smartproxy

push.rocks/smartproxy

Fork 0

Commit Graph

Select branches

Hide Pull Requests

master

v1.0.10

v1.0.11

v1.0.12

v1.0.13

v1.0.14

v1.0.15

v1.0.16

v1.0.17

v1.0.18

v1.0.19

v1.0.2

v1.0.20

v1.0.21

v1.0.22

v1.0.23

v1.0.24

v1.0.25

v1.0.26

v1.0.27

v1.0.28

v1.0.29

v1.0.3

v1.0.30

v1.0.31

v1.0.32

v1.0.33

v1.0.34

v1.0.35

v1.0.36

v1.0.37

v1.0.38

v1.0.4

v1.0.5

v1.0.6

v1.0.7

v1.0.8

v1.0.9

v10.0.0

v10.0.1

v10.0.10

v10.0.11

v10.0.12

v10.0.2

v10.0.3

v10.0.4

v10.0.5

v10.0.6

v10.0.7

v10.0.8

v10.0.9

v10.1.0

v10.2.0

v10.3.0

v11.0.0

v12.0.0

v12.1.0

v12.2.0

v13.0.0

v13.1.0

v13.1.1

v13.1.2

v13.1.3

v15.0.0

v15.0.1

v15.0.2

v15.0.3

v15.1.0

v16.0.0

v16.0.1

v16.0.2

v16.0.3

v16.0.4

v17.0.0

v18.0.0

v18.0.1

v18.0.2

v18.1.0

v18.1.1

v18.2.0

v19.0.0

v19.1.0

v19.2.0

v19.2.1

v19.2.2

v19.2.3

v19.2.4

v19.2.5

v19.2.6

v19.3.0

v19.3.1

v19.3.10

v19.3.11

v19.3.12

v19.3.13

v19.3.2

v19.3.3

v19.3.4

v19.3.5

v19.3.6

v19.3.7

v19.3.8

v19.3.9

v19.4.1

v19.4.2

v19.4.3

v19.5.0

v19.5.1

v19.5.10

v19.5.11

v19.5.12

v19.5.13

v19.5.14

v19.5.15

v19.5.16

v19.5.17

v19.5.18

v19.5.19

v19.5.2

v19.5.20

v19.5.21

v19.5.22

v19.5.23

v19.5.24

v19.5.25

v19.5.26

v19.5.3

v19.5.4

v19.5.5

v19.5.6

v19.5.7

v19.5.8

v19.5.9

v19.6.0

v19.6.1

v19.6.2

v19.6.3

v19.6.4

v19.6.5

v19.6.6

v19.6.7

v2.0.0

v2.0.1

v2.0.10

v2.0.11

v2.0.12

v2.0.13

v2.0.14

v2.0.15

v2.0.16

v2.0.2

v2.0.3

v2.0.4

v2.0.5

v2.0.6

v2.0.7

v2.0.8

v2.0.9

v3.0.0

v3.0.1

v3.0.10

v3.0.11

v3.0.12

v3.0.13

v3.0.14

v3.0.15

v3.0.16

v3.0.17

v3.0.18

v3.0.19

v3.0.2

v3.0.20

v3.0.21

v3.0.22

v3.0.23

v3.0.24

v3.0.25

v3.0.26

v3.0.27

v3.0.28

v3.0.29

v3.0.3

v3.0.30

v3.0.31

v3.0.32

v3.0.33

v3.0.34

v3.0.35

v3.0.36

v3.0.37

v3.0.38

v3.0.39

v3.0.4

v3.0.40

v3.0.41

v3.0.42

v3.0.43

v3.0.44

v3.0.45

v3.0.46

v3.0.47

v3.0.48

v3.0.49

v3.0.5

v3.0.50

v3.0.51

v3.0.52

v3.0.53

v3.0.54

v3.0.55

v3.0.56

v3.0.57

v3.0.58

v3.0.59

v3.0.6

v3.0.60

v3.0.61

v3.0.7

v3.0.8

v3.0.9

v3.1.0

v3.1.1

v3.1.2

v3.1.3

v3.1.4

v3.10.0

v3.10.1

v3.10.2

v3.10.3

v3.10.4

v3.10.5

v3.11.0

v3.12.0

v3.13.0

v3.14.0

v3.14.1

v3.14.2

v3.15.0

v3.16.0

v3.16.1

v3.16.2

v3.16.3

v3.16.4

v3.16.5

v3.16.6

v3.16.7

v3.16.8

v3.16.9

v3.17.0

v3.17.1

v3.18.0

v3.18.1

v3.18.2

v3.19.0

v3.2.0

v3.20.0

v3.20.1

v3.20.2

v3.21.0

v3.22.0

v3.22.1

v3.22.2

v3.22.3

v3.22.4

v3.22.5

v3.23.0

v3.23.1

v3.24.0

v3.25.0

v3.25.1

v3.25.2

v3.25.3

v3.25.4

v3.26.0

v3.27.0

v3.28.0

v3.28.1

v3.28.2

v3.28.3

v3.28.4

v3.28.5

v3.28.6

v3.29.0

v3.29.1

v3.29.2

v3.29.3

v3.3.0

v3.3.1

v3.30.0

v3.30.1

v3.30.2

v3.30.3

v3.30.4

v3.30.5

v3.30.6

v3.30.7

v3.30.8

v3.31.0

v3.31.1

v3.31.2

v3.32.0

v3.32.1

v3.32.2

v3.33.0

v3.34.0

v3.37.0

v3.37.1

v3.37.2

v3.37.3

