19.5.14

Improve error handling and logging for outgoing connections in RouteConnectionHandler
19.5.13
2025-06-01 13:58:30 +00:00 · 2025-06-01 13:58:20 +00:00 · 2025-06-01 13:43:46 +00:00 · 2025-06-01 13:43:05 +00:00 · 2025-06-01 13:42:46 +00:00 · 2025-06-01 13:32:16 +00:00
8 changed files with 454 additions and 604 deletions
--- a/package.json
+++ b/package.json
@ -1,6 +1,6 @@
 {
  "name": "@push.rocks/smartproxy",
-  "version": "19.5.9",
+  "version": "19.5.14",
  "private": false,
  "description": "A powerful proxy package with unified route-based configuration for high traffic management. Features include SSL/TLS support, flexible routing patterns, WebSocket handling, advanced security options, and automatic ACME certificate management.",
  "main": "dist_ts/index.js",
--- a/readme.hints.md
+++ b/readme.hints.md
@ -414,3 +414,54 @@ const routes: IRouteConfig[] = [{
 - **Phase 2 (cont)**: Migrate components to use LifecycleComponent
 - **Phase 3**: Add worker threads for CPU-intensive operations  
 - **Phase 4**: Performance monitoring dashboard
 ## Socket Error Handling Fix (v19.5.11+)
 ### Issue
 Server crashed with unhandled 'error' event when backend connections failed (ECONNREFUSED). Also caused memory leak with rising active connection count as failed connections weren't cleaned up properly.
 ### Root Cause
 1. **Race Condition**: In forwarding handlers, sockets were created with `net.connect()` but error handlers were attached later, creating a window where errors could crash the server
 2. **Incomplete Cleanup**: When server connections failed, client sockets weren't properly cleaned up, leaving connection records in memory
 ### Solution
 Created `createSocketWithErrorHandler()` utility that attaches error handlers immediately:
 ```typescript
 // Before (race condition):
 const socket = net.connect(port, host);
 // ... other code ...
 socket.on('error', handler); // Too late!
 // After (safe):
 const socket = createSocketWithErrorHandler({
  port, host,
  onError: (error) => {
    // Handle error immediately
    clientSocket.destroy();
  },
  onConnect: () => {
    // Set up forwarding
  }
 });
 ```
 ### Changes Made
 1. **New Utility**: `ts/core/utils/socket-utils.ts` - Added `createSocketWithErrorHandler()`
 2. **Updated Handlers**:
   - `https-passthrough-handler.ts` - Uses safe socket creation
   - `https-terminate-to-http-handler.ts` - Uses safe socket creation
 3. **Connection Cleanup**: Client sockets destroyed immediately on server connection failure
 ### Test Coverage
 - `test/test.socket-error-handling.node.ts` - Verifies server doesn't crash on ECONNREFUSED
 - `test/test.forwarding-error-fix.node.ts` - Tests forwarding handlers handle errors gracefully
 ### Configuration
 No configuration changes needed. The fix is transparent to users.
 ### Important Note
 The fix was applied in two places:
 1. **ForwardingHandler classes** (`https-passthrough-handler.ts`, etc.) - These are standalone forwarding utilities
 2. **SmartProxy route-connection-handler** (`route-connection-handler.ts`) - This is where the actual SmartProxy connection handling happens
 The critical fix for SmartProxy was in `setupDirectConnection()` method in route-connection-handler.ts, which now uses `createSocketWithErrorHandler()` to properly handle connection failures and clean up connection records.
--- a/readme.plan.md
+++ b/readme.plan.md
@ -1,337 +0,0 @@
 # SmartProxy Socket Cleanup Fix Plan
 ## Problem Summary
 The current socket cleanup implementation is too aggressive and closes long-lived connections prematurely. This affects:
 - WebSocket connections in HTTPS passthrough
 - Long-lived HTTP connections (SSE, streaming)
 - Database connections
 - Any connection that should remain open for hours
 ## Root Causes
 ### 1. **Bilateral Socket Cleanup**
 When one socket closes, both sockets are immediately destroyed:
 ```typescript
 // In createSocketCleanupHandler
 cleanupSocket(clientSocket, 'client');
 cleanupSocket(serverSocket, 'server');  // Both destroyed together!
 ```
 ### 2. **Aggressive Timeout Handling**
 Timeout events immediately trigger connection cleanup:
 ```typescript
 socket.on('timeout', () => {
  handleClose(`${prefix}_timeout`);  // Destroys both sockets!
