🇳🇵': ['NP', 'NPL'],
+    '🇳🇿': ['NZ', 'NZL'],
+    '🇵🇦': ['PA', 'PAN'],
+    '🇵🇪': ['PE', 'PER'],
+    '🇵🇭': ['PH', 'PHL'],
+    '🇵🇰': ['PK', 'PAK'],
+    '🇵🇱': ['PL', 'POL'],
+    '🇵🇷': ['PR', 'PRI'],
+    '🇵🇹': ['PT', 'PRT'],
+    '🇵🇾': ['PY', 'PRY'],
+    '🇷🇴': ['RO', 'ROU'],
+    '🇷🇸': ['RS', 'SRB'],
+    '🇷🇪': ['RE', 'REU'],
+    '🇷🇺': ['RU', 'RUS'],
+    '🇸🇦': ['SA', 'SAU'],
+    '🇸🇪': ['SE', 'SWE'],
+    '🇸🇬': ['SG', 'SGP'],
+    '🇸🇮': ['SI', 'SVN'],
+    '🇸🇰': ['SK', 'SVK'],
+    '🇹🇭': ['TH', 'THA'],
+    '🇹🇳': ['TN', 'TUN'],
+    '🇹🇷': ['TR', 'TUR'],
+    '🇹🇼': ['TW', 'TWN', 'CHT', 'HINET', 'ROC'],
+    '🇺🇦': ['UA', 'UKR'],
+    '🇺🇸': ['US', 'USA', 'LAX', 'SFO', 'SJC'],
+    '🇺🇾': ['UY', 'URY'],
+    '🇻🇪': ['VE', 'VEN'],
+    '🇻🇳': ['VN', 'VNM'],
+    '🇿🇦': ['ZA', 'ZAF', 'JNB'],
+    '🇨🇳': ['CN', 'CHN', 'BACK'],
+};
+// get proxy flag according to its name
+export function getFlag(name) {
+    // flags from @KOP-XIAO: https://github.com/KOP-XIAO/QuantumultX/blob/master/Scripts/resource-parser.js
+    // flags from @surgioproject: https://github.com/surgioproject/surgio/blob/master/lib/misc/flag_cn.ts
+
+    // refer: https://zh.wikipedia.org/wiki/ISO_3166-1二位字母代码
+    // refer: https://zh.wikipedia.org/wiki/ISO_3166-1三位字母代码
+    const Flags = {
+        '🏳️‍🌈': ['流量', '时间', '过期', 'Bandwidth', 'Expire'],
+        '🇸🇱': ['应急', '测试节点'],
+        '🇦🇩': ['Andorra', '安道尔'],
+        '🇦🇪': ['United Arab Emirates', '阿联酋', '迪拜'],
+        '🇦🇫': ['Afghanistan', '阿富汗'],
+        '🇦🇱': ['Albania', '阿尔巴尼亚', '阿爾巴尼亞'],
+        '🇦🇲': ['Armenia', '亚美尼亚'],
+        '🇦🇷': ['Argentina', '阿根廷'],
+        '🇦🇹': ['Austria', '奥地利', '奧地利', '维也纳'],
+        '🇦🇺': [
+            'Australia',
+            '澳大利亚',
+            '澳洲',
+            '墨尔本',
+            '悉尼',
+            '土澳',
+            '京澳',
+            '廣澳',
+            '滬澳',
+            '沪澳',
+            '广澳',
+            'Sydney',
+        ],
+        '🇦🇿': ['Azerbaijan', '阿塞拜疆'],
+        '🇧🇦': ['Bosnia and Herzegovina', '波黑共和国', '波黑'],
+        '🇧🇩': ['Bangladesh', '孟加拉国', '孟加拉'],
+        '🇧🇪': ['Belgium', '比利时', '比利時'],
+        '🇧🇬': ['Bulgaria', '保加利亚', '保加利亞'],
+        '🇧🇭': ['Bahrain', '巴林'],
+        '🇧🇷': ['Brazil', '巴西', '圣保罗'],
+        '🇧🇾': ['Belarus', '白俄罗斯', '白俄'],
+        '🇨🇦': [
+            'Canada',
+            '加拿大',
+            '蒙特利尔',
+            '温哥华',
+            '楓葉',
+            '枫叶',
+            '滑铁卢',
+            '多伦多',
+            'Waterloo',
+        ],
+        '🇨🇭': ['Switzerland', '瑞士', '苏黎世', 'Zurich'],
+        '🇨🇱': ['Chile', '智利'],
+        '🇨🇴': ['Colombia', '哥伦比亚'],
+        '🇨🇷': ['Costa Rica', '哥斯达黎加'],
+        '🇨🇾': ['Cyprus', '塞浦路斯'],
+        '🇨🇿': ['Czechia', '捷克'],
+        '🇩🇪': [
+            'German',
+            '德国',
+            '德國',
+            '京德',
+            '滬德',
+            '廣德',
+            '沪德',
+            '广德',
+            '法兰克福',
+            'Frankfurt',
+            '德意志',
+        ],
+        '🇩🇰': ['Denmark', '丹麦', '丹麥'],
+        '🇪🇨': ['Ecuador', '厄瓜多尔'],
+        '🇪🇪': ['Estonia', '爱沙尼亚'],
+        '🇪🇬': ['Egypt', '埃及'],
+        '🇪🇸': ['Spain', '西班牙'],
+        '🇪🇺': ['European Union', '欧盟', '欧罗巴'],
+        '🇫🇮': ['Finland', '芬兰', '芬蘭', '赫尔辛基'],
+        '🇫🇷': ['France', '法国', '法國', '巴黎'],
+        '🇬🇧': [
+            'Great Britain',
+            '英国',
+            'England',
+            'United Kingdom',
+            '伦敦',
+            '英',
+            'London',
+        ],
+        '🇬🇪': ['Georgia', '格鲁吉亚', '格魯吉亞'],
+        '🇬🇷': ['Greece', '希腊', '希臘'],
+        '🇭🇰': [
+            'Hongkong',
+            '香港',
+            'Hong Kong',
+            'HongKong',
+            'HONG KONG',
+            '深港',
+            '沪港',
+            '呼港',
+            '穗港',
+            '京港',
+            '港',
+        ],
+        '🇭🇷': ['Croatia', '克罗地亚', '克羅地亞'],
+        '🇭🇺': ['Hungary', '匈牙利'],
+        '🇯🇴': ['Jordan', '约旦'],
+        '🇯🇵': [
+            'Japan',
+            '日本',
+            '东京',
+            '大阪',
+            '埼玉',
+            '沪日',
+            '穗日',
+            '川日',
+            '中日',
+            '泉日',
+            '杭日',
+            '深日',
+            '辽日',
+            '广日',
+            '大坂',
+            'Osaka',
+            'Tokyo',
+        ],
+        '🇰🇪': ['Kenya', '肯尼亚'],
+        '🇰🇬': ['Kyrgyzstan', '吉尔吉斯斯坦'],
+        '🇰🇭': ['Cambodia', '柬埔寨'],
+        '🇰🇵': ['North Korea', '朝鲜'],
+        '🇰🇷': [
+            'Korea',
+            '韩国',
+            '韓國',
+            '韩',
+            '韓',
+            '首尔',
+            '春川',
+            'Chuncheon',
+            'Seoul',
+        ],
+        '🇰🇿': ['Kazakhstan', '哈萨克斯坦', '哈萨克'],
+        '🇮🇩': ['Indonesia', '印尼', '印度尼西亚', '雅加达'],
+        '🇮🇪': ['Ireland', '爱尔兰', '愛爾蘭', '都柏林'],
+        '🇮🇱': ['Israel', '以色列'],
+        '🇮🇲': ['Isle of Man', '马恩岛', '馬恩島'],
+        '🇮🇳': ['India', '印度', '孟买', 'MFumbai'],
+        '🇮🇷': ['Iran', '伊朗'],
+        '🇮🇸': ['Iceland', '冰岛', '冰島'],
+        '🇮🇹': ['Italy', '意大利', '義大利', '米兰', 'Nachash'],
+        '🇱🇹': ['Lithuania', '立陶宛'],
+        '🇱🇺': ['Luxembourg', '卢森堡'],
+        '🇱🇻': ['Latvia', '拉脱维亚', 'Latvija'],
+        '🇲🇦': ['Morocco', '摩洛哥'],
+        '🇲🇩': ['Moldova', '摩尔多瓦', '摩爾多瓦'],
+        '🇳🇬': ['Nigeria', '尼日利亚', '尼日利亞'],
+        '🇲🇰': ['Macedonia', '马其顿', '馬其頓'],
+        '🇲🇳': ['Mongolia', '蒙古'],
+        '🇲🇴': ['Macao', '澳门', '澳門', 'CTM'],
+        '🇲🇹': ['Malta', '马耳他'],
+        '🇲🇽': ['Mexico', '墨西哥'],
+        '🇲🇾': ['Malaysia', '马来', '馬來', '吉隆坡', '大馬'],
+        '🇳🇱': ['Netherlands', '荷兰', '荷蘭', '尼德蘭', '阿姆斯特丹'],
+        '🇳🇴': ['Norway', '挪威'],
+        '🇳🇵': ['Nepal', '尼泊尔'],
+        '🇳🇿': ['New Zealand', '新西兰', '新西蘭'],
+        '🇵🇦': ['Panama', '巴拿马'],
+        '🇵🇪': ['Peru', '秘鲁', '祕魯'],
+        '🇵🇭': ['Philippines', '菲律宾', '菲律賓'],
+        '🇵🇰': ['Pakistan', '巴基斯坦'],
+        '🇵🇱': ['Poland', '波兰', '波蘭'],
+        '🇵🇷': ['Puerto Rico', '波多黎各'],
+        '🇵🇹': ['Portugal', '葡萄牙'],
+        '🇵🇾': ['Paraguay', '巴拉圭'],
+        '🇷🇴': ['Romania', '罗马尼亚'],
+        '🇷🇸': ['Serbia', '塞尔维亚'],
+        '🇷🇪': ['Réunion', '留尼汪', '法属留尼汪'],
+        '🇷🇺': [
+            'Russia',
+            '俄罗斯',
+            '俄国',
+            '俄羅斯',
+            '伯力',
+            '莫斯科',
+            '圣彼得堡',
+            '西伯利亚',
+            '京俄',
+            '杭俄',
+            '廣俄',
+            '滬俄',
+            '广俄',
+            '沪俄',
+            'Moscow',
+        ],
+        '🇸🇦': ['Saudi', '沙特阿拉伯', '沙特'],
+        '🇸🇪': ['Sweden', '瑞典'],
+        '🇸🇬': [
+            'Singapore',
+            '新加坡',
+            '狮城',
+            '沪新',
+            '京新',
+            '中新',
+            '泉新',
+            '穗新',
+            '深新',
+            '杭新',
+            '广新',
+            '廣新',
+            '滬新',
+        ],
+        '🇸🇮': ['Slovenia', '斯洛文尼亚'],
+        '🇸🇰': ['Slovakia', '斯洛伐克'],
+        '🇹🇭': ['Thailand', '泰国', '泰國', '曼谷'],
+        '🇹🇳': ['Tunisia', '突尼斯'],
+        '🇹🇷': ['Turkey', '土耳其', '伊斯坦布尔'],
+        '🇹🇼': [
+            'Taiwan',
+            '台湾',
+            '臺灣',
+            '台灣',
+            '中華民國',
+            '中华民国',
+            '台北',
+            '台中',
+            '新北',
+            '彰化',
+            '台',
+            '臺',
+            'Taipei',
+        ],
+        '🇺🇦': ['Ukraine', '乌克兰', '烏克蘭'],
+        '🇺🇸': [
+            'United States',
+            '美国',
+            'America',
+            '美',
+            '京美',
+            '波特兰',
+            '达拉斯',
+            '俄勒冈',
+            '凤凰城',
+            '费利蒙',
+            '硅谷',
+            '矽谷',
+            '拉斯维加斯',
+            '洛杉矶',
+            '圣何塞',
+            '圣克拉拉',
+            '西雅图',
+            '芝加哥',
+            '沪美',
+            '哥伦布',
+            '纽约',
+            'Los Angeles',
+            'San Jose',
+            'Sillicon Valley',
+            'Michigan',
+        ],
+        '🇺🇾': ['Uruguay', '乌拉圭'],
+        '🇻🇪': ['Venezuela', '委内瑞拉'],
+        '🇻🇳': ['Vietnam', '越南', '胡志明'],
+        '🇿🇦': ['South Africa', '南非'],
+        '🇨🇳': [
+            'China',
+            '中国',
+            '中國',
+            '回国',
+            '回國',
+            '国内',
+            '國內',
+            '华东',
+            '华西',
+            '华南',
+            '华北',
+            '华中',
+            '江苏',
+            '北京',
+            '上海',
+            '广州',
+            '深圳',
+            '杭州',
+            '徐州',
+            '青岛',
+            '宁波',
+            '镇江',
+        ],
+    };
+
+    // 原旗帜或空
+    let Flag =
+        name.match(/[\uD83C][\uDDE6-\uDDFF][\uD83C][\uDDE6-\uDDFF]/)?.[0] ||
+        '🏴‍☠️';
+    //console.log(`oldFlag = ${Flag}`)
+    // 旗帜匹配
+    for (let flag of Object.keys(Flags)) {
+        const keywords = Flags[flag];
+        //console.log(`keywords = ${keywords}`)
+        if (
+            // 不精确匹配（只要包含就算,忽略大小写)
+            keywords.some((keyword) => RegExp(`${keyword}`, 'i').test(name))
+        ) {
+            if (/内蒙古/.test(name) && ['🇲🇳'].includes(flag)) {
+                return (Flag = '🇨🇳');
+            }
+            return (Flag = flag);
+        }
+    }
+    // ISO旗帜匹配
+    for (let flag of Object.keys(ISOFlags)) {
+        const keywords = ISOFlags[flag];
+        //console.log(`keywords = ${keywords}`)
+        if (
+            // 精确匹配(两侧均有分割)
+            keywords.some((keyword) =>
+                RegExp(`(^|[^a-zA-Z])${keyword}([^a-zA-Z]|$)`).test(name),
+            )
+        ) {
+            //console.log(`ISOFlag = ${flag}`)
+            return (Flag = flag);
+        }
+    }
+
+    //console.log(`Final Flag = ${Flag}`)
+    return Flag;
+}
+
+export function getISO(name) {
+    return ISOFlags[getFlag(name)]?.[0];
+}
+
+export class MMDB {
+    constructor({ country, asn } = {}) {
+        if ($.env.isNode) {
+            const Reader = eval(`require("@maxmind/geoip2-node")`).Reader;
+            const fs = eval("require('fs')");
+            const countryFile =
+                country || eval('process.env.SUB_STORE_MMDB_COUNTRY_PATH');
+            const asnFile = asn || eval('process.env.SUB_STORE_MMDB_ASN_PATH');
+            if (countryFile) {
+                this.countryReader = Reader.openBuffer(
+                    fs.readFileSync(countryFile),
+                );
+            }
+            if (asnFile) {
+                if (!fs.existsSync(asnFile))
+                    throw new Error('GeoLite2 ASN MMDB does not exist');
+                this.asnReader = Reader.openBuffer(fs.readFileSync(asnFile));
+            }
+        }
+    }
+    geoip(ip) {
+        return this.countryReader?.country(ip)?.country?.isoCode;
+    }
+    ipaso(ip) {
+        return this.asnReader?.asn(ip)?.autonomousSystemOrganization;
+    }
+}

