npm - @push.rocks/smartproxy - Versions diffs - 11.0.0 → 13.1.2 - Mend

@push.rocks/smartproxy 11.0.0 → 13.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (261) hide show

package/dist_ts/00_commitinfo_data.js +1 -1
package/dist_ts/certificate/acme/acme-factory.d.ts +17 -0
package/dist_ts/certificate/acme/acme-factory.js +40 -0
package/dist_ts/certificate/acme/challenge-handler.d.ts +44 -0
package/dist_ts/certificate/acme/challenge-handler.js +92 -0
package/dist_ts/certificate/acme/index.d.ts +4 -0
package/dist_ts/certificate/acme/index.js +5 -0
package/dist_ts/certificate/events/certificate-events.d.ts +33 -0
package/dist_ts/certificate/events/certificate-events.js +38 -0
package/dist_ts/certificate/index.d.ts +24 -0
package/dist_ts/certificate/index.js +39 -0
package/dist_ts/certificate/models/certificate-types.d.ts +77 -0
package/dist_ts/certificate/models/certificate-types.js +2 -0
package/dist_ts/certificate/providers/cert-provisioner.d.ts +93 -0
package/dist_ts/certificate/providers/cert-provisioner.js +262 -0
package/dist_ts/certificate/providers/index.d.ts +4 -0
package/dist_ts/certificate/providers/index.js +5 -0
package/dist_ts/certificate/storage/file-storage.d.ts +66 -0
package/dist_ts/certificate/storage/file-storage.js +194 -0
package/dist_ts/certificate/storage/index.d.ts +4 -0
package/dist_ts/certificate/storage/index.js +5 -0
package/dist_ts/certificate/utils/certificate-helpers.d.ts +17 -0
package/dist_ts/certificate/utils/certificate-helpers.js +45 -0
package/dist_ts/common/eventUtils.d.ts +1 -1
package/dist_ts/common/port80-adapter.d.ts +1 -1
package/dist_ts/core/events/index.d.ts +4 -0
package/dist_ts/core/events/index.js +5 -0
package/dist_ts/core/index.d.ts +6 -0
package/dist_ts/core/index.js +8 -0
package/dist_ts/core/models/common-types.d.ts +82 -0
package/dist_ts/core/models/common-types.js +15 -0
package/dist_ts/core/models/index.d.ts +4 -0
package/dist_ts/core/models/index.js +5 -0
package/dist_ts/core/utils/event-utils.d.ts +15 -0
package/dist_ts/core/utils/event-utils.js +19 -0
package/dist_ts/core/utils/index.d.ts +6 -0
package/dist_ts/core/utils/index.js +7 -0
package/dist_ts/core/utils/ip-utils.d.ts +53 -0
package/dist_ts/core/utils/ip-utils.js +153 -0
package/dist_ts/core/utils/validation-utils.d.ts +61 -0
package/dist_ts/core/utils/validation-utils.js +149 -0
package/dist_ts/forwarding/config/domain-config.d.ts +12 -0
package/dist_ts/forwarding/config/domain-config.js +12 -0
package/dist_ts/forwarding/config/domain-manager.d.ts +86 -0
package/dist_ts/forwarding/config/domain-manager.js +242 -0
package/dist_ts/forwarding/config/forwarding-types.d.ts +104 -0
package/dist_ts/forwarding/config/forwarding-types.js +50 -0
package/dist_ts/forwarding/config/index.d.ts +6 -0
package/dist_ts/forwarding/config/index.js +7 -0
package/dist_ts/forwarding/factory/forwarding-factory.d.ts +25 -0
package/dist_ts/forwarding/factory/forwarding-factory.js +138 -0
package/dist_ts/forwarding/factory/index.d.ts +4 -0
package/dist_ts/forwarding/factory/index.js +5 -0
package/dist_ts/forwarding/handlers/base-handler.d.ts +55 -0
package/dist_ts/forwarding/handlers/base-handler.js +94 -0
package/dist_ts/forwarding/handlers/http-handler.d.ts +30 -0
package/dist_ts/forwarding/handlers/http-handler.js +131 -0
package/dist_ts/forwarding/handlers/https-passthrough-handler.d.ts +29 -0
package/dist_ts/forwarding/handlers/https-passthrough-handler.js +162 -0
package/dist_ts/forwarding/handlers/https-terminate-to-http-handler.d.ts +36 -0
package/dist_ts/forwarding/handlers/https-terminate-to-http-handler.js +229 -0
package/dist_ts/forwarding/handlers/https-terminate-to-https-handler.d.ts +35 -0
package/dist_ts/forwarding/handlers/https-terminate-to-https-handler.js +254 -0
package/dist_ts/forwarding/handlers/index.d.ts +8 -0
package/dist_ts/forwarding/handlers/index.js +9 -0
package/dist_ts/forwarding/index.d.ts +19 -0
package/dist_ts/forwarding/index.js +25 -0
package/dist_ts/http/index.d.ts +15 -0
package/dist_ts/http/index.js +20 -0
package/dist_ts/http/models/http-types.d.ts +81 -0
package/dist_ts/http/models/http-types.js +62 -0
package/dist_ts/http/port80/acme-interfaces.d.ts +78 -0
package/dist_ts/http/port80/acme-interfaces.js +6 -0
package/dist_ts/http/port80/challenge-responder.d.ts +53 -0