 });
 ```
 ### 3. **Parity Check Forces Closure**
 If one socket closes but the other remains open for >2 minutes, connection is forcefully terminated:
 ```typescript
 if (record.outgoingClosedTime && 
    !record.incoming.destroyed && 
    now - record.outgoingClosedTime > 120000) {
  this.cleanupConnection(record, 'parity_check');
 }
 ```
 ### 4. **No Half-Open Connection Support**
 The proxy doesn't support TCP half-open connections where one side closes while the other continues sending.
 ## Fix Implementation Plan
 ### Phase 1: Fix Socket Cleanup (Prevent Premature Closure)
 #### 1.1 Modify `cleanupSocket()` to support graceful shutdown
 ```typescript
 export interface CleanupOptions {
  immediate?: boolean;      // Force immediate destruction
  allowDrain?: boolean;     // Allow write buffer to drain
  gracePeriod?: number;     // Ms to wait before force close
 }
 export function cleanupSocket(
  socket: Socket | TLSSocket | null, 
  socketName?: string,
  options: CleanupOptions = {}
 ): Promise<void> {
  if (!socket || socket.destroyed) return Promise.resolve();
  return new Promise<void>((resolve) => {
    const cleanup = () => {
      socket.removeAllListeners();
      if (!socket.destroyed) {
        socket.destroy();
      }
      resolve();
    };
    if (options.immediate) {
      cleanup();
    } else if (options.allowDrain && socket.writable) {
      // Allow pending writes to complete
      socket.end(() => cleanup());
      // Force cleanup after grace period
      if (options.gracePeriod) {
        setTimeout(cleanup, options.gracePeriod);
      }
    } else {
      cleanup();
    }
  });
 }
 ```
 #### 1.2 Implement Independent Socket Tracking
 ```typescript
 export function createIndependentSocketHandlers(
  clientSocket: Socket,
  serverSocket: Socket,
  onBothClosed: (reason: string) => void
 ): { cleanupClient: () => void, cleanupServer: () => void } {
  let clientClosed = false;
  let serverClosed = false;
  let clientReason = '';
  let serverReason = '';
  const checkBothClosed = () => {
    if (clientClosed && serverClosed) {
      onBothClosed(`client: ${clientReason}, server: ${serverReason}`);
    }
  };
  const cleanupClient = async (reason: string) => {
    if (clientClosed) return;
    clientClosed = true;
    clientReason = reason;
    // Allow server to continue if still active
    if (!serverClosed && serverSocket.writable) {
      // Half-close: stop reading from client, let server finish
      clientSocket.pause();
      clientSocket.unpipe(serverSocket);
      await cleanupSocket(clientSocket, 'client', { allowDrain: true });
    } else {
      await cleanupSocket(clientSocket, 'client');
    }
    checkBothClosed();
  };
  const cleanupServer = async (reason: string) => {
    if (serverClosed) return;
    serverClosed = true;
    serverReason = reason;
    // Allow client to continue if still active
    if (!clientClosed && clientSocket.writable) {
      // Half-close: stop reading from server, let client finish
      serverSocket.pause();
      serverSocket.unpipe(clientSocket);
      await cleanupSocket(serverSocket, 'server', { allowDrain: true });
    } else {
      await cleanupSocket(serverSocket, 'server');
    }
    checkBothClosed();
  };
  return { cleanupClient, cleanupServer };
 }
 ```
 ### Phase 2: Fix Timeout Handling
 #### 2.1 Separate timeout handling from connection closure
 ```typescript
 export function setupSocketHandlers(
  socket: Socket | TLSSocket,
  handleClose: (reason: string) => void,
  handleTimeout?: (socket: Socket) => void,  // New optional handler
  errorPrefix?: string
 ): void {
  socket.on('error', (error) => {
    const prefix = errorPrefix || 'Socket';
    handleClose(`${prefix}_error: ${error.message}`);
  });
  socket.on('close', () => {
    const prefix = errorPrefix || 'socket';
    handleClose(`${prefix}_closed`);
  });
  socket.on('timeout', () => {
    if (handleTimeout) {
      handleTimeout(socket);  // Custom timeout handling
    } else {
      // Default: just log, don't close
      console.warn(`Socket timeout: ${errorPrefix || 'socket'}`);
    }
  });
 }
 ```
 #### 2.2 Update HTTPS passthrough handler
 ```typescript
 // In https-passthrough-handler.ts
 const { cleanupClient, cleanupServer } = createIndependentSocketHandlers(
  clientSocket,
  serverSocket,
  (reason) => {
    this.emit(ForwardingHandlerEvents.DISCONNECTED, {
      remoteAddress,
      bytesSent,
      bytesReceived,
      reason
    });
  }
 );
 // Setup handlers with custom timeout handling
 setupSocketHandlers(clientSocket, cleanupClient, (socket) => {
  // Just reset timeout, don't close
  socket.setTimeout(timeout);
 }, 'client');
 setupSocketHandlers(serverSocket, cleanupServer, (socket) => {
  // Just reset timeout, don't close
  socket.setTimeout(timeout);
 }, 'server');
 ```
 ### Phase 3: Fix Connection Manager
 #### 3.1 Remove aggressive parity check
 ```typescript
 // Remove or significantly increase the parity check timeout
