Jebbs
b05a469488
v5: Remove v2ctl & wv2ray (rebased from 7c1ab06206
)
2021-09-04 11:09:55 +01:00
Shelikhoo
8ac4750f9e
fix lint warning
...
apply coding style. Be sure to update the style checking tool after a long time of inactivity.
2021-09-02 17:34:39 +01:00
Shelikhoo
a53fd35205
separate client ca and server ca
...
This is designed to prevent a server from being attacked with a client with a certificate issued by a trusted system CA.
Some commercial CA actually can issue certificate to individual to proof their identity. The server should not accept these certs as a valid client certificates.
2021-09-01 22:34:13 +01:00
ydx
fb665ee94a
add client certificate verify ( #1169 )
2021-09-01 21:12:03 +01:00
database64128
c78ee5aac7
🏡 Housekeeping: Update to Go 1.17 ( #1215 )
...
* ⬆ Update to Go 1.17
* 🏗 Update workflows and add windows-arm64
* 💾 Update generated files
* 📛 Update not-so-friendly filenames
2021-08-21 13:20:40 +08:00
Shelikhoo
1409be04c2
regenerate protobuf files
2021-07-01 18:58:48 +01:00
Shelikhoo
e98865a205
amend certificate removal message
2021-06-04 20:07:27 +01:00
Bhoppi Chaw
6d9c463b60
Fix: new cert issuing is incorrectly delayed ( #998 )
...
* fix new cert issuing is incorrectly delayed
* apply lint
* revert cert duration & write cert issue/revoke info into log
* apply lint
Co-authored-by: Bhoppi Chaw <bhoppi#outlook,com>
2021-06-04 19:55:30 +01:00
Loyalsoldier
6f8979d017
Style: format code by gofumpt ( #1022 )
2021-05-20 05:28:52 +08:00
Shelikhoo
50bdcc24a7
pinned cert test
2021-04-15 20:03:33 +01:00
Shelikhoo
ebb720804d
refactored cert pin
2021-04-15 20:02:48 +01:00
Shelikhoo
92b845a45b
added calculation of certificate hash as separate command and tlsping, use base64 to represent fingerprint to align with jsonPb
2021-04-15 19:01:55 +01:00
Shelikhoo
34a3850f16
publish cert chain hash generation algorithm
2021-04-15 18:17:52 +01:00
Shelikhoo
59472de6a9
verify peer cert function for better man in the middle prevention
2021-04-15 18:16:19 +01:00
Loyalsoldier
9e9173acb4
Chore: update protobuf & dependencies ( #793 )
...
* Chore: update protobuf
* Chore: regenerate mock files
* Chore: update dependencies
* Chore: use Go v1.16.2 and later
2021-03-18 12:17:26 +08:00
Loyalsoldier
e03947e6b0
Chore: update protobuf & dependencies ( #748 )
2021-03-08 05:12:27 +08:00
Loyalsoldier
49cf614346
Chore: update dependencies & protobuf ( #728 )
2021-03-03 17:31:53 +08:00
Loyalsoldier
f94dd11a8c
Chore: change module name ( #677 )
2021-02-17 04:31:50 +08:00
RPRX
a58bfc4ba4
SessionTicketsDisabled: false -> true
2021-01-01 11:25:04 +00:00
RPRX
4d2e782fbe
Disable session resumption by default ( #569 )
2021-01-01 17:01:14 +08:00
Loyalsoldier
b68f943c78
Fix lint according to golangci-lint ( #439 )
2020-11-22 05:05:01 +08:00
loyalsoldier
784775f689
Refine code according to golangci-lint results
2020-10-11 19:22:46 +08:00
Loyalsoldier
bb44d01096
Format proto files using clang-format according to google style ( #264 )
...
