├── .gitignore ├── LICENSE ├── README-ja_JP.md ├── README-zh_CN.md ├── README.md ├── package.json ├── src └── worker.js └── wrangler.toml /.gitignore: -------------------------------------------------------------------------------- 1 | # Logs 2 | 3 | logs 4 | _.log 5 | npm-debug.log_ 6 | yarn-debug.log* 7 | yarn-error.log* 8 | lerna-debug.log* 9 | .pnpm-debug.log* 10 | 11 | package-lock.json 12 | 13 | # Diagnostic reports (https://nodejs.org/api/report.html) 14 | 15 | report.[0-9]_.[0-9]_.[0-9]_.[0-9]_.json 16 | 17 | # Runtime data 18 | 19 | pids 20 | _.pid 21 | _.seed 22 | \*.pid.lock 23 | 24 | # Directory for instrumented libs generated by jscoverage/JSCover 25 | 26 | lib-cov 27 | 28 | # Coverage directory used by tools like istanbul 29 | 30 | coverage 31 | \*.lcov 32 | 33 | # nyc test coverage 34 | 35 | .nyc_output 36 | 37 | # Grunt intermediate storage (https://gruntjs.com/creating-plugins#storing-task-files) 38 | 39 | .grunt 40 | 41 | # Bower dependency directory (https://bower.io/) 42 | 43 | bower_components 44 | 45 | # node-waf configuration 46 | 47 | .lock-wscript 48 | 49 | # Compiled binary addons (https://nodejs.org/api/addons.html) 50 | 51 | build/Release 52 | 53 | # Dependency directories 54 | 55 | node_modules/ 56 | jspm_packages/ 57 | 58 | # Snowpack dependency directory (https://snowpack.dev/) 59 | 60 | web_modules/ 61 | 62 | # TypeScript cache 63 | 64 | \*.tsbuildinfo 65 | 66 | # Optional npm cache directory 67 | 68 | .npm 69 | 70 | # Optional eslint cache 71 | 72 | .eslintcache 73 | 74 | # Optional stylelint cache 75 | 76 | .stylelintcache 77 | 78 | # Microbundle cache 79 | 80 | .rpt2_cache/ 81 | .rts2_cache_cjs/ 82 | .rts2_cache_es/ 83 | .rts2_cache_umd/ 84 | 85 | # Optional REPL history 86 | 87 | .node_repl_history 88 | 89 | # Output of 'npm pack' 90 | 91 | \*.tgz 92 | 93 | # Yarn Integrity file 94 | 95 | .yarn-integrity 96 | 97 | # dotenv environment variable files 98 | 99 | .env 100 | .env.development.local 101 | .env.test.local 102 | .env.production.local 103 | .env.local 104 | 105 | # parcel-bundler cache (https://parceljs.org/) 106 | 107 | .cache 108 | .parcel-cache 109 | 110 | # Next.js build output 111 | 112 | .next 113 | out 114 | 115 | # Nuxt.js build / generate output 116 | 117 | .nuxt 118 | dist 119 | 120 | # Gatsby files 121 | 122 | .cache/ 123 | 124 | # Comment in the public line in if your project uses Gatsby and not Next.js 125 | 126 | # https://nextjs.org/blog/next-9-1#public-directory-support 127 | 128 | # public 129 | 130 | # vuepress build output 131 | 132 | .vuepress/dist 133 | 134 | # vuepress v2.x temp and cache directory 135 | 136 | .temp 137 | .cache 138 | 139 | # Docusaurus cache and generated files 140 | 141 | .docusaurus 142 | 143 | # Serverless directories 144 | 145 | .serverless/ 146 | 147 | # FuseBox cache 148 | 149 | .fusebox/ 150 | 151 | # DynamoDB Local files 152 | 153 | .dynamodb/ 154 | 155 | # TernJS port file 156 | 157 | .tern-port 158 | 159 | # Stores VSCode versions used for testing VSCode extensions 160 | 161 | .vscode-test 162 | 163 | # yarn v2 164 | 165 | .yarn/cache 166 | .yarn/unplugged 167 | .yarn/build-state.yml 168 | .yarn/install-state.gz 169 | .pnp.\* 170 | 171 | # wrangler project 172 | 173 | .dev.vars 174 | .wrangler/ 175 | .idea 176 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | GNU GENERAL PUBLIC LICENSE 2 | Version 2, June 1991 3 | 4 | Copyright (C) 1989, 1991 Free Software Foundation, Inc., 5 | 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA 6 | Everyone is permitted to copy and distribute verbatim copies 7 | of this license document, but changing it is not allowed. 8 | 9 | Preamble 10 | 11 | The licenses for most software are designed to take away your 12 | freedom to share and change it. By contrast, the GNU General Public 13 | License is intended to guarantee your freedom to share and change free 14 | software--to make sure the software is free for all its users. This 15 | General Public License applies to most of the Free Software 16 | Foundation's software and to any other program whose authors commit to 17 | using it. (Some other Free Software Foundation software is covered by 18 | the GNU Lesser General Public License instead.) You can apply it to 19 | your programs, too. 20 | 21 | When we speak of free software, we are referring to freedom, not 22 | price. Our General Public Licenses are designed to make sure that you 23 | have the freedom to distribute copies of free software (and charge for 24 | this service if you wish), that you receive source code or can get it 25 | if you want it, that you can change the software or use pieces of it 26 | in new free programs; and that you know you can do these things. 