package/dist_ts/http/port80/challenge-responder.js +203 -0
package/dist_ts/http/port80/index.d.ts +6 -0
package/dist_ts/http/port80/index.js +9 -0
package/dist_ts/http/port80/port80-handler.d.ts +121 -0
package/dist_ts/http/port80/port80-handler.js +554 -0
package/dist_ts/http/redirects/index.d.ts +4 -0
package/dist_ts/http/redirects/index.js +5 -0
package/dist_ts/http/router/index.d.ts +4 -0
package/dist_ts/http/router/index.js +5 -0
package/dist_ts/http/router/proxy-router.d.ts +115 -0
package/dist_ts/http/router/proxy-router.js +325 -0
package/dist_ts/index.d.ts +15 -8
package/dist_ts/index.js +26 -10
package/dist_ts/networkproxy/classes.np.certificatemanager.js +2 -2
package/dist_ts/networkproxy/index.d.ts +1 -6
package/dist_ts/networkproxy/index.js +4 -8
package/dist_ts/plugins.d.ts +2 -1
package/dist_ts/plugins.js +3 -2
package/dist_ts/port80handler/classes.port80handler.d.ts +8 -136
package/dist_ts/port80handler/classes.port80handler.js +14 -567
package/dist_ts/proxies/index.d.ts +6 -0
package/dist_ts/proxies/index.js +8 -0
package/dist_ts/proxies/network-proxy/certificate-manager.d.ts +77 -0
package/dist_ts/proxies/network-proxy/certificate-manager.js +373 -0
package/dist_ts/proxies/network-proxy/connection-pool.d.ts +47 -0
package/dist_ts/proxies/network-proxy/connection-pool.js +210 -0
package/dist_ts/proxies/network-proxy/index.d.ts +10 -0
package/dist_ts/proxies/network-proxy/index.js +12 -0
package/dist_ts/proxies/network-proxy/models/index.d.ts +4 -0
package/dist_ts/proxies/network-proxy/models/index.js +5 -0
package/dist_ts/proxies/network-proxy/models/types.d.ts +80 -0
package/dist_ts/proxies/network-proxy/models/types.js +35 -0
package/dist_ts/proxies/network-proxy/network-proxy.d.ts +118 -0
package/dist_ts/proxies/network-proxy/network-proxy.js +387 -0
package/dist_ts/proxies/network-proxy/request-handler.d.ts +57 -0
package/dist_ts/proxies/network-proxy/request-handler.js +394 -0
package/dist_ts/proxies/network-proxy/websocket-handler.d.ts +38 -0
package/dist_ts/proxies/network-proxy/websocket-handler.js +188 -0
package/dist_ts/proxies/nftables-proxy/index.d.ts +5 -0
package/dist_ts/proxies/nftables-proxy/index.js +6 -0
package/dist_ts/proxies/nftables-proxy/models/errors.d.ts +15 -0
package/dist_ts/proxies/nftables-proxy/models/errors.js +28 -0
package/dist_ts/proxies/nftables-proxy/models/index.d.ts +5 -0
package/dist_ts/proxies/nftables-proxy/models/index.js +6 -0
package/dist_ts/proxies/nftables-proxy/models/interfaces.d.ts +75 -0
package/dist_ts/proxies/nftables-proxy/models/interfaces.js +5 -0
package/dist_ts/proxies/nftables-proxy/nftables-proxy.d.ts +136 -0
package/dist_ts/proxies/nftables-proxy/nftables-proxy.js +1516 -0
package/dist_ts/proxies/smart-proxy/connection-handler.d.ts +39 -0
package/dist_ts/proxies/smart-proxy/connection-handler.js +894 -0
package/dist_ts/proxies/smart-proxy/connection-manager.d.ts +78 -0
package/dist_ts/proxies/smart-proxy/connection-manager.js +378 -0
package/dist_ts/proxies/smart-proxy/domain-config-manager.d.ts +95 -0
package/dist_ts/proxies/smart-proxy/domain-config-manager.js +255 -0
package/dist_ts/proxies/smart-proxy/index.d.ts +13 -0
package/dist_ts/proxies/smart-proxy/index.js +17 -0
package/dist_ts/proxies/smart-proxy/models/index.d.ts +4 -0
package/dist_ts/proxies/smart-proxy/models/index.js +5 -0
package/dist_ts/proxies/smart-proxy/models/interfaces.d.ts +107 -0
package/dist_ts/proxies/smart-proxy/models/interfaces.js +2 -0
package/dist_ts/proxies/smart-proxy/network-proxy-bridge.d.ts +62 -0
package/dist_ts/proxies/smart-proxy/network-proxy-bridge.js +316 -0
package/dist_ts/proxies/smart-proxy/port-range-manager.d.ts +56 -0
package/dist_ts/proxies/smart-proxy/port-range-manager.js +176 -0
package/dist_ts/proxies/smart-proxy/security-manager.d.ts +64 -0
package/dist_ts/proxies/smart-proxy/security-manager.js +149 -0
package/dist_ts/proxies/smart-proxy/smart-proxy.d.ts +63 -0
package/dist_ts/proxies/smart-proxy/smart-proxy.js +523 -0
package/dist_ts/proxies/smart-proxy/timeout-manager.d.ts +47 -0
package/dist_ts/proxies/smart-proxy/timeout-manager.js +154 -0
package/dist_ts/proxies/smart-proxy/tls-manager.d.ts +57 -0
package/dist_ts/proxies/smart-proxy/tls-manager.js +132 -0
package/dist_ts/smartproxy/classes.pp.networkproxybridge.d.ts +2 -2
