npm - block-proxy - Versions diffs - 0.1.2 → 0.1.5 - Mend

block-proxy 0.1.2 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/README.md CHANGED Viewed

@@ -1,5 +1,5 @@
-<img width="300" alt="image" src="https://github.com/user-attachments/assets/2bb069d8-508a-41b9-9fee-94a1e31cc0cb" />
+<img width="287" alt="image" src="https://github.com/user-attachments/assets/2bb069d8-508a-41b9-9fee-94a1e31cc0cb" /> ![](https://nodei.co/npm/block-proxy.png?downloads=true&downloadRank=true&stars=true)
 ---------------------------
@@ -18,27 +18,42 @@
 ### 1）使用方法
-#### ①  快速部署
+#### ① 方式一：快速部署
 安装：
-`npm install -g block-proxy`
+```
+npm install -g block-proxy
+```
 启动：
-`block-proxy`
+```
+block-proxy
+```
+或者带配置文件启动
+```
+block-proxy -c rule.js
+```
+配置文件参照 [rule.js](example/rule.js)，可留空
-#### ②  Docker 部署（推荐）
+#### ② 方式二，Docker 部署（推荐）
 1. 下载 Docker 文件
    - Arm 架构 → <a href="http://yui.cool:7001/public/downloads/block-proxy/arm/block-proxy.tar" target=_blank>block-proxy-arm.tar</a>
    - X86 架构 → <a href="http://yui.cool:7001/public/downloads/block-proxy/x86/block-proxy-x86.tar" target=_blank>block-proxy-x86.tar</a>
 2. 导入：`docker load < block-proxy.tar`
 3. 启动：参照下文 Docker 部署
-4. 服务端配置：配置面板 <http://server-ip:8004>，关闭、启用配置面板：<http://server-ip:8001>
-5. 客户端配置：http 代理直接在 iphone wifi 详情里手动配置，socks5 代理只支持 socks5 over TLS，用小火箭配置。配置信息参照[配置面板](http://localhost:8004)
-### 2）开发和调试
+### 2）端口配置
+1. 服务端配置：配置面板 <http://server-ip:8004>，关闭、启用配置面板：<http://server-ip:8001>
+2. 客户端配置：http 代理直接在 iphone wifi 详情里手动配置，socks5 代理只支持 socks5 over TLS，用小火箭配置。配置信息参照[配置面板](http://localhost:8004)
+### 3）开发和调试
 代码 clone 下来后执行`pnpm i`，执行 `npm run dev` 运行本地服务。默认开启 5 个端口：
@@ -51,7 +66,7 @@
 |8004  |后台配置页端口  | 可禁用 |
-### 3）Docker 构建和部署
+### 4）Docker 构建说明
 准备工作，构建 docker 包，先启动本地 Docker：
@@ -77,9 +92,12 @@ docker run --init -d --restart=unless-stopped \
            --log-opt max-file=3 \
            --cpus="5" \
            --memory 400m \
+           -v "$(pwd)/":/app/config \
            --name block-proxy block-proxy
 ```
+其中挂载目录 `$(pws)/` 下的 `rule.js` 是需要额外挂载的配置文件，可留空。
 > block-proxy 可以配置只启动 proxy 不启动后台面板，首次启动后访问 http://代理IP:8001 根据提示操作。
 网关里为了方便获取子网机器 ip 和 mac 地址，docker 容器需要和宿主机共享同一个网络，同时指定时区。
@@ -88,14 +106,15 @@ docker run --init -d --restart=unless-stopped \
 ```
 docker run --init -d --restart=unless-stopped --user=root \
+           -v "$(pwd)/":/app/config \
            -e TZ=Asia/Shanghai -p 8001:8001 -p 8002:8002 -p 8003:8003 \
            --name block-proxy block-proxy
 ```
-### 4）配置说明
+### 5）配置说明
-#### 代理端口
+#### ① 代理端口
 默认开启两个代理端口：HTTP 8001 和 Socks5（over TLS） 8002。
@@ -103,7 +122,7 @@ docker run --init -d --restart=unless-stopped --user=root \
 ⚠️ 使用小火箭的 Socks5 over TLS 代理，TLS 选项里勾选“允许不安全”
-#### 后台配置
+#### ② 后台配置
 访问路径：`http://proxy-ip:8004`
@@ -112,16 +131,16 @@ docker run --init -d --restart=unless-stopped --user=root \
 <img src="https://github.com/user-attachments/assets/16f47d3f-1ef9-47a2-8640-c7e04ec64e1a" width=300 />
-#### 设备配置
+#### ③ 设备配置
 1. 代理设置：iPhone/iPad 为例：设置 → 无线局域网 → 点击当前网络 → HTTP代理/配置代理，设置服务器和端口。
