npm - @push.rocks/smartproxy - Versions diffs - 12.0.0 → 13.1.2 - Mend

@push.rocks/smartproxy 12.0.0 → 13.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (258) hide show

package/dist_ts/forwarding/handlers/https-passthrough-handler.js ADDED Viewed

@@ -0,0 +1,162 @@
+import * as plugins from '../../plugins.js';
+import { ForwardingHandler } from './base-handler.js';
+import { ForwardingHandlerEvents } from '../config/forwarding-types.js';
+/**
+ * Handler for HTTPS passthrough (SNI forwarding without termination)
+ */
+export class HttpsPassthroughHandler extends ForwardingHandler {
+    /**
+     * Create a new HTTPS passthrough handler
+     * @param config The forwarding configuration
+     */
+    constructor(config) {
+        super(config);
+        // Validate that this is an HTTPS passthrough configuration
+        if (config.type !== 'https-passthrough') {
+            throw new Error(`Invalid configuration type for HttpsPassthroughHandler: ${config.type}`);
+        }
+    }
+    /**
+     * Initialize the handler
+     * HTTPS passthrough handler doesn't need special initialization
+     */
+    async initialize() {
+        // Basic initialization from parent class
+        await super.initialize();
+    }
+    /**
+     * Handle a TLS/SSL socket connection by forwarding it without termination
+     * @param clientSocket The incoming socket from the client
+     */
+    handleConnection(clientSocket) {
+        // Get the target from configuration
+        const target = this.getTargetFromConfig();
+        // Log the connection
+        const remoteAddress = clientSocket.remoteAddress || 'unknown';
+        const remotePort = clientSocket.remotePort || 0;
+        this.emit(ForwardingHandlerEvents.CONNECTED, {
+            remoteAddress,
+            remotePort,
+            target: `${target.host}:${target.port}`
+        });
+        // Create a connection to the target server
+        const serverSocket = plugins.net.connect(target.port, target.host);
+        // Handle errors on the server socket
+        serverSocket.on('error', (error) => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress,
+                error: `Target connection error: ${error.message}`
+            });
+            // Close the client socket if it's still open
+            if (!clientSocket.destroyed) {
+                clientSocket.destroy();
+            }
+        });
+        // Handle errors on the client socket
+        clientSocket.on('error', (error) => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress,
+                error: `Client connection error: ${error.message}`
+            });
+            // Close the server socket if it's still open
+            if (!serverSocket.destroyed) {
+                serverSocket.destroy();
+            }
+        });
+        // Track data transfer for logging
+        let bytesSent = 0;
+        let bytesReceived = 0;
+        // Forward data from client to server
+        clientSocket.on('data', (data) => {
+            bytesSent += data.length;
+            // Check if server socket is writable
+            if (serverSocket.writable) {
+                const flushed = serverSocket.write(data);
+                // Handle backpressure
+                if (!flushed) {
+                    clientSocket.pause();
+                    serverSocket.once('drain', () => {
+                        clientSocket.resume();
+                    });
+                }
+            }
+            this.emit(ForwardingHandlerEvents.DATA_FORWARDED, {
+                direction: 'outbound',
+                bytes: data.length,
+                total: bytesSent
+            });
+        });
+        // Forward data from server to client
+        serverSocket.on('data', (data) => {
+            bytesReceived += data.length;
+            // Check if client socket is writable
+            if (clientSocket.writable) {
+                const flushed = clientSocket.write(data);
+                // Handle backpressure
+                if (!flushed) {
+                    serverSocket.pause();
+                    clientSocket.once('drain', () => {
+                        serverSocket.resume();
+                    });
+                }
+            }
+            this.emit(ForwardingHandlerEvents.DATA_FORWARDED, {
+                direction: 'inbound',
+                bytes: data.length,
+                total: bytesReceived
+            });
+        });
+        // Handle connection close
+        const handleClose = () => {
+            if (!clientSocket.destroyed) {
+                clientSocket.destroy();
+            }
+            if (!serverSocket.destroyed) {
+                serverSocket.destroy();
+            }
+            this.emit(ForwardingHandlerEvents.DISCONNECTED, {
+                remoteAddress,
+                bytesSent,
+                bytesReceived
+            });
+        };
+        // Set up close handlers
+        clientSocket.on('close', handleClose);
+        serverSocket.on('close', handleClose);
+        // Set timeouts
+        const timeout = this.getTimeout();
+        clientSocket.setTimeout(timeout);
+        serverSocket.setTimeout(timeout);
+        // Handle timeouts
+        clientSocket.on('timeout', () => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress,
+                error: 'Client connection timeout'
+            });
+            handleClose();
+        });
+        serverSocket.on('timeout', () => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress,
+                error: 'Server connection timeout'
+            });
+            handleClose();
+        });
+    }
+    /**
+     * Handle an HTTP request - HTTPS passthrough doesn't support HTTP
+     * @param req The HTTP request
+     * @param res The HTTP response
+     */
+    handleHttpRequest(req, res) {
+        // HTTPS passthrough doesn't support HTTP requests
+        res.writeHead(404, { 'Content-Type': 'text/plain' });
+        res.end('HTTP not supported for this domain');
+        this.emit(ForwardingHandlerEvents.HTTP_RESPONSE, {
+            statusCode: 404,
+            headers: { 'Content-Type': 'text/plain' },
+            size: 'HTTP not supported for this domain'.length
+        });
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/forwarding/handlers/https-terminate-to-http-handler.d.ts ADDED Viewed

