username/s5p
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
64f3fedb9fe50dc42d8fb26368c8a00dd46a6de2
s5p/ROADMAP.md
user fa3621806d feat: add per-listener SOCKS5 server authentication (RFC 1929) 
Per-listener username/password auth via `auth:` config key. When set,
clients must negotiate method 0x02 and pass RFC 1929 subnegotiation;
no-auth (0x00) is rejected to prevent downgrade. Listeners without
`auth` keep current no-auth behavior.

Includes auth_failures metric, API integration (/status auth flag,
/config auth_users count without exposing passwords), config parsing
with YAML int coercion, integration tests (success, failure, method
rejection, no-auth unchanged), and documentation updates.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-21 17:03:03 +01:00

1.6 KiB
Raw Blame History

s5p -- Roadmap

v0.1.0 (current)

  • SOCKS5 server (CONNECT command)
  • Proxy chaining (SOCKS5, SOCKS4/4a, HTTP CONNECT)
  • Per-hop authentication
  • YAML config + CLI flags
  • DNS leak prevention
  • Container deployment (Alpine + podman-compose)
  • Graceful SIGTERM/SIGINT shutdown
  • cProfile support
  • Dynamic proxy source API integration
  • Weighted proxy selection (recency-based)
  • Per-proxy backoff (connection failure cooldown)
  • Stale proxy expiry (last_seen TTL)
  • Pool stats in periodic metrics log
  • Instant warm start (trust cached state, defer all health tests)
  • Static chain health check (pre-flight before pool tests)
  • SIGHUP hot config reload
  • Dead proxy reporting to source API

v0.2.0

  • Built-in control API (runtime metrics, pool state, config reload)
  • Tor control port integration (circuit renewal via NEWNYM)
  • Metrics (connections/sec, bytes relayed, hop latency)
  • Multi-listener with per-port chain depth
  • Per-listener latency tracking
  • Dynamic health test concurrency (auto-scales to ~10% of pool)
  • Multi-Tor round-robin (tor_nodes)
  • Named proxy pools with per-listener assignment (proxy_pools:)
  • MITM source filter (mitm: true/false on pool sources)

v0.3.0

  • SOCKS5 server authentication (username/password)
  • UDP ASSOCIATE support (SOCKS5 UDP relay)
  • BIND support
  • Chain randomization (random order, random subset)

v1.0.0

  • Stable API and config format
  • Comprehensive test suite with mock proxies (integration tests done)
  • Systemd service unit
  • Performance benchmarks
Reference in New Issue View Git Blame Copy Permalink