npm - @push.rocks/smartproxy - Versions diffs - 22.4.2 → 23.0.0 - Mend

@push.rocks/smartproxy 22.4.2 → 23.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (101) hide show

package/changelog.md +36 -0
package/dist_rust/rustproxy +0 -0
package/dist_ts/00_commitinfo_data.js +1 -1
package/dist_ts/index.d.ts +1 -6
package/dist_ts/index.js +3 -11
package/dist_ts/protocols/common/fragment-handler.js +5 -1
package/dist_ts/proxies/index.d.ts +1 -6
package/dist_ts/proxies/index.js +2 -8
package/dist_ts/proxies/smart-proxy/index.d.ts +5 -10
package/dist_ts/proxies/smart-proxy/index.js +7 -13
package/dist_ts/proxies/smart-proxy/models/interfaces.d.ts +5 -2
package/dist_ts/proxies/smart-proxy/models/route-types.js +1 -1
package/dist_ts/proxies/smart-proxy/route-preprocessor.d.ts +37 -0
package/dist_ts/proxies/smart-proxy/route-preprocessor.js +103 -0
package/dist_ts/proxies/smart-proxy/rust-binary-locator.d.ts +23 -0
package/dist_ts/proxies/smart-proxy/rust-binary-locator.js +104 -0
package/dist_ts/proxies/smart-proxy/rust-metrics-adapter.d.ts +74 -0
package/dist_ts/proxies/smart-proxy/rust-metrics-adapter.js +146 -0
package/dist_ts/proxies/smart-proxy/rust-proxy-bridge.d.ts +49 -0
package/dist_ts/proxies/smart-proxy/rust-proxy-bridge.js +259 -0
package/dist_ts/proxies/smart-proxy/smart-proxy.d.ts +39 -157
package/dist_ts/proxies/smart-proxy/smart-proxy.js +224 -621
package/dist_ts/proxies/smart-proxy/socket-handler-server.d.ts +45 -0
package/dist_ts/proxies/smart-proxy/socket-handler-server.js +253 -0
package/dist_ts/routing/index.d.ts +1 -1
package/dist_ts/routing/index.js +3 -3
package/dist_ts/routing/models/http-types.d.ts +119 -4
package/dist_ts/routing/models/http-types.js +93 -5
package/package.json +1 -1
package/readme.md +444 -219
package/ts/00_commitinfo_data.ts +1 -1
package/ts/index.ts +4 -15
package/ts/protocols/common/fragment-handler.ts +4 -0
package/ts/proxies/index.ts +1 -12
package/ts/proxies/smart-proxy/index.ts +6 -13
package/ts/proxies/smart-proxy/models/interfaces.ts +6 -4
package/ts/proxies/smart-proxy/models/route-types.ts +0 -2
package/ts/proxies/smart-proxy/route-preprocessor.ts +122 -0
package/ts/proxies/smart-proxy/rust-binary-locator.ts +112 -0
package/ts/proxies/smart-proxy/rust-metrics-adapter.ts +161 -0
package/ts/proxies/smart-proxy/rust-proxy-bridge.ts +310 -0
package/ts/proxies/smart-proxy/smart-proxy.ts +282 -798
package/ts/proxies/smart-proxy/socket-handler-server.ts +279 -0
package/ts/routing/index.ts +2 -2
package/ts/routing/models/http-types.ts +147 -4
package/dist_ts/proxies/nftables-proxy/index.d.ts +0 -6
package/dist_ts/proxies/nftables-proxy/index.js +0 -7
package/dist_ts/proxies/nftables-proxy/models/errors.d.ts +0 -15
package/dist_ts/proxies/nftables-proxy/models/errors.js +0 -28
package/dist_ts/proxies/nftables-proxy/models/index.d.ts +0 -5
package/dist_ts/proxies/nftables-proxy/models/index.js +0 -6
package/dist_ts/proxies/nftables-proxy/models/interfaces.d.ts +0 -75
package/dist_ts/proxies/nftables-proxy/models/interfaces.js +0 -5
package/dist_ts/proxies/nftables-proxy/nftables-proxy.d.ts +0 -124
package/dist_ts/proxies/nftables-proxy/nftables-proxy.js +0 -1374
package/dist_ts/proxies/nftables-proxy/utils/index.d.ts +0 -9
package/dist_ts/proxies/nftables-proxy/utils/index.js +0 -12
package/dist_ts/proxies/nftables-proxy/utils/nft-command-executor.d.ts +0 -66
package/dist_ts/proxies/nftables-proxy/utils/nft-command-executor.js +0 -131
package/dist_ts/proxies/nftables-proxy/utils/nft-port-spec-normalizer.d.ts +0 -39
package/dist_ts/proxies/nftables-proxy/utils/nft-port-spec-normalizer.js +0 -112