package/dist_ts/smartproxy/classes.pp.networkproxybridge.js +1 -1
package/dist_ts/smartproxy/classes.pp.tlsmanager.js +2 -2
package/dist_ts/smartproxy/classes.smartproxy.js +3 -3
package/dist_ts/smartproxy/forwarding/index.d.ts +1 -1
package/dist_ts/smartproxy/forwarding/index.js +2 -2
package/dist_ts/tls/alerts/index.d.ts +4 -0
package/dist_ts/tls/alerts/index.js +5 -0
package/dist_ts/tls/alerts/tls-alert.d.ts +150 -0
package/dist_ts/tls/alerts/tls-alert.js +226 -0
package/dist_ts/tls/index.d.ts +18 -0
package/dist_ts/tls/index.js +27 -0
package/dist_ts/tls/sni/client-hello-parser.d.ts +100 -0
package/dist_ts/tls/sni/client-hello-parser.js +463 -0
package/dist_ts/tls/sni/index.d.ts +4 -0
package/dist_ts/tls/sni/index.js +5 -0
package/dist_ts/tls/sni/sni-extraction.d.ts +58 -0
package/dist_ts/tls/sni/sni-extraction.js +275 -0
package/dist_ts/tls/sni/sni-handler.d.ts +154 -0
package/dist_ts/tls/sni/sni-handler.js +191 -0
package/dist_ts/tls/utils/index.d.ts +4 -0
package/dist_ts/tls/utils/index.js +5 -0
package/dist_ts/tls/utils/tls-utils.d.ts +158 -0
package/dist_ts/tls/utils/tls-utils.js +187 -0
package/package.json +1 -1
package/readme.md +89 -21
package/readme.plan.md +253 -469
package/ts/00_commitinfo_data.ts +1 -1
package/ts/certificate/acme/acme-factory.ts +48 -0
package/ts/certificate/acme/challenge-handler.ts +110 -0
package/ts/certificate/acme/index.ts +3 -0
package/ts/certificate/events/certificate-events.ts +36 -0
package/ts/certificate/index.ts +67 -0
package/ts/certificate/models/certificate-types.ts +88 -0
package/ts/certificate/providers/cert-provisioner.ts +326 -0
package/ts/certificate/providers/index.ts +3 -0
package/ts/certificate/storage/file-storage.ts +234 -0
package/ts/certificate/storage/index.ts +3 -0
package/ts/certificate/utils/certificate-helpers.ts +50 -0
package/ts/common/eventUtils.ts +1 -1
package/ts/common/port80-adapter.ts +1 -1
package/ts/core/events/index.ts +3 -0
package/ts/core/index.ts +8 -0
package/ts/core/models/common-types.ts +91 -0
package/ts/core/models/index.ts +5 -0
package/ts/core/utils/event-utils.ts +34 -0
package/ts/core/utils/index.ts +7 -0
package/ts/core/utils/ip-utils.ts +175 -0
package/ts/core/utils/validation-utils.ts +177 -0
package/ts/{smartproxy/forwarding → forwarding/config}/domain-config.ts +1 -1
package/ts/{smartproxy/forwarding → forwarding/config}/domain-manager.ts +8 -8
package/ts/{smartproxy/types/forwarding.types.ts → forwarding/config/forwarding-types.ts} +6 -6
package/ts/forwarding/config/index.ts +7 -0
package/ts/{smartproxy/forwarding/forwarding.factory.ts → forwarding/factory/forwarding-factory.ts} +12 -11
package/ts/forwarding/factory/index.ts +5 -0
package/ts/{smartproxy/forwarding/forwarding.handler.ts → forwarding/handlers/base-handler.ts} +2 -2
package/ts/{smartproxy/forwarding/http.handler.ts → forwarding/handlers/http-handler.ts} +13 -4
package/ts/{smartproxy/forwarding/https-passthrough.handler.ts → forwarding/handlers/https-passthrough-handler.ts} +13 -4
package/ts/{smartproxy/forwarding/https-terminate-to-http.handler.ts → forwarding/handlers/https-terminate-to-http-handler.ts} +3 -3
package/ts/{smartproxy/forwarding/https-terminate-to-https.handler.ts → forwarding/handlers/https-terminate-to-https-handler.ts} +3 -3
package/ts/forwarding/handlers/index.ts +9 -0
package/ts/forwarding/index.ts +34 -0
package/ts/http/index.ts +23 -0
package/ts/http/models/http-types.ts +105 -0
package/ts/http/port80/acme-interfaces.ts +85 -0
package/ts/http/port80/challenge-responder.ts +246 -0
package/ts/http/port80/index.ts +13 -0
package/ts/{port80handler/classes.port80handler.ts → http/port80/port80-handler.ts} +164 -161
package/ts/http/redirects/index.ts +3 -0
package/ts/http/router/index.ts +5 -0
package/ts/{classes.router.ts → http/router/proxy-router.ts} +27 -20
package/ts/index.ts +32 -9
package/ts/plugins.ts +2 -1
package/ts/proxies/index.ts +8 -0
package/ts/{networkproxy/classes.np.certificatemanager.ts → proxies/network-proxy/certificate-manager.ts} +17 -16
package/ts/{networkproxy/classes.np.connectionpool.ts → proxies/network-proxy/connection-pool.ts} +3 -3
package/ts/proxies/network-proxy/index.ts +13 -0
package/ts/proxies/network-proxy/models/index.ts +4 -0
package/ts/{networkproxy/classes.np.types.ts → proxies/network-proxy/models/types.ts} +7 -11