v3.38.0

v3.38.1

v3.38.2

v3.39.0

v3.4.0

v3.4.1

v3.4.2

v3.4.3

v3.4.4

v3.40.0

v3.41.0

v3.41.1

v3.41.2

v3.41.3

v3.41.4

v3.41.5

v3.41.6

v3.41.7

v3.41.8

v3.5.0

v3.6.0

v3.7.0

v3.7.1

v3.7.2

v3.7.3

v3.8.0

v3.8.1

v3.9.0

v3.9.1

v3.9.2

v3.9.3

v3.9.4

v4.0.0

v4.1.0

v4.1.1

v4.1.10

v4.1.11

v4.1.12

v4.1.13

v4.1.14

v4.1.15

v4.1.16

v4.1.2

v4.1.3

v4.1.4

v4.1.5

v4.1.6

v4.1.7

v4.1.8

v4.1.9

v4.2.0

v4.2.1

v4.2.2

v4.2.3

v4.2.4

v4.2.5

v4.2.6

v4.3.0

v5.0.0

v5.1.0

v6.0.0

v6.0.1

v7.0.0

v7.0.1

v7.1.0

v7.1.1

v7.1.2

v7.1.3

v7.1.4

v7.2.0

v8.0.0

v9.0.0

1611f65455 4.1.14 v4.1.14 Philipp Kunz 2025-03-17 13:19:18 +00:00
c6350e271a fix(ConnectionHandler): Use the correct TLS alert data and increase the delay before socket termination when session resumption without SNI is detected. Philipp Kunz 2025-03-17 13:19:18 +00:00
0fb5e5ea50 4.1.13 v4.1.13 Philipp Kunz 2025-03-17 13:15:12 +00:00
35f6739b3c fix(tls-handshake): Set certificate_expired TLS alert level to warning instead of fatal to allow graceful termination. Philipp Kunz 2025-03-17 13:15:12 +00:00
4634c68ea6 4.1.12 v4.1.12 Philipp Kunz 2025-03-17 13:09:54 +00:00
e126032b61 fix(classes.pp.connectionhandler): Replace unrecognized_name alert data with certificate_expired alert in TLS handshake handling for session resumption without SNI Philipp Kunz 2025-03-17 13:09:54 +00:00
7797c799dd 4.1.11 v4.1.11 Philipp Kunz 2025-03-17 13:00:02 +00:00
e8639e1b01 fix(connectionhandler): Increase delay before cleaning up connections when session resumption is blocked due to missing SNI, allowing more natural socket termination. Philipp Kunz 2025-03-17 13:00:02 +00:00
60a0ad106d 4.1.10 v4.1.10 Philipp Kunz 2025-03-16 14:49:25 +00:00
a70c123007 fix(connectionhandler): Increase delay timings for TLS alert transmission in session ticket blocking to allow graceful socket termination Philipp Kunz 2025-03-16 14:49:25 +00:00
46aa7620b0 4.1.9 v4.1.9 Philipp Kunz 2025-03-16 14:13:36 +00:00
f72db86e37 fix(ConnectionHandler): Replace closeNotify alert with handshake failure alert in TLS ClientHello handling to properly signal missing SNI and enforce session ticket restrictions. Philipp Kunz 2025-03-16 14:13:35 +00:00
d612df107e 4.1.8 v4.1.8 Philipp Kunz 2025-03-16 14:02:18 +00:00
1c34578c36 fix(ConnectionHandler/tls): Change the TLS alert sent when a ClientHello lacks SNI: use the close_notify alert instead of handshake_failure to prompt immediate retry with SNI. Philipp Kunz 2025-03-16 14:02:18 +00:00
1f9943b5a7 4.1.7 v4.1.7 Philipp Kunz 2025-03-16 13:47:34 +00:00
67ddf97547 fix(classes.pp.connectionhandler): Improve TLS alert handling in ClientHello when SNI is missing and session tickets are disallowed Philipp Kunz 2025-03-16 13:47:34 +00:00
8a96b45ece 4.1.6 v4.1.6 Philipp Kunz 2025-03-16 13:28:48 +00:00
