win
|
85ed193ff0
|
feat(tls): 更新 DoWithTLS 所有调用点至新三模式签名
CI / test (push) Failing after 10s
CI / golangci-lint (push) Failing after 6s
Security Scan / backend-security (push) Failing after 8s
Security Scan / frontend-security (push) Failing after 7s
- DoWithTLS 签名变更:(bool/profile) → (TLSMode, profile)
- 所有调用方传入 account.GetTLSMode() 以支持 node/utls/off 三模式
- gateway_service.go、gemini_messages_compat、forward_as_* 全部更新
- claude_usage_service 的 ClaudeUsageFetchOptions 新增 TLSMode 字段
- 新增 decompressResponseBody(gzip/brotli/deflate)到 http_upstream.go
- 新增 antigravity_privacy_service.go(setAntigravityPrivacy)
- admin_service 新增 ForceOpenAIPrivacy/EnsureAntigravityPrivacy/ForceAntigravityPrivacy
- antigravity.Client 新增 SetUserSettings/FetchUserInfo API
|
2026-03-27 22:29:17 +08:00 |
|
win
|
ffe6a5e331
|
feat: Antigravity 100% 指纹还原 + BoringCrypto TLS
CI / test (push) Failing after 4s
CI / golangci-lint (push) Failing after 3s
Security Scan / backend-security (push) Failing after 1m0s
Security Scan / frontend-security (push) Failing after 32s
Antigravity:
- Client ID 保留双 ID 支持(二进制确认两个都存在)
- Daily URL 去掉 .sandbox 后缀(日志确认)
- Redirect URI /callback → /oauth-callback(extension.js 确认)
- User-Agent 动态 OS/arch: antigravity/{ver} {os}/{arch}
- 新增 x-goog-api-client: gl-go/{goVer} gax-go/v2 grpc-go/1.81.0-dev
- googleapis 不再走 Node.js proxy → Go 原生 TLS(匹配真实 BoringCrypto)
- 新增 Go 后端心跳服务(每5分钟 loadCodeAssist + fetchAvailableModels)
- Dockerfile 切换 BoringCrypto 编译(CGO_ENABLED=1 GOEXPERIMENT=boringcrypto)
GeminiCLI:
- User-Agent 动态化: GeminiCLI/0.1.5 ({OS}; {ARCH})
- AI Studio 请求补上 User-Agent
Claude:
- CLI 版本 2.1.84, 包版本 0.74.0, 运行时 v24.3.0
- Token 交换 axios/1.13.6, timeout 15s
- proxy.js 仅服务 api.anthropic.com(Claude 专属)
架构变更:
- Node.js proxy 仅用于 Claude (api.anthropic.com)
- Antigravity (googleapis) 走 Go 原生 HTTP + GOST proxy
- TLS 指纹: Go BoringCrypto ≈ 真实 Antigravity BoringCrypto
|
2026-03-27 02:24:03 +08:00 |
|
win
|
8c6e578a84
|
feat: IP管理代理与 node-tls-proxy 指纹伪装共存
CI / test (push) Failing after 6s
CI / golangci-lint (push) Failing after 6s
Security Scan / backend-security (push) Failing after 6s
Security Scan / frontend-security (push) Failing after 6s
- Do()/DoWithTLS() 移除 proxyURL=="" 条件,绑了代理也走 node-tls-proxy
- doViaNodeTLSProxy 通过 X-Upstream-Proxy header 传递账号代理给 node-tls-proxy
- node-tls-proxy 支持 per-request 动态上游代理,优先 X-Upstream-Proxy,回退全局 UPSTREAM_PROXY
- 效果:IP管理 = 落地机网络,账号绑代理后指纹伪装仍然生效
|
2026-03-26 14:00:17 +08:00 |
|
win
|
f5abc62fd3
|
fix: 三节点部署脚本修复 + sub2api 容器代理透传
CI / test (push) Failing after 12s
CI / golangci-lint (push) Failing after 6s
Security Scan / backend-security (push) Failing after 5s
Security Scan / frontend-security (push) Failing after 5s
- GOST 下载 URL 修复:补全版本号 (gost_3.2.6_linux_amd64.tar.gz)
- CN 中转机服务名改为 gost-sub2api-relay,避免与现有 gost-relay 冲突
- CN 中转机监听协议改为 http(兼容 node-tls-proxy 的 HTTP CONNECT)
- 美国落地机服务名改为 gost-sub2api-exit
- sub2api 容器透传 HTTPS_PROXY/HTTP_PROXY 环境变量(解决 OAuth 超时)
- ops_cleanup 日志字段名避免触发 ERROR 误判