package/ts/{networkproxy/classes.np.networkproxy.ts → proxies/network-proxy/network-proxy.ts} +31 -24
package/ts/{networkproxy/classes.np.requesthandler.ts → proxies/network-proxy/request-handler.ts} +12 -7
package/ts/{networkproxy/classes.np.websockethandler.ts → proxies/network-proxy/websocket-handler.ts} +6 -6
package/ts/proxies/nftables-proxy/index.ts +5 -0
package/ts/proxies/nftables-proxy/models/errors.ts +30 -0
package/ts/proxies/nftables-proxy/models/index.ts +5 -0
package/ts/proxies/nftables-proxy/models/interfaces.ts +94 -0
package/ts/{nfttablesproxy/classes.nftablesproxy.ts → proxies/nftables-proxy/nftables-proxy.ts} +24 -126
package/ts/{smartproxy/classes.pp.connectionhandler.ts → proxies/smart-proxy/connection-handler.ts} +12 -12
package/ts/{smartproxy/classes.pp.connectionmanager.ts → proxies/smart-proxy/connection-manager.ts} +8 -8
package/ts/{smartproxy/classes.pp.domainconfigmanager.ts → proxies/smart-proxy/domain-config-manager.ts} +15 -14
package/ts/proxies/smart-proxy/index.ts +18 -0
package/ts/proxies/smart-proxy/models/index.ts +4 -0
package/ts/{smartproxy/classes.pp.interfaces.ts → proxies/smart-proxy/models/interfaces.ts} +12 -8
package/ts/{smartproxy/classes.pp.networkproxybridge.ts → proxies/smart-proxy/network-proxy-bridge.ts} +14 -14
package/ts/{smartproxy/classes.pp.portrangemanager.ts → proxies/smart-proxy/port-range-manager.ts} +1 -1
package/ts/{smartproxy/classes.pp.securitymanager.ts → proxies/smart-proxy/security-manager.ts} +3 -3
package/ts/{smartproxy/classes.smartproxy.ts → proxies/smart-proxy/smart-proxy.ts} +29 -24
package/ts/{smartproxy/classes.pp.timeoutmanager.ts → proxies/smart-proxy/timeout-manager.ts} +3 -3
package/ts/{smartproxy/classes.pp.tlsmanager.ts → proxies/smart-proxy/tls-manager.ts} +3 -3
package/ts/tls/alerts/index.ts +3 -0
package/ts/{smartproxy/classes.pp.tlsalert.ts → tls/alerts/tls-alert.ts} +44 -43
package/ts/tls/index.ts +33 -0
package/ts/tls/sni/client-hello-parser.ts +629 -0
package/ts/tls/sni/index.ts +3 -0
package/ts/tls/sni/sni-extraction.ts +353 -0
package/ts/tls/sni/sni-handler.ts +264 -0
package/ts/tls/utils/index.ts +3 -0
package/ts/tls/utils/tls-utils.ts +201 -0
package/ts/common/acmeFactory.ts +0 -23
package/ts/examples/forwarding-example.ts +0 -128
package/ts/helpers.certificates.ts +0 -30
package/ts/networkproxy/index.ts +0 -7
package/ts/smartproxy/classes.pp.certprovisioner.ts +0 -200
package/ts/smartproxy/classes.pp.snihandler.ts +0 -1281
package/ts/smartproxy/forwarding/index.ts +0 -52

package/ts/tls/utils/tls-utils.ts ADDED Viewed

@@ -0,0 +1,201 @@
+import * as plugins from '../../plugins.js';
+/**
+ * TLS record types as defined in various RFCs
+ */
+export enum TlsRecordType {
+  CHANGE_CIPHER_SPEC = 20,
+  ALERT = 21,
+  HANDSHAKE = 22,
+  APPLICATION_DATA = 23,
+  HEARTBEAT = 24, // RFC 6520
+}
+/**
+ * TLS handshake message types
+ */
+export enum TlsHandshakeType {
+  HELLO_REQUEST = 0,
+  CLIENT_HELLO = 1,
+  SERVER_HELLO = 2,
+  NEW_SESSION_TICKET = 4,
+  ENCRYPTED_EXTENSIONS = 8, // TLS 1.3
+  CERTIFICATE = 11,
+  SERVER_KEY_EXCHANGE = 12,
+  CERTIFICATE_REQUEST = 13,
+  SERVER_HELLO_DONE = 14,
+  CERTIFICATE_VERIFY = 15,
+  CLIENT_KEY_EXCHANGE = 16,
+  FINISHED = 20,
+}
+/**
+ * TLS extension types
+ */
+export enum TlsExtensionType {
+  SERVER_NAME = 0, // SNI
+  MAX_FRAGMENT_LENGTH = 1,
+  CLIENT_CERTIFICATE_URL = 2,
+  TRUSTED_CA_KEYS = 3,
+  TRUNCATED_HMAC = 4,
+  STATUS_REQUEST = 5, // OCSP
+  SUPPORTED_GROUPS = 10, // Previously named "elliptic_curves"
+  EC_POINT_FORMATS = 11,
+  SIGNATURE_ALGORITHMS = 13,
+  APPLICATION_LAYER_PROTOCOL_NEGOTIATION = 16, // ALPN
+  SIGNED_CERTIFICATE_TIMESTAMP = 18, // Certificate Transparency
+  PADDING = 21,
+  SESSION_TICKET = 35,
+  PRE_SHARED_KEY = 41, // TLS 1.3
+  EARLY_DATA = 42, // TLS 1.3 0-RTT
+  SUPPORTED_VERSIONS = 43, // TLS 1.3
+  COOKIE = 44, // TLS 1.3
+  PSK_KEY_EXCHANGE_MODES = 45, // TLS 1.3
+  CERTIFICATE_AUTHORITIES = 47, // TLS 1.3
+  POST_HANDSHAKE_AUTH = 49, // TLS 1.3
+  SIGNATURE_ALGORITHMS_CERT = 50, // TLS 1.3
+  KEY_SHARE = 51, // TLS 1.3
+}
+/**
+ * TLS alert levels
+ */
+export enum TlsAlertLevel {
+  WARNING = 1,
+  FATAL = 2,
+}
+/**
+ * TLS alert description codes
+ */
+export enum TlsAlertDescription {
+  CLOSE_NOTIFY = 0,
+  UNEXPECTED_MESSAGE = 10,
+  BAD_RECORD_MAC = 20,