@@ -0,0 +1,36 @@
+import * as plugins from '../../plugins.js';
+import { ForwardingHandler } from './base-handler.js';
+import type { IForwardConfig } from '../config/forwarding-types.js';
+/**
+ * Handler for HTTPS termination with HTTP backend
+ */
+export declare class HttpsTerminateToHttpHandler extends ForwardingHandler {
+    private tlsServer;
+    private secureContext;
+    /**
+     * Create a new HTTPS termination with HTTP backend handler
+     * @param config The forwarding configuration
+     */
+    constructor(config: IForwardConfig);
+    /**
+     * Initialize the handler, setting up TLS context
+     */
+    initialize(): Promise<void>;
+    /**
+     * Set the secure context for TLS termination
+     * Called when a certificate is available
+     * @param context The secure context
+     */
+    setSecureContext(context: plugins.tls.SecureContext): void;
+    /**
+     * Handle a TLS/SSL socket connection by terminating TLS and forwarding to HTTP backend
+     * @param clientSocket The incoming socket from the client
+     */
+    handleConnection(clientSocket: plugins.net.Socket): void;
+    /**
+     * Handle an HTTP request by forwarding to the HTTP backend
+     * @param req The HTTP request
+     * @param res The HTTP response
+     */
+    handleHttpRequest(req: plugins.http.IncomingMessage, res: plugins.http.ServerResponse): void;
+}

package/dist_ts/forwarding/handlers/https-terminate-to-http-handler.js ADDED Viewed

