|
|
03b9227d78
|
6.0.0
Default (tags) / security (push) Successful in 39s
Default (tags) / test (push) Failing after 1m10s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v6.0.0
|
2025-03-25 22:31:07 +00:00 |
|
|
|
6944289ea7
|
BREAKING_CHANGE(core): refactored the codebase to be more maintainable
|
2025-03-25 22:30:57 +00:00 |
|
|
|
50fab2e1c3
|
5.1.0
Default (tags) / security (push) Successful in 29s
Default (tags) / test (push) Failing after 59s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v5.1.0
|
2025-03-18 22:04:37 +00:00 |
|
|
|
88a1891bcf
|
feat(docs): docs: replace IPTablesProxy references with NfTablesProxy in README and examples, updating configuration options and diagrams for advanced nftables features
|
2025-03-18 22:04:37 +00:00 |
|
|
|
6b2765a429
|
5.0.0
Default (tags) / security (push) Successful in 36s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v5.0.0
|
2025-03-18 21:55:09 +00:00 |
|
|
|
9b5b8225bc
|
BREAKING CHANGE(nftables): Replace IPTablesProxy with NfTablesProxy and update module exports in index.ts
|
2025-03-18 21:55:09 +00:00 |
|
|
|
54e81b3c32
|
4.3.0
Default (tags) / security (push) Successful in 30s
Default (tags) / test (push) Failing after 58s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.3.0
|
2025-03-18 15:00:24 +00:00 |
|
|
|
b7b47cd11f
|
feat(Port80Handler): Add glob pattern support for domain certificate management in Port80Handler. Wildcard domains are now detected and skipped in certificate issuance and retrieval, ensuring that only explicit domains receive ACME certificates and improving route matching.
|
2025-03-18 15:00:24 +00:00 |
|
|
|
62061517fd
|
4.2.6
Default (tags) / security (push) Successful in 21s
Default (tags) / test (push) Failing after 58s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.2.6
|
2025-03-18 14:56:57 +00:00 |
|
|
|
531350a1c1
|
fix(Port80Handler): Restrict ACME HTTP-01 challenge handling to domains with acmeMaintenance or acmeForward enabled
|
2025-03-18 14:56:57 +00:00 |
|
|
|
559a52af41
|
4.2.5
Default (tags) / security (push) Successful in 38s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.2.5
|
2025-03-18 14:53:39 +00:00 |
|
|
|
f8c86c76ae
|
fix(networkproxy): Refactor certificate management components: rename AcmeCertManager to Port80Handler and update related event names from CertManagerEvents to Port80HandlerEvents. The changes update internal API usage in ts/classes.networkproxy.ts and ts/classes.port80handler.ts to unify and simplify ACME certificate handling and HTTP-01 challenge management.
|
2025-03-18 14:53:39 +00:00 |
|
|
|
cc04e8786c
|
4.2.4
Default (tags) / security (push) Successful in 39s
Default (tags) / test (push) Failing after 58s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.2.4
|
2025-03-18 12:49:52 +00:00 |
|
|
|
9cb6e397b9
|
fix(ts/index.ts): Fix export order in ts/index.ts by moving the port proxy export back and adding interfaces export for proper module exposure
|
2025-03-18 12:49:52 +00:00 |
|
|
|
11b65bf684
|
4.2.3
Default (tags) / security (push) Successful in 21s
Default (tags) / test (push) Failing after 58s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.2.3
|
2025-03-18 00:32:01 +00:00 |
|
|
|
4b30e377b9
|
fix(connectionhandler): Remove unnecessary delay in TLS session ticket handling for connections without SNI
|
2025-03-18 00:32:01 +00:00 |
|
|
|
b10f35be4b
|
4.2.2
Default (tags) / security (push) Successful in 37s
Default (tags) / test (push) Failing after 1m3s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.2.2
|
2025-03-18 00:29:17 +00:00 |
|
|
|
426249e70e
|
fix(connectionhandler): Ensure proper termination of TLS connections without SNI by explicitly ending the socket after sending the unrecognized_name alert. This prevents the connection from hanging and avoids potential duplicate handling.