2b6464acd5 fix(tls): Refine TLS ClientHello handling when allowSessionTicket is false by replacing extensive alert timeout logic with a concise warning alert and short delay, encouraging immediate client retry with proper SNI Philipp Kunz 2025-03-16 13:28:48 +00:00
efbb4335d7 4.1.5 v4.1.5 Philipp Kunz 2025-03-16 13:19:37 +00:00
9dd402054d fix(TLS/ConnectionHandler): Improve handling of TLS session resumption without SNI by sending an unrecognized_name alert instead of immediately terminating the connection. This change adds a grace period for the client to retry the handshake with proper SNI and cleans up the connection if no valid response is received. Philipp Kunz 2025-03-16 13:19:37 +00:00
6c1efc1dc0 4.1.4 v4.1.4 Philipp Kunz 2025-03-15 19:10:54 +00:00
cad0e6a2b2 fix(ConnectionHandler): Refactor ConnectionHandler code formatting for improved readability and consistency in log messages and whitespace handling Philipp Kunz 2025-03-15 19:10:54 +00:00
794e1292e5 4.1.3 v4.1.3 Philipp Kunz 2025-03-15 18:51:50 +00:00
ee79f9ab7c fix(connectionhandler): Improve handling of TLS ClientHello messages when allowSessionTicket is disabled and no SNI is provided by sending a warning alert (unrecognized_name, code 0x70) with a proper callback and delay to ensure the alert is transmitted before closing the connection. Philipp Kunz 2025-03-15 18:51:50 +00:00
107bc3b50b 4.1.2 v4.1.2 Philipp Kunz 2025-03-15 17:16:18 +00:00
97982976c8 fix(connectionhandler): Send proper TLS alert before terminating connections when SNI is missing and session tickets are disallowed. Philipp Kunz 2025-03-15 17:16:18 +00:00
fe60f88746 4.1.1 v4.1.1 Philipp Kunz 2025-03-15 17:00:11 +00:00
252a987344 fix(tls): Enforce strict SNI handling in TLS connections by terminating ClientHello messages lacking SNI when session tickets are disallowed and removing legacy session cache code. Philipp Kunz 2025-03-15 17:00:10 +00:00
677d30563f 4.1.0 v4.1.0 Philipp Kunz 2025-03-14 11:34:53 +00:00
9aa747b5d4 feat(SniHandler): Enhance SNI extraction to support session caching and tab reactivation by adding session cache initialization, cleanup and helper methods. Update processTlsPacket to use cached SNI for session resumption and connection racing scenarios. Philipp Kunz 2025-03-14 11:34:52 +00:00
1de9491e1d 4.0.0 v4.0.0 Philipp Kunz 2025-03-14 09:53:25 +00:00
e2ee673197 BREAKING CHANGE(core): refactor: reorganize internal module structure to use classes.pp.* modules Philipp Kunz 2025-03-14 09:53:25 +00:00
985031e9ac 3.41.8 v3.41.8 Philipp Kunz 2025-03-12 15:49:42 +00:00
4c0105ad09 fix(portproxy): Improve TLS handshake timeout handling and connection piping in PortProxy Philipp Kunz 2025-03-12 15:49:41 +00:00
06896b3102 3.41.7 v3.41.7 Philipp Kunz 2025-03-12 12:19:36 +00:00
7fe455b4df fix(core): Refactor PortProxy and SniHandler: improve configuration handling, logging, and whitespace consistency Philipp Kunz 2025-03-12 12:19:36 +00:00