+  DECRYPTION_FAILED = 21, // TLS 1.0 only
+  RECORD_OVERFLOW = 22,
+  DECOMPRESSION_FAILURE = 30, // TLS 1.2 and below
+  HANDSHAKE_FAILURE = 40,
+  NO_CERTIFICATE = 41, // SSLv3 only
+  BAD_CERTIFICATE = 42,
+  UNSUPPORTED_CERTIFICATE = 43,
+  CERTIFICATE_REVOKED = 44,
+  CERTIFICATE_EXPIRED = 45,
+  CERTIFICATE_UNKNOWN = 46,
+  ILLEGAL_PARAMETER = 47,
+  UNKNOWN_CA = 48,
+  ACCESS_DENIED = 49,
+  DECODE_ERROR = 50,
+  DECRYPT_ERROR = 51,
+  EXPORT_RESTRICTION = 60, // TLS 1.0 only
+  PROTOCOL_VERSION = 70,
+  INSUFFICIENT_SECURITY = 71,
+  INTERNAL_ERROR = 80,
+  INAPPROPRIATE_FALLBACK = 86,
+  USER_CANCELED = 90,
+  NO_RENEGOTIATION = 100, // TLS 1.2 and below
+  MISSING_EXTENSION = 109, // TLS 1.3
+  UNSUPPORTED_EXTENSION = 110, // TLS 1.3
+  CERTIFICATE_REQUIRED = 111, // TLS 1.3
+  UNRECOGNIZED_NAME = 112,
+  BAD_CERTIFICATE_STATUS_RESPONSE = 113,
+  BAD_CERTIFICATE_HASH_VALUE = 114, // TLS 1.2 and below
+  UNKNOWN_PSK_IDENTITY = 115,
+  CERTIFICATE_REQUIRED_1_3 = 116, // TLS 1.3
+  NO_APPLICATION_PROTOCOL = 120,
+}
+/**
+ * TLS version codes (major.minor)
+ */
+export const TlsVersion = {
+  SSL3: [0x03, 0x00],
+  TLS1_0: [0x03, 0x01],
+  TLS1_1: [0x03, 0x02],
+  TLS1_2: [0x03, 0x03],
+  TLS1_3: [0x03, 0x04],
+};
+/**
+ * Utility functions for TLS protocol operations
+ */
+export class TlsUtils {
+  /**
+   * Checks if a buffer contains a TLS handshake record
+   * @param buffer The buffer to check
+   * @returns true if the buffer starts with a TLS handshake record
+   */
+  public static isTlsHandshake(buffer: Buffer): boolean {
+    return buffer.length > 0 && buffer[0] === TlsRecordType.HANDSHAKE;
+  }
+  /**
+   * Checks if a buffer contains TLS application data
+   * @param buffer The buffer to check
+   * @returns true if the buffer starts with a TLS application data record
+   */
+  public static isTlsApplicationData(buffer: Buffer): boolean {
+    return buffer.length > 0 && buffer[0] === TlsRecordType.APPLICATION_DATA;
+  }
+  /**
+   * Checks if a buffer contains a TLS alert record
+   * @param buffer The buffer to check
+   * @returns true if the buffer starts with a TLS alert record
+   */
+  public static isTlsAlert(buffer: Buffer): boolean {
+    return buffer.length > 0 && buffer[0] === TlsRecordType.ALERT;
+  }
+  /**
+   * Checks if a buffer contains a TLS ClientHello message
+   * @param buffer The buffer to check
+   * @returns true if the buffer appears to be a ClientHello message
+   */
+  public static isClientHello(buffer: Buffer): boolean {
+    // Minimum ClientHello size (TLS record header + handshake header)
+    if (buffer.length < 9) {
+      return false;
+    }
+    // Check record type (must be TLS_HANDSHAKE_RECORD_TYPE)
+    if (buffer[0] !== TlsRecordType.HANDSHAKE) {
+      return false;
+    }
+    // Skip version and length in TLS record header (5 bytes total)
+    // Check handshake type at byte 5 (must be CLIENT_HELLO)
+    return buffer[5] === TlsHandshakeType.CLIENT_HELLO;
+  }
+  /**
+   * Gets the record length from a TLS record header
+   * @param buffer Buffer containing a TLS record
+   * @returns The record length if the buffer is valid, -1 otherwise
+   */
+  public static getTlsRecordLength(buffer: Buffer): number {
+    if (buffer.length < 5) {
+      return -1;
+    }
+    // Bytes 3-4 contain the record length (big-endian)
+    return (buffer[3] << 8) + buffer[4];
+  }
+  /**
+   * Creates a connection ID based on source/destination information
+   * Used to track fragmented ClientHello messages across multiple packets
+   *
+   * @param connectionInfo Object containing connection identifiers
+   * @returns A string ID for the connection
+   */
+  public static createConnectionId(connectionInfo: {
+    sourceIp?: string;
+    sourcePort?: number;
+    destIp?: string;
+    destPort?: number;
+  }): string {
+    const { sourceIp, sourcePort, destIp, destPort } = connectionInfo;
+    return `${sourceIp}:${sourcePort}-${destIp}:${destPort}`;
+  }
+}

package/ts/common/acmeFactory.ts DELETED Viewed

@@ -1,23 +0,0 @@
-import * as fs from 'fs';
-import * as path from 'path';
-import type { IAcmeOptions } from './types.js';
-import { Port80Handler } from '../port80handler/classes.port80handler.js';
-/**
- * Factory to create a Port80Handler with common setup.