|
2025-03-18 00:29:17 +00:00 |
|
|
|
ba0d9d0b8e
|
4.2.1
Default (tags) / security (push) Failing after 14m48s
Default (tags) / test (push) Has been cancelled
Default (tags) / release (push) Has been cancelled
Default (tags) / metadata (push) Has been cancelled
v4.2.1
|
2025-03-17 14:28:09 +00:00 |
|
|
|
151b8f498c
|
fix(core): No uncommitted changes detected in the project.
|
2025-03-17 14:28:08 +00:00 |
|
|
|
0db4b07b22
|
4.2.0
Default (tags) / security (push) Successful in 58s
Default (tags) / test (push) Failing after 14m46s
Default (tags) / release (push) Has been cancelled
Default (tags) / metadata (push) Has been cancelled
v4.2.0
|
2025-03-17 14:27:10 +00:00 |
|
|
|
b55e2da23e
|
feat(tlsalert): add sendForceSniSequence and sendFatalAndClose helper functions to TlsAlert for improved SNI enforcement
|
2025-03-17 14:27:10 +00:00 |
|
|
|
3593e411cf
|
4.1.16
Default (tags) / security (push) Successful in 29s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.16
|
2025-03-17 13:37:48 +00:00 |
|
|
|
ca6f6de798
|
fix(tls): Improve TLS alert handling in connection handler: use the new TlsAlert class to send proper unrecognized_name alerts when a ClientHello is missing SNI and wait for a retry on the same connection before closing. Also, add alertFallbackTimeout tracking to connection records for better timeout management.
|
2025-03-17 13:37:48 +00:00 |
|
|
|
80d2f30804
|
4.1.15
Default (tags) / security (push) Failing after 14m48s
Default (tags) / test (push) Has been cancelled
Default (tags) / release (push) Has been cancelled
Default (tags) / metadata (push) Has been cancelled
v4.1.15
|
2025-03-17 13:23:07 +00:00 |
|
|
|
22f46700f1
|
fix(connectionhandler): Delay socket termination in TLS session resumption handling to allow proper alert processing
|
2025-03-17 13:23:07 +00:00 |
|
|
|
1611f65455
|
4.1.14
Default (tags) / security (push) Successful in 21s
Default (tags) / test (push) Failing after 1m9s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.14
|
2025-03-17 13:19:18 +00:00 |
|
|
|
c6350e271a
|
fix(ConnectionHandler): Use the correct TLS alert data and increase the delay before socket termination when session resumption without SNI is detected.
|
2025-03-17 13:19:18 +00:00 |
|
|
|
0fb5e5ea50
|
4.1.13
Default (tags) / security (push) Successful in 29s
Default (tags) / test (push) Failing after 59s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.13
|
2025-03-17 13:15:12 +00:00 |
|
|
|
35f6739b3c
|
fix(tls-handshake): Set certificate_expired TLS alert level to warning instead of fatal to allow graceful termination.
|
2025-03-17 13:15:12 +00:00 |
|
|
|
4634c68ea6
|
4.1.12
Default (tags) / security (push) Successful in 30s
Default (tags) / test (push) Failing after 59s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.12
|
2025-03-17 13:09:54 +00:00 |
|
|
|
e126032b61
|
fix(classes.pp.connectionhandler): Replace unrecognized_name alert data with certificate_expired alert in TLS handshake handling for session resumption without SNI
|
2025-03-17 13:09:54 +00:00 |
|
|
|
7797c799dd
|
4.1.11
Default (tags) / security (push) Successful in 37s
Default (tags) / test (push) Failing after 59s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.11
|
2025-03-17 13:00:02 +00:00 |
|
|
|
e8639e1b01
|
fix(connectionhandler): Increase delay before cleaning up connections when session resumption is blocked due to missing SNI, allowing more natural socket termination.
