David Osipov 6ffbc51fb0 security: harden handshake/masking flows and add adversarial regressions ...

- forward valid-TLS/invalid-MTProto clients to mask backend in both client paths\n- harden TLS validation against timing and clock edge cases\n- move replay tracking behind successful authentication to avoid cache pollution\n- tighten secret decoding and key-material handling paths\n- add dedicated security test modules for tls/client/handshake/masking\n- include production-path regression for ClientHandler fallback behavior

2026-03-16 20:04:41 +04:00

..

api

Inherited per-user unique IP limit

2026-03-15 12:43:31 +03:00

config

add support for data path option

2026-03-16 10:01:59 +03:00

crypto

ME NoWait Routing + Upstream Connbudget + PROXY Header t/o + allocation cuts

2026-03-06 03:58:08 +03:00

maestro

add support for data path option

2026-03-16 10:01:59 +03:00

network

Src-IP in ME Routing + more strict bind_addresses

2026-03-14 02:20:51 +03:00

protocol

security: harden handshake/masking flows and add adversarial regressions

2026-03-16 20:04:41 +04:00

proxy

security: harden handshake/masking flows and add adversarial regressions

2026-03-16 20:04:41 +04:00

stats

ME Writer Pick in Metrics+API

2026-03-08 03:06:45 +03:00

stream

ME Pool improvements

2026-03-01 03:36:00 +03:00

tls_front

TLS-F New Methods

2026-03-14 20:38:24 +03:00

transport

Configurable ME draining writer overflow threshold

2026-03-15 12:13:46 +03:00

util

fix: resolve clippy warnings

2026-02-24 05:57:53 +03:00

cli.rs

ME Pool Hardswap

2026-02-24 00:04:12 +03:00

error.rs

fix: resolve clippy warnings

2026-02-24 05:57:53 +03:00

ip_tracker.rs

Inherited per-user unique IP limit

2026-03-15 12:43:31 +03:00

main.rs

Maestro - Refactored Main Format

2026-03-09 11:05:46 +03:00

metrics.rs

Inherited per-user unique IP limit

2026-03-15 12:43:31 +03:00

startup.rs

Init in API

2026-03-07 16:18:09 +03:00