 // From 2 minutes to 30 minutes for long-lived connections
 if (record.outgoingClosedTime &&
    !record.incoming.destroyed &&
    !record.connectionClosed &&
    now - record.outgoingClosedTime > 1800000) {  // 30 minutes
  // Only close if no data activity
  if (now - record.lastActivity > 600000) {  // 10 minutes of inactivity
    this.cleanupConnection(record, 'parity_check');
  }
 }
 ```
 #### 3.2 Update cleanupConnection to check socket states
 ```typescript
 public cleanupConnection(record: IConnectionRecord, reason: string = 'normal'): void {
  if (!record.connectionClosed) {
    record.connectionClosed = true;
    // Only cleanup sockets that are actually closed or inactive
    if (record.incoming && (!record.incoming.writable || record.incoming.destroyed)) {
      cleanupSocket(record.incoming, `${record.id}-incoming`, { immediate: true });
    }
    if (record.outgoing && (!record.outgoing.writable || record.outgoing.destroyed)) {
      cleanupSocket(record.outgoing, `${record.id}-outgoing`, { immediate: true });
    }
    // If either socket is still active, don't remove the record yet
    if ((record.incoming && record.incoming.writable) || 
        (record.outgoing && record.outgoing.writable)) {
      record.connectionClosed = false;  // Reset flag
      return;  // Don't finish cleanup
    }
    // Continue with full cleanup...
  }
 }
 ```
 ### Phase 4: Testing and Validation
 #### 4.1 Test Cases to Implement
 1. WebSocket connection should stay open for >1 hour
 2. HTTP streaming response should continue after request closes
 3. Half-open connections should work correctly
 4. Verify no socket leaks with long-running connections
 5. Test graceful shutdown with pending data
 #### 4.2 Socket Leak Prevention
 - Ensure all event listeners are tracked and removed
 - Use WeakMap for socket metadata to prevent memory leaks
 - Implement connection count monitoring
 - Add periodic health checks for orphaned sockets
 ## Implementation Order
 1. **Day 1**: Implement graceful `cleanupSocket()` and independent socket handlers
 2. **Day 2**: Update all handlers to use new cleanup mechanism
 3. **Day 3**: Fix timeout handling to not close connections
 4. **Day 4**: Update connection manager parity check and cleanup logic
 5. **Day 5**: Comprehensive testing and leak detection
 ## Configuration Changes
 Add new options to SmartProxyOptions:
 ```typescript
 interface ISmartProxyOptions {
  // Existing options...
  // New options for long-lived connections
  socketCleanupGracePeriod?: number;        // Default: 5000ms
  allowHalfOpenConnections?: boolean;       // Default: true
  parityCheckTimeout?: number;              // Default: 1800000ms (30 min)
  timeoutBehavior?: 'close' | 'reset' | 'ignore';  // Default: 'reset'
 }
 ```
 ## Success Metrics
 1. WebSocket connections remain stable for 24+ hours
 2. No premature connection closures reported
 3. Memory usage remains stable (no socket leaks)
 4. Half-open connections work correctly
 5. Graceful shutdown completes within grace period
 ## Implementation Status: COMPLETED ✅
 ### Implemented Changes
 1. **Modified `cleanupSocket()` in `socket-utils.ts`**
   - Added `CleanupOptions` interface with `immediate`, `allowDrain`, and `gracePeriod` options
   - Implemented graceful shutdown support with write buffer draining
 2. **Created `createIndependentSocketHandlers()` in `socket-utils.ts`**
   - Tracks socket states independently
   - Supports half-open connections where one side can close while the other remains open
   - Only triggers full cleanup when both sockets are closed
 3. **Updated `setupSocketHandlers()` in `socket-utils.ts`**
   - Added optional `handleTimeout` parameter to customize timeout behavior
   - Prevents automatic connection closure on timeout events
 4. **Updated HTTPS Passthrough Handler**
   - Now uses `createIndependentSocketHandlers` for half-open support
   - Custom timeout handling that resets timer instead of closing connection
   - Manual data forwarding with backpressure handling
 5. **Updated Connection Manager**
   - Extended parity check from 2 minutes to 30 minutes
   - Added activity check before closing (10 minutes of inactivity required)
   - Modified cleanup to check socket states before destroying
 6. **Updated Basic Forwarding in Route Connection Handler**
   - Replaced simple `pipe()` with independent socket handlers
   - Added manual data forwarding with backpressure support
   - Removed bilateral close handlers to prevent premature cleanup
 ### Test Results
 All tests passing:
 - ✅ Long-lived connection test: Connection stayed open for 61+ seconds with periodic keep-alive
 - ✅ Half-open connection test: One side closed while the other continued to send data
 - ✅ No socket leaks or premature closures
 ### Notes
 - The fix maintains backward compatibility
 - No configuration changes required for existing deployments
 - Long-lived connections now work correctly in both HTTPS passthrough and basic forwarding modes