- 添加密码重置脚本和 SOCKS5 服务文件
|
2026-03-26 12:09:05 +08:00 |
|
win
|
a9dbceba32
|
fix: 去掉错误的 CN中转机 IP 配置,node-tls-proxy 在本机 Docker 内自动发现
CI / test (push) Failing after 12s
Security Scan / backend-security (push) Has been cancelled
Security Scan / frontend-security (push) Has been cancelled
CI / golangci-lint (push) Failing after 2m47s
|
2026-03-25 14:30:31 +08:00 |
|
win
|
b64997ae17
|
fix: 修复 setup-node1 deploy 目录路径查找逻辑,兼容从仓库根目录执行
CI / golangci-lint (push) Has been cancelled
Security Scan / backend-security (push) Has been cancelled
Security Scan / frontend-security (push) Has been cancelled
CI / test (push) Has been cancelled
|
2026-03-25 14:28:50 +08:00 |
|
win
|
4f6c5d7b5c
|
feat: 三节点部署脚本(上海/CN中转/美国落地)
|
2026-03-25 14:06:06 +08:00 |
|
win
|
91600c4abe
|
feat: 添加 Mac 和 Linux 全量指纹验证脚本
|
2026-03-25 13:00:52 +08:00 |
|
win
|
324483eabd
|
feat: TCP Window Size 伪装 + CLI 版本自动追踪
CI / test (push) Failing after 3s
CI / golangci-lint (push) Failing after 4s
Security Scan / backend-security (push) Failing after 6s
Security Scan / frontend-security (push) Failing after 5s
firewall.sh:
- TCP Window Size 设为 65535(macOS 默认,Linux 服务器默认 29200)
- 持久化到 /etc/sysctl.conf
maintenance/update-cli-version.sh:
- 从 npm registry 获取 @anthropic-ai/claude-code 最新版本
- 自动更新 proxy.js 中的 CLI_VERSION
- 支持 --check(仅检查)/ --force VER(强制指定)
- 建议 cron 每天 03:00 ET 运行
|
2026-03-25 11:55:24 +08:00 |
|
win
|
eeca6c90a4
|
fix: 时区改为 America/New_York(出口 IP 在纽约)
|
2026-03-25 11:52:14 +08:00 |
|
win
|
6958b0dedb
|
feat: macOS 指纹伪装 — TCP TTL/时间戳/时区 + H2优先 + Jitter增强
proxy.js:
- 主机身份全面改为 macOS (hostname: alex-MBP, osType: Darwin)
- macOS 版本号 (Ventura/Sonoma/Sequoia), Darwin 内核 22/23/24.x
- machineId 改为 IOPlatformUUID 格式(大写 UUID)
- arch: 70% arm64 / 30% x64(Apple Silicon 主流)
- 遥测 platform/ddtags 改为 darwin,路径改为 /Users/
- Jitter: 指数分布,80% 快(80-300ms) / 20% 慢(400-1200ms)
- H2 优先: api.anthropic.com/cloudaicompanion/generativelanguage 直接走 H2
setup-firewall.sh:
- 新增 TCP TTL 强制 = 64 (iptables mangle TTL)
- 新增 TCP 时间戳禁用 (net.ipv4.tcp_timestamps=0 + 持久化)
- 新增系统时区设置 America/Los_Angeles
- 新增 timezone 子命令、完整 status 输出
|
2026-03-25 11:50:41 +08:00 |
|
win
|
e5d78f8e56
|
refactor: 将自定义代码集中到 antigravity/ 目录和 *_antigravity.go 文件
CI / test (push) Failing after 39s
CI / golangci-lint (push) Failing after 3s
Security Scan / backend-security (push) Failing after 4s
Security Scan / frontend-security (push) Failing after 3s
- antigravity/node-tls-proxy/ ← 原 tools/node-tls-proxy
- antigravity/firewall/ ← 原 tools/firewall
- antigravity/maintenance/ ← 原 tools/maintenance
- repository/http_upstream_antigravity.go ← Node.js 代理 3 个方法(原在 http_upstream.go)
- service/identity_service_antigravity.go ← ApplyDefaultFingerprintOverrides + NewIdentityServiceWithSalt
- service/account_antigravity.go ← Gemini TLS 指纹扩展函数
对上游文件 http_upstream.go 的钩子调用精简为 2 处 if 块(共 14 行)
对上游文件 account.go Gemini 分支精简为 1 行函数调用
便于 upstream rebase 时快速识别和保留自定义改动
|
2026-03-25 11:37:27 +08:00 |
|