21801aa53d 3.41.6 v3.41.6 Philipp Kunz 2025-03-12 10:54:24 +00:00
ddfbcdb1f3 fix(SniHandler): Refactor SniHandler: update whitespace, comment formatting, and consistent type definitions Philipp Kunz 2025-03-12 10:54:24 +00:00
b401d126bc 3.41.5 v3.41.5 Philipp Kunz 2025-03-12 10:27:26 +00:00
baaee0ad4d fix(portproxy): Enforce TLS handshake and SNI validation on port 443 by blocking non-TLS connections and terminating session resumption attempts without SNI when allowSessionTicket is disabled. Philipp Kunz 2025-03-12 10:27:25 +00:00
fe7c4c2f5e 3.41.4 v3.41.4 Philipp Kunz 2025-03-12 10:01:54 +00:00
ab1ec84832 fix(tls/sni): Improve logging for TLS session resumption by extracting and logging SNI values from ClientHello messages. Philipp Kunz 2025-03-12 10:01:54 +00:00
156abbf5b4 3.41.3 v3.41.3 Philipp Kunz 2025-03-12 09:56:21 +00:00
1a90566622 fix(TLS/SNI): Improve TLS session resumption handling and logging. Now, session resumption attempts are always logged with details, and connections without a proper SNI are rejected when allowSessionTicket is disabled. In addition, empty SNI extensions are explicitly treated as missing, ensuring stricter and more consistent TLS handshake validation. Philipp Kunz 2025-03-12 09:56:21 +00:00
b48b90d613 3.41.2 v3.41.2 Philipp Kunz 2025-03-11 19:41:04 +00:00
124f8d48b7 fix(SniHandler): Refactor hasSessionResumption to return detailed session resumption info Philipp Kunz 2025-03-11 19:41:04 +00:00
b2a57ada5d 3.41.1 v3.41.1 Philipp Kunz 2025-03-11 19:38:41 +00:00
62a3e1f4b7 fix(SniHandler): Improve TLS SNI session resumption handling: connections containing a session ticket are now only rejected when no SNI is present and allowSessionTicket is disabled. Updated return values and logging for clearer resumption detection. Philipp Kunz 2025-03-11 19:38:41 +00:00
3a1485213a 3.41.0 v3.41.0 Philipp Kunz 2025-03-11 19:31:20 +00:00
9dbf6fdeb5 feat(PortProxy/TLS): Add allowSessionTicket option to control TLS session ticket handling Philipp Kunz 2025-03-11 19:31:20 +00:00
9496dd5336 3.40.0 v3.40.0 Philipp Kunz 2025-03-11 18:05:20 +00:00
29d28fba93 feat(SniHandler): Add session cache support and tab reactivation detection to improve SNI extraction in TLS handshakes Philipp Kunz 2025-03-11 18:05:20 +00:00
8196de4fa3 3.39.0 v3.39.0 Philipp Kunz 2025-03-11 17:50:57 +00:00
6fddafe9fd feat(PortProxy): Add domain-specific NetworkProxy integration support to PortProxy Philipp Kunz 2025-03-11 17:50:56 +00:00
1e89062167 3.38.2 v3.38.2 Philipp Kunz 2025-03-11 17:38:32 +00:00
21a24fd95b fix(core): No code changes detected; bumping patch version for consistency. Philipp Kunz 2025-03-11 17:38:32 +00:00
03ef5e7f6e 3.38.1 v3.38.1 Philipp Kunz 2025-03-11 17:37:43 +00:00
415b82a84a fix(PortProxy): Improve SNI extraction handling in PortProxy by passing explicit connection info to extractSNIWithResumptionSupport for better TLS renegotiation and debug logging. Philipp Kunz 2025-03-11 17:37:43 +00:00