package/dist_ts/proxies/nftables-proxy/utils/nft-rule-validator.d.ts +0 -59
package/dist_ts/proxies/nftables-proxy/utils/nft-rule-validator.js +0 -130
package/ts/proxies/http-proxy/connection-pool.ts +0 -228
package/ts/proxies/http-proxy/context-creator.ts +0 -145
package/ts/proxies/http-proxy/default-certificates.ts +0 -150
package/ts/proxies/http-proxy/function-cache.ts +0 -279
package/ts/proxies/http-proxy/handlers/index.ts +0 -5
package/ts/proxies/http-proxy/http-proxy.ts +0 -669
package/ts/proxies/http-proxy/http-request-handler.ts +0 -331
package/ts/proxies/http-proxy/http2-request-handler.ts +0 -255
package/ts/proxies/http-proxy/index.ts +0 -18
package/ts/proxies/http-proxy/models/http-types.ts +0 -148
package/ts/proxies/http-proxy/models/index.ts +0 -5
package/ts/proxies/http-proxy/models/types.ts +0 -125
package/ts/proxies/http-proxy/request-handler.ts +0 -878
package/ts/proxies/http-proxy/security-manager.ts +0 -413
package/ts/proxies/http-proxy/websocket-handler.ts +0 -581
package/ts/proxies/nftables-proxy/index.ts +0 -6
package/ts/proxies/nftables-proxy/models/errors.ts +0 -30
package/ts/proxies/nftables-proxy/models/index.ts +0 -5
package/ts/proxies/nftables-proxy/models/interfaces.ts +0 -94
package/ts/proxies/nftables-proxy/nftables-proxy.ts +0 -1754
package/ts/proxies/nftables-proxy/utils/index.ts +0 -38
package/ts/proxies/nftables-proxy/utils/nft-command-executor.ts +0 -162
package/ts/proxies/nftables-proxy/utils/nft-port-spec-normalizer.ts +0 -125
package/ts/proxies/nftables-proxy/utils/nft-rule-validator.ts +0 -156
package/ts/proxies/smart-proxy/acme-state-manager.ts +0 -112
package/ts/proxies/smart-proxy/cert-store.ts +0 -92
package/ts/proxies/smart-proxy/certificate-manager.ts +0 -895
package/ts/proxies/smart-proxy/connection-manager.ts +0 -809
package/ts/proxies/smart-proxy/http-proxy-bridge.ts +0 -213
package/ts/proxies/smart-proxy/metrics-collector.ts +0 -453
package/ts/proxies/smart-proxy/nftables-manager.ts +0 -271
package/ts/proxies/smart-proxy/port-manager.ts +0 -358
package/ts/proxies/smart-proxy/route-connection-handler.ts +0 -1712
package/ts/proxies/smart-proxy/route-orchestrator.ts +0 -297
package/ts/proxies/smart-proxy/security-manager.ts +0 -269
package/ts/proxies/smart-proxy/throughput-tracker.ts +0 -138
package/ts/proxies/smart-proxy/timeout-manager.ts +0 -196
package/ts/proxies/smart-proxy/tls-manager.ts +0 -171

package/dist_ts/proxies/smart-proxy/smart-proxy.d.ts CHANGED Viewed

@@ -1,208 +1,90 @@
 import * as plugins from '../../plugins.js';
-import { ConnectionManager } from './connection-manager.js';
-import { SecurityManager } from './security-manager.js';
-import { TlsManager } from './tls-manager.js';
-import { HttpProxyBridge } from './http-proxy-bridge.js';
-import { TimeoutManager } from './timeout-manager.js';
 import { SharedRouteManager as RouteManager } from '../../core/routing/route-manager.js';
-import { RouteConnectionHandler } from './route-connection-handler.js';
-import { NFTablesManager } from './nftables-manager.js';
-import { SmartCertManager, type ICertStatus } from './certificate-manager.js';
 import type { ISmartProxyOptions } from './models/interfaces.js';
 import type { IRouteConfig } from './models/route-types.js';
-import { AcmeStateManager } from './acme-state-manager.js';
-import { MetricsCollector } from './metrics-collector.js';
 import type { IMetrics } from './models/metrics-types.js';
 /**
- * SmartProxy - Pure route-based API
+ * SmartProxy - Rust-backed proxy engine with TypeScript configuration API.