--- a/ts/core/utils/socket-utils.ts
+++ b/ts/core/utils/socket-utils.ts
@ -6,6 +6,14 @@ export interface CleanupOptions {
  gracePeriod?: number;     // Ms to wait before force close
 }
 export interface SafeSocketOptions {
  port: number;
  host: string;
  onError?: (error: Error) => void;
  onConnect?: () => void;
  timeout?: number;
 }
 /**
 * Safely cleanup a socket by removing all listeners and destroying it
 * @param socket The socket to cleanup
@ -198,3 +206,38 @@ export function pipeSockets(
  socket1.pipe(socket2);
  socket2.pipe(socket1);
 }
 /**
 * Create a socket with immediate error handling to prevent crashes
 * @param options Socket creation options
 * @returns The created socket
 */
 export function createSocketWithErrorHandler(options: SafeSocketOptions): plugins.net.Socket {
  const { port, host, onError, onConnect, timeout } = options;
  // Create socket with immediate error handler attachment
  const socket = new plugins.net.Socket();
  // Attach error handler BEFORE connecting to catch immediate errors
  socket.on('error', (error) => {
    console.error(`Socket connection error to ${host}:${port}: ${error.message}`);
    if (onError) {
      onError(error);
    }
  });
  // Attach connect handler if provided
  if (onConnect) {
    socket.on('connect', onConnect);
  }
  // Set timeout if provided
  if (timeout) {
    socket.setTimeout(timeout);
  }
  // Now attempt to connect - any immediate errors will be caught
  socket.connect(port, host);
  return socket;
 }
--- a/ts/forwarding/handlers/https-passthrough-handler.ts
+++ b/ts/forwarding/handlers/https-passthrough-handler.ts
@ -2,7 +2,7 @@ import * as plugins from '../../plugins.js';
 import { ForwardingHandler } from './base-handler.js';
 import type { IForwardConfig } from '../config/forwarding-types.js';
 import { ForwardingHandlerEvents } from '../config/forwarding-types.js';
-import { createIndependentSocketHandlers, setupSocketHandlers } from '../../core/utils/socket-utils.js';
+import { createIndependentSocketHandlers, setupSocketHandlers, createSocketWithErrorHandler } from '../../core/utils/socket-utils.js';
 /**
 * Handler for HTTPS passthrough (SNI forwarding without termination)
@ -48,17 +48,43 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
      target: `${target.host}:${target.port}`
    });
    // Create a connection to the target server
    const serverSocket = plugins.net.connect(target.port, target.host);
    // Track data transfer for logging
    let bytesSent = 0;
    let bytesReceived = 0;
    let serverSocket: plugins.net.Socket | null = null;
    let cleanupClient: ((reason: string) => Promise<void>) | null = null;
    let cleanupServer: ((reason: string) => Promise<void>) | null = null;
-    // Create independent handlers for half-open connection support
+    // Create a connection to the target server with immediate error handling
-    const { cleanupClient, cleanupServer } = createIndependentSocketHandlers(
+    serverSocket = createSocketWithErrorHandler({
      port: target.port,
      host: target.host,
      onError: async (error) => {
        // Server connection failed - clean up client socket immediately
        this.emit(ForwardingHandlerEvents.ERROR, {
          error: error.message,
          code: (error as any).code || 'UNKNOWN',
          remoteAddress,
          target: `${target.host}:${target.port}`
        });
        // Clean up the client socket since we can't forward
        if (!clientSocket.destroyed) {
          clientSocket.destroy();
        }
        this.emit(ForwardingHandlerEvents.DISCONNECTED, {
          remoteAddress,
          bytesSent: 0,
          bytesReceived: 0,
          reason: `server_connection_failed: ${error.message}`
        });
      },
      onConnect: () => {
        // Connection successful - set up forwarding handlers
        const handlers = createIndependentSocketHandlers(
          clientSocket,
-      serverSocket,
+          serverSocket!,
          (reason) => {
            this.emit(ForwardingHandlerEvents.DISCONNECTED, {
              remoteAddress,
@ -69,6 +95,9 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
          }
        );
        cleanupClient = handlers.cleanupClient;
        cleanupServer = handlers.cleanupServer;
        // Setup handlers with custom timeout handling that doesn't close connections
        const timeout = this.getTimeout();
@ -77,7 +106,7 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
          socket.setTimeout(timeout);
        }, 'client');
-    setupSocketHandlers(serverSocket, cleanupServer, (socket) => {
+        setupSocketHandlers(serverSocket!, cleanupServer, (socket) => {
          // Just reset timeout, don't close  
          socket.setTimeout(timeout);
        }, 'server');
@ -87,7 +116,7 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
          bytesSent += data.length;
          // Check if server socket is writable