f304cc67b4 3.38.0 v3.38.0 Philipp Kunz 2025-03-11 17:33:31 +00:00
0e12706176 feat(SniHandler): Enhance SNI extraction to support fragmented ClientHello messages, TLS 1.3 early data, and improved PSK parsing Philipp Kunz 2025-03-11 17:33:31 +00:00
6daf4c914d 3.37.3 v3.37.3 Philipp Kunz 2025-03-11 17:23:57 +00:00
36e4341315 fix(snihandler): Enhance SNI extraction to support TLS 1.3 PSK-based session resumption by adding a dedicated extractSNIFromPSKExtension method and improved logging for session resumption indicators. Philipp Kunz 2025-03-11 17:23:57 +00:00
474134d29c 3.37.2 v3.37.2 Philipp Kunz 2025-03-11 17:05:15 +00:00
43378becd2 fix(PortProxy): Improve buffering and data handling during connection setup in PortProxy to prevent data loss Philipp Kunz 2025-03-11 17:05:15 +00:00
5ba8eb778f 3.37.1 v3.37.1 Philipp Kunz 2025-03-11 17:01:07 +00:00
87d26c86a1 fix(PortProxy/SNI): Refactor SNI extraction in PortProxy to use the dedicated SniHandler class Philipp Kunz 2025-03-11 17:01:07 +00:00
d81cf94876 3.37.0 v3.37.0 Philipp Kunz 2025-03-11 12:56:04 +00:00
8d06f1533e feat(portproxy): Add ACME certificate management options to PortProxy, update ACME settings handling, and bump dependency versions Philipp Kunz 2025-03-11 12:56:03 +00:00
223be61c8d 3.35.0 Philipp Kunz 2025-03-11 12:45:55 +00:00
6a693f4d86 feat(NetworkProxy): Integrate Port80Handler for automatic ACME certificate management Philipp Kunz 2025-03-11 12:45:22 +00:00
27a2bcb556 feat(NetworkProxy): Add support for array-based destinations and integration with PortProxy Philipp Kunz 2025-03-11 12:34:24 +00:00
0674ca7163 3.34.0 v3.34.0 Philipp Kunz 2025-03-11 11:34:29 +00:00
e31c84493f feat(core): Improve wildcard domain matching and enhance NetworkProxy integration in PortProxy. Added support for TLD wildcards and complex wildcard patterns in the router, and refactored TLS renegotiation handling for stricter SNI enforcement. Philipp Kunz 2025-03-11 11:34:29 +00:00
d2ad659d37 3.33.0 v3.33.0 Philipp Kunz 2025-03-11 09:57:06 +00:00
df7a12041e feat(portproxy): Add browser-friendly mode and SNI renegotiation configuration options to PortProxy Philipp Kunz 2025-03-11 09:57:06 +00:00
2b69150545 3.32.2 v3.32.2 Philipp Kunz 2025-03-11 09:12:40 +00:00
85cc57ae10 fix(PortProxy): Simplify TLS handshake SNI extraction and update timeout settings in PortProxy for improved maintainability and reliability. Philipp Kunz 2025-03-11 09:12:40 +00:00
e021b66898 3.32.1 v3.32.1 Philipp Kunz 2025-03-11 04:39:17 +00:00
865d21b36a fix(portproxy): Relax TLS handshake and connection timeout settings for improved stability in chained proxy scenarios; update TLS session cache defaults and add keep-alive flags to connection records. Philipp Kunz 2025-03-11 04:39:17 +00:00