backend/src/utils/gist.js

@@ -0,0 +1,236 @@
+import { HTTP } from '@/vendor/open-api';
+
+/**
+ * Gist backup
+ */
+export default class Gist {
+    constructor({ token, key, syncPlatform }) {
+        if (syncPlatform === 'gitlab') {
+            this.headers = {
+                'PRIVATE-TOKEN': `${token}`,
+                'User-Agent':
+                    'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.141 Safari/537.36',
+            };
+            this.http = HTTP({
+                baseURL: 'https://gitlab.com/api/v4',
+                headers: { ...this.headers },
+                events: {
+                    onResponse: (resp) => {
+                        if (/^[45]/.test(String(resp.statusCode))) {
+                            const body = JSON.parse(resp.body);
+                            return Promise.reject(
+                                `ERROR: ${body.message?.error ?? body.message}`,
+                            );
+                        } else {
+                            return resp;
+                        }
+                    },
+                },
+            });
+        } else {
+            this.headers = {
+                Authorization: `token ${token}`,
+                'User-Agent':
+                    'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.141 Safari/537.36',
+            };
+            this.http = HTTP({
+                baseURL: 'https://api.github.com',
+                headers: { ...this.headers },
+                events: {
+                    onResponse: (resp) => {
+                        if (/^[45]/.test(String(resp.statusCode))) {
+                            return Promise.reject(
+                                `ERROR: ${JSON.parse(resp.body).message}`,
+                            );
+                        } else {
+                            return resp;
+                        }
+                    },
+                },
+            });
+        }
+
+        this.key = key;
+        this.syncPlatform = syncPlatform;
+    }
+
+    async locate() {
+        if (this.syncPlatform === 'gitlab') {
+            return this.http.get('/snippets').then((response) => {
+                const gists = JSON.parse(response.body);
+
+                for (let g of gists) {
+                    if (g.title === this.key) {
+                        return g;
+                    }
+                }
+                return;
+            });
+        } else {
+            return this.http.get('/gists').then((response) => {
+                const gists = JSON.parse(response.body);
+                for (let g of gists) {
+                    if (g.description === this.key) {
+                        return g;
+                    }
+                }
+                return;
+            });
+        }
+    }
+
+    async upload(input) {
+        if (Object.keys(input).length === 0) {
+            return Promise.reject('未提供需上传的文件');
+        }
+
+        const gist = await this.locate();
+
+        let files = input;
+
+        if (gist?.id) {
+            if (this.syncPlatform === 'gitlab') {
+                gist.files = gist.files.reduce((acc, item) => {
+                    acc[item.path] = item;
+                    return acc;
+                }, {});
+            }
+            // console.log(`files`, files);
+            // console.log(`gist`, gist.files);
+            let actions = [];
+            const result = { ...gist.files };
+            Object.keys(files).map((key) => {
+                if (result[key]) {
+                    if (
+                        files[key].content == null ||
+                        files[key].content === ''
+                    ) {
+                        delete result[key];
+                        actions.push({
+                            action: 'delete',
+                            file_path: key,
+                        });
+                    } else {
+                        result[key] = files[key];
+                        actions.push({
+                            action: 'update',
+                            file_path: key,
+                            content: files[key].content,
+                        });
+                    }
+                } else {
+                    if (
+                        files[key].content == null ||
+                        files[key].content === ''
+                    ) {
+                        delete result[key];
+                        delete files[key];
+                    } else {
+                        result[key] = files[key];
+                        actions.push({
+                            action: 'create',
+                            file_path: key,
+                            content: files[key].content,
+                        });
+                    }
+                }
+            });
+            // console.log(`result`, result);
+            // console.log(`files`, files);
+            // console.log(`actions`, actions);
+
+            if (this.syncPlatform === 'gitlab') {
+                if (Object.keys(result).length === 0) {
+                    return Promise.reject(
+                        '本次操作将导致所有文件的内容都为空, 无法更新 snippet',
+                    );
+                }
+                if (Object.keys(result).length > 10) {
+                    return Promise.reject(
+                        '本次操作将导致 snippet 的文件数超过 10, 无法更新 snippet',
+                    );
+                }
+                files = actions;
+                return this.http.put({
+                    headers: {
+                        ...this.headers,
+                        'Content-Type': 'application/json',
+                    },
+                    url: `/snippets/${gist.id}`,
+                    body: JSON.stringify({ files }),
+                });
+            } else {
+                if (Object.keys(result).length === 0) {
+                    return Promise.reject(
+                        '本次操作将导致所有文件的内容都为空, 无法更新 gist',
+                    );
+                }
+                return this.http.patch({
+                    url: `/gists/${gist.id}`,
+                    body: JSON.stringify({ files }),
+                });
+            }
+        } else {
+            files = Object.entries(files).reduce((acc, [key, file]) => {
+                if (file.content !== null && file.content !== '') {
+                    acc[key] = file;
+                }
+                return acc;
+            }, {});
+            if (this.syncPlatform === 'gitlab') {
+                if (Object.keys(files).length === 0) {
+                    return Promise.reject(
+                        '所有文件的内容都为空, 无法创建 snippet',
+                    );
+                }
+                files = Object.keys(files).map((key) => ({
+                    file_path: key,
+                    content: files[key].content,
+                }));
+                return this.http.post({
+                    headers: {
+                        ...this.headers,
+                        'Content-Type': 'application/json',
+                    },
+                    url: '/snippets',
+                    body: JSON.stringify({
+                        title: this.key,
+                        visibility: 'private',
+                        files,
+                    }),
+                });
+            } else {
+                if (Object.keys(files).length === 0) {
+                    return Promise.reject(
+                        '所有文件的内容都为空, 无法创建 gist',
+                    );
+                }
+                return this.http.post({
+                    url: '/gists',
+                    body: JSON.stringify({
+                        description: this.key,
+                        public: false,
+                        files,
+                    }),
+                });
+            }
+        }
+    }
+
+    async download(filename) {
+        const gist = await this.locate();
+        if (gist?.id) {
+            try {
+                const { files } = await this.http
+                    .get(`/gists/${gist.id}`)
+                    .then((resp) => JSON.parse(resp.body));
+                const url = files[filename].raw_url;
+                return await this.http.get(url).then((resp) => resp.body);
+            } catch (err) {
+                return Promise.reject(err);
+            }
+        } else {
+            return Promise.reject('找不到 Sub-Store Gist');
+        }
+    }
+}