27 | 28 | To protect your rights, we need to make restrictions that forbid 29 | anyone to deny you these rights or to ask you to surrender the rights. 30 | These restrictions translate to certain responsibilities for you if you 31 | distribute copies of the software, or if you modify it. 32 | 33 | For example, if you distribute copies of such a program, whether 34 | gratis or for a fee, you must give the recipients all the rights that 35 | you have. You must make sure that they, too, receive or can get the 36 | source code. And you must show them these terms so they know their 37 | rights. 38 | 39 | We protect your rights with two steps: (1) copyright the software, and 40 | (2) offer you this license which gives you legal permission to copy, 41 | distribute and/or modify the software. 42 | 43 | Also, for each author's protection and ours, we want to make certain 44 | that everyone understands that there is no warranty for this free 45 | software. If the software is modified by someone else and passed on, we 46 | want its recipients to know that what they have is not the original, so 47 | that any problems introduced by others will not reflect on the original 48 | authors' reputations. 49 | 50 | Finally, any free program is threatened constantly by software 51 | patents. We wish to avoid the danger that redistributors of a free 52 | program will individually obtain patent licenses, in effect making the 53 | program proprietary. To prevent this, we have made it clear that any 54 | patent must be licensed for everyone's free use or not licensed at all. 55 | 56 | The precise terms and conditions for copying, distribution and 57 | modification follow. 58 | 59 | GNU GENERAL PUBLIC LICENSE 60 | TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION 61 | 62 | 0. This License applies to any program or other work which contains 63 | a notice placed by the copyright holder saying it may be distributed 64 | under the terms of this General Public License. The "Program", below, 65 | refers to any such program or work, and a "work based on the Program" 66 | means either the Program or any derivative work under copyright law: 67 | that is to say, a work containing the Program or a portion of it, 68 | either verbatim or with modifications and/or translated into another 69 | language. (Hereinafter, translation is included without limitation in 70 | the term "modification".) Each licensee is addressed as "you". 71 | 72 | Activities other than copying, distribution and modification are not 73 | covered by this License; they are outside its scope. The act of 74 | running the Program is not restricted, and the output from the Program 75 | is covered only if its contents constitute a work based on the 76 | Program (independent of having been made by running the Program). 77 | Whether that is true depends on what the Program does. 78 | 79 | 1. You may copy and distribute verbatim copies of the Program's 80 | source code as you receive it, in any medium, provided that you 81 | conspicuously and appropriately publish on each copy an appropriate 82 | copyright notice and disclaimer of warranty; keep intact all the 83 | notices that refer to this License and to the absence of any warranty; 84 | and give any other recipients of the Program a copy of this License 85 | along with the Program. 86 | 87 | You may charge a fee for the physical act of transferring a copy, and 88 | you may at your option offer warranty protection in exchange for a fee. 89 | 90 | 2. You may modify your copy or copies of the Program or any portion 91 | of it, thus forming a work based on the Program, and copy and 92 | distribute such modifications or work under the terms of Section 1 93 | above, provided that you also meet all of these conditions: 94 | 95 | a) You must cause the modified files to carry prominent notices 96 | stating that you changed the files and the date of any change. 97 | 98 | b) You must cause any work that you distribute or publish, that in 99 | whole or in part contains or is derived from the Program or any 100 | part thereof, to be licensed as a whole at no charge to all third 101 | parties under the terms of this License. 