|
2025-03-17 13:00:02 +00:00 |
|
|
|
60a0ad106d
|
4.1.10
Default (tags) / security (push) Successful in 36s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.10
|
2025-03-16 14:49:25 +00:00 |
|
|
|
a70c123007
|
fix(connectionhandler): Increase delay timings for TLS alert transmission in session ticket blocking to allow graceful socket termination
|
2025-03-16 14:49:25 +00:00 |
|
|
|
46aa7620b0
|
4.1.9
Default (tags) / security (push) Successful in 35s
Default (tags) / test (push) Failing after 1m1s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.9
|
2025-03-16 14:13:36 +00:00 |
|
|
|
f72db86e37
|
fix(ConnectionHandler): Replace closeNotify alert with handshake failure alert in TLS ClientHello handling to properly signal missing SNI and enforce session ticket restrictions.
|
2025-03-16 14:13:35 +00:00 |
|
|
|
d612df107e
|
4.1.8
Default (tags) / security (push) Successful in 30s
Default (tags) / test (push) Failing after 1m1s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.8
|
2025-03-16 14:02:18 +00:00 |
|
|
|
1c34578c36
|
fix(ConnectionHandler/tls): Change the TLS alert sent when a ClientHello lacks SNI: use the close_notify alert instead of handshake_failure to prompt immediate retry with SNI.
|
2025-03-16 14:02:18 +00:00 |
|
|
|
1f9943b5a7
|
4.1.7
Default (tags) / security (push) Successful in 34s
Default (tags) / test (push) Failing after 59s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.7
|
2025-03-16 13:47:34 +00:00 |
|
|
|
67ddf97547
|
fix(classes.pp.connectionhandler): Improve TLS alert handling in ClientHello when SNI is missing and session tickets are disallowed
|
2025-03-16 13:47:34 +00:00 |
|
|
|
8a96b45ece
|
4.1.6
Default (tags) / security (push) Successful in 29s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.6
|
2025-03-16 13:28:48 +00:00 |
|
|
|
2b6464acd5
|
fix(tls): Refine TLS ClientHello handling when allowSessionTicket is false by replacing extensive alert timeout logic with a concise warning alert and short delay, encouraging immediate client retry with proper SNI
|
2025-03-16 13:28:48 +00:00 |
|
|
|
efbb4335d7
|
4.1.5
Default (tags) / security (push) Successful in 38s
Default (tags) / test (push) Failing after 59s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.5
|
2025-03-16 13:19:37 +00:00 |
|
|
|
9dd402054d
|
fix(TLS/ConnectionHandler): Improve handling of TLS session resumption without SNI by sending an unrecognized_name alert instead of immediately terminating the connection. This change adds a grace period for the client to retry the handshake with proper SNI and cleans up the connection if no valid response is received.
|
2025-03-16 13:19:37 +00:00 |
|
|
|
6c1efc1dc0
|
4.1.4
Default (tags) / security (push) Successful in 29s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.4
|
2025-03-15 19:10:54 +00:00 |
|
|
|
cad0e6a2b2
|
fix(ConnectionHandler): Refactor ConnectionHandler code formatting for improved readability and consistency in log messages and whitespace handling
|
2025-03-15 19:10:54 +00:00 |
|
|
|
794e1292e5
|
4.1.3
Default (tags) / security (push) Successful in 38s
Default (tags) / test (push) Failing after 1m0s
Default (tags) / release (push) Has been skipped
Default (tags) / metadata (push) Has been skipped
v4.1.3
|
2025-03-15 18:51:50 +00:00 |
|
|
|
ee79f9ab7c
|
fix(connectionhandler): Improve handling of TLS ClientHello messages when allowSessionTicket is disabled and no SNI is provided by sending a warning alert (unrecognized_name, code 0x70) with a proper callback and delay to ensure the alert is transmitted before closing the connection.
|
2025-03-15 18:51:50 +00:00 |
|
