Shelikhoo
94fa391dfe
Add MaxMin TLS version support in TLS Setting
2024-03-15 20:19:09 +00:00
Shelikhoo
1fcaca7145
enable restricted mode load for some settings
2023-11-26 10:55:27 +00:00
Shelikhoo
cb84b28de4
Update generated protobuf files to v1.31.0
2023-10-24 19:50:30 +01:00
pathC
21b7a0046b
feat: use security engine in h2 transport
...
This will enable uTLS support for h2 transport.
2023-10-23 20:26:09 +01:00
Shelikhoo
b7e8554ee3
http request decide protocol based on ALPN
2023-05-30 17:48:55 +01:00
Shelikhoo
a090b7849d
Add uTLS ALPN Control: auto generated
2023-02-06 20:33:25 +00:00
Shelikhoo
7b434ced58
Add uTLS ALPN Control
2023-02-06 20:33:25 +00:00
Shelikhoo
3631053c2b
Crash process when encountered when unknown security settings type was supplied
2022-12-24 21:52:23 +00:00
Shelikhoo
e4188c8604
Add uTLS support for Security Engine
2022-12-24 21:52:23 +00:00
Shelikhoo
de55f3a675
Use security engine for (tls like) security client without transport
2022-12-24 21:52:23 +00:00
Shelikhoo
137cd7093c
chore: regenerate protobuf file
2022-09-06 20:36:27 +01:00
Shelikhoo
52ea2b0146
Fix TLS Client Certificate Verify Not Applied
2022-05-03 15:23:33 +01:00
Shelikhoo
3ef7feaeaf
update version: auto replacement to v5 path
2022-01-02 15:16:23 +00:00
世界
a66bb28aee
Reformat code
2021-10-28 18:34:19 +08:00
Shelikhoo
ef738cce7a
add declarative config for converter
2021-09-05 16:37:27 +01:00
Shelikhoo
7aeb7d9ce6
add tls config register: auto generated
2021-09-05 10:26:44 +01:00
Shelikhoo
690995d8ce
add tls config register
2021-09-05 10:26:17 +01:00
Shelikhoo
e0700ccc4b
regenerate protobuf file
2021-09-04 11:26:13 +01:00
Shelikhoo
1531cb0ca4
update protobuf version
2021-09-04 11:13:51 +01:00
Jebbs
b05a469488
v5: Remove v2ctl & wv2ray (rebased from 7c1ab06206
)
2021-09-04 11:09:55 +01:00
Shelikhoo
8ac4750f9e
fix lint warning
...
apply coding style. Be sure to update the style checking tool after a long time of inactivity.
2021-09-02 17:34:39 +01:00
Shelikhoo
a53fd35205
separate client ca and server ca
...
This is designed to prevent a server from being attacked with a client with a certificate issued by a trusted system CA.
Some commercial CA actually can issue certificate to individual to proof their identity. The server should not accept these certs as a valid client certificates.
2021-09-01 22:34:13 +01:00
ydx
fb665ee94a
add client certificate verify ( #1169 )
2021-09-01 21:12:03 +01:00
database64128
c78ee5aac7
🏡 Housekeeping: Update to Go 1.17 ( #1215 )
...
* ⬆ Update to Go 1.17
* 🏗 Update workflows and add windows-arm64
* 💾 Update generated files
* 📛 Update not-so-friendly filenames
2021-08-21 13:20:40 +08:00
Shelikhoo
1409be04c2
regenerate protobuf files
2021-07-01 18:58:48 +01:00
Shelikhoo
e98865a205
amend certificate removal message
2021-06-04 20:07:27 +01:00
Bhoppi Chaw
6d9c463b60
Fix: new cert issuing is incorrectly delayed ( #998 )
...