102 | 103 | c) If the modified program normally reads commands interactively 104 | when run, you must cause it, when started running for such 105 | interactive use in the most ordinary way, to print or display an 106 | announcement including an appropriate copyright notice and a 107 | notice that there is no warranty (or else, saying that you provide 108 | a warranty) and that users may redistribute the program under 109 | these conditions, and telling the user how to view a copy of this 110 | License. (Exception: if the Program itself is interactive but 111 | does not normally print such an announcement, your work based on 112 | the Program is not required to print an announcement.) 113 | 114 | These requirements apply to the modified work as a whole. If 115 | identifiable sections of that work are not derived from the Program, 116 | and can be reasonably considered independent and separate works in 117 | themselves, then this License, and its terms, do not apply to those 118 | sections when you distribute them as separate works. But when you 119 | distribute the same sections as part of a whole which is a work based 120 | on the Program, the distribution of the whole must be on the terms of 121 | this License, whose permissions for other licensees extend to the 122 | entire whole, and thus to each and every part regardless of who wrote it. 123 | 124 | Thus, it is not the intent of this section to claim rights or contest 125 | your rights to work written entirely by you; rather, the intent is to 126 | exercise the right to control the distribution of derivative or 127 | collective works based on the Program. 128 | 129 | In addition, mere aggregation of another work not based on the Program 130 | with the Program (or with a work based on the Program) on a volume of 131 | a storage or distribution medium does not bring the other work under 132 | the scope of this License. 133 | 134 | 3. You may copy and distribute the Program (or a work based on it, 135 | under Section 2) in object code or executable form under the terms of 136 | Sections 1 and 2 above provided that you also do one of the following: 137 | 138 | a) Accompany it with the complete corresponding machine-readable 139 | source code, which must be distributed under the terms of Sections 140 | 1 and 2 above on a medium customarily used for software interchange; or, 141 | 142 | b) Accompany it with a written offer, valid for at least three 143 | years, to give any third party, for a charge no more than your 144 | cost of physically performing source distribution, a complete 145 | machine-readable copy of the corresponding source code, to be 146 | distributed under the terms of Sections 1 and 2 above on a medium 147 | customarily used for software interchange; or, 148 | 149 | c) Accompany it with the information you received as to the offer 150 | to distribute corresponding source code. (This alternative is 151 | allowed only for noncommercial distribution and only if you 152 | received the program in object code or executable form with such 153 | an offer, in accord with Subsection b above.) 154 | 155 | The source code for a work means the preferred form of the work for 156 | making modifications to it. For an executable work, complete source 157 | code means all the source code for all modules it contains, plus any 158 | associated interface definition files, plus the scripts used to 159 | control compilation and installation of the executable. However, as a 160 | special exception, the source code distributed need not include 161 | anything that is normally distributed (in either source or binary 162 | form) with the major components (compiler, kernel, and so on) of the 163 | operating system on which the executable runs, unless that component 164 | itself accompanies the executable. 165 | 166 | If distribution of executable or object code is made by offering 167 | access to copy from a designated place, then offering equivalent 168 | access to copy the source code from the same place counts as 169 | distribution of the source code, even though third parties are not 170 | compelled to copy the source along with the object code. 171 | 172 | 4. You may not copy, modify, sublicense, or distribute the Program 173 | except as expressly provided under this License. Any attempt 174 | otherwise to copy, modify, sublicense or distribute the Program is 175 | void, and will automatically terminate your rights under this License. 176 | However, parties who have received copies, or rights, from you under 177 | this License will not have their licenses terminated so long as such 178 | parties remain in full compliance. 