  *
- * SmartProxy is a unified proxy system that works with routes to define connection handling behavior.
- * Each route contains matching criteria (ports, domains, etc.) and an action to take (forward, redirect, block).
- *
- * Configuration is provided through a set of routes, with each route defining:
- * - What to match (ports, domains, paths, client IPs)
- * - What to do with matching traffic (forward, redirect, block)
- * - How to handle TLS (passthrough, terminate, terminate-and-reencrypt)
- * - Security settings (IP restrictions, connection limits)
- * - Advanced options (timeout, headers, etc.)
+ * All networking (TCP, TLS, HTTP reverse proxy, connection management, security,
+ * NFTables) is handled by the Rust binary. TypeScript is only:
+ * - The npm module interface (types, route helpers)
+ * - The thin IPC wrapper (this class)
+ * - Socket-handler callback relay (for JS-defined handlers)
+ * - Certificate provisioning callbacks (certProvisionFunction)
  */
 export declare class SmartProxy extends plugins.EventEmitter {
-    private portManager;
-    private connectionLogger;
-    private isShuttingDown;
-    connectionManager: ConnectionManager;
-    securityManager: SecurityManager;
-    tlsManager: TlsManager;
-    httpProxyBridge: HttpProxyBridge;
-    timeoutManager: TimeoutManager;
+    settings: ISmartProxyOptions;
     routeManager: RouteManager;
-    routeConnectionHandler: RouteConnectionHandler;
-    nftablesManager: NFTablesManager;
-    certManager: SmartCertManager | null;
-    private globalChallengeRouteActive;
+    private bridge;
+    private preprocessor;
+    private socketHandlerServer;
+    private metricsAdapter;
     private routeUpdateLock;
-    acmeStateManager: AcmeStateManager;
-    metricsCollector: MetricsCollector;
-    private routeOrchestrator;
-    private portUsageMap;
-    /**
-     * Constructor for SmartProxy
-     *
-     * @param settingsArg Configuration options containing routes and other settings
-     * Routes define how traffic is matched and handled, with each route having:
-     * - match: criteria for matching traffic (ports, domains, paths, IPs)
-     * - action: what to do with matched traffic (forward, redirect, block)
-     *
-     * Example:
-     * ```ts
-     * const proxy = new SmartProxy({
-     *   routes: [
-     *     {
-     *       match: {
-     *         ports: 443,
-     *         domains: ['example.com', '*.example.com']
-     *       },
-     *       action: {
-     *         type: 'forward',
-     *         target: { host: '10.0.0.1', port: 8443 },
-     *         tls: { mode: 'passthrough' }
-     *       }
-     *     }
-     *   ],
-     *   defaults: {
-     *     target: { host: 'localhost', port: 8080 },
-     *     security: { ipAllowList: ['*'] }
-     *   }
-     * });
-     * ```
-     */
+    private stopping;
     constructor(settingsArg: ISmartProxyOptions);
     /**
-     * The settings for the SmartProxy
-     */
-    settings: ISmartProxyOptions;
-    /**
-     * Helper method to create and configure certificate manager
-     * This ensures consistent setup including the required ACME callback
-     */
-    private createCertificateManager;
-    /**
-     * Initialize certificate manager
-     */
-    private initializeCertificateManager;
-    /**
-     * Check if we have routes with static certificates
-     */
-    private hasStaticCertRoutes;
-    /**
-     * Start the proxy server with support for both configuration types
+     * Start the proxy.
+     * Spawns the Rust binary, configures socket relay if needed, sends routes, handles cert provisioning.
