refactoring and minor improvements

Author: devnullvoid

.github/workflows/release.yml

@@ -31,10 +31,27 @@ jobs:
           GOOS=windows GOARCH=amd64 go build -o dist/reverse-soxy-windows-amd64.exe ./cmd/reverse-soxy
           GOOS=windows GOARCH=arm64 go build -o dist/reverse-soxy-windows-arm64.exe ./cmd/reverse-soxy
 
+      - name: Zip binaries
+        run: |
+          cd dist
+          zip reverse-soxy-linux-amd64.zip reverse-soxy-linux-amd64
+          zip reverse-soxy-linux-arm64.zip reverse-soxy-linux-arm64
+          zip reverse-soxy-darwin-amd64.zip reverse-soxy-darwin-amd64
+          zip reverse-soxy-darwin-arm64.zip reverse-soxy-darwin-arm64
+          zip reverse-soxy-windows-amd64.zip reverse-soxy-windows-amd64.exe
+          zip reverse-soxy-windows-arm64.zip reverse-soxy-windows-arm64.exe
+
+      - name: Generate checksum file
+        run: |
+          cd dist
+          sha256sum *.zip > checksums
+
       - name: Create Release
         id: create_release
         uses: softprops/action-gh-release@v1
         with:
-          files: dist/*
+          files: |
+            dist/*.zip
+            dist/checksums
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.gitignore

@@ -2,5 +2,4 @@
 /build/
 
 # ignore backup files
-*.bak
-go.sum
+*.bak

Makefile

@@ -0,0 +1,32 @@
+# Makefile for reverse-soxy
+
+APP_NAME := reverse-soxy
+BUILD_DIR := build
+
+.PHONY: all clean linux_amd64 linux_arm64 darwin_amd64 darwin_arm64 windows_amd64 windows_arm64
+
+all: linux_amd64 linux_arm64 darwin_amd64 darwin_arm64 windows_amd64 windows_arm64
+
+$(BUILD_DIR):
+	mkdir -p $(BUILD_DIR)
+
+linux_amd64: | $(BUILD_DIR)
+	GOOS=linux GOARCH=amd64 go build -ldflags="-s -w" -o $(BUILD_DIR)/$(APP_NAME)-linux-amd64 ./cmd/reverse-soxy
+
+linux_arm64: | $(BUILD_DIR)
+	GOOS=linux GOARCH=arm64 go build -ldflags="-s -w" -o $(BUILD_DIR)/$(APP_NAME)-linux-arm64 ./cmd/reverse-soxy
+
+darwin_amd64: | $(BUILD_DIR)
+	GOOS=darwin GOARCH=amd64 go build -ldflags="-s -w" -o $(BUILD_DIR)/$(APP_NAME)-darwin-amd64 ./cmd/reverse-soxy
+
+darwin_arm64: | $(BUILD_DIR)
+	GOOS=darwin GOARCH=arm64 go build -ldflags="-s -w" -o $(BUILD_DIR)/$(APP_NAME)-darwin-arm64 ./cmd/reverse-soxy
+
+windows_amd64: | $(BUILD_DIR)
+	GOOS=windows GOARCH=amd64 go build -ldflags="-s -w" -o $(BUILD_DIR)/$(APP_NAME)-windows-amd64.exe ./cmd/reverse-soxy
+
+windows_arm64: | $(BUILD_DIR)
+	GOOS=windows GOARCH=arm64 go build -ldflags="-s -w" -o $(BUILD_DIR)/$(APP_NAME)-windows-arm64.exe ./cmd/reverse-soxy
+
+clean:
+	rm -rf $(BUILD_DIR)

cmd/reverse-soxy/main.go

@@ -29,6 +29,7 @@ func main() {
 	cfgPath := flag.String("config", "", "YAML config file path")
 	modeFlag := flag.String("mode", "", "Component mode: proxy (default), agent, relay")
 	relayListenPort := flag.Int("relay-listen-port", 9000, "Port for both Proxy registrations and Agent tunnels (relay mode)")
+	retryFlag := flag.Int("retry", 10, "Maximum number of retries")
 	registerFlag := flag.Bool("register", false, "Proxy registers its availability to Relay server")
 	relayAddr := flag.String("relay-addr", "", "Relay server address (IP:port) for registration or agent dialing")
 	flag.Parse()
@@ -42,11 +43,6 @@ func main() {
 		os.Exit(0)
 	}()
 