179 | 180 | 5. You are not required to accept this License, since you have not 181 | signed it. However, nothing else grants you permission to modify or 182 | distribute the Program or its derivative works. These actions are 183 | prohibited by law if you do not accept this License. Therefore, by 184 | modifying or distributing the Program (or any work based on the 185 | Program), you indicate your acceptance of this License to do so, and 186 | all its terms and conditions for copying, distributing or modifying 187 | the Program or works based on it. 188 | 189 | 6. Each time you redistribute the Program (or any work based on the 190 | Program), the recipient automatically receives a license from the 191 | original licensor to copy, distribute or modify the Program subject to 192 | these terms and conditions. You may not impose any further 193 | restrictions on the recipients' exercise of the rights granted herein. 194 | You are not responsible for enforcing compliance by third parties to 195 | this License. 196 | 197 | 7. If, as a consequence of a court judgment or allegation of patent 198 | infringement or for any other reason (not limited to patent issues), 199 | conditions are imposed on you (whether by court order, agreement or 200 | otherwise) that contradict the conditions of this License, they do not 201 | excuse you from the conditions of this License. If you cannot 202 | distribute so as to satisfy simultaneously your obligations under this 203 | License and any other pertinent obligations, then as a consequence you 204 | may not distribute the Program at all. For example, if a patent 205 | license would not permit royalty-free redistribution of the Program by 206 | all those who receive copies directly or indirectly through you, then 207 | the only way you could satisfy both it and this License would be to 208 | refrain entirely from distribution of the Program. 209 | 210 | If any portion of this section is held invalid or unenforceable under 211 | any particular circumstance, the balance of the section is intended to 212 | apply and the section as a whole is intended to apply in other 213 | circumstances. 214 | 215 | It is not the purpose of this section to induce you to infringe any 216 | patents or other property right claims or to contest validity of any 217 | such claims; this section has the sole purpose of protecting the 218 | integrity of the free software distribution system, which is 219 | implemented by public license practices. Many people have made 220 | generous contributions to the wide range of software distributed 221 | through that system in reliance on consistent application of that 222 | system; it is up to the author/donor to decide if he or she is willing 223 | to distribute software through any other system and a licensee cannot 224 | impose that choice. 225 | 226 | This section is intended to make thoroughly clear what is believed to 227 | be a consequence of the rest of this License. 228 | 229 | 8. If the distribution and/or use of the Program is restricted in 230 | certain countries either by patents or by copyrighted interfaces, the 231 | original copyright holder who places the Program under this License 232 | may add an explicit geographical distribution limitation excluding 233 | those countries, so that distribution is permitted only in or among 234 | countries not thus excluded. In such case, this License incorporates 235 | the limitation as if written in the body of this License. 236 | 237 | 9. The Free Software Foundation may publish revised and/or new versions 238 | of the General Public License from time to time. Such new versions will 239 | be similar in spirit to the present version, but may differ in detail to 240 | address new problems or concerns. 241 | 242 | Each version is given a distinguishing version number. If the Program 243 | specifies a version number of this License which applies to it and "any 244 | later version", you have the option of following the terms and conditions 245 | either of that version or of any later version published by the Free 246 | Software Foundation. If the Program does not specify a version number of 247 | this License, you may choose any version ever published by the Free Software 248 | Foundation. 249 | 250 | 10. If you wish to incorporate parts of the Program into other free 251 | programs whose distribution conditions are different, write to the author 252 | to ask for permission. For software which is copyrighted by the Free 253 | Software Foundation, write to the Free Software Foundation; we sometimes 254 | make exceptions for this. Our decision will be guided by the two goals 255 | of preserving the free status of all derivatives of our free software and 256 | of promoting the sharing and reuse of software generally. 