717 commits

Author	SHA1	Message	Date
Zhang Jingqiang	ed94536d09	fix build	2024-10-30 11:10:40 +08:00
Zhang Jingqiang	07241b769a	use new openssl session cache implementation	2024-10-30 11:05:13 +08:00
Zhang Jingqiang	a596e416a5	default to set ticket number to 2 in rustls server config ... Just to be in sync with OpenSSL variants	2024-10-30 10:20:52 +08:00
Zhang Jingqiang	9fe995bfef	g3proxy: update tls_server_result log field in tls interception	2024-10-24 11:46:15 +08:00
Zhang Jingqiang	c07ed828b2	g3-socket: fix macOS CI	2024-10-24 10:33:11 +08:00
Zhang Jingqiang	7752e57e27	g3-socket: drop useless cfg guard	2024-10-23 18:34:22 +08:00
Zhang Jingqiang	0fafac67e0	g3-socket: fix build on windows	2024-10-23 18:28:18 +08:00
Zhang Jingqiang	d5adead6b5	g3-socket: try to fix win sock usage	2024-10-23 17:44:41 +08:00
Zhang Jingqiang	c79d126f67	g3-socket: add tcp connect testcase	2024-10-23 16:10:20 +08:00
Zhang Jingqiang	f18a791b4c	update tokio and add more metrics	2024-10-23 11:34:26 +08:00
Glen De Cauwsemaecker	39c4159708	add 'insecure' option for openssl/intercept_tls client config (#356) ... Closes #353 as requested I also added warnings for both the enabling and also in case of verify results	2024-10-22 17:57:46 +08:00
Zhang Jingqiang	a9c24a8aee	g3-dpi: support fragmented TLS record when detect TLS protocol	2024-10-17 15:15:30 +08:00
Zhang Jingqiang	e8cbf9c267	update to use new boringssl api	2024-10-16 11:23:11 +08:00
Zhang Jingqiang	2ea9550e5d	fix eq check for TicketName	2024-10-15 18:57:16 +08:00
Zhang Jingqiang	0c82ea7c0e	g3bench: add session reused summary to tls target	2024-10-15 17:47:12 +08:00
Zhang Jingqiang	7eab1db0f2	enable tls session cache for tls interception correctly	2024-10-15 17:16:17 +08:00
Zhang Jingqiang	311cf72dea	g3-tls-ticket: fix dead loop	2024-10-15 17:03:45 +08:00
Zhang Jingqiang	aca71f2959	g3proxy: support remote tls ticket key	2024-10-15 15:45:32 +08:00
Zhang Jingqiang	b2eeeb9546	g3-tls-ticket: add redis source and config	2024-10-14 18:54:03 +08:00
Zhang Jingqiang	63af524f8f	compile on OpenBSD	2024-10-12 16:26:11 +08:00
Zhang Jingqiang	05cbfe5727	g3-types: introduce OrderedActionContract mark trait	2024-10-12 11:28:04 +08:00
Zhang Jingqiang	423fbe9f0b	remove more useless trailer code	2024-10-12 10:17:29 +08:00
Zhang Jingqiang	1b79a1b426	g3-http: remove special handle of Trailer header	2024-10-11 22:31:25 +08:00
Zhang Jingqiang	81ceb0493a	treat Trailers as end-to-end header	2024-10-11 19:49:36 +08:00
Zhang Jingqiang	49887e3081	send X-HTTP-Upgrade in ICAP request	2024-10-11 19:13:28 +08:00
Zhang Jingqiang	f47ff238de	g3proxy: fix detect of h2 extended connect protocol extension	2024-10-11 17:39:45 +08:00
Zhang Jingqiang	0bb4e3f983	remove useless attr and update error msg	2024-10-11 15:49:27 +08:00
Zhang Jingqiang	740b0a957c	g3-dpi: simplify code	2024-10-11 15:30:36 +08:00
Zhang Jingqiang	c240fc60f8	simplify code	2024-10-11 15:26:54 +08:00
Zhang Jingqiang	cdfd791aeb	no regex match for protocol inspect policy rules	2024-10-11 15:25:59 +08:00
Zhang Jingqiang	6d30326604	g3proxy: use different config format for protocol inspect policy	2024-10-11 15:25:59 +08:00
Zhang Jingqiang	6e121172df	g3proxy: update protocol inspect policy config builder	2024-10-11 15:25:59 +08:00
glendc	352ff154c7	improve inspect policy code based upon zh-jq's feedback	2024-10-11 09:57:59 +08:00
glendc	1d3a53ef8f	turn ProtocolInspectPolicy into AclDstHostRuleSet	2024-10-11 09:57:59 +08:00
Glen De Cauwsemaecker	90c721e22e	make it clear in HttpTransparentRequest::retain_upgrade that something happend (#349) ... as requested by zh-jq in #341	2024-10-10 12:27:06 +00:00
Zhang Jingqiang	8ec28d770f	g3proxy: block connect-ip HTTP upgrade token	2024-10-10 19:28:42 +08:00
Zhang Jingqiang	b32bba65cc	g3proxy: filter out websocket in H1 Upgrade if blocked	2024-10-10 18:05:55 +08:00
Zhang Jingqiang	e540d10ea8	g3proxy: block websocket upgrade request early (#348)	2024-10-10 07:11:56 +00:00
Zhang Jingqiang	8343d352fc	fix some clippy 1.83 warning	2024-10-10 11:44:17 +08:00
Zhang Jingqiang	8624004f58	use rustls-pki-types directly	2024-10-10 11:00:50 +08:00
dependabot[bot]	feb4860c34	build(deps): bump brotli from 6.0.0 to 7.0.0 (#334) ... Bumps [brotli](https://github.com/dropbox/rust-brotli) from 6.0.0 to 7.0.0. - [Release notes](https://github.com/dropbox/rust-brotli/releases) - [Commits](https://github.com/dropbox/rust-brotli/commits) --- updated-dependencies: - dependency-name: brotli dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-10-03 15:59:05 +08:00
dependabot[bot]	f9882d2e30	build(deps): bump once_cell from 1.19.0 to 1.20.1 (#323) ... Bumps [once_cell](https://github.com/matklad/once_cell) from 1.19.0 to 1.20.1. - [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md) - [Commits](https://github.com/matklad/once_cell/compare/v1.19.0...v1.20.1) --- updated-dependencies: - dependency-name: once_cell dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-09-30 15:05:47 +08:00
Zhang Jingqiang	19dd383a52	g3-tls-ticket: update code	2024-09-26 18:39:28 +08:00
Zhang Jingqiang	3c28a93f62	initial tls ticket key update code	2024-09-25 18:01:31 +08:00
Zhang Jingqiang	0b4c20a723	add ticketer API for the build of tls server	2024-09-25 15:15:11 +08:00
Zhang Jingqiang	abcdfbe9bc	fix static_mut_refs lint	2024-09-24 16:20:24 +08:00
Zhang Jingqiang	9d2e592b60	fix clippy warning	2024-09-24 13:55:46 +08:00
Zhang Jingqiang	2ba14d0fd5	g3-dpi: update QUIC parser code	2024-09-24 12:16:25 +08:00
Zhang Jingqiang	b1940eb9e0	g3-socket: support windows SO_REUSE_UNICASTPORT (#320)	2024-09-24 12:02:08 +08:00
Zhang Jingqiang	9b29139b65	g3-dpi: update QUIC parser	2024-09-23 16:17:45 +08:00