backend/src/utils/headers-resource-cache.js

@@ -0,0 +1,117 @@
+import $ from '@/core/app';
+import {
+    HEADERS_RESOURCE_CACHE_KEY,
+    CHR_EXPIRATION_TIME_KEY,
+} from '@/constants';
+
+class ResourceCache {
+    constructor() {
+        this.expires = getExpiredTime();
+        if (!$.read(HEADERS_RESOURCE_CACHE_KEY)) {
+            $.write('{}', HEADERS_RESOURCE_CACHE_KEY);
+        }
+        try {
+            this.resourceCache = JSON.parse($.read(HEADERS_RESOURCE_CACHE_KEY));
+        } catch (e) {
+            $.error(
+                `解析持久化缓存中的 ${HEADERS_RESOURCE_CACHE_KEY} 失败, 重置为 {}, 错误: ${
+                    e?.message ?? e
+                }`,
+            );
+            this.resourceCache = {};
+            $.write('{}', HEADERS_RESOURCE_CACHE_KEY);
+        }
+        this._cleanup();
+    }
+
+    _cleanup() {
+        // clear obsolete cached resource
+        let clear = false;
+        Object.entries(this.resourceCache).forEach((entry) => {
+            const [id, updated] = entry;
+            if (!updated.time) {
+                // clear old version cache
+                delete this.resourceCache[id];
+                $.delete(`#${id}`);
+                clear = true;
+            }
+            if (new Date().getTime() - updated.time > this.expires) {
+                delete this.resourceCache[id];
+                clear = true;
+            }
+        });
+        if (clear) this._persist();
+    }
+
+    revokeAll() {
+        this.resourceCache = {};
+        this._persist();
+    }
+
+    _persist() {
+        $.write(JSON.stringify(this.resourceCache), HEADERS_RESOURCE_CACHE_KEY);
+    }
+
+    get(id) {
+        const updated = this.resourceCache[id] && this.resourceCache[id].time;
+        if (updated && new Date().getTime() - updated <= this.expires) {
+            return this.resourceCache[id].data;
+        }
+        return null;
+    }
+
+    gettime(id) {
+        const updated = this.resourceCache[id] && this.resourceCache[id].time;
+        if (updated && new Date().getTime() - updated <= this.expires) {
+            return this.resourceCache[id].time;
+        }
+        return null;
+    }
+
+    set(id, value) {
+        this.resourceCache[id] = { time: new Date().getTime(), data: value };
+        this._persist();
+    }
+}
+
+function getExpiredTime() {
+    // console.log($.read(CHR_EXPIRATION_TIME_KEY));
+    if (!$.read(CHR_EXPIRATION_TIME_KEY)) {
+        $.write('6e4', CHR_EXPIRATION_TIME_KEY); // 1分钟
+    }
+    let expiration = 6e4;
+    if ($.env.isLoon) {
+        const loont = {
+            // Loon 插件自义定
+            '1\u5206\u949f': 6e4,
+            '5\u5206\u949f': 3e5,
+            '10\u5206\u949f': 6e5,
+            '30\u5206\u949f': 18e5, // "30分钟"
+            '1\u5c0f\u65f6': 36e5,
+            '2\u5c0f\u65f6': 72e5,
+            '3\u5c0f\u65f6': 108e5,
+            '6\u5c0f\u65f6': 216e5,
+            '12\u5c0f\u65f6': 432e5,
+            '24\u5c0f\u65f6': 864e5,
+            '48\u5c0f\u65f6': 1728e5,
+            '72\u5c0f\u65f6': 2592e5, // "72小时"
+            '\u53c2\u6570\u4f20\u5165': 'readcachets', // "参数输入"
+        };
+        let intimed = $.read(
+            '#\u54cd\u5e94\u5934\u7f13\u5b58\u6709\u6548\u671f',
+        ); // Loon #响应头缓存有效期
+        // console.log(intimed);
+        if (intimed in loont) {
+            expiration = loont[intimed];
+            if (expiration === 'readcachets') {
+                expiration = intimed;
+            }
+        }
+        return expiration;
+    } else {
+        expiration = $.read(CHR_EXPIRATION_TIME_KEY);
+        return expiration;
+    }
+}
+
+export default new ResourceCache();

backend/src/utils/index.js

@@ -0,0 +1,106 @@
+// source: https://stackoverflow.com/a/36760050
+const IPV4_REGEX = /^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)(\.(?!$)|$)){4}$/;
+
+// source: https://ihateregex.io/expr/ipv6/
+const IPV6_REGEX =
+    /^(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))$/;
+
+function isIPv4(ip) {
+    return IPV4_REGEX.test(ip);
+}
+
+function isIPv6(ip) {
+    return IPV6_REGEX.test(ip);
+}
+
+function isValidPortNumber(port) {
+    return /^((6553[0-5])|(655[0-2][0-9])|(65[0-4][0-9]{2})|(6[0-4][0-9]{3})|([1-5][0-9]{4})|([0-5]{0,5})|([0-9]{1,4}))$/.test(
+        port,
+    );
+}
+
+function isNotBlank(str) {
+    return typeof str === 'string' && str.trim().length > 0;
+}
+
+function getIfNotBlank(str, defaultValue) {
+    return isNotBlank(str) ? str : defaultValue;
+}
+
+function isPresent(obj) {
+    return typeof obj !== 'undefined' && obj !== null;
+}
+
+function getIfPresent(obj, defaultValue) {
+    return isPresent(obj) ? obj : defaultValue;
+}
+
+function getPolicyDescriptor(str) {
+    if (!str) return {};
+    return /^.+?\s*?=\s*?.+?\s*?,.+?/.test(str)
+        ? {
+              'policy-descriptor': str,
+          }
+        : {
+              policy: str,
+          };
+}
+
+const utf8ArrayToStr =
+    typeof TextDecoder !== 'undefined'
+        ? (v) => new TextDecoder().decode(new Uint8Array(v))
+        : (function () {
+              var charCache = new Array(128); // Preallocate the cache for the common single byte chars
+              var charFromCodePt = String.fromCodePoint || String.fromCharCode;
+              var result = [];
+
+              return function (array) {
+                  var codePt, byte1;
+                  var buffLen = array.length;
+
+                  result.length = 0;
+
+                  for (var i = 0; i < buffLen; ) {
+                      byte1 = array[i++];
+
+                      if (byte1 <= 0x7f) {
+                          codePt = byte1;
+                      } else if (byte1 <= 0xdf) {
+                          codePt = ((byte1 & 0x1f) << 6) | (array[i++] & 0x3f);
+                      } else if (byte1 <= 0xef) {
+                          codePt =
+                              ((byte1 & 0x0f) << 12) |
+                              ((array[i++] & 0x3f) << 6) |
+                              (array[i++] & 0x3f);
+                      } else if (String.fromCodePoint) {
+                          codePt =
+                              ((byte1 & 0x07) << 18) |
+                              ((array[i++] & 0x3f) << 12) |
+                              ((array[i++] & 0x3f) << 6) |
+                              (array[i++] & 0x3f);
+                      } else {
+                          codePt = 63; // Cannot convert four byte code points, so use "?" instead
+                          i += 3;
+                      }
+
+                      result.push(
+                          charCache[codePt] ||
+                              (charCache[codePt] = charFromCodePt(codePt)),
+                      );
+                  }
+
+                  return result.join('');
+              };
+          })();
+
+export {
+    isIPv4,
+    isIPv6,
+    isValidPortNumber,
+    isNotBlank,
+    getIfNotBlank,
+    isPresent,
+    getIfPresent,
+    utf8ArrayToStr,
+    getPolicyDescriptor,
+};

backend/src/utils/logical.js

@@ -0,0 +1,17 @@
+function AND(...args) {
+    return args.reduce((a, b) => a.map((c, i) => b[i] && c));
+}
+
+function OR(...args) {
+    return args.reduce((a, b) => a.map((c, i) => b[i] || c));
+}
+
+function NOT(array) {
+    return array.map((c) => !c);
+}
+
+function FULL(length, bool) {
+    return [...Array(length).keys()].map(() => bool);
+}
+
+export { AND, OR, NOT, FULL };