257 | 258 | NO WARRANTY 259 | 260 | 11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY 261 | FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN 262 | OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES 263 | PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED 264 | OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF 265 | MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS 266 | TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE 267 | PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, 268 | REPAIR OR CORRECTION. 269 | 270 | 12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING 271 | WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR 272 | REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, 273 | INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING 274 | OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED 275 | TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY 276 | YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER 277 | PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE 278 | POSSIBILITY OF SUCH DAMAGES. 279 | 280 | END OF TERMS AND CONDITIONS 281 | 282 | How to Apply These Terms to Your New Programs 283 | 284 | If you develop a new program, and you want it to be of the greatest 285 | possible use to the public, the best way to achieve this is to make it 286 | free software which everyone can redistribute and change under these terms. 287 | 288 | To do so, attach the following notices to the program. It is safest 289 | to attach them to the start of each source file to most effectively 290 | convey the exclusion of warranty; and each file should have at least 291 | the "copyright" line and a pointer to where the full notice is found. 292 | 293 | 294 | Copyright (C) 295 | 296 | This program is free software; you can redistribute it and/or modify 297 | it under the terms of the GNU General Public License as published by 298 | the Free Software Foundation; either version 2 of the License, or 299 | (at your option) any later version. 300 | 301 | This program is distributed in the hope that it will be useful, 302 | but WITHOUT ANY WARRANTY; without even the implied warranty of 303 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 304 | GNU General Public License for more details. 305 | 306 | You should have received a copy of the GNU General Public License along 307 | with this program; if not, write to the Free Software Foundation, Inc., 308 | 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. 309 | 310 | Also add information on how to contact you by electronic and paper mail. 311 | 312 | If the program is interactive, make it output a short notice like this 313 | when it starts in an interactive mode: 314 | 315 | Gnomovision version 69, Copyright (C) year name of author 316 | Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. 317 | This is free software, and you are welcome to redistribute it 318 | under certain conditions; type `show c' for details. 319 | 320 | The hypothetical commands `show w' and `show c' should show the appropriate 321 | parts of the General Public License. Of course, the commands you use may 322 | be called something other than `show w' and `show c'; they could even be 323 | mouse-clicks or menu items--whatever suits your program. 324 | 325 | You should also get your employer (if you work as a programmer) or your 326 | school, if any, to sign a "copyright disclaimer" for the program, if 327 | necessary. Here is a sample; alter the names: 328 | 329 | Yoyodyne, Inc., hereby disclaims all copyright interest in the program 330 | `Gnomovision' (which makes passes at compilers) written by James Hacker. 331 | 332 | , 1 April 1989 333 | Ty Coon, President of Vice 334 | 335 | This General Public License does not permit incorporating your program into 336 | proprietary programs. If your program is a subroutine library, you may 337 | consider it more useful to permit linking proprietary applications with the 338 | library. If this is what you want to do, use the GNU Lesser General 339 | Public License instead of this License. 340 | -------------------------------------------------------------------------------- /README-ja_JP.md: -------------------------------------------------------------------------------- 1 | # Epeius 2 | [English](./README.md) | [简体中文](./README-zh_CN.md) | 日本語 3 | 4 | サーバーレスアプローチを用いた Trojan のデプロイ 5 | 6 | ## クイックスタート 7 | - Cloudflare Workers ダッシュボードで新しい Worker を作成します。 