-2. 证书设置：打开anproxy监控地址（8003端口），扫码安装证书，在手机设置中安装该证书，同时配置完全信任：设置→通用→关于本机→证书信任设置→打开对AnyProxy的完全信任
+2. 证书设置：打开 anproxy 监控地址（8003端口），扫码安装证书，在手机设置中安装该证书，同时配置完全信任：设置→通用→关于本机→证书信任设置→打开对AnyProxy的完全信任
 小朋友的设备里把 Mac 固定下来：
 <img width="350" alt="image" src="https://github.com/user-attachments/assets/f9bfab89-7194-4a72-b1ae-5cca27911bc9" />
-#### 禁掉设备直连
+#### ④ 禁掉设备直连
 防止小朋友修改网Wifi连接，只允许设备通过代理访问，把直连上网权限关掉。网关里配置防火墙规则：
@@ -133,7 +152,7 @@ ip6tables -I forwarding_rule -m mac --mac-source D2:9E:8D:1B:F1:4E -j REJECT
 然后重启防火墙
-### 5）使用说明
+### 6）更多信息
 #### 应用条件：

package/bin/start.js CHANGED Viewed

@@ -2,6 +2,9 @@
 const { spawn } = require('child_process');
 const path = require('path');
+const { Command } = require('commander');
+const program = new Command();
+const _fs = require('../proxy/fs.js');
 const pkgDir = path.join(__dirname, '..');
 const startScript = path.resolve(pkgDir, 'server/start.js');
@@ -28,13 +31,15 @@ function startApp() {
     process.stderr.write(data);
   });
-  currentChild.on('close', (code, signal) => {
+  currentChild.on('close', async (code, signal) => {
     currentChild = null; // 清空引用
     if (restartTimer) {
       clearTimeout(restartTimer);
       restartTimer = null;
     }
+    await _fs.clearGlobalConfigFile();
     if (code === 0) {
       console.error('[block proxy] 正常退出，不重启。');
       process.exit(0);
@@ -62,8 +67,10 @@ function startApp() {
 }
 // ✅ 只注册一次 SIGINT 监听器（在 startApp 外部！）
-process.on('SIGINT', () => {
+process.on('SIGINT', async () => {
   console.error('\n[block proxy] 收到 SIGINT，正在关闭子进程...');
+  await _fs.clearGlobalConfigFile();
   if (restartTimer) {
     clearTimeout(restartTimer);
@@ -92,5 +99,27 @@ process.on('SIGTERM', () => {
   }
 });
-// 启动
-startApp();
+(async function() {
+  program
+    .name('block-proxy')
+    .description('极简的 MITM 代理工具：https://github.com/jayli/block-proxy')
+    .version('0.1.3')
+    .option('-c, --config <config>', 'MITM 配置文件');
+  program.parse(process.argv);
+  const options = program.opts();
+  if (options.config && options.config != "") {
+    if (path.isAbsolute(options.config)) {
+      await _fs.setGlobalConfigFile(options.config);
+    } else {
+      var pwd = process.cwd();
+      var configFile = path.resolve(pwd, options.config);
+      await _fs.setGlobalConfigFile(configFile);
+    }
+  }
+  // 启动
+  startApp();
+})();

package/config.json CHANGED Viewed

@@ -1,5 +1,5 @@
 {
-  "network_scanning_status": "1",
+  "network_scanning_status": "0",
   "progress_time_stamp": "1766571511705",
   "block_hosts": [
     {
@@ -245,6 +245,14 @@
     {
       "ip": "192.168.124.128",
       "mac": "48:F3:F3:CA:1D:E"
+    },
+    {
+      "ip": "192.168.124.66",
+      "mac": "E2:4D:6E:1:21:6E"
+    },
+    {
+      "ip": "192.168.124.125",
+      "mac": "14:C0:50:14:6E:A5"
     }
   ]
 }

package/example/rule.js ADDED Viewed

@@ -0,0 +1,39 @@
+module.exports = {
+  AAA: [
+    {
+      'type': 'beforeSendResponse',
+      'host': '163.com',