-	// ensure shared secret is provided
-	if *secretFlag == "" {
-		logger.Fatal("Shared secret required: use -secret flag or config")
-	}
-
 	// Optional YAML config override
 	if *cfgPath != "" {
 		data, err := os.ReadFile(*cfgPath)
@@ -57,20 +53,52 @@ func main() {
 			SocksListenAddr  string `yaml:"socks_listen_addr"`
 			TunnelListenPort int    `yaml:"tunnel_listen_port"`
 			TunnelAddr       string `yaml:"tunnel_addr"`
+			MaxRetries       int    `yaml:"max_retries"`
+			Secret           string `yaml:"secret"`
+			RelayListenPort  int    `yaml:"relay_listen_port"`
+			RelayAddr        string `yaml:"relay_addr"`
 		}
 		if err := yaml.Unmarshal(data, &cfg); err != nil {
 			logger.Fatalf("Failed to parse config: %v", err)
 		}
-		if cfg.SocksListenAddr != "" {
+
+		// Apply config values only if CLI flags are at their defaults
+		if *socksAddr == "127.0.0.1:1080" && cfg.SocksListenAddr != "" {
 			*socksAddr = cfg.SocksListenAddr
 		}
-		if cfg.TunnelListenPort != 0 {
+		if *tunnelPort == 9000 && cfg.TunnelListenPort != 0 {
 			*tunnelPort = cfg.TunnelListenPort
 		}
-		if cfg.TunnelAddr != "" {
+		if *tunnelAddr == "" && cfg.TunnelAddr != "" {
 			*tunnelAddr = cfg.TunnelAddr
 		}
-		logger.Debug("Loaded config from %s: socks_listen_addr=%s, tunnel_listen_port=%d, tunnel_addr=%s", *cfgPath, cfg.SocksListenAddr, cfg.TunnelListenPort, cfg.TunnelAddr)
+		if *secretFlag == "" && cfg.Secret != "" {
+			*secretFlag = cfg.Secret
+		}
+		if *relayListenPort == 9000 && cfg.RelayListenPort != 0 {
+			*relayListenPort = cfg.RelayListenPort
+		}
+		if *relayAddr == "" && cfg.RelayAddr != "" {
+			*relayAddr = cfg.RelayAddr
+		}
+		if *retryFlag == 10 && cfg.MaxRetries != 0 {
+			*retryFlag = cfg.MaxRetries
+		}
+
+		logger.Debug("Loaded config from %s: socks_listen_addr=%s, tunnel_listen_port=%d, tunnel_addr=%s, secret=%s, relay_listen_port=%d, relay_addr=%s, max_retries=%d",
+			*cfgPath,
+			cfg.SocksListenAddr,
+			cfg.TunnelListenPort,
+			cfg.TunnelAddr,
+			cfg.Secret,
+			cfg.RelayListenPort,
+			cfg.RelayAddr,
+			cfg.MaxRetries)
+	}
+
+	// ensure shared secret is provided
+	if *secretFlag == "" {
+		logger.Fatal("Shared secret required: use -secret flag or config")
 	}
 
 	// validate tunnelAddr if provided
@@ -103,10 +131,10 @@ func main() {
 		proxy.RunProxyRelay(*relayAddr, *socksAddr, *secretFlag)
 	} else if *relayAddr != "" {
 		// agent via relay
-		proxy.RunRelayAgent(*relayAddr, *secretFlag)
+		proxy.RunAgentRelay(*relayAddr, *secretFlag, *retryFlag)
 	} else if *tunnelAddr != "" {
 		// direct agent
-		proxy.RunAgent(*tunnelAddr, *secretFlag)
+		proxy.RunAgent(*tunnelAddr, *secretFlag, *retryFlag)
 	} else {
 		proxy.RunProxy(*socksAddr, *tunnelPort, *secretFlag)
 	}

internal/proxy/agent.go

@@ -21,16 +21,82 @@ var (
 	sessionsMap = make(map[uint32]*session)
 )
 