@@ -0,0 +1,229 @@
+import * as plugins from '../../plugins.js';
+import { ForwardingHandler } from './base-handler.js';
+import { ForwardingHandlerEvents } from '../config/forwarding-types.js';
+/**
+ * Handler for HTTPS termination with HTTP backend
+ */
+export class HttpsTerminateToHttpHandler extends ForwardingHandler {
+    /**
+     * Create a new HTTPS termination with HTTP backend handler
+     * @param config The forwarding configuration
+     */
+    constructor(config) {
+        super(config);
+        this.tlsServer = null;
+        this.secureContext = null;
+        // Validate that this is an HTTPS terminate to HTTP configuration
+        if (config.type !== 'https-terminate-to-http') {
+            throw new Error(`Invalid configuration type for HttpsTerminateToHttpHandler: ${config.type}`);
+        }
+    }
+    /**
+     * Initialize the handler, setting up TLS context
+     */
+    async initialize() {
+        // We need to load or create TLS certificates
+        if (this.config.https?.customCert) {
+            // Use custom certificate from configuration
+            this.secureContext = plugins.tls.createSecureContext({
+                key: this.config.https.customCert.key,
+                cert: this.config.https.customCert.cert
+            });
+            this.emit(ForwardingHandlerEvents.CERTIFICATE_LOADED, {
+                source: 'config',
+                domain: this.config.target.host
+            });
+        }
+        else if (this.config.acme?.enabled) {
+            // Request certificate through ACME if needed
+            this.emit(ForwardingHandlerEvents.CERTIFICATE_NEEDED, {
+                domain: Array.isArray(this.config.target.host)
+                    ? this.config.target.host[0]
+                    : this.config.target.host,
+                useProduction: this.config.acme.production || false
+            });
+            // In a real implementation, we would wait for the certificate to be issued
+            // For now, we'll use a dummy context
+            this.secureContext = plugins.tls.createSecureContext({
+                key: '-----BEGIN PRIVATE KEY-----\nDummy key\n-----END PRIVATE KEY-----',
+                cert: '-----BEGIN CERTIFICATE-----\nDummy cert\n-----END CERTIFICATE-----'
+            });
+        }
+        else {
+            throw new Error('HTTPS termination requires either a custom certificate or ACME enabled');
+        }
+    }
+    /**
+     * Set the secure context for TLS termination
+     * Called when a certificate is available
+     * @param context The secure context
+     */
+    setSecureContext(context) {
+        this.secureContext = context;
+    }
+    /**
+     * Handle a TLS/SSL socket connection by terminating TLS and forwarding to HTTP backend
+     * @param clientSocket The incoming socket from the client
+     */
+    handleConnection(clientSocket) {
+        // Make sure we have a secure context
+        if (!this.secureContext) {
+            clientSocket.destroy(new Error('TLS secure context not initialized'));
+            return;
+        }
+        const remoteAddress = clientSocket.remoteAddress || 'unknown';
+        const remotePort = clientSocket.remotePort || 0;
+        // Create a TLS socket using our secure context
+        const tlsSocket = new plugins.tls.TLSSocket(clientSocket, {
+            secureContext: this.secureContext,
+            isServer: true,
+            server: this.tlsServer || undefined
+        });
+        this.emit(ForwardingHandlerEvents.CONNECTED, {
+            remoteAddress,
+            remotePort,
+            tls: true
+        });
+        // Handle TLS errors
+        tlsSocket.on('error', (error) => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress,
+                error: `TLS error: ${error.message}`
+            });
+            if (!tlsSocket.destroyed) {
+                tlsSocket.destroy();
+            }
+        });
+        // The TLS socket will now emit HTTP traffic that can be processed
+        // In a real implementation, we would create an HTTP parser and handle
+        // the requests here, but for simplicity, we'll just log the data
+        let dataBuffer = Buffer.alloc(0);
+        tlsSocket.on('data', (data) => {
+            // Append to buffer
+            dataBuffer = Buffer.concat([dataBuffer, data]);
+            // Very basic HTTP parsing - in a real implementation, use http-parser
+            if (dataBuffer.includes(Buffer.from('\r\n\r\n'))) {
+                const target = this.getTargetFromConfig();
+                // Simple example: forward the data to an HTTP server
+                const socket = plugins.net.connect(target.port, target.host, () => {
+                    socket.write(dataBuffer);
+                    dataBuffer = Buffer.alloc(0);
+                    // Set up bidirectional data flow
+                    tlsSocket.pipe(socket);
+                    socket.pipe(tlsSocket);
+                });
+                socket.on('error', (error) => {
+                    this.emit(ForwardingHandlerEvents.ERROR, {
+                        remoteAddress,
+                        error: `Target connection error: ${error.message}`
+                    });
+                    if (!tlsSocket.destroyed) {
+                        tlsSocket.destroy();
+                    }
+                });
+            }
+        });
+        // Handle close
+        tlsSocket.on('close', () => {
+            this.emit(ForwardingHandlerEvents.DISCONNECTED, {
+                remoteAddress
+            });
+        });
+        // Set timeout
+        const timeout = this.getTimeout();
+        tlsSocket.setTimeout(timeout);
+        tlsSocket.on('timeout', () => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress,
+                error: 'TLS connection timeout'
+            });
+            if (!tlsSocket.destroyed) {
+                tlsSocket.destroy();
+            }
+        });
+    }
+    /**
+     * Handle an HTTP request by forwarding to the HTTP backend
+     * @param req The HTTP request
+     * @param res The HTTP response
+     */
+    handleHttpRequest(req, res) {
+        // Check if we should redirect to HTTPS
+        if (this.config.http?.redirectToHttps) {
+            this.redirectToHttps(req, res);
+            return;
+        }
+        // Get the target from configuration
+        const target = this.getTargetFromConfig();
+        // Create custom headers with variable substitution
+        const variables = {
+            clientIp: req.socket.remoteAddress || 'unknown'
+        };
+        // Prepare headers, merging with any custom headers from config
+        const headers = this.applyCustomHeaders(req.headers, variables);
+        // Create the proxy request options
+        const options = {
+            hostname: target.host,
+            port: target.port,
+            path: req.url,
+            method: req.method,
+            headers
+        };
+        // Create the proxy request
+        const proxyReq = plugins.http.request(options, (proxyRes) => {
+            // Copy status code and headers from the proxied response
+            res.writeHead(proxyRes.statusCode || 500, proxyRes.headers);
+            // Pipe the proxy response to the client response
+            proxyRes.pipe(res);
+            // Track response size for logging
+            let responseSize = 0;
+            proxyRes.on('data', (chunk) => {
+                responseSize += chunk.length;
+            });
+            proxyRes.on('end', () => {
+                this.emit(ForwardingHandlerEvents.HTTP_RESPONSE, {
+                    statusCode: proxyRes.statusCode,
+                    headers: proxyRes.headers,
+                    size: responseSize
+                });
+            });
+        });
+        // Handle errors in the proxy request
+        proxyReq.on('error', (error) => {
+            this.emit(ForwardingHandlerEvents.ERROR, {
+                remoteAddress: req.socket.remoteAddress,
+                error: `Proxy request error: ${error.message}`
+            });
+            // Send an error response if headers haven't been sent yet
+            if (!res.headersSent) {
+                res.writeHead(502, { 'Content-Type': 'text/plain' });
+                res.end(`Error forwarding request: ${error.message}`);
+            }
+            else {
+                // Just end the response if headers have already been sent
+                res.end();
+            }
+        });
+        // Track request details for logging
+        let requestSize = 0;
+        req.on('data', (chunk) => {
+            requestSize += chunk.length;
+        });
+        // Log the request
+        this.emit(ForwardingHandlerEvents.HTTP_REQUEST, {
+            method: req.method,
+            url: req.url,
+            headers: req.headers,
+            remoteAddress: req.socket.remoteAddress,
+            target: `${target.host}:${target.port}`
+        });
+        // Pipe the client request to the proxy request
+        if (req.readable) {
+            req.pipe(proxyReq);
+        }
+        else {
+            proxyReq.end();
+        }
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/forwarding/handlers/https-terminate-to-https-handler.d.ts ADDED Viewed