8 | - [worker.js](./src/worker.js) のコードを Worker のコードエディタに貼り付けます。 9 | - `sha224Password` は自分のパスワードに置き換えてください。[こちら](https://www.atatus.com/tools/sha224-to-hash)で生成できます。あるいは、後で Cloudflare Workers の設定で `SHA224PASS` 環境変数を追加することもできます。 10 | - カスタムドメインを Worker にバインドする。 11 | - `https://[YOUR_DOMAIN]/link` にアクセスし、`ca110us` をプレーンなパスワードに置き換える。 12 | 13 | ## サポート外 14 | - UDP 🙅 (Cloudflare workers ランタイムはまだ UDP をサポートしていません) 15 | 16 | ## 免責事項 17 | このプロジェクトは研究/調査目的のみのものです。利用者は法令遵守と倫理的行動に責任を負うものとする。著者は誤用に関するすべての責任を否認します。 18 | 19 | ## 参考 20 | [zizifn/edgetunnel](https://github.com/zizifn/edgetunnel) 21 | -------------------------------------------------------------------------------- /README-zh_CN.md: -------------------------------------------------------------------------------- 1 | # Epeius 2 | [English](./README.md) | 简体中文 | [日本語](./README-ja_JP.md) 3 | 4 | 以 Serverless 的方式部署 Trojan 5 | 6 | ## 快速上手 7 | - 在 Cloudflare Workers 仪表盘中创建一个新的 Worker 8 | - 将 [worker.js](./src/worker.js) 文件中的代码粘贴到 Worker 代码编辑器中 9 | - 用你自己的密码替换 `sha224Password`,你可以在 [这里](https://www.atatus.com/tools/sha224-to-hash) 生成密码。或者,你可以之后在 Cloudflare Workers 设置中增加 `SHA224PASS` 环境变量 10 | - 将自定义域名绑定到 Worker 11 | - 访问 `https://[你的域名]/link` 并用你的明文密码替换 `ca110us` 12 | 13 | ## 未支持事项 14 | - UDP 🙅(Cloudflare workers runtime 当前不支持 UDP) 15 | 16 | ## 免责声明 17 | 该项目仅供学习/研究目的,用户对法律合规和道德行为负责,作者对任何滥用行为概不负责。 18 | 19 | ## 参考 20 | [zizifn/edgetunnel](https://github.com/zizifn/edgetunnel) 21 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Epeius 2 | English | [简体中文](./README-zh_CN.md) | [日本語](./README-ja_JP.md) 3 | 4 | Deploy Trojan using a Serverless approach 5 | 6 | ## Quick start 7 | - Create a new Worker in Cloudflare Workers dashboard. 8 | - Paste code from [worker.js](./src/worker.js) into the worker code editor. 9 | - Replace `sha224Password` with your own password. You can generate [here](https://www.atatus.com/tools/sha224-to-hash). Alternatively, you can add the `SHA224PASS` environment variable in Cloudflare Workers settings later. 10 | - Binding a custom domain to the worker. 11 | - Visit `https://[YOUR_DOMAIN]/link` and replace `ca110us` with your plain password. 12 | 13 | ## Not supported 14 | - UDP 🙅 (Cloudflare workers runtime does not support UDP yet) 15 | 16 | ## Disclaimer 17 | This project is for study/research purposes only. Users are responsible for legal compliance and ethical conduct. The author disclaims all liability for misuse. 18 | 19 | ## Reference 20 | [zizifn/edgetunnel](https://github.com/zizifn/edgetunnel) 21 | -------------------------------------------------------------------------------- /package.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "epeus", 3 | "version": "0.0.0", 4 | "private": true, 5 | "scripts": { 6 | "deploy": "wrangler deploy", 7 | "dev": "wrangler dev --ip 0.0.0.0", 8 | "start": "wrangler dev" 9 | }, 10 | "devDependencies": { 11 | "wrangler": "^3.0.0" 12 | } 13 | } 14 | -------------------------------------------------------------------------------- /src/worker.js: -------------------------------------------------------------------------------- 1 | // src/worker.js 2 | import { connect } from "cloudflare:sockets"; 3 | let sha224Password = '08f32643dbdacf81d0d511f1ee24b06de759e90f8edf742bbdc57d88'; 4 | let proxyIP = ""; 5 | 6 | if (!isValidSHA224(sha224Password)) { 7 | throw new Error('sha224Password is not valid'); 8 | } 9 | 10 | const worker_default = { 11 | /** 12 | * @param {import("@cloudflare/workers-types").Request} request 13 | * @param {{SHA224PASS: string, PROXYIP: string}} env 14 | * @param {import("@cloudflare/workers-types").ExecutionContext} ctx 15 | * @returns {Promise} 16 | */ 17 | async fetch(request, env, ctx) { 18 | try { 19 | proxyIP = env.PROXYIP || proxyIP; 20 | sha224Password = env.SHA224PASS || sha224Password 21 | const upgradeHeader = request.headers.get("Upgrade"); 22 | if (!upgradeHeader || upgradeHeader !