126 Commits

Author	SHA1	Message	Date
Shelikhoo	cb84b28de4	Update generated protobuf files to v1.31.0	2023-10-24 19:50:30 +01:00
pathC	21b7a0046b	feat: use security engine in h2 transport ... This will enable uTLS support for h2 transport.	2023-10-23 20:26:09 +01:00
Shelikhoo	b7e8554ee3	http request decide protocol based on ALPN	2023-05-30 17:48:55 +01:00
Shelikhoo	a090b7849d	Add uTLS ALPN Control: auto generated	2023-02-06 20:33:25 +00:00
Shelikhoo	7b434ced58	Add uTLS ALPN Control	2023-02-06 20:33:25 +00:00
Shelikhoo	3631053c2b	Crash process when encountered when unknown security settings type was supplied	2022-12-24 21:52:23 +00:00
Shelikhoo	e4188c8604	Add uTLS support for Security Engine	2022-12-24 21:52:23 +00:00
Shelikhoo	de55f3a675	Use security engine for (tls like) security client without transport	2022-12-24 21:52:23 +00:00
Shelikhoo	137cd7093c	chore: regenerate protobuf file	2022-09-06 20:36:27 +01:00
Shelikhoo	52ea2b0146	Fix TLS Client Certificate Verify Not Applied	2022-05-03 15:23:33 +01:00
Shelikhoo	3ef7feaeaf	update version: auto replacement to v5 path	2022-01-02 15:16:23 +00:00
世界	a66bb28aee	Reformat code	2021-10-28 18:34:19 +08:00
Shelikhoo	ef738cce7a	add declarative config for converter	2021-09-05 16:37:27 +01:00
Shelikhoo	7aeb7d9ce6	add tls config register: auto generated	2021-09-05 10:26:44 +01:00
Shelikhoo	690995d8ce	add tls config register	2021-09-05 10:26:17 +01:00
Shelikhoo	e0700ccc4b	regenerate protobuf file	2021-09-04 11:26:13 +01:00
Shelikhoo	1531cb0ca4	update protobuf version	2021-09-04 11:13:51 +01:00
Jebbs	b05a469488	v5: Remove v2ctl & wv2ray (rebased from 7c1ab06206)	2021-09-04 11:09:55 +01:00
Shelikhoo	8ac4750f9e	fix lint warning ... apply coding style. Be sure to update the style checking tool after a long time of inactivity.	2021-09-02 17:34:39 +01:00
Shelikhoo	a53fd35205	separate client ca and server ca ... This is designed to prevent a server from being attacked with a client with a certificate issued by a trusted system CA. Some commercial CA actually can issue certificate to individual to proof their identity. The server should not accept these certs as a valid client certificates.	2021-09-01 22:34:13 +01:00
ydx	fb665ee94a	add client certificate verify (#1169)	2021-09-01 21:12:03 +01:00
database64128	c78ee5aac7	🏡 Housekeeping: Update to Go 1.17 (#1215) ... * ⬆ Update to Go 1.17 * 🏗 Update workflows and add windows-arm64 * 💾 Update generated files * 📛 Update not-so-friendly filenames	2021-08-21 13:20:40 +08:00
Shelikhoo	1409be04c2	regenerate protobuf files	2021-07-01 18:58:48 +01:00
Shelikhoo	e98865a205	amend certificate removal message	2021-06-04 20:07:27 +01:00
Bhoppi Chaw	6d9c463b60	Fix: new cert issuing is incorrectly delayed (#998) ... * fix new cert issuing is incorrectly delayed * apply lint * revert cert duration & write cert issue/revoke info into log * apply lint Co-authored-by: Bhoppi Chaw <bhoppi#outlook,com>	2021-06-04 19:55:30 +01:00
Loyalsoldier	6f8979d017	Style: format code by gofumpt (#1022)	2021-05-20 05:28:52 +08:00
Shelikhoo	50bdcc24a7	pinned cert test	2021-04-15 20:03:33 +01:00
Shelikhoo	ebb720804d	refactored cert pin	2021-04-15 20:02:48 +01:00
Shelikhoo	92b845a45b	added calculation of certificate hash as separate command and tlsping, use base64 to represent fingerprint to align with jsonPb	2021-04-15 19:01:55 +01:00
Shelikhoo	34a3850f16	publish cert chain hash generation algorithm	2021-04-15 18:17:52 +01:00
Shelikhoo	59472de6a9	verify peer cert function for better man in the middle prevention	2021-04-15 18:16:19 +01:00
Loyalsoldier	9e9173acb4	Chore: update protobuf & dependencies (#793) ... * Chore: update protobuf * Chore: regenerate mock files * Chore: update dependencies * Chore: use Go v1.16.2 and later	2021-03-18 12:17:26 +08:00
Loyalsoldier	e03947e6b0	Chore: update protobuf & dependencies (#748)	2021-03-08 05:12:27 +08:00
Loyalsoldier	49cf614346	Chore: update dependencies & protobuf (#728)	2021-03-03 17:31:53 +08:00
Loyalsoldier	f94dd11a8c	Chore: change module name (#677)	2021-02-17 04:31:50 +08:00
RPRX	a58bfc4ba4	SessionTicketsDisabled: false -> true	2021-01-01 11:25:04 +00:00
RPRX	4d2e782fbe	Disable session resumption by default (#569)	2021-01-01 17:01:14 +08:00
Loyalsoldier	b68f943c78	Fix lint according to golangci-lint (#439)	2020-11-22 05:05:01 +08:00
loyalsoldier	784775f689	Refine code according to golangci-lint results	2020-10-11 19:22:46 +08:00
Loyalsoldier	bb44d01096	Format proto files using clang-format according to google style (#264) ... * Format proto files using clang-format according to google style * Regenerate pb.go files	2020-10-05 08:36:40 +08:00
loyalsoldier	b181045b0c	Errorgen: support to run outside of GOPATH	2020-10-04 13:06:12 +08:00
Loyalsoldier	ef460f68f8	Adjust Protocol Buffers (#109) ... * Update protoc binary executable files to v3.13.0 * Write proto files in more standard way * Make go generate & vprotogen compatible with protoc-gen-gofast * Regenerate pb.go files according to new proto files * Clean go.sum by running go mod tidy * Implement mustEmbedUnimplementedServiceServer for gPRC services	2020-08-24 12:10:26 +00:00
RPRX	9311cb18e4	Remove unused utls	2020-07-20 05:59:46 +00:00
Darhwa	d29370a654	Enhance http outbound ... 1. Enables http outbound to set up a HTTP tunnel above HTTP/1.1, HTTP/1.1 over TLS, or HTTP/2 over TLS. Previously it only works for plain HTTP/1.1 2. In setting up CONNECT tunnel, replaces handcrafted request with standard http.Request	2020-06-20 23:03:44 +08:00
Darhwa	8e791e92bc	Further strip unique signatures of tls handshake ... 1. allow users to disable session ticket 2. set default alpn to ["h2", "http/1.1"]	2020-06-18 11:32:37 +08:00
Shelikhoo	09b81b78c3	regenerate pb data	2020-06-08 16:16:32 +08:00
vcptr	524b2aca56	let crypto/tls choose the proper ciphers	2020-05-31 11:25:56 +08:00
vcptr	e62e6608e1	tls use crypto std cipher suites	2020-05-31 11:25:50 +08:00
Kslr	ae04c402da	Revert "Fix self-signed certificates on Windows"	2019-10-28 23:00:09 +08:00
Kslr	5bb4efd126	Merge pull request #1893 from lixin9311/patch-1 ... Fix self-signed certificates on Windows	2019-10-27 15:23:39 +08:00