backend/src/utils/migration.js

@@ -0,0 +1,128 @@
+import {
+    SUBS_KEY,
+    COLLECTIONS_KEY,
+    SCHEMA_VERSION_KEY,
+    ARTIFACTS_KEY,
+    RULES_KEY,
+} from '@/constants';
+import $ from '@/core/app';
+
+export default function migrate() {
+    migrateV2();
+}
+
+function migrateV2() {
+    const version = $.read(SCHEMA_VERSION_KEY);
+    if (!version) doMigrationV2();
+
+    // write the current version
+    if (version !== '2.0') {
+        $.write('2.0', SCHEMA_VERSION_KEY);
+    }
+}
+
+function doMigrationV2() {
+    $.info('Start migrating...');
+    // 1. migrate subscriptions
+    const subs = $.read(SUBS_KEY) || {};
+    const newSubs = Object.values(subs).map((sub) => {
+        // set default source to remote
+        sub.source = sub.source || 'remote';
+
+        migrateDisplayName(sub);
+        migrateProcesses(sub);
+        return sub;
+    });
+    $.write(newSubs, SUBS_KEY);
+
+    // 2. migrate collections
+    const collections = $.read(COLLECTIONS_KEY) || {};
+    const newCollections = Object.values(collections).map((collection) => {
+        delete collection.ua;
+        migrateDisplayName(collection);
+        migrateProcesses(collection);
+        return collection;
+    });
+    $.write(newCollections, COLLECTIONS_KEY);
+
+    // 3. migrate artifacts
+    const artifacts = $.read(ARTIFACTS_KEY) || {};
+    const newArtifacts = Object.values(artifacts);
+    $.write(newArtifacts, ARTIFACTS_KEY);
+
+    // 4. migrate rules
+    const rules = $.read(RULES_KEY) || {};
+    const newRules = Object.values(rules);
+    $.write(newRules, RULES_KEY);
+
+    // 5. delete builtin rules
+    delete $.cache.builtin;
+    $.info('Migration complete!');
+
+    function migrateDisplayName(item) {
+        const displayName = item['display-name'];
+        if (displayName) {
+            item.displayName = displayName;
+            delete item['display-name'];
+        }
+    }
+
+    function migrateProcesses(item) {
+        const processes = item.process;
+        if (!processes || processes.length === 0) return;
+        const newProcesses = [];
+        const quickSettingOperator = {
+            type: 'Quick Setting Operator',
+            args: {
+                udp: 'DEFAULT',
+                tfo: 'DEFAULT',
+                scert: 'DEFAULT',
+                'vmess aead': 'DEFAULT',
+                useless: 'DEFAULT',
+            },
+        };
+        for (const p of processes) {
+            if (!p.type) continue;
+            if (p.type === 'Useless Filter') {
+                quickSettingOperator.args.useless = 'ENABLED';
+            } else if (p.type === 'Set Property Operator') {
+                const { key, value } = p.args;
+                switch (key) {
+                    case 'udp':
+                        quickSettingOperator.args.udp = value
+                            ? 'ENABLED'
+                            : 'DISABLED';
+                        break;
+                    case 'tfo':
+                        quickSettingOperator.args.tfo = value
+                            ? 'ENABLED'
+                            : 'DISABLED';
+                        break;
+                    case 'skip-cert-verify':
+                        quickSettingOperator.args.scert = value
+                            ? 'ENABLED'
+                            : 'DISABLED';
+                        break;
+                    case 'aead':
+                        quickSettingOperator.args['vmess aead'] = value
+                            ? 'ENABLED'
+                            : 'DISABLED';
+                        break;
+                }
+            } else if (p.type.indexOf('Keyword') !== -1) {
+                // drop keyword operators and keyword filters
+            } else if (p.type === 'Flag Operator') {
+                // set default args
+                const add = typeof p.args === 'undefined' ? true : p.args;
+                p.args = {
+                    mode: add ? 'add' : 'remove',
+                };
+                newProcesses.push(p);
+            } else {
+                newProcesses.push(p);
+            }
+        }
+        newProcesses.unshift(quickSettingOperator);
+        item.process = newProcesses;
+    }
+}

backend/src/utils/resource-cache.js

@@ -0,0 +1,66 @@
+import $ from '@/core/app';
+import { CACHE_EXPIRATION_TIME_MS, RESOURCE_CACHE_KEY } from '@/constants';
+
+class ResourceCache {
+    constructor(expires) {
+        this.expires = expires;
+        if (!$.read(RESOURCE_CACHE_KEY)) {
+            $.write('{}', RESOURCE_CACHE_KEY);
+        }
+        try {
+            this.resourceCache = JSON.parse($.read(RESOURCE_CACHE_KEY));
+        } catch (e) {
+            $.error(
+                `解析持久化缓存中的 ${RESOURCE_CACHE_KEY} 失败, 重置为 {}, 错误: ${
+                    e?.message ?? e
+                }`,
+            );
+            this.resourceCache = {};
+            $.write('{}', RESOURCE_CACHE_KEY);
+        }
+        this._cleanup();
+    }
+
+    _cleanup() {
+        // clear obsolete cached resource
+        let clear = false;
+        Object.entries(this.resourceCache).forEach((entry) => {
+            const [id, updated] = entry;
+            if (!updated.time) {
+                // clear old version cache
+                delete this.resourceCache[id];
+                $.delete(`#${id}`);
+                clear = true;
+            }
+            if (new Date().getTime() - updated.time > this.expires) {
+                delete this.resourceCache[id];
+                clear = true;
+            }
+        });
+        if (clear) this._persist();
+    }
+
+    revokeAll() {
+        this.resourceCache = {};
+        this._persist();
+    }
+
+    _persist() {
+        $.write(JSON.stringify(this.resourceCache), RESOURCE_CACHE_KEY);
+    }
+
+    get(id) {
+        const updated = this.resourceCache[id] && this.resourceCache[id].time;
+        if (updated && new Date().getTime() - updated <= this.expires) {
+            return this.resourceCache[id].data;
+        }
+        return null;
+    }
+
+    set(id, value) {
+        this.resourceCache[id] = { time: new Date().getTime(), data: value };
+        this._persist();
+    }
+}
+
+export default new ResourceCache(CACHE_EXPIRATION_TIME_MS);

backend/src/utils/script-resource-cache.js

@@ -0,0 +1,115 @@
+import $ from '@/core/app';
+import {
+    SCRIPT_RESOURCE_CACHE_KEY,
+    CSR_EXPIRATION_TIME_KEY,
+} from '@/constants';
+
+class ResourceCache {
+    constructor() {
+        this.expires = getExpiredTime();
+        if (!$.read(SCRIPT_RESOURCE_CACHE_KEY)) {
+            $.write('{}', SCRIPT_RESOURCE_CACHE_KEY);
+        }
+        try {
+            this.resourceCache = JSON.parse($.read(SCRIPT_RESOURCE_CACHE_KEY));
+        } catch (e) {
+            $.error(
+                `解析持久化缓存中的 ${SCRIPT_RESOURCE_CACHE_KEY} 失败, 重置为 {}, 错误: ${
+                    e?.message ?? e
+                }`,
+            );
+            this.resourceCache = {};
+            $.write('{}', SCRIPT_RESOURCE_CACHE_KEY);
+        }
+        this._cleanup();
+    }
+
+    _cleanup() {
+        // clear obsolete cached resource
+        let clear = false;
+        Object.entries(this.resourceCache).forEach((entry) => {
+            const [id, updated] = entry;
+            if (!updated.time) {
+                // clear old version cache
+                delete this.resourceCache[id];
+                $.delete(`#${id}`);
+                clear = true;
+            }
+            if (new Date().getTime() - updated.time > this.expires) {
+                delete this.resourceCache[id];
+                clear = true;
+            }
+        });
+        if (clear) this._persist();
+    }
+
+    revokeAll() {
+        this.resourceCache = {};
+        this._persist();
+    }
+
+    _persist() {
+        $.write(JSON.stringify(this.resourceCache), SCRIPT_RESOURCE_CACHE_KEY);
+    }
+
+    get(id) {
+        const updated = this.resourceCache[id] && this.resourceCache[id].time;
+        if (updated && new Date().getTime() - updated <= this.expires) {
+            return this.resourceCache[id].data;
+        }
+        return null;
+    }
+
+    gettime(id) {
+        const updated = this.resourceCache[id] && this.resourceCache[id].time;
+        if (updated && new Date().getTime() - updated <= this.expires) {
+            return this.resourceCache[id].time;
+        }
+        return null;
+    }
+
+    set(id, value) {
+        this.resourceCache[id] = { time: new Date().getTime(), data: value };
+        this._persist();
+    }
+}
+
+function getExpiredTime() {
+    // console.log($.read(CSR_EXPIRATION_TIME_KEY));
+    if (!$.read(CSR_EXPIRATION_TIME_KEY)) {
+        $.write('1728e5', CSR_EXPIRATION_TIME_KEY); // 48 * 3600 * 1000
+    }
+    let expiration = 1728e5;
+    if ($.env.isLoon) {
+        const loont = {
+            // Loon 插件自义定
+            '1\u5206\u949f': 6e4,
+            '5\u5206\u949f': 3e5,
+            '10\u5206\u949f': 6e5,
+            '30\u5206\u949f': 18e5, // "30分钟"
+            '1\u5c0f\u65f6': 36e5,
+            '2\u5c0f\u65f6': 72e5,
+            '3\u5c0f\u65f6': 108e5,
+            '6\u5c0f\u65f6': 216e5,
+            '12\u5c0f\u65f6': 432e5,
+            '24\u5c0f\u65f6': 864e5,
+            '48\u5c0f\u65f6': 1728e5,
+            '72\u5c0f\u65f6': 2592e5, // "72小时"
+            '\u53c2\u6570\u4f20\u5165': 'readcachets', // "参数输入"
+        };
+        let intimed = $.read('#\u8282\u70b9\u7f13\u5b58\u6709\u6548\u671f'); // Loon #节点缓存有效期
+        // console.log(intimed);
+        if (intimed in loont) {
+            expiration = loont[intimed];
+            if (expiration === 'readcachets') {
+                expiration = intimed;
+            }
+        }
+        return expiration;
+    } else {
+        expiration = $.read(CSR_EXPIRATION_TIME_KEY);
+        return expiration;
+    }
+}
+
+export default new ResourceCache();

