z2k/cf-worker at 2184b9b413f0dd705d4a7133616b4b508bebc18e - vrr/z2k

vrr/z2k

mirror of https://github.com/necronicle/z2k.git synced 2026-04-28 03:20:25 +00:00

History

Necronicle 2184b9b413 Revert: roll tunnel and worker back to `e688fb1` Today's rewrite (`e729560`) introduced two independent regressions that compounded into a total outage: 1. worker.js added `await socket.opened` before sending CONNECT_OK. On Cloudflare Workers, `socket.opened` runs an HTTP-based-service heuristic that pre-emptively rejects with "proxy request failed ... consider using fetch instead" for destinations that look HTTPS-ish (port 443 with TLS-like framing) — even when a plain read/write on the same socket would have worked. Every Telegram DC hit this path and the tunnel returned 100% CONNECT_FAIL. 2. The N-parallel-session + voluntary TTL-rotation architecture in the rewritten tunnel.go killed in-flight TCP streams every rotation cycle, so Telegram MTProto couldn't finish a single handshake before its session got rotated out. Staggering + longer TTLs didn't help enough. Reverted tunnel.go, main.go, listener.go, worker.js, wrangler.toml and all 9 prebuilt binaries to `e688fb1` (the last commit known to work for three days straight). lib/install.sh keeps the iptables -I PREROUTING 1 fix from today (unrelated to the tunnel rewrite, real bug) but drops the --parallel/--session-ttl flags since the reverted binary doesn't know them. The Roblox work from `a6c607d` stays: files/lua/z2k-modern-core.lua still contains z2k_game_udp, lib/config_official.sh still wires it into the game strategies. That part works and is orthogonal to the tunnel. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-13 00:58:03 +03:00
..
worker.js	Revert: roll tunnel and worker back to `e688fb1`	2026-04-13 00:58:03 +03:00
wrangler.toml	Revert: roll tunnel and worker back to `e688fb1`	2026-04-13 00:58:03 +03:00

Necronicle 2184b9b413 Revert: roll tunnel and worker back to e688fb1

Today's rewrite (e729560) introduced two independent regressions that
compounded into a total outage:

1. worker.js added `await socket.opened` before sending CONNECT_OK. On
   Cloudflare Workers, `socket.opened` runs an HTTP-based-service heuristic
   that pre-emptively rejects with "proxy request failed ... consider using
   fetch instead" for destinations that look HTTPS-ish (port 443 with
   TLS-like framing) — even when a plain read/write on the same socket
   would have worked. Every Telegram DC hit this path and the tunnel
   returned 100% CONNECT_FAIL.

2. The N-parallel-session + voluntary TTL-rotation architecture in the
   rewritten tunnel.go killed in-flight TCP streams every rotation cycle,
   so Telegram MTProto couldn't finish a single handshake before its
   session got rotated out. Staggering + longer TTLs didn't help enough.

Reverted tunnel.go, main.go, listener.go, worker.js, wrangler.toml and all
9 prebuilt binaries to e688fb1 (the last commit known to work for three
days straight). lib/install.sh keeps the iptables -I PREROUTING 1 fix from
today (unrelated to the tunnel rewrite, real bug) but drops the
--parallel/--session-ttl flags since the reverted binary doesn't know them.

The Roblox work from a6c607d stays: files/lua/z2k-modern-core.lua still
contains z2k_game_udp, lib/config_official.sh still wires it into the game
strategies. That part works and is orthogonal to the tunnel.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-13 00:58:03 +03:00

worker.js Revert: roll tunnel and worker back to e688fb1 2026-04-13 00:58:03 +03:00

wrangler.toml Revert: roll tunnel and worker back to e688fb1 2026-04-13 00:58:03 +03:00