mirror of https://github.com/telemt/telemt.git
5a16e68487
- Enforce TLS record length constraints in client handling to comply with RFC 8446, rejecting records outside the range of 512 to 16,384 bytes. - Update security tests to validate behavior for oversized and undersized TLS records, ensuring they are correctly masked or rejected. - Introduce new tests to verify the handling of TLS records in both generic and client handler pipelines. - Refactor handshake logic to enforce mode restrictions based on transport type, preventing misuse of secure tags. - Add tests for nonce generation and encryption consistency, ensuring correct behavior for different configurations. - Improve masking tests to ensure proper logging and detection of client types, including SSH and unknown probes. |
||
|---|---|---|
| .. | ||
| api | ||
| config | ||
| crypto | ||
| maestro | ||
| network | ||
| protocol | ||
| proxy | ||
| stats | ||
| stream | ||
| tls_front | ||
| transport | ||
| util | ||
| cli.rs | ||
| error.rs | ||
| ip_tracker.rs | ||
| main.rs | ||
| metrics.rs | ||
| startup.rs | ||