      */
     start(): Promise<void>;
     /**
-     * Extract domain configurations from routes for certificate provisioning
-     *
-     * Note: This method has been removed as we now work directly with routes
-     */
-    /**
-     * Stop the proxy server
+     * Stop the proxy.
      */
     stop(): Promise<void>;
     /**
-     * Updates the domain configurations for the proxy
-     *
-     * Note: This legacy method has been removed. Use updateRoutes instead.
-     */
-    updateDomainConfigs(): Promise<void>;
-    /**
-     * Verify the challenge route has been properly removed from routes
-     */
-    private verifyChallengeRouteRemoved;
-    /**
-     * Update routes with new configuration
-     *
-     * This method replaces the current route configuration with the provided routes.
-     * It also provisions certificates for routes that require TLS termination and have
-     * `certificate: 'auto'` set in their TLS configuration.
-     *
-     * @param newRoutes Array of route configurations to use
-     *
-     * Example:
-     * ```ts
-     * proxy.updateRoutes([
-     *   {
-     *     match: { ports: 443, domains: 'secure.example.com' },
-     *     action: {
-     *       type: 'forward',
-     *       target: { host: '10.0.0.1', port: 8443 },
-     *       tls: { mode: 'terminate', certificate: 'auto' }
-     *     }
-     *   }
-     * ]);
-     * ```
+     * Update routes atomically.
      */
     updateRoutes(newRoutes: IRouteConfig[]): Promise<void>;
     /**
-     * Manually provision a certificate for a route
+     * Provision a certificate for a named route.
      */
     provisionCertificate(routeName: string): Promise<void>;
     /**
-     * Force renewal of a certificate
+     * Force renewal of a certificate.
      */
     renewCertificate(routeName: string): Promise<void>;
     /**
-     * Get certificate status for a route
+     * Get certificate status for a route (async - calls Rust).
      */
-    getCertificateStatus(routeName: string): ICertStatus | undefined;
+    getCertificateStatus(routeName: string): Promise<any>;
     /**
-     * Get proxy metrics with clean API
-     *
-     * @returns IMetrics interface with grouped metrics methods
+     * Get the metrics interface.
      */
     getMetrics(): IMetrics;
     /**
-     * Validates if a domain name is valid for certificate issuance
+     * Get statistics (async - calls Rust).
      */
-    private isValidDomain;
+    getStatistics(): Promise<any>;
     /**
-     * Add a new listening port without changing the route configuration
-     *
-     * This allows you to add a port listener without updating routes.
-     * Useful for preparing to listen on a port before adding routes for it.
-     *
-     * @param port The port to start listening on
-     * @returns Promise that resolves when the port is listening
+     * Add a listening port at runtime.
      */
     addListeningPort(port: number): Promise<void>;
     /**
-     * Stop listening on a specific port without changing the route configuration
-     *
-     * This allows you to stop a port listener without updating routes.
-     * Useful for temporary maintenance or port changes.
-     *
-     * @param port The port to stop listening on
-     * @returns Promise that resolves when the port is closed
+     * Remove a listening port at runtime.
      */
     removeListeningPort(port: number): Promise<void>;
     /**
-     * Get a list of all ports currently being listened on
-     *
-     * @returns Array of port numbers
-     */
-    getListeningPorts(): number[];
-    /**
-     * Get statistics about current connections
+     * Get all currently listening ports (async - calls Rust).
      */
-    getStatistics(): any;
+    getListeningPorts(): Promise<number[]>;
     /**
-     * Get a list of eligible domains for ACME certificates
+     * Get eligible domains for ACME certificates (sync - reads local routes).
      */
     getEligibleDomainsForCertificates(): string[];
     /**
-     * Get NFTables status
+     * Get NFTables status (async - calls Rust).
      */
     getNfTablesStatus(): Promise<Record<string, any>>;
     /**
-     * Validate ACME configuration
+     * Build the Rust configuration object from TS settings.
      */
-    private validateAcmeConfiguration;
+    private buildRustConfig;
+    /**
+     * For routes with certificate: 'auto', call certProvisionFunction if set.
+     * If the callback returns a cert object, load it into Rust.
+     * If it returns 'http01', let Rust handle ACME.
+     */
+    private provisionCertificatesViaCallback;
+    private isValidDomain;
 }