== "websocket") { 23 | const url = new URL(request.url); 24 | switch (url.pathname) { 25 | case "/link": 26 | const host = request.headers.get('Host'); 27 | return new Response(`trojan://ca110us@${host}:443/?type=ws&host=${host}&security=tls`, { 28 | status: 200, 29 | headers: { 30 | "Content-Type": "text/plain;charset=utf-8", 31 | } 32 | }); 33 | default: 34 | return new Response("404 Not found", { status: 404 }); 35 | } 36 | } else { 37 | return await trojanOverWSHandler(request); 38 | } 39 | } catch (err) { 40 | let e = err; 41 | return new Response(e.toString()); 42 | } 43 | } 44 | }; 45 | 46 | async function trojanOverWSHandler(request) { 47 | const webSocketPair = new WebSocketPair(); 48 | const [client, webSocket] = Object.values(webSocketPair); 49 | webSocket.accept(); 50 | let address = ""; 51 | let portWithRandomLog = ""; 52 | const log = (info, event) => { 53 | console.log(`[${address}:${portWithRandomLog}] ${info}`, event || ""); 54 | }; 55 | const earlyDataHeader = request.headers.get("sec-websocket-protocol") || ""; 56 | const readableWebSocketStream = makeReadableWebSocketStream(webSocket, earlyDataHeader, log); 57 | let remoteSocketWapper = { 58 | value: null 59 | }; 60 | let udpStreamWrite = null; 61 | readableWebSocketStream.pipeTo(new WritableStream({ 62 | async write(chunk, controller) { 63 | if (udpStreamWrite) { 64 | return udpStreamWrite(chunk); 65 | } 66 | if (remoteSocketWapper.value) { 67 | const writer = remoteSocketWapper.value.writable.getWriter(); 68 | await writer.write(chunk); 69 | writer.releaseLock(); 70 | return; 71 | } 72 | const { 73 | hasError, 74 | message, 75 | portRemote = 443, 76 | addressRemote = "", 77 | rawClientData 78 | } = await parseTrojanHeader(chunk); 79 | address = addressRemote; 80 | portWithRandomLog = `${portRemote}--${Math.random()} tcp`; 81 | if (hasError) { 82 | throw new Error(message); 83 | return; 84 | } 85 | handleTCPOutBound(remoteSocketWapper, addressRemote, portRemote, rawClientData, webSocket, log); 86 | }, 87 | close() { 88 | log(`readableWebSocketStream is closed`); 89 | }, 90 | abort(reason) { 91 | log(`readableWebSocketStream is aborted`, JSON.stringify(reason)); 92 | } 93 | })).catch((err) => { 94 | log("readableWebSocketStream pipeTo error", err); 95 | }); 96 | return new Response(null, { 97 | status: 101, 98 | // @ts-ignore 99 | webSocket: client 100 | }); 101 | } 102 | 103 | async function parseTrojanHeader(buffer) { 104 | if (buffer.byteLength < 56) { 105 | return { 106 | hasError: true, 107 | message: "invalid data" 108 | }; 109 | } 110 | let crLfIndex = 56; 111 | if (new Uint8Array(buffer.slice(56, 57))[0] !== 0x0d || new Uint8Array(buffer.slice(57, 58))[0] !== 0x0a) { 112 | return { 113 | hasError: true, 114 | message: "invalid header format (missing CR LF)" 115 | }; 116 | } 117 | const password = new TextDecoder().decode(buffer.slice(0, crLfIndex)); 118 | if (password !== sha224Password) { 119 | return { 120 | hasError: true, 121 | message: "invalid password" 122 | }; 123 | } 124 | 125 | const socks5DataBuffer = buffer.slice(crLfIndex + 2); 126 | if (socks5DataBuffer.byteLength < 6) { 127 | return { 128 | hasError: true, 129 | message: "invalid SOCKS5 request data" 130 | }; 131 | } 132 | 133 | const view = new DataView(socks5DataBuffer); 134 | const cmd = view.getUint8(0); 135 | if (cmd !== 1) { 136 | return { 137 | hasError: true, 138 | message: "unsupported command, only TCP (CONNECT) is allowed" 139 | }; 140 | } 141 | 142 | const atype = view.getUint8(1); 143 | // 0x01: IPv4 address 144 | // 0x03: Domain name 145 | // 0x04: IPv6 address 146 | let addressLength = 0; 147 | let addressIndex = 2; 148 | let address = ""; 149 | switch (atype) { 150 | case 1: 151 | addressLength = 4; 152 | address = new Uint8Array( 153 | socks5DataBuffer.slice(addressIndex, addressIndex + addressLength) 154 | ).join("."); 155 | break; 156 | case 3: 157 | addressLength = new Uint8Array( 158 | socks5DataBuffer.slice(addressIndex, addressIndex + 1) 159 | )[0]; 160 | addressIndex += 1; 161 | address = new TextDecoder().decode( 162 | socks5DataBuffer.slice(addressIndex, addressIndex + addressLength) 163 | ); 164 | break; 165 | case 4: 166 | addressLength = 16; 167 | const dataView = new DataView(socks5DataBuffer.slice(addressIndex, addressIndex + addressLength)); 168 | const ipv6 = []; 169 | for (let i = 0; i < 8; i++) { 170 | ipv6.push(dataView.getUint16(i * 2).toString(16)); 171 | } 172 | address = ipv6.join(":"); 173 | break; 174 | default: 175 | return { 176 | hasError: true, 177 | message: `invalid addressType is ${atype}` 178 | }; 179 | } 180 | 181 | if (!address) { 182 | return { 183 | hasError: true, 184 | message: `address is empty, addressType is ${atype}` 185 | }; 186 | } 187 | 188 | const portIndex = addressIndex + addressLength; 189 | const portBuffer = socks5DataBuffer.slice(portIndex, portIndex + 2); 190 | const portRemote = new DataView(portBuffer).getUint16(0); 191 | return { 192 | hasError: false, 193 | addressRemote: address, 194 | portRemote, 195 | rawClientData: socks5DataBuffer.slice(portIndex + 4) 196 | }; 197 | } 198 | 199 | async function handleTCPOutBound(remoteSocket, addressRemote, portRemote, rawClientData, webSocket, log) { 