-      if (serverSocket.writable) {
+          if (serverSocket && serverSocket.writable) {
            const flushed = serverSocket.write(data);
            // Handle backpressure
@ -107,7 +136,7 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
        });
        // Forward data from server to client
-    serverSocket.on('data', (data) => {
+        serverSocket!.on('data', (data) => {
          bytesReceived += data.length;
          // Check if client socket is writable
@ -116,9 +145,9 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
            // Handle backpressure
            if (!flushed) {
-          serverSocket.pause();
+              serverSocket!.pause();
              clientSocket.once('drain', () => {
-            serverSocket.resume();
+                serverSocket!.resume();
              });
            }
          }
@ -132,7 +161,9 @@ export class HttpsPassthroughHandler extends ForwardingHandler {
        // Set initial timeouts - they will be reset on each timeout event  
        clientSocket.setTimeout(timeout);
-    serverSocket.setTimeout(timeout);
+        serverSocket!.setTimeout(timeout);
      }
    });
  }
  /**
--- a/ts/forwarding/handlers/https-terminate-to-http-handler.ts
+++ b/ts/forwarding/handlers/https-terminate-to-http-handler.ts
@ -2,7 +2,7 @@ import * as plugins from '../../plugins.js';
 import { ForwardingHandler } from './base-handler.js';
 import type { IForwardConfig } from '../config/forwarding-types.js';
 import { ForwardingHandlerEvents } from '../config/forwarding-types.js';
-import { createSocketCleanupHandler, setupSocketHandlers } from '../../core/utils/socket-utils.js';
+import { createSocketCleanupHandler, setupSocketHandlers, createSocketWithErrorHandler } from '../../core/utils/socket-utils.js';
 /**
 * Handler for HTTPS termination with HTTP backend
@ -141,8 +141,29 @@ export class HttpsTerminateToHttpHandler extends ForwardingHandler {
      if (dataBuffer.includes(Buffer.from('\r\n\r\n')) && !connectionEstablished) {
        const target = this.getTargetFromConfig();
-        // Create backend connection
+        // Create backend connection with immediate error handling
-        backendSocket = plugins.net.connect(target.port, target.host, () => {
+        backendSocket = createSocketWithErrorHandler({
          port: target.port,
          host: target.host,
          onError: (error) => {
            this.emit(ForwardingHandlerEvents.ERROR, {
              error: error.message,
              code: (error as any).code || 'UNKNOWN',
              remoteAddress,
              target: `${target.host}:${target.port}`
            });
            // Clean up the TLS socket since we can't forward
            if (!tlsSocket.destroyed) {
              tlsSocket.destroy();
            }
            this.emit(ForwardingHandlerEvents.DISCONNECTED, {
              remoteAddress,
              reason: `backend_connection_failed: ${error.message}`
            });
          },
          onConnect: () => {
            connectionEstablished = true;
            // Send buffered data
@ -154,6 +175,7 @@ export class HttpsTerminateToHttpHandler extends ForwardingHandler {
            // Set up bidirectional data flow
            tlsSocket.pipe(backendSocket!);
            backendSocket!.pipe(tlsSocket);
          }
        });
        // Update the cleanup handler with the backend socket
--- a/ts/forwarding/handlers/https-terminate-to-https-handler.ts
+++ b/ts/forwarding/handlers/https-terminate-to-https-handler.ts
@ -2,7 +2,7 @@ import * as plugins from '../../plugins.js';
 import { ForwardingHandler } from './base-handler.js';
 import type { IForwardConfig } from '../config/forwarding-types.js';
 import { ForwardingHandlerEvents } from '../config/forwarding-types.js';
-import { createSocketCleanupHandler, setupSocketHandlers } from '../../core/utils/socket-utils.js';
+import { createSocketCleanupHandler, setupSocketHandlers, createSocketWithErrorHandler } from '../../core/utils/socket-utils.js';
 /**
 * Handler for HTTPS termination with HTTPS backend
--- a/ts/proxies/smart-proxy/route-connection-handler.ts
+++ b/ts/proxies/smart-proxy/route-connection-handler.ts
@ -9,7 +9,7 @@ import { TlsManager } from './tls-manager.js';
 import { HttpProxyBridge } from './http-proxy-bridge.js';
 import { TimeoutManager } from './timeout-manager.js';
 import { RouteManager } from './route-manager.js';
-import { cleanupSocket, createIndependentSocketHandlers, setupSocketHandlers } from '../../core/utils/socket-utils.js';
+import { cleanupSocket, createIndependentSocketHandlers, setupSocketHandlers, createSocketWithErrorHandler } from '../../core/utils/socket-utils.js';
 /**
 * Handles new connection processing and setup logic with support for route-based configuration
@ -1073,115 +1073,54 @@ export class RouteConnectionHandler {
      record.pendingDataSize = initialChunk.length;
    }
-    // Create the target socket