- * Ensures the certificate store directory exists and instantiates the handler.
- * @param options Port80Handler configuration options
- * @returns A new Port80Handler instance
- */
-export function buildPort80Handler(
-  options: IAcmeOptions
-): Port80Handler {
-  if (options.certificateStore) {
-    const certStorePath = path.resolve(options.certificateStore);
-    if (!fs.existsSync(certStorePath)) {
-      fs.mkdirSync(certStorePath, { recursive: true });
-      console.log(`Created certificate store directory: ${certStorePath}`);
-    }
-  }
-  return new Port80Handler(options);
-}

package/ts/examples/forwarding-example.ts DELETED Viewed

@@ -1,128 +0,0 @@
-import * as plugins from '../plugins.js';
-import { createServer } from 'http';
-import { Socket } from 'net';
-import {
-  DomainManager,
-  DomainManagerEvents,
-  createDomainConfig,
-  helpers
-} from '../smartproxy/forwarding/index.js';
-/**
- * Example showing how to use the unified forwarding system
- */
-async function main() {
-  console.log('Initializing forwarding example...');
-  // Create the domain manager
-  const domainManager = new DomainManager();
-  // Set up event listeners
-  domainManager.on(DomainManagerEvents.DOMAIN_ADDED, (data) => {
-    console.log(`Domain added: ${data.domains.join(', ')} (${data.forwardingType})`);
-  });
-  domainManager.on(DomainManagerEvents.DOMAIN_MATCHED, (data) => {
-    console.log(`Domain matched: ${data.domain} (${data.handlerType})`);
-  });
-  domainManager.on(DomainManagerEvents.DOMAIN_MATCH_FAILED, (data) => {
-    console.log(`Domain match failed: ${data.domain}`);
-  });
-  domainManager.on(DomainManagerEvents.ERROR, (data) => {
-    console.error(`Error:`, data);
-  });
-  // Add example domains with different forwarding types
-  // Example 1: HTTP-only forwarding
-  await domainManager.addDomainConfig(
-    createDomainConfig('example.com', helpers.httpOnly({
-      target: { host: 'localhost', port: 3000 }
-    }))
-  );
-  // Example 2: HTTPS termination with HTTP backend
-  await domainManager.addDomainConfig(
-    createDomainConfig('secure.example.com', helpers.tlsTerminateToHttp({
-      target: { host: 'localhost', port: 3000 }
-    }))
-  );
-  // Example 3: HTTPS termination with HTTPS backend
-  await domainManager.addDomainConfig(
-    createDomainConfig('api.example.com', helpers.tlsTerminateToHttps({
-      target: { host: 'localhost', port: 8443 }
-    }))
-  );
-  // Example 4: SNI passthrough
-  await domainManager.addDomainConfig(
-    createDomainConfig('passthrough.example.com', helpers.sniPassthrough({
-      target: { host: '10.0.0.5', port: 443 }
-    }))
-  );
-  // Example 5: Custom configuration for a more complex setup
-  await domainManager.addDomainConfig(
-    createDomainConfig(['*.example.com', '*.example.org'], {
-      type: 'https-terminate-to-http',
-      target: {
-        host: ['10.0.0.10', '10.0.0.11'], // Round-robin load balancing
-        port: 8080
-      },
-      http: {
-        enabled: true,
-        redirectToHttps: false // Allow both HTTP and HTTPS
-      },
-      acme: {
-        enabled: true,
-        maintenance: true,
-        production: false,  // Use staging for testing
-        forwardChallenges: {
-          host: '192.168.1.100',
-          port: 8080
-        }
-      },
-      security: {
-        allowedIps: ['10.0.0.*', '192.168.1.*'],
-        maxConnections: 100
-      },
-      advanced: {
-        headers: {
-          'X-Forwarded-For': '{clientIp}',
-          'X-Forwarded-Host': '{sni}'
-        }
-      }
-    })
-  );
-  // Create a simple HTTP server to demonstrate HTTP handler
-  const httpServer = createServer((req, res) => {
-    // Extract the domain from the Host header
-    const domain = req.headers.host?.split(':')[0] || 'unknown';
-    // Forward the request to the appropriate handler
-    if (!domainManager.handleHttpRequest(domain, req, res)) {
-      // No handler found, send a default response
-      res.statusCode = 404;
-      res.end(`No handler found for domain: ${domain}`);
-    }
-  });
-  // Listen on HTTP port
-  httpServer.listen(80, () => {
-    console.log('HTTP server listening on port 80');
-  });
-  // For HTTPS and SNI, we would need to set up a TLS server
-  // This is a simplified example that just shows how the domain manager works
-  console.log('Forwarding example initialized successfully');