* Format proto files using clang-format according to google style
* Regenerate pb.go files
2020-10-05 08:36:40 +08:00
loyalsoldier
b181045b0c
Errorgen: support to run outside of GOPATH
2020-10-04 13:06:12 +08:00
Loyalsoldier
ef460f68f8
Adjust Protocol Buffers ( #109 )
...
* Update protoc binary executable files to v3.13.0
* Write proto files in more standard way
* Make go generate & vprotogen compatible with protoc-gen-gofast
* Regenerate pb.go files according to new proto files
* Clean go.sum by running go mod tidy
* Implement mustEmbedUnimplementedServiceServer for gPRC services
2020-08-24 12:10:26 +00:00
RPRX
9311cb18e4
Remove unused utls
2020-07-20 05:59:46 +00:00
Darhwa
d29370a654
Enhance http outbound
...
1. Enables http outbound to set up a HTTP tunnel above HTTP/1.1,
HTTP/1.1 over TLS, or HTTP/2 over TLS. Previously it only works for
plain HTTP/1.1
2. In setting up CONNECT tunnel, replaces handcrafted request with
standard http.Request
2020-06-20 23:03:44 +08:00
Darhwa
8e791e92bc
Further strip unique signatures of tls handshake
...
1. allow users to disable session ticket
2. set default alpn to ["h2", "http/1.1"]
2020-06-18 11:32:37 +08:00
Shelikhoo
09b81b78c3
regenerate pb data
2020-06-08 16:16:32 +08:00
vcptr
524b2aca56
let crypto/tls choose the proper ciphers
2020-05-31 11:25:56 +08:00
vcptr
e62e6608e1
tls use crypto std cipher suites
2020-05-31 11:25:50 +08:00
Kslr
ae04c402da
Revert "Fix self-signed certificates on Windows"
2019-10-28 23:00:09 +08:00
Kslr
5bb4efd126
Merge pull request #1893 from lixin9311/patch-1
...
Fix self-signed certificates on Windows
2019-10-27 15:23:39 +08:00
vcptr
fa0a21f0dd
external module refraction-networking/utls use mod version
2019-10-19 10:22:49 +08:00
vcptr
8759e28890
update for go1.13+
2019-10-10 14:56:01 +08:00
lucus lee
3b087bf8c4
Fix self-signed certificates on Windows
2019-09-22 22:15:27 +09:00
Kirill Motkov
0401a91ef4
Some code improvements
...
* Rewrite empty string checks more idiomatically.
* Change strings.ToLower comparisons to strings.EqualFold.
* Rewrite switch statement with only one case as if.
2019-06-28 17:53:44 +03:00
Kslr
c5635f9507
sync fly, enable tls 1.3
2019-05-17 17:54:04 +08:00
Darien Raymond
cc513c1002
fix gerCertPool() on windows
2019-02-27 14:51:51 +01:00
Darien Raymond
974b488ab0
add support for not loading system roots. fixes #1513
2019-02-26 21:58:54 +01:00
Darien Raymond
c5cce8be6f
fix server name parsing
2019-02-19 13:05:36 +01:00
Darien Raymond
c072d38e2c
refine tls connection
2019-02-17 00:58:02 +01:00
Darien Raymond
932e09a388
remove dep of assert lib
2019-02-09 15:46:48 +01:00
Darien Raymond
bdd71a44b4
remove dep on assert lib
2019-02-02 22:19:30 +01:00
Darien Raymond
1ab94fed79
optimize v2ctl size
2019-02-01 20:08:21 +01:00
Darien Raymond
41b1ac192e
use compact in tls writer
2018-12-27 20:38:24 +01:00
Darien Raymond
057e271588
update proto lib
2018-12-01 17:39:51 +01:00
Darien Raymond
5279296f03
remove use of context.WithValue in transport
2018-11-21 14:54:40 +01:00
Darien Raymond
d2d0c69f17
benchmark certificate issuing
2018-11-21 13:00:26 +01:00
Darien Raymond
248099eca5
switch to bytes.Equal
2018-11-16 17:00:16 +01:00