Commit Graph

77 Commits

Author SHA1 Message Date
klzgrad
908ced8518
Update build.yml 2021-02-28 14:08:42 +08:00
klzgrad
be0aceb36a
Update build.yml 2021-02-28 13:57:58 +08:00
klzgrad
75cfc58b2c
Update build.yml 2021-02-28 13:54:38 +08:00
klzgrad
c9e5319499
Update build.yml 2021-02-28 13:35:00 +08:00
klzgrad
f6b72c5f66
Update build.yml 2021-02-28 13:11:51 +08:00
klzgrad
9eedcd0778
Update build.yml 2021-02-28 12:52:10 +08:00
klzgrad
0ba7fbcd97 Update workflows 2021-02-28 11:49:25 +08:00
klzgrad
97b2ae0913 Update workflows 2021-02-28 11:47:38 +08:00
klzgrad
4e350d288e Add workflows 2021-02-28 11:44:52 +08:00
klzgrad
6a205a1e43
Explain subtle part in README Caddyfile 2021-02-27 18:45:42 +08:00
klzgrad
d6e79865f7 Update openwrt to 19.07.7 2021-02-18 12:56:08 +08:00
klzgrad
1002f59dbd Use Xcode 11.3 2021-01-31 21:32:23 +08:00
klzgrad
1dd2a82122 Use Xcode 11.6 2021-01-31 21:27:27 +08:00
klzgrad
1a6dde551e Revert "Update Travis osx version"
This reverts commit 1e28fc5142.
2021-01-31 21:26:21 +08:00
klzgrad
699a2e63d7 Revert "Set Travis to 12.0"
This reverts commit 664393afe6.
2021-01-31 21:26:12 +08:00
klzgrad
664393afe6 Set Travis to 12.0 2021-01-31 21:20:40 +08:00
klzgrad
d403313445 Revert "build: Support non-standard ldso in executables"
This reverts commit 34b38b6dbd.
2021-01-31 20:16:17 +08:00
klzgrad
43f6df217e Add OpenWrt x86 build 2021-01-31 20:15:57 +08:00
klzgrad
63f89cd454 Fix OpenWrt x86 builds 2021-01-31 20:15:28 +08:00
klzgrad
1e28fc5142 Update Travis osx version 2021-01-31 18:57:46 +08:00
klzgrad
99f284a4b0 Add continuous integration and tests 2021-01-20 20:38:00 +08:00
klzgrad
54025411d9 Add build scripts 2021-01-20 20:38:00 +08:00
klzgrad
969aa37ec8 Add example config.json 2021-01-20 20:38:00 +08:00
klzgrad
0fbdd13e1b Add README 2021-01-20 20:37:59 +08:00
klzgrad
1dcbcb712a Add LICENSE 2021-01-20 20:37:59 +08:00
klzgrad
b3eae10cee Add source import tool 2021-01-20 20:37:59 +08:00
klzgrad
0c74265c63 Add .gitignore 2021-01-20 20:37:59 +08:00
klzgrad
5e2bd2c3a6 Raise initial padding number to 8
Protect initial handshake lengths.

Common client initial sequence:

- TLS: ClientHello
- TLS: ChangeCipherSpec, Finished
- H2: Magic, SETTINGS, WINDOW_UPDATE
- H2: HEADERS: GET
- H2: SETTINGS ACK

Common server initial sequence:

- TLS: ServerHello, ChangeCipherSpec, ...
- TLS: Certificate, ...
- H2: SETTINGS
- H2: WINDOW_UPDATE
- H2: SETTINGS ACK
- H2: HEADERS: 200 OK
2021-01-20 20:37:59 +08:00
klzgrad
40175b32be Negotiate padding capability automatically
Client: On the first connection does a full Open and detects if the
server supports padding by checking for "Padding" header in the
response. Applies padding if the server does. In the following
connections it's back to Fast Open.

Server: Detects if the client supports padding by checking for "Padding"
header in the CONNECT request. Applies padding if the client does.

Both client and server always send "Padding" headers to somewhat protect
the request and response headers' packet lengths, even if the other side
may not acknowledge padding negotiation, either due to old version or
"Padding" headers being dropped by the frontend.

The manual option --padding is removed.
2021-01-20 20:37:59 +08:00
klzgrad
8af1fed753 Prevents padding headers from being indexed 2021-01-20 20:37:59 +08:00
klzgrad
36ac623d4f Add option for concurrent transport
Useful only for high-end situations where a single connection
is throttled at 10MB/s somehow.

Makes traffic obfuscation less secure.
2021-01-20 20:37:59 +08:00
klzgrad
95efeedb50 Add --extra-headers option 2021-01-20 20:37:59 +08:00
klzgrad
f802d37977 Add cert net fetcher 2021-01-20 20:37:59 +08:00
klzgrad
e19af41f20 Redirect DNS for redir://
Run a fake stub DNS resolver at the same port with redir://.
2021-01-20 20:37:59 +08:00
klzgrad
65dac8784a Support TCP transparent proxying
Enable with naive --listen=redir:// and iptables ... -j REDIRECT
--to-ports 1080.
2021-01-20 20:37:59 +08:00
klzgrad
245b90071c Support loading config.json 2021-01-20 20:37:59 +08:00
klzgrad
08023e3a4d Add QUIC client 2021-01-20 20:37:59 +08:00
klzgrad
0fd4a18790 Add http_proxy_socket to BUILD.gn 2021-01-20 20:37:59 +08:00
klzgrad
8ee125ba04 Add server implementation and tunnel padding 2021-01-20 20:37:59 +08:00
klzgrad
6078351200 Add Naive client to BUILD.gn 2021-01-20 20:37:59 +08:00
klzgrad
16fef36b01 Add initial implementation of Naive client 2021-01-20 20:37:59 +08:00
klzgrad
47b9390942 build: Add sysroot creator script 2021-01-20 20:34:38 +08:00
klzgrad
fec289335e build: Fix glibc symbol pattern 2021-01-20 20:34:38 +08:00
klzgrad
46e303cee6 build: Remove sysroot pipewire workaround 2021-01-20 20:34:38 +08:00
klzgrad
1c8d2638b4 build: Pass extra flags to gcc toolchains 2021-01-20 20:34:38 +08:00
CN_SZTL
d64a92410d build: Add mips64el & i386 OpenWrt toolchain definitions
OpenWrt has arch mips64el and i386, add here to support them.

Signed-off-by: CN_SZTL <cnsztl@project-openwrt.eu.org>
2021-01-20 20:34:38 +08:00
klzgrad
d9aa953ac2 build: Add OpenWrt toolchain definitions 2021-01-20 20:34:38 +08:00
klzgrad
90ef3d288a build: Support MIPS -mtune= flag 2021-01-20 20:34:38 +08:00
klzgrad
7bcb2246e7 build: Support ARM build without FPU 2021-01-20 20:34:38 +08:00
klzgrad
ae6b30a9be build: Support ARM -mcpu= flag 2021-01-20 20:34:38 +08:00