-}
-// Run the example
-main().catch(error => {
-  console.error('Error running example:', error);
-});

package/ts/helpers.certificates.ts DELETED Viewed

@@ -1,30 +0,0 @@
-import * as fs from 'fs';
-import * as path from 'path';
-import { fileURLToPath } from 'url';
-const __dirname = path.dirname(fileURLToPath(import.meta.url));
-export interface ICertificates {
-  privateKey: string;
-  publicKey: string;
-}
-export function loadDefaultCertificates(): ICertificates {
-  try {
-    const certPath = path.join(__dirname, '..', 'assets', 'certs');
-    const privateKey = fs.readFileSync(path.join(certPath, 'key.pem'), 'utf8');
-    const publicKey = fs.readFileSync(path.join(certPath, 'cert.pem'), 'utf8');
-    if (!privateKey || !publicKey) {
-      throw new Error('Failed to load default certificates');
-    }
-    return {
-      privateKey,
-      publicKey
-    };
-  } catch (error) {
-    console.error('Error loading default certificates:', error);
-    throw error;
-  }
-}

package/ts/networkproxy/index.ts DELETED Viewed

@@ -1,7 +0,0 @@
-// Re-export all components for easier imports
-export * from './classes.np.types.js';
-export * from './classes.np.certificatemanager.js';
-export * from './classes.np.connectionpool.js';
-export * from './classes.np.requesthandler.js';
-export * from './classes.np.websockethandler.js';
-export * from './classes.np.networkproxy.js';

package/ts/smartproxy/classes.pp.certprovisioner.ts DELETED Viewed

@@ -1,200 +0,0 @@
-import * as plugins from '../plugins.js';
-import type { IDomainConfig, ISmartProxyCertProvisionObject } from './classes.pp.interfaces.js';
-import { Port80Handler } from '../port80handler/classes.port80handler.js';
-import { Port80HandlerEvents } from '../common/types.js';
-import { subscribeToPort80Handler } from '../common/eventUtils.js';
-import type { ICertificateData } from '../common/types.js';
-import type { NetworkProxyBridge } from './classes.pp.networkproxybridge.js';
-/**
- * CertProvisioner manages certificate provisioning and renewal workflows,
- * unifying static certificates and HTTP-01 challenges via Port80Handler.
- */
-export class CertProvisioner extends plugins.EventEmitter {
-  private domainConfigs: IDomainConfig[];
-  private port80Handler: Port80Handler;
-  private networkProxyBridge: NetworkProxyBridge;
-  private certProvisionFunction?: (domain: string) => Promise<ISmartProxyCertProvisionObject>;
-  private forwardConfigs: Array<{ domain: string; forwardConfig?: { ip: string; port: number }; acmeForwardConfig?: { ip: string; port: number }; sslRedirect: boolean }>;
-  private renewThresholdDays: number;
-  private renewCheckIntervalHours: number;
-  private autoRenew: boolean;
-  private renewManager?: plugins.taskbuffer.TaskManager;
-  // Track provisioning type per domain: 'http01' or 'static'
-  private provisionMap: Map<string, 'http01' | 'static'>;
-  /**
-   * @param domainConfigs Array of domain configuration objects
-   * @param port80Handler HTTP-01 challenge handler instance
-   * @param networkProxyBridge Bridge for applying external certificates
-   * @param certProvider Optional callback returning a static cert or 'http01'
-   * @param renewThresholdDays Days before expiry to trigger renewals
-   * @param renewCheckIntervalHours Interval in hours to check for renewals
-   * @param autoRenew Whether to automatically schedule renewals
-   */
-  constructor(
-    domainConfigs: IDomainConfig[],
-    port80Handler: Port80Handler,
-    networkProxyBridge: NetworkProxyBridge,
-    certProvider?: (domain: string) => Promise<ISmartProxyCertProvisionObject>,
-    renewThresholdDays: number = 30,
-    renewCheckIntervalHours: number = 24,
-    autoRenew: boolean = true,
-    forwardConfigs: Array<{ domain: string; forwardConfig?: { ip: string; port: number }; acmeForwardConfig?: { ip: string; port: number }; sslRedirect: boolean }> = []
-  ) {
-    super();
-    this.domainConfigs = domainConfigs;
-    this.port80Handler = port80Handler;
-    this.networkProxyBridge = networkProxyBridge;
-    this.certProvisionFunction = certProvider;
-    this.renewThresholdDays = renewThresholdDays;
-    this.renewCheckIntervalHours = renewCheckIntervalHours;
-    this.autoRenew = autoRenew;
-    this.provisionMap = new Map();
-    this.forwardConfigs = forwardConfigs;
-  }
-  /**
-   * Start initial provisioning and schedule renewals.