+    // Create the target socket with immediate error handling
-    const targetSocket = plugins.net.connect(connectionOptions);
+    let connectionEstablished = false;
    record.outgoing = targetSocket;
    record.outgoingStartTime = Date.now();
-    // Apply socket optimizations
+    const targetSocket = createSocketWithErrorHandler({
-    targetSocket.setNoDelay(this.settings.noDelay);
+      port: finalTargetPort,
-
+      host: finalTargetHost,
-    // Apply keep-alive settings if enabled
+      onError: (error) => {
-    if (this.settings.keepAlive) {
+        // Connection failed - clean up everything immediately
-      targetSocket.setKeepAlive(true, this.settings.keepAliveInitialDelay);
+        logger.log('error', 
-
+          `Connection setup error for ${connectionId} to ${finalTargetHost}:${finalTargetPort}: ${error.message} (${(error as any).code})`, 
-      // Apply enhanced TCP keep-alive options if enabled
+          {
      if (this.settings.enableKeepAliveProbes) {
        try {
          if ('setKeepAliveProbes' in targetSocket) {
            (targetSocket as any).setKeepAliveProbes(10);
          }
          if ('setKeepAliveInterval' in targetSocket) {
            (targetSocket as any).setKeepAliveInterval(1000);
          }
        } catch (err) {
          // Ignore errors - these are optional enhancements
          if (this.settings.enableDetailedLogging) {
            logger.log('warn', `Enhanced TCP keep-alive not supported for outgoing socket on connection ${connectionId}: ${err}`, {
            connectionId,
-              error: err,
+            targetHost: finalTargetHost,
            targetPort: finalTargetPort,
            errorMessage: error.message,
            errorCode: (error as any).code,
            component: 'route-handler'
            });
          }
        }
      }
          }
        );
-    // Setup improved error handling for outgoing connection
+        // Log specific error types for easier debugging
-    this.setupOutgoingErrorHandler(connectionId, targetSocket, record, socket, finalTargetHost, finalTargetPort);
+        if ((error as any).code === 'ECONNREFUSED') {
-
+          logger.log('error', 
-    // Note: Close handlers are managed by independent socket handlers above
+            `Connection ${connectionId}: Target ${finalTargetHost}:${finalTargetPort} refused connection. Check if the target service is running and listening on that port.`, 
-    // We don't register handleClose here to avoid bilateral cleanup
+            {
    // Setup error handlers for incoming socket
    socket.on('error', this.connectionManager.handleError('incoming', record));
    // Handle timeouts with keep-alive awareness
    socket.on('timeout', () => {
      // For keep-alive connections, just log a warning instead of closing
      if (record.hasKeepAlive) {
        logger.log('warn', `Timeout event on incoming keep-alive connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}. Connection preserved.`, {
              connectionId,
-          remoteIP: record.remoteIP,
+              targetHost: finalTargetHost,
-          timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
+              targetPort: finalTargetPort,
-          status: 'Connection preserved',
+              recommendation: 'Check if the target service is running and listening on that port.',
              component: 'route-handler'
-        });
+            }
-        return;
+          );
        }
-      // For non-keep-alive connections, proceed with normal cleanup
+        // Resume the incoming socket to prevent it from hanging
-      logger.log('warn', `Timeout on incoming side for connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}`, {
+        socket.resume();
        connectionId,
        remoteIP: record.remoteIP,
        timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
        component: 'route-handler'
      });
      if (record.incomingTerminationReason === null) {
        record.incomingTerminationReason = 'timeout';
        this.connectionManager.incrementTerminationStat('incoming', 'timeout');
      }
      this.connectionManager.initiateCleanupOnce(record, 'timeout_incoming');
    });
-    targetSocket.on('timeout', () => {
+        // Clean up the incoming socket
-      // For keep-alive connections, just log a warning instead of closing
+        if (!socket.destroyed) {
-      if (record.hasKeepAlive) {
+          socket.destroy();
        logger.log('warn', `Timeout event on outgoing keep-alive connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}. Connection preserved.`, {
          connectionId,
          remoteIP: record.remoteIP,
          timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
          status: 'Connection preserved',
          component: 'route-handler'
        });
        return;
        }
-      // For non-keep-alive connections, proceed with normal cleanup
+        // Clean up the connection record - this is critical!