backend/src/utils/user-agent.js

@@ -0,0 +1,47 @@
+export function getUserAgentFromHeaders(headers) {
+    const keys = Object.keys(headers);
+    let UA = '';
+    let ua = '';
+    for (let k of keys) {
+        if (/USER-AGENT/i.test(k)) {
+            UA = headers[k];
+            ua = UA.toLowerCase();
+            break;
+        }
+    }
+    return { UA, ua };
+}
+export function getPlatformFromUserAgent({ ua, UA }) {
+    if (UA.indexOf('Quantumult%20X') !== -1) {
+        return 'QX';
+    } else if (UA.indexOf('Surfboard') !== -1) {
+        return 'Surfboard';
+    } else if (UA.indexOf('Surge Mac') !== -1) {
+        return 'SurgeMac';
+    } else if (UA.indexOf('Surge') !== -1) {
+        return 'Surge';
+    } else if (UA.indexOf('Decar') !== -1 || UA.indexOf('Loon') !== -1) {
+        return 'Loon';
+    } else if (UA.indexOf('Shadowrocket') !== -1) {
+        return 'Shadowrocket';
+    } else if (UA.indexOf('Stash') !== -1) {
+        return 'Stash';
+    } else if (
+        ua === 'meta' ||
+        (ua.indexOf('clash') !== -1 && ua.indexOf('meta') !== -1)
+    ) {
+        return 'ClashMeta';
+    } else if (ua.indexOf('clash') !== -1) {
+        return 'Clash';
+    } else if (ua.indexOf('v2ray') !== -1) {
+        return 'V2Ray';
+    } else if (ua.indexOf('sing-box') !== -1) {
+        return 'sing-box';
+    } else {
+        return 'JSON';
+    }
+}
+export function getPlatformFromHeaders(headers) {
+    const { UA, ua } = getUserAgentFromHeaders(headers);
+    return getPlatformFromUserAgent({ ua, UA });
+}

backend/src/utils/yaml.js

@@ -0,0 +1,37 @@
+import YAML from 'static-js-yaml';
+
+function retry(fn, content, ...args) {
+    try {
+        return fn(content, ...args);
+    } catch (e) {
+        return fn(
+            dump(
+                fn(
+                    content.replace(/!<str>\s*/g, '__SubStoreJSYAMLString__'),
+                    ...args,
+                ),
+            ).replace(/__SubStoreJSYAMLString__/g, ''),
+            ...args,
+        );
+    }
+}
+
+export function safeLoad(content, ...args) {
+    return retry(YAML.safeLoad, content, ...args);
+}
+export function load(content, ...args) {
+    return retry(YAML.load, content, ...args);
+}
+export function safeDump(...args) {
+    return YAML.safeDump(...args);
+}
+export function dump(...args) {
+    return YAML.dump(...args);
+}
+
+export default {
+    safeLoad,
+    load,
+    safeDump,
+    dump,
+};

backend/src/vendor/express.js

@@ -0,0 +1,295 @@
+/* eslint-disable no-undef */
+import { ENV } from './open-api';
+
+export default function express({ substore: $, port, host }) {
+    const { isNode } = ENV();
+    const DEFAULT_HEADERS = {
+        'Content-Type': 'text/plain;charset=UTF-8',
+        'Access-Control-Allow-Origin': '*',
+        'Access-Control-Allow-Methods': 'POST,GET,OPTIONS,PATCH,PUT,DELETE',
+        'Access-Control-Allow-Headers':
+            'Origin, X-Requested-With, Content-Type, Accept',
+    };
+
+    // node support
+    if (isNode) {
+        const express_ = eval(`require("express")`);
+        const bodyParser = eval(`require("body-parser")`);
+        const app = express_();
+        app.use(bodyParser.json({ verify: rawBodySaver, limit: '1mb' }));
+        app.use(
+            bodyParser.urlencoded({ verify: rawBodySaver, extended: true }),
+        );
+        app.use(bodyParser.raw({ verify: rawBodySaver, type: '*/*' }));
+        app.use((_, res, next) => {
+            res.set(DEFAULT_HEADERS);
+            next();
+        });
+
+        // adapter
+        app.start = () => {
+            const listener = app.listen(port, host, () => {
+                const { address, port } = listener.address();
+                $.info(`[BACKEND] ${address}:${port}`);
+            });
+        };
+        return app;
+    }
+
+    // route handlers
+    const handlers = [];
+
+    // http methods
+    const METHODS_NAMES = [
+        'GET',
+        'POST',
+        'PUT',
+        'DELETE',
+        'PATCH',
+        'OPTIONS',
+        "HEAD'",
+        'ALL',
+    ];
+
+    // dispatch url to route
+    const dispatch = (request, start = 0) => {
+        let { method, url, headers, body } = request;
+        headers = formatHeaders(headers);
+        if (/json/i.test(headers['content-type'])) {
+            body = JSON.parse(body);
+        }
+
+        method = method.toUpperCase();
+        const { path, query } = extractURL(url);
+
+        // pattern match
+        let handler = null;
+        let i;
+        let longestMatchedPattern = 0;
+        for (i = start; i < handlers.length; i++) {
+            if (handlers[i].method === 'ALL' || method === handlers[i].method) {
+                const { pattern } = handlers[i];
+                if (patternMatched(pattern, path)) {
+                    if (pattern.split('/').length > longestMatchedPattern) {
+                        handler = handlers[i];
+                        longestMatchedPattern = pattern.split('/').length;
+                    }
+                }
+            }
+        }
+        if (handler) {
+            // dispatch to next handler
+            const next = () => {
+                dispatch(method, url, i);
+            };
+            const req = {
+                method,
+                url,
+                path,
+                query,
+                params: extractPathParams(handler.pattern, path),
+                headers,
+                body,
+            };
+            const res = Response();
+            const cb = handler.callback;
+
+            const errFunc = (err) => {
+                res.status(500).json({
+                    status: 'failed',
+                    message: `Internal Server Error: ${err}`,
+                });
+            };
+
+            if (cb.constructor.name === 'AsyncFunction') {
+                cb(req, res, next).catch(errFunc);
+            } else {
+                try {
+                    cb(req, res, next);
+                } catch (err) {
+                    errFunc(err);
+                }
+            }
+        } else {
+            // no route, return 404
+            const res = Response();
+            res.status(404).json({
+                status: 'failed',
+                message: 'ERROR: 404 not found',
+            });
+        }
+    };
+
+    const app = {};
+
+    // attach http methods
+    METHODS_NAMES.forEach((method) => {
+        app[method.toLowerCase()] = (pattern, callback) => {
+            // add handler
+            handlers.push({ method, pattern, callback });
+        };
+    });
+
+    // chainable route
+    app.route = (pattern) => {
+        const chainApp = {};
+        METHODS_NAMES.forEach((method) => {
+            chainApp[method.toLowerCase()] = (callback) => {
+                // add handler
+                handlers.push({ method, pattern, callback });
+                return chainApp;
+            };
+        });
+        return chainApp;
+    };
+
+    // start service
+    app.start = () => {
+        dispatch($request);
+    };
+
+    return app;
+
+    /************************************************
+     Utility Functions
+     *************************************************/
+    function rawBodySaver(req, res, buf, encoding) {
+        if (buf && buf.length) {
+            req.rawBody = buf.toString(encoding || 'utf8');
+        }
+    }
+
+    function Response() {
+        let statusCode = 200;
+        const { isQX, isLoon, isSurge, isGUIforCores } = ENV();
+        const headers = DEFAULT_HEADERS;
+        const STATUS_CODE_MAP = {
+            200: 'HTTP/1.1 200 OK',
+            201: 'HTTP/1.1 201 Created',
+            302: 'HTTP/1.1 302 Found',
+            307: 'HTTP/1.1 307 Temporary Redirect',
+            308: 'HTTP/1.1 308 Permanent Redirect',
+            404: 'HTTP/1.1 404 Not Found',
+            500: 'HTTP/1.1 500 Internal Server Error',
+        };
+        return new (class {
+            status(code) {
+                statusCode = code;
+                return this;
+            }
+
+            send(body = '') {
+                const response = {
+                    status: isQX ? STATUS_CODE_MAP[statusCode] : statusCode,
+                    body,
+                    headers,
+                };
+                if (isQX || isGUIforCores) {
+                    $done(response);
+                } else if (isLoon || isSurge) {
+                    $done({
+                        response,
+                    });
+                }
+            }
+
+            end() {
+                this.send();
+            }
+
+            html(data) {
+                this.set('Content-Type', 'text/html;charset=UTF-8');
+                this.send(data);
+            }
+
+            json(data) {
+                this.set('Content-Type', 'application/json;charset=UTF-8');
+                this.send(JSON.stringify(data));
+            }
+
+            set(key, val) {
+                headers[key] = val;
+                return this;
+            }
+        })();
+    }
+}
+
+function formatHeaders(headers) {
+    const result = {};
+    for (const k of Object.keys(headers)) {
+        result[k.toLowerCase()] = headers[k];
+    }
+    return result;
+}
+
+function patternMatched(pattern, path) {
+    if (pattern instanceof RegExp && pattern.test(path)) {
+        return true;
+    } else {
+        // root pattern, match all
+        if (pattern === '/') return true;
+        // normal string pattern
+        if (pattern.indexOf(':') === -1) {
+            const spath = path.split('/');
+            const spattern = pattern.split('/');
+            for (let i = 0; i < spattern.length; i++) {
+                if (spath[i] !== spattern[i]) {
+                    return false;
+                }
+            }
+            return true;
+        } else if (extractPathParams(pattern, path)) {
+            // string pattern with path parameters
+            return true;
+        }
+    }
+    return false;
+}
+
+function extractURL(url) {
+    // extract path
+    const match = url.match(/https?:\/\/[^/]+(\/[^?]*)/) || [];
+    const path = match[1] || '/';
+
+    // extract query string
+    const split = url.indexOf('?');
+    const query = {};
+    if (split !== -1) {
+        let hashes = url.slice(url.indexOf('?') + 1).split('&');
+        for (let i = 0; i < hashes.length; i++) {
+            const hash = hashes[i].split('=');
+            query[hash[0]] = hash[1];
+        }
+    }
+    return {
+        path,
+        query,
+    };
+}
+
+function extractPathParams(pattern, path) {
+    if (pattern.indexOf(':') === -1) {
+        return null;
+    } else {
+        const params = {};
+        for (let i = 0, j = 0; i < pattern.length; i++, j++) {
+            if (pattern[i] === ':') {
+                let key = [];
+                let val = [];
+                while (pattern[++i] !== '/' && i < pattern.length) {
+                    key.push(pattern[i]);
+                }
+                while (path[j] !== '/' && j < path.length) {
+                    val.push(path[j++]);
+                }
+                params[key.join('')] = val.join('');
+            } else {
+                if (pattern[i] !== path[j]) {
+                    return null;
+                }
+            }
+        }
+        return params;
+    }
+}