58ba0d9362 3.32.0 v3.32.0 Philipp Kunz 2025-03-11 04:24:29 +00:00
ccccc5b8c8 feat(PortProxy): Enhance TLS session cache, SNI extraction, and chained proxy support in PortProxy. Improve handling of multiple and fragmented TLS records, and add new configuration options (isChainedProxy, chainPosition, aggressiveTlsRefresh, tlsSessionCache) for robust TLS certificate refresh. Philipp Kunz 2025-03-11 04:24:29 +00:00
d8466a866c 3.31.2 v3.31.2 Philipp Kunz 2025-03-11 03:56:09 +00:00
119b643690 fix(PortProxy): Improve SNI renegotiation handling by adding flexible domain configuration matching on rehandshake and session resumption events. Philipp Kunz 2025-03-11 03:56:09 +00:00
98f1e0df4c 3.31.1 v3.31.1 Philipp Kunz 2025-03-11 03:48:10 +00:00
d6022c8f8a fix(PortProxy): Improve TLS handshake buffering and enhance debug logging for SNI forwarding in PortProxy Philipp Kunz 2025-03-11 03:48:10 +00:00
0ea0f02428 fix(PortProxy): Improve connection reliability for initial and resumed TLS sessions Philipp Kunz 2025-03-11 03:33:03 +00:00
e452f55203 3.31.0 v3.31.0 Philipp Kunz 2025-03-11 03:16:04 +00:00
55f25f1976 feat(PortProxy): Improve TLS handshake SNI extraction and add session resumption tracking in PortProxy Philipp Kunz 2025-03-11 03:16:04 +00:00
98b7f3ed7f 3.30.8 v3.30.8 Philipp Kunz 2025-03-11 02:50:01 +00:00
cb83caeafd fix(core): No changes in this commit. Philipp Kunz 2025-03-11 02:50:01 +00:00
7850a80452 fix(PortProxy): Fix TypeScript errors by using correct variable names Philipp Kunz 2025-03-11 02:47:57 +00:00
ef8f583a90 fix(PortProxy): Move TLS renegotiation detection before socket piping Philipp Kunz 2025-03-11 02:45:51 +00:00
2bdd6f8c1f fix(PortProxy): Update activity timestamp during TLS renegotiation to prevent connection timeouts Philipp Kunz 2025-03-11 02:40:08 +00:00
99d28eafd1 3.30.7 v3.30.7 Philipp Kunz 2025-03-11 02:25:59 +00:00
788b444fcc fix(PortProxy): Improve TLS renegotiation SNI handling by first checking if the new SNI is allowed under the existing domain config. If not, attempt to find an alternative domain config and update the locked domain accordingly; otherwise, terminate the connection on SNI mismatch. Philipp Kunz 2025-03-11 02:25:58 +00:00
4225abe3c4 3.30.6 v3.30.6 Philipp Kunz 2025-03-11 02:18:56 +00:00
74fdb58f84 fix(PortProxy): Improve TLS renegotiation handling in PortProxy by validating the new SNI against allowed domain configurations. If the new SNI is permitted based on existing IP rules, update the locked domain to allow connection reuse; otherwise, terminate the connection to prevent misrouting. Philipp Kunz 2025-03-11 02:18:56 +00:00
bffdaffe39 3.30.5 v3.30.5 Philipp Kunz 2025-03-10 22:36:28 +00:00
67a4228518 fix(internal): No uncommitted changes detected; project files and tests remain unchanged. Philipp Kunz 2025-03-10 22:36:28 +00:00
681209f2e1 3.30.4 v3.30.4 Philipp Kunz 2025-03-10 22:35:34 +00:00