UNPKG

@push.rocks/smartproxy

Version:

A powerful proxy package that effectively handles high traffic, with features such as SSL/TLS support, port proxying, WebSocket handling, dynamic routing with authentication options, and automatic ACME certificate management.

code.foss.global/push.rocks/smartproxy

150 lines (149 loc) 6.87 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
import * as net from 'net'; /** * TlsAlert class for managing TLS alert messages */ export declare class TlsAlert { static readonly LEVEL_WARNING = 1; static readonly LEVEL_FATAL = 2; static readonly CLOSE_NOTIFY = 0; static readonly UNEXPECTED_MESSAGE = 10; static readonly BAD_RECORD_MAC = 20; static readonly DECRYPTION_FAILED = 21; static readonly RECORD_OVERFLOW = 22; static readonly DECOMPRESSION_FAILURE = 30; static readonly HANDSHAKE_FAILURE = 40; static readonly NO_CERTIFICATE = 41; static readonly BAD_CERTIFICATE = 42; static readonly UNSUPPORTED_CERTIFICATE = 43; static readonly CERTIFICATE_REVOKED = 44; static readonly CERTIFICATE_EXPIRED = 47; static readonly CERTIFICATE_UNKNOWN = 48; static readonly ILLEGAL_PARAMETER = 47; static readonly UNKNOWN_CA = 48; static readonly ACCESS_DENIED = 49; static readonly DECODE_ERROR = 50; static readonly DECRYPT_ERROR = 51; static readonly EXPORT_RESTRICTION = 60; static readonly PROTOCOL_VERSION = 70; static readonly INSUFFICIENT_SECURITY = 71; static readonly INTERNAL_ERROR = 80; static readonly INAPPROPRIATE_FALLBACK = 86; static readonly USER_CANCELED = 90; static readonly NO_RENEGOTIATION = 100; static readonly MISSING_EXTENSION = 109; static readonly UNSUPPORTED_EXTENSION = 110; static readonly CERTIFICATE_REQUIRED = 111; static readonly UNRECOGNIZED_NAME = 112; static readonly BAD_CERTIFICATE_STATUS_RESPONSE = 113; static readonly BAD_CERTIFICATE_HASH_VALUE = 114; static readonly UNKNOWN_PSK_IDENTITY = 115; static readonly CERTIFICATE_REQUIRED_1_3 = 116; static readonly NO_APPLICATION_PROTOCOL = 120; /** * Create a TLS alert buffer with the specified level and description code * * @param level Alert level (warning or fatal) * @param description Alert description code * @param tlsVersion TLS version bytes (default is TLS 1.2: 0x0303) * @returns Buffer containing the TLS alert message */ static create(level: number, description: number, tlsVersion?: [number, number]): Buffer; /** * Create a warning-level TLS alert * * @param description Alert description code * @returns Buffer containing the warning-level TLS alert message */ static createWarning(description: number): Buffer; /** * Create a fatal-level TLS alert * * @param description Alert description code * @returns Buffer containing the fatal-level TLS alert message */ static createFatal(description: number): Buffer; /** * Send a TLS alert to a socket and optionally close the connection * * @param socket The socket to send the alert to * @param level Alert level (warning or fatal) * @param description Alert description code * @param closeAfterSend Whether to close the connection after sending the alert * @param closeDelay Milliseconds to wait before closing the connection (default: 200ms) * @returns Promise that resolves when the alert has been sent */ static send(socket: net.Socket, level: number, description: number, closeAfterSend?: boolean, closeDelay?: number): Promise<void>; /** * Pre-defined TLS alert messages */ static readonly alerts: { closeNotify: Buffer<ArrayBufferLike>; unsupportedExtension: Buffer<ArrayBufferLike>; certificateRequired: Buffer<ArrayBufferLike>; unrecognizedName: Buffer<ArrayBufferLike>; noRenegotiation: Buffer<ArrayBufferLike>; userCanceled: Buffer<ArrayBufferLike>; certificateExpiredWarning: Buffer<ArrayBufferLike>; handshakeFailureWarning: Buffer<ArrayBufferLike>; insufficientSecurityWarning: Buffer<ArrayBufferLike>; unexpectedMessage: Buffer<ArrayBufferLike>; badRecordMac: Buffer<ArrayBufferLike>; recordOverflow: Buffer<ArrayBufferLike>; handshakeFailure: Buffer<ArrayBufferLike>; badCertificate: Buffer<ArrayBufferLike>; certificateExpired: Buffer<ArrayBufferLike>; certificateUnknown: Buffer<ArrayBufferLike>; illegalParameter: Buffer<ArrayBufferLike>; unknownCA: Buffer<ArrayBufferLike>; accessDenied: Buffer<ArrayBufferLike>; decodeError: Buffer<ArrayBufferLike>; decryptError: Buffer<ArrayBufferLike>; protocolVersion: Buffer<ArrayBufferLike>; insufficientSecurity: Buffer<ArrayBufferLike>; internalError: Buffer<ArrayBufferLike>; unrecognizedNameFatal: Buffer<ArrayBufferLike>; }; /** * Utility method to send a warning-level unrecognized_name alert * Specifically designed for SNI issues to encourage the client to retry with SNI * * @param socket The socket to send the alert to * @returns Promise that resolves when the alert has been sent */ static sendSniRequired(socket: net.Socket): Promise<void>; /** * Utility method to send a close_notify alert and close the connection * * @param socket The socket to send the alert to * @param closeDelay Milliseconds to wait before closing the connection (default: 200ms) * @returns Promise that resolves when the alert has been sent and the connection closed */ static sendCloseNotify(socket: net.Socket, closeDelay?: number): Promise<void>; /** * Utility method to send a certificate_expired alert to force new TLS session * * @param socket The socket to send the alert to * @param fatal Whether to send as a fatal alert (default: false) * @param closeAfterSend Whether to close the connection after sending the alert (default: true) * @param closeDelay Milliseconds to wait before closing the connection (default: 200ms) * @returns Promise that resolves when the alert has been sent */ static sendCertificateExpired(socket: net.Socket, fatal?: boolean, closeAfterSend?: boolean, closeDelay?: number): Promise<void>; /** * Send a sequence of alerts to force SNI from clients * This combines multiple alerts to ensure maximum browser compatibility * * @param socket The socket to send the alerts to * @returns Promise that resolves when all alerts have been sent */ static sendForceSniSequence(socket: net.Socket): Promise<void>; /** * Send a fatal level alert that immediately terminates the connection * * @param socket The socket to send the alert to * @param description Alert description code * @param closeDelay Milliseconds to wait before closing the connection (default: 100ms) * @returns Promise that resolves when the alert has been sent and the connection closed */ static sendFatalAndClose(socket: net.Socket, description: number, closeDelay?: number): Promise<void>; }