+      'regexp': "/123/v1/(browse|next)",
+      'callback': async function(url, request, response) {
+        return {
+          response
+        }
+      } // -- callback
+    },
+    {
+      'type': 'beforeSendResponse',
+      'host': '163.com',
+      'regexp': "/456",
+      'callback': async function(url, request, response) {
+        return {
+          response
+        }
+      } // -- callback
+    }
+  ],
+  BBB: [
+    {
+      type: "beforeSendRequest",
+      host: "163.com",
+      regexp: "/hello",
+      callback: async function(url, request, response) {
+        return {
+          response : {
+            statusCode: 200,
+            body: 'hello world'
+          }
+        }
+      }
+    }
+  ]
+};

package/package.json CHANGED Viewed

@@ -1,9 +1,9 @@
 {
   "name": "block-proxy",
-  "version": "0.1.2",
-  "description": "Small-scale network proxy filter",
-  "bin":{
-    "block-proxy": "./bin/start.js"
+  "version": "0.1.5",
+  "description": "Small-scale network mitm proxy filter",
+  "bin": {
+    "block-proxy": "bin/start.js"
   },
   "dependencies": {
     "react": "^19.2.0",
@@ -16,7 +16,7 @@
     "url": "git+https://github.com/jayli/block-proxy.git"
   },
   "scripts": {
-    "cp": "cp ./hack-of-anyproxy/lib/requestHandler.js ./node_modules/anyproxy/lib/",
+    "cp": "echo '---- program start ----'",
     "craco": "craco start",
     "dev": "BLOCK_PROXY_DEV=1 npm run express",
     "start": "npm run express",
@@ -31,13 +31,13 @@
   },
   "devDependencies": {
     "@craco/craco": "^7.1.0",
-    "anyproxy": "^4.1.3",
+    "@bachi/anyproxy": "^0.1.1",
     "axios": "^1.13.2",
+    "commander": "^14.0.2",
     "express": "^5.1.0",
     "http-proxy-agent": "^7.0.2",
     "https-proxy-agent": "^7.0.6",
-    "ping": "^1.0.0",
-    "write-file-atomic": "^7.0.0"
+    "ping": "^1.0.0"
   },
   "browserslist": {
     "production": [

package/proxy/fs.js CHANGED Viewed

@@ -1,7 +1,6 @@
 // proxy/fs.js
 const fs = require('fs').promises;
 const path = require('path');
-const writeFileAtomic = require('write-file-atomic'); // 引入 write-file-atomic
 const configPath = path.join(__dirname, '../config.json');
 const CONFIG_FILE_PATH = configPath;
@@ -9,9 +8,6 @@ const CONFIG_FILE_PATH = configPath;
 // 传入的是对象
 async function writeConfig(newData) {
   try {
-    // 使用 write-file-atomic 进行原子写入
-    // 它会在内部创建一个临时文件，写入成功后再重命名为目标文件
-    // await writeFileAtomic(CONFIG_FILE_PATH, JSON.stringify(newData, null, 2), 'utf8');
     await fs.writeFile(CONFIG_FILE_PATH, JSON.stringify(newData, null, 2), 'utf8');
     // console.log('Config file written successfully');
   } catch (error) {
@@ -41,7 +37,33 @@ async function readConfig() {
   }
 }
+async function setGlobalConfigFile(configFile) {
+  var data = await readConfig();
+  data.config_file = configFile;
+  await writeConfig(data);
+}
+async function getGlobalConfigFile() {
+  var data = await readConfig();
+  if (data.hasOwnProperty("config_file")) {
+    return data.config_file;
+  } else {
+    return null;