-   */
-  public async start(): Promise<void> {
-    // Subscribe to Port80Handler certificate events
-    subscribeToPort80Handler(this.port80Handler, {
-      onCertificateIssued: (data: ICertificateData) => {
-        this.emit('certificate', { ...data, source: 'http01', isRenewal: false });
-      },
-      onCertificateRenewed: (data: ICertificateData) => {
-        this.emit('certificate', { ...data, source: 'http01', isRenewal: true });
-      }
-    });
-    // Apply external forwarding for ACME challenges (e.g. Synology)
-    for (const f of this.forwardConfigs) {
-      this.port80Handler.addDomain({
-        domainName: f.domain,
-        sslRedirect: f.sslRedirect,
-        acmeMaintenance: false,
-        forward: f.forwardConfig,
-        acmeForward: f.acmeForwardConfig
-      });
-    }
-    // Initial provisioning for all domains
-    const domains = this.domainConfigs.flatMap(cfg => cfg.domains);
-    for (const domain of domains) {
-      const isWildcard = domain.includes('*');
-      let provision: ISmartProxyCertProvisionObject | 'http01' = 'http01';
-      if (this.certProvisionFunction) {
-        try {
-          provision = await this.certProvisionFunction(domain);
-        } catch (err) {
-          console.error(`certProvider error for ${domain}:`, err);
-        }
-      } else if (isWildcard) {
-        // No certProvider: cannot handle wildcard without DNS-01 support
-        console.warn(`Skipping wildcard domain without certProvisionFunction: ${domain}`);
-        continue;
-      }
-      if (provision === 'http01') {
-        if (isWildcard) {
-          console.warn(`Skipping HTTP-01 for wildcard domain: ${domain}`);
-          continue;
-        }
-        this.provisionMap.set(domain, 'http01');
-        this.port80Handler.addDomain({ domainName: domain, sslRedirect: true, acmeMaintenance: true });
-      } else {
-        // Static certificate (e.g., DNS-01 provisioned or user-provided) supports wildcard domains
-        this.provisionMap.set(domain, 'static');
-        const certObj = provision as plugins.tsclass.network.ICert;
-        const certData: ICertificateData = {
-          domain: certObj.domainName,
-          certificate: certObj.publicKey,
-          privateKey: certObj.privateKey,
-          expiryDate: new Date(certObj.validUntil)
-        };
-        this.networkProxyBridge.applyExternalCertificate(certData);
-        this.emit('certificate', { ...certData, source: 'static', isRenewal: false });
-      }
-    }
-    // Schedule renewals if enabled
-    if (this.autoRenew) {
-      this.renewManager = new plugins.taskbuffer.TaskManager();
-      const renewTask = new plugins.taskbuffer.Task({
-        name: 'CertificateRenewals',
-        taskFunction: async () => {
-          for (const [domain, type] of this.provisionMap.entries()) {
-            // Skip wildcard domains
-            if (domain.includes('*')) continue;
-            try {
-              if (type === 'http01') {
-                await this.port80Handler.renewCertificate(domain);
-              } else if (type === 'static' && this.certProvisionFunction) {
-                const provision2 = await this.certProvisionFunction(domain);
-                if (provision2 !== 'http01') {
-                  const certObj = provision2 as plugins.tsclass.network.ICert;
-                  const certData: ICertificateData = {
-                    domain: certObj.domainName,
-                    certificate: certObj.publicKey,
-                    privateKey: certObj.privateKey,
-                    expiryDate: new Date(certObj.validUntil)
-                  };
-                  this.networkProxyBridge.applyExternalCertificate(certData);
-                  this.emit('certificate', { ...certData, source: 'static', isRenewal: true });
-                }
-              }
-            } catch (err) {
-              console.error(`Renewal error for ${domain}:`, err);
-            }
-          }
-        }
-      });
-      const hours = this.renewCheckIntervalHours;
-      const cronExpr = `0 0 */${hours} * * *`;
-      this.renewManager.addAndScheduleTask(renewTask, cronExpr);
-      this.renewManager.start();
-    }
-  }
-  /**
-   * Stop all scheduled renewal tasks.
-   */
-  public async stop(): Promise<void> {
-    // Stop scheduled renewals
-    if (this.renewManager) {
-      this.renewManager.stop();
-    }
-  }
-  /**
-   * Request a certificate on-demand for the given domain.
-   * @param domain Domain name to provision
-   */
-  public async requestCertificate(domain: string): Promise<void> {
-    const isWildcard = domain.includes('*');
-    // Determine provisioning method
-    let provision: ISmartProxyCertProvisionObject | 'http01' = 'http01';
-    if (this.certProvisionFunction) {
-      provision = await this.certProvisionFunction(domain);
-    } else if (isWildcard) {
-      // Cannot perform HTTP-01 on wildcard without certProvider
-      throw new Error(`Cannot request certificate for wildcard domain without certProvisionFunction: ${domain}`);
-    }
-    if (provision === 'http01') {
-      if (isWildcard) {
-        throw new Error(`Cannot request HTTP-01 certificate for wildcard domain: ${domain}`);
-      }
-      await this.port80Handler.renewCertificate(domain);
-    } else {
-      // Static certificate (e.g., DNS-01 provisioned) supports wildcards
-      const certObj = provision as plugins.tsclass.network.ICert;
-      const certData: ICertificateData = {
-        domain: certObj.domainName,
-        certificate: certObj.publicKey,
-        privateKey: certObj.privateKey,
-        expiryDate: new Date(certObj.validUntil)
-      };
-      this.networkProxyBridge.applyExternalCertificate(certData);
-      this.emit('certificate', { ...certData, source: 'static', isRenewal: false });
-    }
-  }
-}