backend/src/vendor/md5.js

@@ -0,0 +1,387 @@
+/*
+ * A JavaScript implementation of the RSA Data Security, Inc. MD5 Message
+ * Digest Algorithm, as defined in RFC 1321.
+ * Version 2.2 Copyright (C) Paul Johnston 1999 - 2009
+ * Other contributors: Greg Holt, Andrew Kepert, Ydnar, Lostinet
+ * Distributed under the BSD License
+ * See http://pajhome.org.uk/crypt/md5 for more info.
+ */
+
+/*
+ * Configurable variables. You may need to tweak these to be compatible with
+ * the server-side, but the defaults work in most cases.
+ */
+var hexcase = 0; /* hex output format. 0 - lowercase; 1 - uppercase        */
+var b64pad = ''; /* base-64 pad character. "=" for strict RFC compliance   */
+
+/*
+ * These are the functions you'll usually want to call
+ * They take string arguments and return either hex or base-64 encoded strings
+ */
+export function hex_md5(s) {
+    return rstr2hex(rstr_md5(str2rstr_utf8(s)));
+}
+
+export function b64_md5(s) {
+    return rstr2b64(rstr_md5(str2rstr_utf8(s)));
+}
+
+export function any_md5(s, e) {
+    return rstr2any(rstr_md5(str2rstr_utf8(s)), e);
+}
+
+export function hex_hmac_md5(k, d) {
+    return rstr2hex(rstr_hmac_md5(str2rstr_utf8(k), str2rstr_utf8(d)));
+}
+
+export function b64_hmac_md5(k, d) {
+    return rstr2b64(rstr_hmac_md5(str2rstr_utf8(k), str2rstr_utf8(d)));
+}
+
+export function any_hmac_md5(k, d, e) {
+    return rstr2any(rstr_hmac_md5(str2rstr_utf8(k), str2rstr_utf8(d)), e);
+}
+
+/*
+ * Perform a simple self-test to see if the VM is working
+ */
+function md5_vm_test() {
+    return hex_md5('abc').toLowerCase() == '900150983cd24fb0d6963f7d28e17f72';
+}
+
+/*
+ * Calculate the MD5 of a raw string
+ */
+function rstr_md5(s) {
+    return binl2rstr(binl_md5(rstr2binl(s), s.length * 8));
+}
+
+/*
+ * Calculate the HMAC-MD5, of a key and some data (raw strings)
+ */
+function rstr_hmac_md5(key, data) {
+    var bkey = rstr2binl(key);
+    if (bkey.length > 16) bkey = binl_md5(bkey, key.length * 8);
+
+    var ipad = Array(16),
+        opad = Array(16);
+    for (var i = 0; i < 16; i++) {
+        ipad[i] = bkey[i] ^ 0x36363636;
+        opad[i] = bkey[i] ^ 0x5c5c5c5c;
+    }
+
+    var hash = binl_md5(ipad.concat(rstr2binl(data)), 512 + data.length * 8);
+    return binl2rstr(binl_md5(opad.concat(hash), 512 + 128));
+}
+
+/*
+ * Convert a raw string to a hex string
+ */
+function rstr2hex(input) {
+    try {
+        hexcase;
+    } catch (e) {
+        hexcase = 0;
+    }
+    var hex_tab = hexcase ? '0123456789ABCDEF' : '0123456789abcdef';
+    var output = '';
+    var x;
+    for (var i = 0; i < input.length; i++) {
+        x = input.charCodeAt(i);
+        output += hex_tab.charAt((x >>> 4) & 0x0f) + hex_tab.charAt(x & 0x0f);
+    }
+    return output;
+}
+
+/*
+ * Convert a raw string to a base-64 string
+ */
+function rstr2b64(input) {
+    try {
+        b64pad;
+    } catch (e) {
+        b64pad = '';
+    }
+    var tab =
+        'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
+    var output = '';
+    var len = input.length;
+    for (var i = 0; i < len; i += 3) {
+        var triplet =
+            (input.charCodeAt(i) << 16) |
+            (i + 1 < len ? input.charCodeAt(i + 1) << 8 : 0) |
+            (i + 2 < len ? input.charCodeAt(i + 2) : 0);
+        for (var j = 0; j < 4; j++) {
+            if (i * 8 + j * 6 > input.length * 8) output += b64pad;
+            else output += tab.charAt((triplet >>> (6 * (3 - j))) & 0x3f);
+        }
+    }
+    return output;
+}
+
+/*
+ * Convert a raw string to an arbitrary string encoding
+ */
+function rstr2any(input, encoding) {
+    var divisor = encoding.length;
+    var i, j, q, x, quotient;
+
+    /* Convert to an array of 16-bit big-endian values, forming the dividend */
+    var dividend = Array(Math.ceil(input.length / 2));
+    for (i = 0; i < dividend.length; i++) {
+        dividend[i] =
+            (input.charCodeAt(i * 2) << 8) | input.charCodeAt(i * 2 + 1);
+    }
+
+    /*
+     * Repeatedly perform a long division. The binary array forms the dividend,
+     * the length of the encoding is the divisor. Once computed, the quotient
+     * forms the dividend for the next step. All remainders are stored for later
+     * use.
+     */
+    var full_length = Math.ceil(
+        (input.length * 8) / (Math.log(encoding.length) / Math.log(2)),
+    );
+    var remainders = Array(full_length);
+    for (j = 0; j < full_length; j++) {
+        quotient = Array();
+        x = 0;
+        for (i = 0; i < dividend.length; i++) {
+            x = (x << 16) + dividend[i];
+            q = Math.floor(x / divisor);
+            x -= q * divisor;
+            if (quotient.length > 0 || q > 0) quotient[quotient.length] = q;
+        }
+        remainders[j] = x;
+        dividend = quotient;
+    }
+
+    /* Convert the remainders to the output string */
+    var output = '';
+    for (i = remainders.length - 1; i >= 0; i--)
+        output += encoding.charAt(remainders[i]);
+
+    return output;
+}
+
+/*
+ * Encode a string as utf-8.
+ * For efficiency, this assumes the input is valid utf-16.
+ */
+function str2rstr_utf8(input) {
+    var output = '';
+    var i = -1;
+    var x, y;
+
+    while (++i < input.length) {
+        /* Decode utf-16 surrogate pairs */
+        x = input.charCodeAt(i);
+        y = i + 1 < input.length ? input.charCodeAt(i + 1) : 0;
+        if (0xd800 <= x && x <= 0xdbff && 0xdc00 <= y && y <= 0xdfff) {
+            x = 0x10000 + ((x & 0x03ff) << 10) + (y & 0x03ff);
+            i++;
+        }
+
+        /* Encode output as utf-8 */
+        if (x <= 0x7f) output += String.fromCharCode(x);
+        else if (x <= 0x7ff)
+            output += String.fromCharCode(
+                0xc0 | ((x >>> 6) & 0x1f),
+                0x80 | (x & 0x3f),
+            );
+        else if (x <= 0xffff)
+            output += String.fromCharCode(
+                0xe0 | ((x >>> 12) & 0x0f),
+                0x80 | ((x >>> 6) & 0x3f),
+                0x80 | (x & 0x3f),
+            );
+        else if (x <= 0x1fffff)
+            output += String.fromCharCode(
+                0xf0 | ((x >>> 18) & 0x07),
+                0x80 | ((x >>> 12) & 0x3f),
+                0x80 | ((x >>> 6) & 0x3f),
+                0x80 | (x & 0x3f),
+            );
+    }
+    return output;
+}
+
+/*
+ * Encode a string as utf-16
+ */
+function str2rstr_utf16le(input) {
+    var output = '';
+    for (var i = 0; i < input.length; i++)
+        output += String.fromCharCode(