200 | async function connectAndWrite(address, port) { 201 | const tcpSocket2 = connect({ 202 | hostname: address, 203 | port 204 | }); 205 | remoteSocket.value = tcpSocket2; 206 | log(`connected to ${address}:${port}`); 207 | const writer = tcpSocket2.writable.getWriter(); 208 | await writer.write(rawClientData); 209 | writer.releaseLock(); 210 | return tcpSocket2; 211 | } 212 | async function retry() { 213 | const tcpSocket2 = await connectAndWrite(proxyIP || addressRemote, portRemote); 214 | tcpSocket2.closed.catch((error) => { 215 | console.log("retry tcpSocket closed error", error); 216 | }).finally(() => { 217 | safeCloseWebSocket(webSocket); 218 | }); 219 | remoteSocketToWS(tcpSocket2, webSocket, null, log); 220 | } 221 | const tcpSocket = await connectAndWrite(addressRemote, portRemote); 222 | remoteSocketToWS(tcpSocket, webSocket, retry, log); 223 | } 224 | 225 | function makeReadableWebSocketStream(webSocketServer, earlyDataHeader, log) { 226 | let readableStreamCancel = false; 227 | const stream = new ReadableStream({ 228 | start(controller) { 229 | webSocketServer.addEventListener("message", (event) => { 230 | if (readableStreamCancel) { 231 | return; 232 | } 233 | const message = event.data; 234 | controller.enqueue(message); 235 | }); 236 | webSocketServer.addEventListener("close", () => { 237 | safeCloseWebSocket(webSocketServer); 238 | if (readableStreamCancel) { 239 | return; 240 | } 241 | controller.close(); 242 | }); 243 | webSocketServer.addEventListener("error", (err) => { 244 | log("webSocketServer error"); 245 | controller.error(err); 246 | }); 247 | const { earlyData, error } = base64ToArrayBuffer(earlyDataHeader); 248 | if (error) { 249 | controller.error(error); 250 | } else if (earlyData) { 251 | controller.enqueue(earlyData); 252 | } 253 | }, 254 | pull(controller) {}, 255 | cancel(reason) { 256 | if (readableStreamCancel) { 257 | return; 258 | } 259 | log(`readableStream was canceled, due to ${reason}`); 260 | readableStreamCancel = true; 261 | safeCloseWebSocket(webSocketServer); 262 | } 263 | }); 264 | return stream; 265 | } 266 | 267 | async function remoteSocketToWS(remoteSocket, webSocket, retry, log) { 268 | let hasIncomingData = false; 269 | await remoteSocket.readable.pipeTo( 270 | new WritableStream({ 271 | start() {}, 272 | /** 273 | * 274 | * @param {Uint8Array} chunk 275 | * @param {*} controller 276 | */ 277 | async write(chunk, controller) { 278 | hasIncomingData = true; 279 | if (webSocket.readyState !== WS_READY_STATE_OPEN) { 280 | controller.error( 281 | "webSocket connection is not open" 282 | ); 283 | } 284 | webSocket.send(chunk); 285 | }, 286 | close() { 287 | log(`remoteSocket.readable is closed, hasIncomingData: ${hasIncomingData}`); 288 | }, 289 | abort(reason) { 290 | console.error("remoteSocket.readable abort", reason); 291 | } 292 | }) 293 | ).catch((error) => { 294 | console.error( 295 | `remoteSocketToWS error:`, 296 | error.stack || error 297 | ); 298 | safeCloseWebSocket(webSocket); 299 | }); 300 | if (hasIncomingData === false && retry) { 301 | log(`retry`); 302 | retry(); 303 | } 304 | } 305 | 306 | function isValidSHA224(hash) { 307 | const sha224Regex = /^[0-9a-f]{56}$/i; 308 | return sha224Regex.test(hash); 309 | } 310 | 311 | function base64ToArrayBuffer(base64Str) { 312 | if (!base64Str) { 313 | return { error: null }; 314 | } 315 | try { 316 | base64Str = base64Str.replace(/-/g, "+").replace(/_/g, "/"); 317 | const decode = atob(base64Str); 318 | const arryBuffer = Uint8Array.from(decode, (c) => c.charCodeAt(0)); 319 | return { earlyData: arryBuffer.buffer, error: null }; 320 | } catch (error) { 321 | return { error }; 322 | } 323 | } 324 | 325 | let WS_READY_STATE_OPEN = 1; 326 | let WS_READY_STATE_CLOSING = 2; 327 | 328 | function safeCloseWebSocket(socket) { 329 | try { 330 | if (socket.readyState === WS_READY_STATE_OPEN || socket.readyState === WS_READY_STATE_CLOSING) { 331 | socket.close(); 332 | } 333 | } catch (error) { 334 | console.error("safeCloseWebSocket error", error); 335 | } 336 | } 337 | export { 338 | worker_default as 339 | default 340 | }; 341 | //# sourceMappingURL=worker.js.map -------------------------------------------------------------------------------- /wrangler.toml: -------------------------------------------------------------------------------- 1 | name = "epeius" 2 | main = "src/worker.js" 3 | compatibility_date = "2024-05-03" 4 | workers_dev = true 5 | --------------------------------------------------------------------------------