-      logger.log('warn', `Timeout on outgoing side for connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}`, {
+        this.connectionManager.cleanupConnection(record, `connection_failed_${(error as any).code || 'unknown'}`);
-        connectionId,
+      },
-        remoteIP: record.remoteIP,
+      onConnect: () => {
-        timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
+        connectionEstablished = true;
        component: 'route-handler'
      });
      if (record.outgoingTerminationReason === null) {
        record.outgoingTerminationReason = 'timeout';
        this.connectionManager.incrementTerminationStat('outgoing', 'timeout');
      }
      this.connectionManager.initiateCleanupOnce(record, 'timeout_outgoing');
    });
    // Apply socket timeouts
    this.timeoutManager.applySocketTimeouts(record);
    // Track outgoing data for bytes counting
    targetSocket.on('data', (chunk: Buffer) => {
      record.bytesSent += chunk.length;
      this.timeoutManager.updateActivity(record);
    });
    // Wait for the outgoing connection to be ready before setting up piping
    targetSocket.once('connect', () => {
        if (this.settings.enableDetailedLogging) {
          logger.log('info', `Connection ${connectionId} established to target ${finalTargetHost}:${finalTargetPort}`, {
            connectionId,
@ -1191,7 +1130,7 @@ export class RouteConnectionHandler {
          });
        }
-      // Clear the initial connection error handler
+        // Clear any error listeners added by createSocketWithErrorHandler
        targetSocket.removeAllListeners('error');
        // Add the normal error handler for established connections
@ -1345,6 +1284,107 @@ export class RouteConnectionHandler {
        if (record.isTLS) {
          record.tlsHandshakeComplete = true;
        }
      }
    });
    // Only set up basic properties - everything else happens in onConnect
    record.outgoing = targetSocket;
    record.outgoingStartTime = Date.now();
    // Apply socket optimizations
    targetSocket.setNoDelay(this.settings.noDelay);
    // Apply keep-alive settings if enabled
    if (this.settings.keepAlive) {
      targetSocket.setKeepAlive(true, this.settings.keepAliveInitialDelay);
      // Apply enhanced TCP keep-alive options if enabled
      if (this.settings.enableKeepAliveProbes) {
        try {
          if ('setKeepAliveProbes' in targetSocket) {
            (targetSocket as any).setKeepAliveProbes(10);
          }
          if ('setKeepAliveInterval' in targetSocket) {
            (targetSocket as any).setKeepAliveInterval(1000);
          }
        } catch (err) {
          // Ignore errors - these are optional enhancements
          if (this.settings.enableDetailedLogging) {
            logger.log('warn', `Enhanced TCP keep-alive not supported for outgoing socket on connection ${connectionId}: ${err}`, {
              connectionId,
              error: err,
              component: 'route-handler'
            });
          }
        }
      }
    }
    // Setup error handlers for incoming socket
    socket.on('error', this.connectionManager.handleError('incoming', record));
    // Handle timeouts with keep-alive awareness
    socket.on('timeout', () => {
      // For keep-alive connections, just log a warning instead of closing
      if (record.hasKeepAlive) {
        logger.log('warn', `Timeout event on incoming keep-alive connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}. Connection preserved.`, {
          connectionId,
          remoteIP: record.remoteIP,
          timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
          status: 'Connection preserved',
          component: 'route-handler'
        });
        return;
      }
      // For non-keep-alive connections, proceed with normal cleanup
      logger.log('warn', `Timeout on incoming side for connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}`, {
        connectionId,
        remoteIP: record.remoteIP,
        timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
        component: 'route-handler'
      });
      if (record.incomingTerminationReason === null) {
        record.incomingTerminationReason = 'timeout';
        this.connectionManager.incrementTerminationStat('incoming', 'timeout');
      }
      this.connectionManager.initiateCleanupOnce(record, 'timeout_incoming');
    });
    targetSocket.on('timeout', () => {
      // For keep-alive connections, just log a warning instead of closing
      if (record.hasKeepAlive) {
        logger.log('warn', `Timeout event on outgoing keep-alive connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}. Connection preserved.`, {
          connectionId,
          remoteIP: record.remoteIP,
          timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