+  }
+}
+async function clearGlobalConfigFile() {
+  var data = await readConfig();
+  if (data.hasOwnProperty("config_file")) {
+    delete data.config_file
+  }
+  await writeConfig(data);
+}
 module.exports = {
   writeConfig,
-  readConfig
+  readConfig,
+  setGlobalConfigFile,
+  getGlobalConfigFile,
+  clearGlobalConfigFile
 };

package/proxy/proxy.js CHANGED Viewed

@@ -1,5 +1,5 @@
 // 文件名: proxy/proxy.js
-const AnyProxy = require('anyproxy');
+const AnyProxy = require('@bachi/anyproxy');
 const { exec } = require('child_process');
 const fs = require('fs');
 const _fs = require('./fs.js');
@@ -7,6 +7,7 @@ const path = require('path');
 const { start } = require('repl');
 const net = require('net');
 const scanNetwork = require("./scan").scanNetwork;
+const setScanStatus = require("./scan").setScanStatus;
 const util = require('util');
 const zlib = require('zlib');
 const _util = require('../server/util.js');
@@ -18,12 +19,12 @@ const axios = require('axios');
 const { HttpProxyAgent } = require('http-proxy-agent');
 const { HttpsProxyAgent } = require('https-proxy-agent');
 const _request = require("./http.js").request;
-const Rule = require("./mitm/rule.js");
 const uaFilter = require("./mitm/uaFilter.js");
 const attacker = require('./attacker.js');
 const monitor = require('./monitor.js');
 const domain = require('./domain.js');
 const wanip = require('./wanip.js');
+var   Rule = require("./mitm/rule.js");
 // 启用全局 keep-alive，使 AnyProxy 内部转发也复用连接
 http.globalAgent.keepAlive = true;
@@ -80,6 +81,45 @@ function preCompileRuleRegexp() {
   });
 }
+async function fileExists(filePath) {
+  try {
+    await fs.promises.access(filePath);
+    return true;
+  } catch {
+    return false;
+  }
+}
+// 引入从命令行传进来的 rule.js，并加载
+async function loadGlobalConfigFile() {
+  var configFile = await _fs.getGlobalConfigFile();
+  await _fs.clearGlobalConfigFile();
+  if (configFile == null) {
+    return;
+  } else {
+    var extraRule = require(configFile);
+    Rule = {
+      ...Rule,
+      ...extraRule
+    }
+  }
+}
+// 引入 Docker 挂载目录下的 rule.js，并加载
+async function loadDockerMountedConfigFile() {
+  var rulePath = path.join(__dirname, '../config/rule.js');
+  var fileOK = await fileExists(rulePath);
+  if (fileOK) {
+    var extraRule = require(rulePath);
+    Rule = {
+      ...Rule,
+      ...extraRule
+    }
+  } else {
+    return;
+  }
+}
 function isEmpty(obj) {
   if (obj === null || obj === undefined) {
     return true;
@@ -407,8 +447,6 @@ function startProxyServer() {
       if (enable_webinterface == "1") {
         console.log(`✅ \x1b[32mAnyProxy 监控面板启动，端口 ${webInterfacePort}\x1b[0m`);
       }
-      console.log('Intercepting requests to hosts:', blockHosts.join(', '));
-      console.log('All other requests will be passed through without HTTPS interception');
     });
     proxyServerInstance.on('error', (e) => {
@@ -1364,6 +1402,7 @@ var LocalProxy = {
       newRouterMap = await scanNetwork();
     } catch (e) {
       newRouterMap = [];
