fix(tls-handshake): Set certificate_expired TLS alert level to warning instead of fatal to allow graceful termination.

changelog.md

@@ -1,5 +1,11 @@
 # Changelog
 
+## 2025-03-17 - 4.1.13 - fix(tls-handshake)
+Set certificate_expired TLS alert level to warning instead of fatal to allow graceful termination.
+
+- In the TLS handshake alert for certificate_expired (0x2F), changed the alert level from 0x02 (fatal) to 0x01 (warning).
+- This change avoids abrupt connection termination, enabling a smoother handling of certificate expiration alerts.
+
 ## 2025-03-17 - 4.1.12 - fix(classes.pp.connectionhandler)
 Replace unrecognized_name alert data with certificate_expired alert in TLS handshake handling for session resumption without SNI
 

ts/00_commitinfo_data.ts

@@ -3,6 +3,6 @@
  */
 export const commitinfo = {
   name: '@push.rocks/smartproxy',
-  version: '4.1.12',
+  version: '4.1.13',
   description: 'A powerful proxy package that effectively handles high traffic, with features such as SSL/TLS support, port proxying, WebSocket handling, dynamic routing with authentication options, and automatic ACME certificate management.'
 }

ts/classes.pp.connectionhandler.ts

@@ -611,7 +611,7 @@ export class ConnectionHandler {
               0x03, // TLS 1.2 version
               0x00,
               0x02, // Length
-              0x02, // Fatal alert level (2)
+              0x01, // Warning alert level (1)
               0x2F, // certificate_expired alert (47)
             ]);