          status: 'Connection preserved',
          component: 'route-handler'
        });
        return;
      }
      // For non-keep-alive connections, proceed with normal cleanup
      logger.log('warn', `Timeout on outgoing side for connection ${connectionId} from ${record.remoteIP} after ${plugins.prettyMs(this.settings.socketTimeout || 3600000)}`, {
        connectionId,
        remoteIP: record.remoteIP,
        timeout: plugins.prettyMs(this.settings.socketTimeout || 3600000),
        component: 'route-handler'
      });
      if (record.outgoingTerminationReason === null) {
        record.outgoingTerminationReason = 'timeout';
        this.connectionManager.incrementTerminationStat('outgoing', 'timeout');
      }
      this.connectionManager.initiateCleanupOnce(record, 'timeout_outgoing');
    });
    // Apply socket timeouts
    this.timeoutManager.applySocketTimeouts(record);
    // Track outgoing data for bytes counting (moved from the duplicate connect handler)
    targetSocket.on('data', (chunk: Buffer) => {
      record.bytesSent += chunk.length;
      this.timeoutManager.updateActivity(record);
    });
  }
 }
Author	SHA1	Message	Date
Philipp Kunz	23898c1577	19.5.14 Some checks failed Default (tags) / security (push) Failing after 14m57s Details Default (tags) / test (push) Has been cancelled Details Default (tags) / release (push) Has been cancelled Details Default (tags) / metadata (push) Has been cancelled Details	2025-06-01 13:58:30 +00:00
Philipp Kunz	2d240671ab	Improve error handling and logging for outgoing connections in RouteConnectionHandler	2025-06-01 13:58:20 +00:00
Philipp Kunz	705a59413d	19.5.13 Some checks failed Default (tags) / security (push) Failing after 16m13s Details Default (tags) / test (push) Has been cancelled Details Default (tags) / release (push) Has been cancelled Details Default (tags) / metadata (push) Has been cancelled Details	2025-06-01 13:43:46 +00:00
Philipp Kunz	e9723a8af9	19.5.12 Some checks failed Default (tags) / security (push) Failing after 16m15s Details Default (tags) / test (push) Has been cancelled Details Default (tags) / release (push) Has been cancelled Details Default (tags) / metadata (push) Has been cancelled Details	2025-06-01 13:43:05 +00:00
Philipp Kunz	300ab1a077	Fix connection leak in route-connection-handler by using safe socket creation The previous fix only addressed ForwardingHandler classes but missed the critical setupDirectConnection() method in route-connection-handler.ts where SmartProxy actually handles connections. This caused active connections to rise indefinitely on ECONNREFUSED errors. Changes: - Import createSocketWithErrorHandler in route-connection-handler.ts - Replace net.connect() with createSocketWithErrorHandler() in setupDirectConnection() - Properly clean up connection records when server connection fails - Add connectionFailed flag to prevent setup of failed connections This ensures connection records are cleaned up immediately when backend connections fail, preventing memory leaks.	2025-06-01 13:42:46 +00:00
Philipp Kunz	900942a263	19.5.11 Some checks failed Default (tags) / security (push) Successful in 38s Details Default (tags) / test (push) Failing after 32m5s Details Default (tags) / release (push) Has been cancelled Details Default (tags) / metadata (push) Has been cancelled Details	2025-06-01 13:32:16 +00:00
Philipp Kunz	d45485985a	Fix socket error handling to prevent server crashes on ECONNREFUSED This commit addresses critical issues where unhandled socket connection errors (ECONNREFUSED) would crash the server and cause memory leaks with rising connection counts. Changes: - Add createSocketWithErrorHandler() utility that attaches error handlers immediately upon socket creation - Update https-passthrough-handler to use safe socket creation and clean up client sockets on server connection failure - Update https-terminate-to-http-handler to use safe socket creation - Ensure proper connection cleanup when server connections fail - Document the fix in readme.hints.md and create implementation plan in readme.plan.md The fix prevents race conditions where sockets could emit errors before handlers were attached, and ensures failed connections are properly cleaned up to prevent memory leaks.	2025-06-01 13:30:06 +00:00
Philipp Kunz	9fdc2d5069	Refactor socket handling plan to address server crashes, memory leaks, and race conditions	2025-06-01 13:01:24 +00:00
Philipp Kunz	37c87e8450	19.5.10 Some checks failed Default (tags) / security (push) Successful in 33s Details Default (tags) / test (push) Failing after 20m32s Details Default (tags) / release (push) Has been skipped Details Default (tags) / metadata (push) Has been skipped Details	2025-06-01 12:33:48 +00:00