* fix new cert issuing is incorrectly delayed
* apply lint
* revert cert duration & write cert issue/revoke info into log
* apply lint
Co-authored-by: Bhoppi Chaw <bhoppi#outlook,com>
2021-06-04 19:55:30 +01:00
Loyalsoldier
6f8979d017
Style: format code by gofumpt ( #1022 )
2021-05-20 05:28:52 +08:00
Shelikhoo
50bdcc24a7
pinned cert test
2021-04-15 20:03:33 +01:00
Shelikhoo
ebb720804d
refactored cert pin
2021-04-15 20:02:48 +01:00
Shelikhoo
92b845a45b
added calculation of certificate hash as separate command and tlsping, use base64 to represent fingerprint to align with jsonPb
2021-04-15 19:01:55 +01:00
Shelikhoo
34a3850f16
publish cert chain hash generation algorithm
2021-04-15 18:17:52 +01:00
Shelikhoo
59472de6a9
verify peer cert function for better man in the middle prevention
2021-04-15 18:16:19 +01:00
Loyalsoldier
9e9173acb4
Chore: update protobuf & dependencies ( #793 )
...
* Chore: update protobuf
* Chore: regenerate mock files
* Chore: update dependencies
* Chore: use Go v1.16.2 and later
2021-03-18 12:17:26 +08:00
Loyalsoldier
e03947e6b0
Chore: update protobuf & dependencies ( #748 )
2021-03-08 05:12:27 +08:00
Loyalsoldier
49cf614346
Chore: update dependencies & protobuf ( #728 )
2021-03-03 17:31:53 +08:00
Loyalsoldier
f94dd11a8c
Chore: change module name ( #677 )
2021-02-17 04:31:50 +08:00
RPRX
a58bfc4ba4
SessionTicketsDisabled: false -> true
2021-01-01 11:25:04 +00:00
RPRX
4d2e782fbe
Disable session resumption by default ( #569 )
2021-01-01 17:01:14 +08:00
Loyalsoldier
b68f943c78
Fix lint according to golangci-lint ( #439 )
2020-11-22 05:05:01 +08:00
loyalsoldier
784775f689
Refine code according to golangci-lint results
2020-10-11 19:22:46 +08:00
Loyalsoldier
bb44d01096
Format proto files using clang-format according to google style ( #264 )
...
* Format proto files using clang-format according to google style
* Regenerate pb.go files
2020-10-05 08:36:40 +08:00
loyalsoldier
b181045b0c
Errorgen: support to run outside of GOPATH
2020-10-04 13:06:12 +08:00
Loyalsoldier
ef460f68f8
Adjust Protocol Buffers ( #109 )
...
* Update protoc binary executable files to v3.13.0
* Write proto files in more standard way
* Make go generate & vprotogen compatible with protoc-gen-gofast
* Regenerate pb.go files according to new proto files
* Clean go.sum by running go mod tidy
* Implement mustEmbedUnimplementedServiceServer for gPRC services
2020-08-24 12:10:26 +00:00
RPRX
9311cb18e4
Remove unused utls
2020-07-20 05:59:46 +00:00
Darhwa
d29370a654
Enhance http outbound
...
1. Enables http outbound to set up a HTTP tunnel above HTTP/1.1,
HTTP/1.1 over TLS, or HTTP/2 over TLS. Previously it only works for
plain HTTP/1.1
2. In setting up CONNECT tunnel, replaces handcrafted request with
standard http.Request
2020-06-20 23:03:44 +08:00
Darhwa
8e791e92bc
Further strip unique signatures of tls handshake
...
1. allow users to disable session ticket
2. set default alpn to ["h2", "http/1.1"]
2020-06-18 11:32:37 +08:00
Shelikhoo
09b81b78c3
regenerate pb data
2020-06-08 16:16:32 +08:00
vcptr
524b2aca56
let crypto/tls choose the proper ciphers
2020-05-31 11:25:56 +08:00
vcptr
e62e6608e1
tls use crypto std cipher suites
2020-05-31 11:25:50 +08:00