-// RunAgent initiates a secure connection to the proxy with authentication/encryption
-func RunAgent(proxyAddr, secret string) {
-	// continuously dial and maintain tunnel
+// DefaultMaxRetries is the default number of times to retry connecting before giving up
+const DefaultMaxRetries = 10
+
+// RunAgentRelay connects to the proxy via a relay server
+func RunAgentRelay(relayAddr, secret string, maxRetries int) {
+	// Use default value if maxRetries is not positive
+	if maxRetries <= 0 {
+		maxRetries = DefaultMaxRetries
+	}
+
+	retryCount := 0
+
 	for {
+		rawConn, err := net.Dial("tcp", relayAddr)
+		if err != nil {
+			retryCount++
+			logger.Error("AgentRelay dial failed: %v (attempt %d/%d)", err, retryCount, maxRetries)
+			if retryCount >= maxRetries {
+				logger.Info("Maximum retry attempts (%d) reached, exiting", maxRetries)
+				return
+			}
+			time.Sleep(5 * time.Second)
+			continue
+		}
+		// send fixed 8-byte header
+		hdr := []byte("AGENT   ")
+		if _, err := rawConn.Write(hdr); err != nil {
+			rawConn.Close()
+			logger.Error("AgentRelay header send error: %v", err)
+			time.Sleep(5 * time.Second)
+			continue
+		}
+		// secure handshake
+		secureConn, err := NewSecureClientConn(rawConn, secret)
+		if err != nil {
+			logger.Error("AgentRelay handshake failed: %v", err)
+			rawConn.Close()
+			time.Sleep(5 * time.Second)
+			continue
+		}
+		logger.Info("Agent connected via relay %s", relayAddr)
+		// handle tunnel until error
+		handleTunnelReadsServer(secureConn)
+		secureConn.Close()
+		time.Sleep(5 * time.Second)
+	}
+}
+
+// RunAgent initiates a direct secure connection to the proxy with authentication/encryption
+// If maxRetries <= 0, it will use DefaultMaxRetries
+func RunAgent(proxyAddr, secret string, maxRetries int) {
+	// Use default value if maxRetries is not positive
+	if maxRetries <= 0 {
+		maxRetries = DefaultMaxRetries
+	}
+
+	retryCount := 0
+
+	// continuously dial and maintain tunnel
+	for retryCount < maxRetries {
 		rawConn, err := net.Dial("tcp", proxyAddr)
 		if err != nil {
-			logger.Error("Agent connection failed: %v", err)
+			retryCount++
+			logger.Error("Agent connection failed: %v (attempt %d/%d)", err, retryCount, maxRetries)
+
+			if retryCount >= maxRetries {
+				logger.Info("Maximum retry attempts (%d) reached, exiting", maxRetries)
+				return
+			}
+
 			time.Sleep(5 * time.Second)
 			continue
 		}
+
+		// Reset retry counter on successful connection
+		retryCount = 0
 		// TCP optimizations
 		if tcpConn, ok := rawConn.(*net.TCPConn); ok {
 			tcpConn.SetNoDelay(true)
@@ -51,6 +117,15 @@ func RunAgent(proxyAddr, secret string) {
 		logger.Info("Agent disconnected, retrying in 5s")
 		secureConn.Close()
 		time.Sleep(5 * time.Second)
+
+		// Increment retry counter for disconnection
+		retryCount++
+		logger.Info("Reconnection attempt %d/%d", retryCount, maxRetries)
+
+		if retryCount >= maxRetries {
+			logger.Info("Maximum retry attempts (%d) reached, exiting", maxRetries)
+			return
+		}
 	}
 }