Commit Graph

92 Commits

Author SHA1 Message Date
klzgrad
f7094779f8
Update build.yml 2021-02-28 19:23:26 +08:00
klzgrad
b97304f73c Update workflow 2021-02-28 18:08:40 +08:00
klzgrad
c6d41a87ce Update get-openwrt.sh 2021-02-28 18:08:08 +08:00
klzgrad
f053903302
Update build.yml 2021-02-28 17:45:19 +08:00
klzgrad
98cf1a88d8
Update build.yml 2021-02-28 17:42:58 +08:00
klzgrad
f2c4131c8b
Update build.yml 2021-02-28 17:42:42 +08:00
klzgrad
d0610aa14a
Update build.yml 2021-02-28 16:41:34 +08:00
klzgrad
7b2d1a8f8b
Update build.yml 2021-02-28 15:53:55 +08:00
klzgrad
90c3cd7c8e
Update build.yml 2021-02-28 15:04:36 +08:00
klzgrad
422f45ad4b
Update build.yml 2021-02-28 15:02:23 +08:00
klzgrad
ca1684b6b7
Update build.yml 2021-02-28 15:01:25 +08:00
klzgrad
3895fb79d3
Update build.yml 2021-02-28 15:00:36 +08:00
klzgrad
0dd09fa4e9
Update build.yml 2021-02-28 14:37:22 +08:00
klzgrad
6646288f4a
Update build.yml 2021-02-28 14:35:50 +08:00
klzgrad
5e1a4e3f75
Update build.yml 2021-02-28 14:34:55 +08:00
klzgrad
908ced8518
Update build.yml 2021-02-28 14:08:42 +08:00
klzgrad
be0aceb36a
Update build.yml 2021-02-28 13:57:58 +08:00
klzgrad
75cfc58b2c
Update build.yml 2021-02-28 13:54:38 +08:00
klzgrad
c9e5319499
Update build.yml 2021-02-28 13:35:00 +08:00
klzgrad
f6b72c5f66
Update build.yml 2021-02-28 13:11:51 +08:00
klzgrad
9eedcd0778
Update build.yml 2021-02-28 12:52:10 +08:00
klzgrad
0ba7fbcd97 Update workflows 2021-02-28 11:49:25 +08:00
klzgrad
97b2ae0913 Update workflows 2021-02-28 11:47:38 +08:00
klzgrad
4e350d288e Add workflows 2021-02-28 11:44:52 +08:00
klzgrad
6a205a1e43
Explain subtle part in README Caddyfile 2021-02-27 18:45:42 +08:00
klzgrad
d6e79865f7 Update openwrt to 19.07.7 2021-02-18 12:56:08 +08:00
klzgrad
1002f59dbd Use Xcode 11.3 2021-01-31 21:32:23 +08:00
klzgrad
1dd2a82122 Use Xcode 11.6 2021-01-31 21:27:27 +08:00
klzgrad
1a6dde551e Revert "Update Travis osx version"
This reverts commit 1e28fc5142.
2021-01-31 21:26:21 +08:00
klzgrad
699a2e63d7 Revert "Set Travis to 12.0"
This reverts commit 664393afe6.
2021-01-31 21:26:12 +08:00
klzgrad
664393afe6 Set Travis to 12.0 2021-01-31 21:20:40 +08:00
klzgrad
d403313445 Revert "build: Support non-standard ldso in executables"
This reverts commit 34b38b6dbd.
2021-01-31 20:16:17 +08:00
klzgrad
43f6df217e Add OpenWrt x86 build 2021-01-31 20:15:57 +08:00
klzgrad
63f89cd454 Fix OpenWrt x86 builds 2021-01-31 20:15:28 +08:00
klzgrad
1e28fc5142 Update Travis osx version 2021-01-31 18:57:46 +08:00
klzgrad
99f284a4b0 Add continuous integration and tests 2021-01-20 20:38:00 +08:00
klzgrad
54025411d9 Add build scripts 2021-01-20 20:38:00 +08:00
klzgrad
969aa37ec8 Add example config.json 2021-01-20 20:38:00 +08:00
klzgrad
0fbdd13e1b Add README 2021-01-20 20:37:59 +08:00
klzgrad
1dcbcb712a Add LICENSE 2021-01-20 20:37:59 +08:00
klzgrad
b3eae10cee Add source import tool 2021-01-20 20:37:59 +08:00
klzgrad
0c74265c63 Add .gitignore 2021-01-20 20:37:59 +08:00
klzgrad
5e2bd2c3a6 Raise initial padding number to 8
Protect initial handshake lengths.

Common client initial sequence:

- TLS: ClientHello
- TLS: ChangeCipherSpec, Finished
- H2: Magic, SETTINGS, WINDOW_UPDATE
- H2: HEADERS: GET
- H2: SETTINGS ACK

Common server initial sequence:

- TLS: ServerHello, ChangeCipherSpec, ...
- TLS: Certificate, ...
- H2: SETTINGS
- H2: WINDOW_UPDATE
- H2: SETTINGS ACK
- H2: HEADERS: 200 OK
2021-01-20 20:37:59 +08:00
klzgrad
40175b32be Negotiate padding capability automatically
Client: On the first connection does a full Open and detects if the
server supports padding by checking for "Padding" header in the
response. Applies padding if the server does. In the following
connections it's back to Fast Open.

Server: Detects if the client supports padding by checking for "Padding"
header in the CONNECT request. Applies padding if the client does.

Both client and server always send "Padding" headers to somewhat protect
the request and response headers' packet lengths, even if the other side
may not acknowledge padding negotiation, either due to old version or
"Padding" headers being dropped by the frontend.

The manual option --padding is removed.
2021-01-20 20:37:59 +08:00
klzgrad
8af1fed753 Prevents padding headers from being indexed 2021-01-20 20:37:59 +08:00
klzgrad
36ac623d4f Add option for concurrent transport
Useful only for high-end situations where a single connection
is throttled at 10MB/s somehow.

Makes traffic obfuscation less secure.
2021-01-20 20:37:59 +08:00
klzgrad
95efeedb50 Add --extra-headers option 2021-01-20 20:37:59 +08:00
klzgrad
f802d37977 Add cert net fetcher 2021-01-20 20:37:59 +08:00
klzgrad
e19af41f20 Redirect DNS for redir://
Run a fake stub DNS resolver at the same port with redir://.
2021-01-20 20:37:59 +08:00
klzgrad
65dac8784a Support TCP transparent proxying
Enable with naive --listen=redir:// and iptables ... -j REDIRECT
--to-ports 1080.
2021-01-20 20:37:59 +08:00