MasterHttpRelayVPN-RUST

aheh/MasterHttpRelayVPN-RUST

Fork 0

mirror of https://github.com/therealaleph/MasterHttpRelayVPN-RUST.git synced 2026-05-18 23:54:48 +03:00

Commit Graph

Author	SHA1	Message	Date
therealaleph	ea5c6ca9a4	bump to v0.2.0 + update README Features added since v0.1.0 (all live-tested against real Apps Script): - Response cache (FIFO+TTL, Cache-Control aware, 50MB cap) - Request coalescing for concurrent identical GETs - Auto-blacklist failing scripts on 429/quota (10m cooldown) - SNI-rewrite MITM tunnels for YouTube/googlevideo/doubleclick/etc. - Gzip response decoding (was breaking all requests in v0.1.0) - Firefox NSS cert install (best effort via certutil) - Periodic stats log (60s) - 'mhrv-rs test' subcommand (end-to-end relay probe) - 'mhrv-rs scan-ips' subcommand (28 Google IPs, sorted by latency) - Script IDs masked in logs Intentionally skipped with rationale (documented in README): - HTTP/2 multiplexing: coalesce+pool already parallelizes enough - Request batching: marginal gain over current async pool - Range-based parallel download: video bypasses via SNI-rewrite 25 tests pass. 2.5 MB stripped release binary.	2026-04-21 18:37:30 +03:00
therealaleph	f3e0d929fd	add SNI-rewrite MITM tunnels for YouTube/googlevideo + fix gzip decode SNI-rewrite tunnels (src/proxy_server.rs): - CONNECT to youtube.com / googlevideo.com / doubleclick / etc. now bypasses the Apps Script relay entirely and goes direct to the Google edge IP with SNI=front_domain. - Accepts browser TLS with our MITM cert, opens outbound TLS to config.google_ip with SNI=config.front_domain, bridges decrypted bytes. - Matches Python's _do_sni_rewrite_tunnel behavior. Faster than relay for large streams (video). - Also respects config.hosts override map (custom IP per suffix). gzip decode fix (src/domain_fronter.rs): - Apps Script outer response is gzipped. Previous stub always failed, causing 'non-utf8 json' errors. Swapped in flate2::GzDecoder. - Verified end-to-end: HTTP and HTTPS requests through apps_script relay succeed and return real Google IPs.	2026-04-21 18:27:49 +03:00
therealaleph	2dd8be72ca	initial release: Rust port of MasterHttpRelayVPN apps_script mode Faithful port of @masterking32's MasterHttpRelayVPN. All credit for the original idea, protocol, and Python implementation goes to him. Implemented: - Local HTTP proxy (CONNECT + plain HTTP) - MITM with on-the-fly per-domain cert generation via rcgen - CA auto-install for macOS / Linux / Windows - Apps Script JSON relay, protocol-compatible with Code.gs - TLS client with SNI spoofing (connect to Google IP, SNI=www.google.com, inner HTTP Host=script.google.com) - Connection pooling (45s TTL, max 20 idle) - Multi-script round-robin for higher quota - Header filtering (strips connection-specific + brotli) - Config-driven, JSON schema matches Python version Deferred (TODOs in code): - HTTP/2 multiplexing - Request batching / coalescing / response cache - Range-based parallel download - SNI-rewrite tunnels for YouTube/googlevideo - Firefox NSS cert install - domain_fronting / google_fronting / custom_domain modes (mostly broken post-Cloudflare 2024, not a priority) 13 unit tests pass, 2.4MB stripped release binary.	2026-04-21 18:03:03 +03:00

Author

SHA1

Message

Date

therealaleph

ea5c6ca9a4

bump to v0.2.0 + update README

Features added since v0.1.0 (all live-tested against real Apps Script):
- Response cache (FIFO+TTL, Cache-Control aware, 50MB cap)
- Request coalescing for concurrent identical GETs
- Auto-blacklist failing scripts on 429/quota (10m cooldown)
- SNI-rewrite MITM tunnels for YouTube/googlevideo/doubleclick/etc.
- Gzip response decoding (was breaking all requests in v0.1.0)
- Firefox NSS cert install (best effort via certutil)
- Periodic stats log (60s)
- 'mhrv-rs test' subcommand (end-to-end relay probe)
- 'mhrv-rs scan-ips' subcommand (28 Google IPs, sorted by latency)
- Script IDs masked in logs

Intentionally skipped with rationale (documented in README):
- HTTP/2 multiplexing: coalesce+pool already parallelizes enough
- Request batching: marginal gain over current async pool
- Range-based parallel download: video bypasses via SNI-rewrite

25 tests pass. 2.5 MB stripped release binary.

2026-04-21 18:37:30 +03:00

therealaleph

f3e0d929fd

add SNI-rewrite MITM tunnels for YouTube/googlevideo + fix gzip decode

SNI-rewrite tunnels (src/proxy_server.rs):
- CONNECT to youtube.com / googlevideo.com / doubleclick / etc. now bypasses
  the Apps Script relay entirely and goes direct to the Google edge IP
  with SNI=front_domain.
- Accepts browser TLS with our MITM cert, opens outbound TLS to
  config.google_ip with SNI=config.front_domain, bridges decrypted bytes.
- Matches Python's _do_sni_rewrite_tunnel behavior. Faster than relay for
  large streams (video).
- Also respects config.hosts override map (custom IP per suffix).

gzip decode fix (src/domain_fronter.rs):
- Apps Script outer response is gzipped. Previous stub always failed,
  causing 'non-utf8 json' errors. Swapped in flate2::GzDecoder.
- Verified end-to-end: HTTP and HTTPS requests through apps_script
  relay succeed and return real Google IPs.

2026-04-21 18:27:49 +03:00

therealaleph

2dd8be72ca

initial release: Rust port of MasterHttpRelayVPN apps_script mode

Faithful port of @masterking32's MasterHttpRelayVPN. All credit for
the original idea, protocol, and Python implementation goes to him.

Implemented:
- Local HTTP proxy (CONNECT + plain HTTP)
- MITM with on-the-fly per-domain cert generation via rcgen
- CA auto-install for macOS / Linux / Windows
- Apps Script JSON relay, protocol-compatible with Code.gs
- TLS client with SNI spoofing (connect to Google IP, SNI=www.google.com,
  inner HTTP Host=script.google.com)
- Connection pooling (45s TTL, max 20 idle)
- Multi-script round-robin for higher quota
- Header filtering (strips connection-specific + brotli)
- Config-driven, JSON schema matches Python version

Deferred (TODOs in code):
- HTTP/2 multiplexing
- Request batching / coalescing / response cache
- Range-based parallel download
- SNI-rewrite tunnels for YouTube/googlevideo
- Firefox NSS cert install
- domain_fronting / google_fronting / custom_domain modes
  (mostly broken post-Cloudflare 2024, not a priority)

13 unit tests pass, 2.4MB stripped release binary.

2026-04-21 18:03:03 +03:00

1 2

53 Commits