+      setScanStatus("0");
     }
     var mergedRouterMap = [];
@@ -1450,7 +1489,17 @@ var LocalProxy = {
       return;
     }
-    console.log('启动代理服务 LocalProxy.init() ');
+    // 加载命令行里携带的配置文件
+    await loadGlobalConfigFile();
+    // 加载 Docker 挂载目录中的配置文件
+    await loadDockerMountedConfigFile();
+    // 预编译 MITM Rule 的正则
+    preCompileRuleRegexp();
+    // 启动时重置 Scan 本地扫描
+    setScanStatus("0");
+    console.log('启动代理服务');
     console.log('Dev server started, starting LocalProxy...');
     is_running_in_docker = _util.isRunningInDocker();
     if (is_running_in_docker) {
@@ -1486,8 +1535,9 @@ var LocalProxy = {
 };
 // 预编译 MITM Rule 的正则
-(function() {
-  preCompileRuleRegexp();
+(async function() {
+  // await loadGlobalConfigFile();
+  // preCompileRuleRegexp();
 })();
 module.exports = LocalProxy;

package/proxy/scan.js CHANGED Viewed

@@ -106,7 +106,7 @@ var tempDevices = [];
 async function scanNetwork() {
   var status = await getScanStatus();
   if (status == "1") {
-    await setScanStatus("0");
+    // await setScanStatus("0");
     return tempDevices;
   } else {
     await setScanStatus("1");
@@ -117,4 +117,5 @@ async function scanNetwork() {
   }
 }
+module.exports.setScanStatus = setScanStatus;
 module.exports.scanNetwork = scanNetwork;

package/AD_BLOCK.md DELETED Viewed

@@ -1,38 +0,0 @@
-[Rule]
-AND,((DOMAIN-SUFFIX,googlevideo.com), (PROTOCOL,UDP)),REJECT
-AND,((DOMAIN,youtubei.googleapis.com), (PROTOCOL,UDP)),REJECT
-[URL Rewrite]
-(^https?:\/\/[\w-]+\.googlevideo\.com\/(?!dclk_video_ads).+?)&ctier=L(&.+?),ctier,(.+) $1$2$3 302
-^https?:\/\/[\w-]+\.googlevideo\.com\/(?!(dclk_video_ads|videoplayback\?)).+&oad _ reject-200
-^https?:\/\/(www|s)\.youtube\.com\/api\/stats\/ads _ reject-200
-^https?:\/\/(www|s)\.youtube\.com\/(pagead|ptracking) _ reject-200
-^https?:\/\/s\.youtube\.com\/api\/stats\/qoe\?adcontext _ reject-200
-[Script]
-youtube.response = type=http-response,pattern=^https:\/\/youtubei\.googleapis\.com\/youtubei\/v1\/(browse|next|player|search|reel\/reel_watch_sequence|guide|account\/get_setting|get_watch),requires-body=1,max-size=-1,binary-body-mode=1,engine={{{脚本执行引擎}}},script-path=https://raw.githubusercontent.com/Maasea/sgmodule/master/Script/Youtube/youtube.response.js,argument="{"lyricLang":"{{{歌词翻译语言}}}","captionLang":"{{{字幕翻译语言}}}","blockUpload":{{{屏蔽上传按钮}}},"blockImmersive":{{{屏蔽选段按钮}}},"debug":{{{启用调试模式}}}}"
-[MITM]
-hostname = %APPEND% -redirector*.googlevideo.com,*.googlevideo.com,www.youtube.com,s.youtube.com,youtubei.googleapis.com
---------------------
-youtube.com
-`^https?:\/\/(www|s)\.youtube\.com\/api\/stats\/ads`
-youtube.com
-`^https?:\/\/(www|s)\.youtube\.com\/(pagead|ptracking)`
-youtube.com
-`^https?:\/\/s\.youtube\.com\/api\/stats\/qoe\?adcontext`
-googlevideo.com
-`^https?:\/\/[\w-]+\.googlevideo\.com\/(?!(dclk_video_ads|videoplayback\?)).+(&oad|ctier)`
-s.youtube.com
-`^https?:\/\/s\.youtube\.com\/api\/stats\/atr.+&is_ad=1`
-youtube.com
-`^https?:\/\/(www|s)\.youtube\.com\/pcs\/activeview.+&ad_cpn=`