+            input.charCodeAt(i) & 0xff,
+            (input.charCodeAt(i) >>> 8) & 0xff,
+        );
+    return output;
+}
+
+function str2rstr_utf16be(input) {
+    var output = '';
+    for (var i = 0; i < input.length; i++)
+        output += String.fromCharCode(
+            (input.charCodeAt(i) >>> 8) & 0xff,
+            input.charCodeAt(i) & 0xff,
+        );
+    return output;
+}
+
+/*
+ * Convert a raw string to an array of little-endian words
+ * Characters >255 have their high-byte silently ignored.
+ */
+function rstr2binl(input) {
+    var output = Array(input.length >> 2);
+    for (var i = 0; i < output.length; i++) output[i] = 0;
+    for (var i = 0; i < input.length * 8; i += 8)
+        output[i >> 5] |= (input.charCodeAt(i / 8) & 0xff) << i % 32;
+    return output;
+}
+
+/*
+ * Convert an array of little-endian words to a string
+ */
+function binl2rstr(input) {
+    var output = '';
+    for (var i = 0; i < input.length * 32; i += 8)
+        output += String.fromCharCode((input[i >> 5] >>> i % 32) & 0xff);
+    return output;
+}
+
+/*
+ * Calculate the MD5 of an array of little-endian words, and a bit length.
+ */
+function binl_md5(x, len) {
+    /* append padding */
+    x[len >> 5] |= 0x80 << len % 32;
+    x[(((len + 64) >>> 9) << 4) + 14] = len;
+
+    var a = 1732584193;
+    var b = -271733879;
+    var c = -1732584194;
+    var d = 271733878;
+
+    for (var i = 0; i < x.length; i += 16) {
+        var olda = a;
+        var oldb = b;
+        var oldc = c;
+        var oldd = d;
+
+        a = md5_ff(a, b, c, d, x[i + 0], 7, -680876936);
+        d = md5_ff(d, a, b, c, x[i + 1], 12, -389564586);
+        c = md5_ff(c, d, a, b, x[i + 2], 17, 606105819);
+        b = md5_ff(b, c, d, a, x[i + 3], 22, -1044525330);
+        a = md5_ff(a, b, c, d, x[i + 4], 7, -176418897);
+        d = md5_ff(d, a, b, c, x[i + 5], 12, 1200080426);
+        c = md5_ff(c, d, a, b, x[i + 6], 17, -1473231341);
+        b = md5_ff(b, c, d, a, x[i + 7], 22, -45705983);
+        a = md5_ff(a, b, c, d, x[i + 8], 7, 1770035416);
+        d = md5_ff(d, a, b, c, x[i + 9], 12, -1958414417);
+        c = md5_ff(c, d, a, b, x[i + 10], 17, -42063);
+        b = md5_ff(b, c, d, a, x[i + 11], 22, -1990404162);
+        a = md5_ff(a, b, c, d, x[i + 12], 7, 1804603682);
+        d = md5_ff(d, a, b, c, x[i + 13], 12, -40341101);
+        c = md5_ff(c, d, a, b, x[i + 14], 17, -1502002290);
+        b = md5_ff(b, c, d, a, x[i + 15], 22, 1236535329);
+
+        a = md5_gg(a, b, c, d, x[i + 1], 5, -165796510);
+        d = md5_gg(d, a, b, c, x[i + 6], 9, -1069501632);
+        c = md5_gg(c, d, a, b, x[i + 11], 14, 643717713);
+        b = md5_gg(b, c, d, a, x[i + 0], 20, -373897302);
+        a = md5_gg(a, b, c, d, x[i + 5], 5, -701558691);
+        d = md5_gg(d, a, b, c, x[i + 10], 9, 38016083);
+        c = md5_gg(c, d, a, b, x[i + 15], 14, -660478335);
+        b = md5_gg(b, c, d, a, x[i + 4], 20, -405537848);
+        a = md5_gg(a, b, c, d, x[i + 9], 5, 568446438);
+        d = md5_gg(d, a, b, c, x[i + 14], 9, -1019803690);
+        c = md5_gg(c, d, a, b, x[i + 3], 14, -187363961);
+        b = md5_gg(b, c, d, a, x[i + 8], 20, 1163531501);
+        a = md5_gg(a, b, c, d, x[i + 13], 5, -1444681467);
+        d = md5_gg(d, a, b, c, x[i + 2], 9, -51403784);
+        c = md5_gg(c, d, a, b, x[i + 7], 14, 1735328473);
+        b = md5_gg(b, c, d, a, x[i + 12], 20, -1926607734);
+
+        a = md5_hh(a, b, c, d, x[i + 5], 4, -378558);
+        d = md5_hh(d, a, b, c, x[i + 8], 11, -2022574463);
+        c = md5_hh(c, d, a, b, x[i + 11], 16, 1839030562);
+        b = md5_hh(b, c, d, a, x[i + 14], 23, -35309556);
+        a = md5_hh(a, b, c, d, x[i + 1], 4, -1530992060);
+        d = md5_hh(d, a, b, c, x[i + 4], 11, 1272893353);
+        c = md5_hh(c, d, a, b, x[i + 7], 16, -155497632);
+        b = md5_hh(b, c, d, a, x[i + 10], 23, -1094730640);
+        a = md5_hh(a, b, c, d, x[i + 13], 4, 681279174);
+        d = md5_hh(d, a, b, c, x[i + 0], 11, -358537222);
+        c = md5_hh(c, d, a, b, x[i + 3], 16, -722521979);
+        b = md5_hh(b, c, d, a, x[i + 6], 23, 76029189);
+        a = md5_hh(a, b, c, d, x[i + 9], 4, -640364487);
+        d = md5_hh(d, a, b, c, x[i + 12], 11, -421815835);
+        c = md5_hh(c, d, a, b, x[i + 15], 16, 530742520);
+        b = md5_hh(b, c, d, a, x[i + 2], 23, -995338651);
+
+        a = md5_ii(a, b, c, d, x[i + 0], 6, -198630844);
+        d = md5_ii(d, a, b, c, x[i + 7], 10, 1126891415);
+        c = md5_ii(c, d, a, b, x[i + 14], 15, -1416354905);
+        b = md5_ii(b, c, d, a, x[i + 5], 21, -57434055);
+        a = md5_ii(a, b, c, d, x[i + 12], 6, 1700485571);
+        d = md5_ii(d, a, b, c, x[i + 3], 10, -1894986606);
+        c = md5_ii(c, d, a, b, x[i + 10], 15, -1051523);
+        b = md5_ii(b, c, d, a, x[i + 1], 21, -2054922799);
+        a = md5_ii(a, b, c, d, x[i + 8], 6, 1873313359);
+        d = md5_ii(d, a, b, c, x[i + 15], 10, -30611744);
+        c = md5_ii(c, d, a, b, x[i + 6], 15, -1560198380);
+        b = md5_ii(b, c, d, a, x[i + 13], 21, 1309151649);
+        a = md5_ii(a, b, c, d, x[i + 4], 6, -145523070);
+        d = md5_ii(d, a, b, c, x[i + 11], 10, -1120210379);
+        c = md5_ii(c, d, a, b, x[i + 2], 15, 718787259);
+        b = md5_ii(b, c, d, a, x[i + 9], 21, -343485551);
+
+        a = safe_add(a, olda);
+        b = safe_add(b, oldb);
+        c = safe_add(c, oldc);
+        d = safe_add(d, oldd);
+    }
+    return Array(a, b, c, d);
+}
+
+/*
+ * These functions implement the four basic operations the algorithm uses.
+ */
+function md5_cmn(q, a, b, x, s, t) {
+    return safe_add(bit_rol(safe_add(safe_add(a, q), safe_add(x, t)), s), b);
+}
+
+function md5_ff(a, b, c, d, x, s, t) {
+    return md5_cmn((b & c) | (~b & d), a, b, x, s, t);
+}
+
+function md5_gg(a, b, c, d, x, s, t) {
+    return md5_cmn((b & d) | (c & ~d), a, b, x, s, t);
+}
+
+function md5_hh(a, b, c, d, x, s, t) {
+    return md5_cmn(b ^ c ^ d, a, b, x, s, t);
+}
+
+function md5_ii(a, b, c, d, x, s, t) {
+    return md5_cmn(c ^ (b | ~d), a, b, x, s, t);
+}
+
+/*
+ * Add integers, wrapping at 2^32. This uses 16-bit operations internally
+ * to work around bugs in some JS interpreters.
+ */
+function safe_add(x, y) {
+    var lsw = (x & 0xffff) + (y & 0xffff);
+    var msw = (x >> 16) + (y >> 16) + (lsw >> 16);
+    return (msw << 16) | (lsw & 0xffff);
+}
+
+/*
+ * Bitwise rotate a 32-bit number to the left.
+ */
+function bit_rol(num, cnt) {
+    return (num << cnt) | (num >>> (32 - cnt));
+}

