username/s5p
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
64f3fedb9fe50dc42d8fb26368c8a00dd46a6de2
s5p/ROADMAP.md
user fa3621806d feat: add per-listener SOCKS5 server authentication (RFC 1929) 
Per-listener username/password auth via `auth:` config key. When set,
clients must negotiate method 0x02 and pass RFC 1929 subnegotiation;
no-auth (0x00) is rejected to prevent downgrade. Listeners without
`auth` keep current no-auth behavior.

Includes auth_failures metric, API integration (/status auth flag,
/config auth_users count without exposing passwords), config parsing
with YAML int coercion, integration tests (success, failure, method
rejection, no-auth unchanged), and documentation updates.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-21 17:03:03 +01:00

48 lines
1.6 KiB
Markdown
Raw Blame History

# s5p -- Roadmap
## v0.1.0 (current)
- [x] SOCKS5 server (CONNECT command)
- [x] Proxy chaining (SOCKS5, SOCKS4/4a, HTTP CONNECT)
- [x] Per-hop authentication
- [x] YAML config + CLI flags
- [x] DNS leak prevention
- [x] Container deployment (Alpine + podman-compose)
- [x] Graceful SIGTERM/SIGINT shutdown
- [x] cProfile support
- [x] Dynamic proxy source API integration
- [x] Weighted proxy selection (recency-based)
- [x] Per-proxy backoff (connection failure cooldown)
- [x] Stale proxy expiry (last_seen TTL)
- [x] Pool stats in periodic metrics log
- [x] Instant warm start (trust cached state, defer all health tests)
- [x] Static chain health check (pre-flight before pool tests)
- [x] SIGHUP hot config reload
- [x] Dead proxy reporting to source API
## v0.2.0
- [x] Built-in control API (runtime metrics, pool state, config reload)
- [x] Tor control port integration (circuit renewal via NEWNYM)
- [x] Metrics (connections/sec, bytes relayed, hop latency)
- [x] Multi-listener with per-port chain depth
- [x] Per-listener latency tracking
- [x] Dynamic health test concurrency (auto-scales to ~10% of pool)
- [x] Multi-Tor round-robin (`tor_nodes`)
- [x] Named proxy pools with per-listener assignment (`proxy_pools:`)
- [x] MITM source filter (`mitm: true/false` on pool sources)
## v0.3.0
- [ ] SOCKS5 server authentication (username/password)
- [ ] UDP ASSOCIATE support (SOCKS5 UDP relay)
- [ ] BIND support
- [ ] Chain randomization (random order, random subset)
## v1.0.0
- [ ] Stable API and config format
- [ ] Comprehensive test suite with mock proxies (integration tests done)
- [ ] Systemd service unit
- [ ] Performance benchmarks
Reference in New Issue View Git Blame Copy Permalink