@@ -0,0 +1,35 @@
+import * as plugins from '../../plugins.js';
+import { ForwardingHandler } from './base-handler.js';
+import type { IForwardConfig } from '../config/forwarding-types.js';
+/**
+ * Handler for HTTPS termination with HTTPS backend
+ */
+export declare class HttpsTerminateToHttpsHandler extends ForwardingHandler {
+    private secureContext;
+    /**
+     * Create a new HTTPS termination with HTTPS backend handler
+     * @param config The forwarding configuration
+     */
+    constructor(config: IForwardConfig);
+    /**
+     * Initialize the handler, setting up TLS context
+     */
+    initialize(): Promise<void>;
+    /**
+     * Set the secure context for TLS termination
+     * Called when a certificate is available
+     * @param context The secure context
+     */
+    setSecureContext(context: plugins.tls.SecureContext): void;
+    /**
+     * Handle a TLS/SSL socket connection by terminating TLS and creating a new TLS connection to backend
+     * @param clientSocket The incoming socket from the client
+     */
+    handleConnection(clientSocket: plugins.net.Socket): void;
+    /**
+     * Handle an HTTP request by forwarding to the HTTPS backend
+     * @param req The HTTP request
+     * @param res The HTTP response
+     */
+    handleHttpRequest(req: plugins.http.IncomingMessage, res: plugins.http.ServerResponse): void;
+}