backend/src/vendor/open-api.js

@@ -0,0 +1,429 @@
+/* eslint-disable no-undef */
+const isQX = typeof $task !== 'undefined';
+const isLoon = typeof $loon !== 'undefined';
+const isSurge = typeof $httpClient !== 'undefined' && !isLoon;
+const isNode = eval(`typeof process !== "undefined"`); // eval is needed in order to avoid browserify processing
+const isStash =
+    'undefined' !== typeof $environment && $environment['stash-version'];
+const isShadowRocket = 'undefined' !== typeof $rocket;
+const isEgern = 'object' == typeof egern;
+const isLanceX = 'undefined' != typeof $native;
+const isGUIforCores = typeof $Plugins !== 'undefined';
+
+export class OpenAPI {
+    constructor(name = 'untitled', debug = false) {
+        this.name = name;
+        this.debug = debug;
+
+        this.http = HTTP();
+        this.env = ENV();
+
+        this.node = (() => {
+            if (isNode) {
+                const fs = eval("require('fs')");
+
+                return {
+                    fs,
+                };
+            } else {
+                return null;
+            }
+        })();
+        this.initCache();
+
+        const delay = (t, v) =>
+            new Promise(function (resolve) {
+                setTimeout(resolve.bind(null, v), t);
+            });
+
+        Promise.prototype.delay = async function (t) {
+            const v = await this;
+            return await delay(t, v);
+        };
+    }
+
+    // persistence
+    // initialize cache
+    initCache() {
+        if (isQX)
+            this.cache = JSON.parse($prefs.valueForKey(this.name) || '{}');
+        if (isLoon || isSurge)
+            this.cache = JSON.parse($persistentStore.read(this.name) || '{}');
+        if (isGUIforCores)
+            this.cache = JSON.parse(
+                $Plugins.SubStoreCache.get(this.name) || '{}',
+            );
+        if (isNode) {
+            // create a json for root cache
+            const basePath =
+                eval('process.env.SUB_STORE_DATA_BASE_PATH') || '.';
+            let rootPath = `${basePath}/root.json`;
+
+            this.log(`Root path: ${rootPath}`);
+            if (!this.node.fs.existsSync(rootPath)) {
+                this.node.fs.writeFileSync(rootPath, JSON.stringify({}), {
+                    flag: 'wx',
+                });
+                this.root = {};
+            } else {
+                this.root = JSON.parse(
+                    this.node.fs.readFileSync(`${rootPath}`),
+                );
+            }
+
+            // create a json file with the given name if not exists
+            let fpath = `${basePath}/${this.name}.json`;
+            this.log(`Data path: ${fpath}`);
+            if (!this.node.fs.existsSync(fpath)) {
+                this.node.fs.writeFileSync(fpath, JSON.stringify({}), {
+                    flag: 'wx',
+                });
+                this.cache = {};
+            } else {
+                this.cache = JSON.parse(this.node.fs.readFileSync(`${fpath}`));
+            }
+        }
+    }
+
+    // store cache
+    persistCache() {
+        const data = JSON.stringify(this.cache, null, 2);
+        if (isQX) $prefs.setValueForKey(data, this.name);
+        if (isLoon || isSurge) $persistentStore.write(data, this.name);
+        if (isGUIforCores) $Plugins.SubStoreCache.set(this.name, data);
+        if (isNode) {
+            const basePath =
+                eval('process.env.SUB_STORE_DATA_BASE_PATH') || '.';
+
+            this.node.fs.writeFileSync(
+                `${basePath}/${this.name}.json`,
+                data,
+                { flag: 'w' },
+                (err) => console.log(err),
+            );
+            this.node.fs.writeFileSync(
+                `${basePath}/root.json`,
+                JSON.stringify(this.root, null, 2),
+                { flag: 'w' },
+                (err) => console.log(err),
+            );
+        }
+    }
+
+    write(data, key) {
+        this.log(`SET ${key}`);
+        if (key.indexOf('#') !== -1) {
+            key = key.substr(1);
+            if (isSurge || isLoon) {
+                return $persistentStore.write(data, key);
+            }
+            if (isQX) {
+                return $prefs.setValueForKey(data, key);
+            }
+            if (isNode) {
+                this.root[key] = data;
+            }
+            if (isGUIforCores) {
+                return $Plugins.SubStoreCache.set(key, data);
+            }
+        } else {
+            this.cache[key] = data;
+        }
+        this.persistCache();
+    }
+
+    read(key) {
+        this.log(`READ ${key}`);
+        if (key.indexOf('#') !== -1) {
+            key = key.substr(1);
+            if (isSurge || isLoon) {
+                return $persistentStore.read(key);
+            }
+            if (isQX) {
+                return $prefs.valueForKey(key);
+            }
+            if (isNode) {
+                return this.root[key];
+            }
+            if (isGUIforCores) {
+                return $Plugins.SubStoreCache.get(key);
+            }
+        } else {
+            return this.cache[key];
+        }
+    }
+
+    delete(key) {
+        this.log(`DELETE ${key}`);
+        if (key.indexOf('#') !== -1) {
+            key = key.substr(1);
+            if (isSurge || isLoon) {
+                return $persistentStore.write(null, key);
+            }
+            if (isQX) {
+                return $prefs.removeValueForKey(key);
+            }
+            if (isNode) {
+                delete this.root[key];
+            }
+            if (isGUIforCores) {
+                return $Plugins.SubStoreCache.remove(key);
+            }
+        } else {
+            delete this.cache[key];
+        }
+        this.persistCache();
+    }
+
+    // notification
+    notify(title, subtitle = '', content = '', options = {}) {
+        const openURL = options['open-url'];
+        const mediaURL = options['media-url'];
+
+        if (isQX) $notify(title, subtitle, content, options);
+        if (isSurge) {
+            $notification.post(
+                title,
+                subtitle,
+                content + `${mediaURL ? '\n多媒体:' + mediaURL : ''}`,
+                {
+                    url: openURL,
+                },
+            );
+        }
+        if (isLoon) {
+            let opts = {};
+            if (openURL) opts['openUrl'] = openURL;
+            if (mediaURL) opts['mediaUrl'] = mediaURL;
+            if (JSON.stringify(opts) === '{}') {
+                $notification.post(title, subtitle, content);
+            } else {
+                $notification.post(title, subtitle, content, opts);
+            }
+        }
+        if (isNode) {
+            const content_ =
+                content +
+                (openURL ? `\n点击跳转: ${openURL}` : '') +
+                (mediaURL ? `\n多媒体: ${mediaURL}` : '');
+            console.log(`${title}\n${subtitle}\n${content_}\n\n`);
+
+            let push = eval('process.env.SUB_STORE_PUSH_SERVICE');
+            if (push) {
+                const url = push
+                    .replace(
+                        '[推送标题]',
+                        encodeURIComponent(title || 'Sub-Store'),
+                    )
+                    .replace(
+                        '[推送内容]',
+                        encodeURIComponent(
+                            [subtitle, content_].map((i) => i).join('\n'),
+                        ),
+                    );
+                const $http = HTTP();
+                $http
+                    .get({ url })
+                    .then((resp) => {
+                        console.log(
+                            `[Push Service] URL: ${url}\nRES: ${resp.statusCode} ${resp.body}`,
+                        );
+                    })
+                    .catch((e) => {
+                        console.log(`[Push Service] URL: ${url}\nERROR: ${e}`);
+                    });
+            }
+        }
+        if (isGUIforCores) {
+            $Plugins.Notify(title, subtitle + '\n' + content);
+        }
+    }
+
+    // other helper functions
+    log(msg) {
+        if (this.debug) console.log(`[${this.name}] LOG: ${msg}`);
+    }
+
+    info(msg) {
+        console.log(`[${this.name}] INFO: ${msg}`);
+    }
+
+    error(msg) {
+        console.log(`[${this.name}] ERROR: ${msg}`);
+    }
+
+    wait(millisec) {
+        return new Promise((resolve) => setTimeout(resolve, millisec));
+    }
+
+    done(value = {}) {
+        if (isQX || isLoon || isSurge || isGUIforCores) {
+            $done(value);
+        } else if (isNode) {
+            if (typeof $context !== 'undefined') {
+                $context.headers = value.headers;
+                $context.statusCode = value.statusCode;
+                $context.body = value.body;
+            }
+        }
+    }
+}
+
+export function ENV() {
+    return {
+        isQX,
+        isLoon,
+        isSurge,
+        isNode,
+        isStash,
+        isShadowRocket,
+        isEgern,
+        isLanceX,
+        isGUIforCores,
+    };
+}
+
+export function HTTP(defaultOptions = { baseURL: '' }) {
+    const { isQX, isLoon, isSurge, isNode, isGUIforCores } = ENV();
+    const methods = [
+        'GET',
+        'POST',
+        'PUT',
+        'DELETE',
+        'HEAD',
+        'OPTIONS',
+        'PATCH',
+    ];
+    const URL_REGEX =
+        /https?:\/\/(www\.)?[-a-zA-Z0-9@:%._+~#=]{1,256}\.[a-zA-Z0-9()]{1,6}\b([-a-zA-Z0-9()@:%_+.~#?&//=]*)/;
+
+    function send(method, options) {
+        options = typeof options === 'string' ? { url: options } : options;
+        const baseURL = defaultOptions.baseURL;
+        if (baseURL && !URL_REGEX.test(options.url || '')) {
+            options.url = baseURL ? baseURL + options.url : options.url;
+        }
+        options = { ...defaultOptions, ...options };
+        const timeout = options.timeout;
+        const events = {
+            ...{
+                onRequest: () => {},
+                onResponse: (resp) => resp,
+                onTimeout: () => {},
+            },
+            ...options.events,
+        };
+
+        events.onRequest(method, options);
+
+        if (options.node) {
+            // Surge & Loon allow connecting to a server using a specified proxy node
+            if (isSurge) {
+                const build = $environment['surge-build'];
+                if (build && parseInt(build) >= 2407) {
+                    options['policy-descriptor'] = options.node;
+                    delete options.node;
+                }
+            }
+        }
+
+        let worker;
+        if (isQX) {
+            worker = $task.fetch({
+                method,
+                url: options.url,
+                headers: options.headers,
+                body: options.body,
+                opts: options.opts,
+            });
+        } else if (isLoon || isSurge || isNode) {
+            worker = new Promise((resolve, reject) => {
+                const request = isNode
+                    ? eval("require('request')")
+                    : $httpClient;
+                const opts = JSON.parse(JSON.stringify(options));
+                if (!isNode && opts.timeout) {
+                    opts.timeout++;
+                    let unit = 'ms';
+                    // 这些客户端单位为 s
+                    if (isSurge || isStash || isShadowRocket) {
+                        opts.timeout = Math.ceil(opts.timeout / 1000);
+                        unit = 's';
+                    }
+                    // Loon 为 ms
+                    // console.log(`[httpClient timeout] ${opts.timeout}${unit}`);
+                }
+                request[method.toLowerCase()](opts, (err, response, body) => {
+                    // if (err) {
+                    //     console.log(err);
+                    // } else {
+                    //     console.log({
+                    //         statusCode:
+                    //             response.status || response.statusCode,
+                    //         headers: response.headers,
+                    //         body,
+                    //     });
+                    // }
+
+                    if (err) reject(err);
+                    else
+                        resolve({
+                            statusCode: response.status || response.statusCode,
+                            headers: response.headers,
+                            body,
+                        });
+                });
+            });
+        } else if (isGUIforCores) {
+            worker = new Promise(async (resolve, reject) => {
+                try {
+                    const response = await $Plugins.Requests({
+                        method,
+                        url: options.url,
+                        headers: options.headers,
+                        body: options.body,
+                    });
+                    resolve({
+                        statusCode: response.status,
+                        headers: response.headers,
+                        body: response.body,
+                    });
+                } catch (error) {
+                    reject(error);
+                }
+            });
+        }
+
+        let timeoutid;
+
+        const timer = timeout
+            ? new Promise((_, reject) => {
+                  //   console.log(`[request timeout] ${timeout}ms`);
+                  timeoutid = setTimeout(() => {
+                      events.onTimeout();
+                      return reject(
+                          `${method} URL: ${options.url} exceeds the timeout ${timeout} ms`,
+                      );
+                  }, timeout);
+              })
+            : null;
+
+        return (
+            timer
+                ? Promise.race([timer, worker]).then((res) => {
+                      if (typeof clearTimeout !== 'undefined') {
+                          clearTimeout(timeoutid);
+                      }
+                      return res;
+                  })
+                : worker
+        ).then((resp) => events.onResponse(resp));
+    }
+
+    const http = {};
+    methods.forEach(
+        (method) =>
+            (http[method.toLowerCase()] = (options) => send(method, options)),
+    );
+    return http;
+}