ospab
f779404e0f
New CLI client for Linux with TUN interface support: - Interactive setup wizard with profile management - Connect/disconnect commands with root privilege check - Status monitoring (interface stats, traffic counters) - Test connection (handshake verification) - Profile management (add/remove/set-default) - Anti-VM detection (production mode only) - Stealth mode (TLS mimicry, geo-SNI selection) Features: - Static musl binary (2.0 MB) - universal Linux - Config storage: ~/.config/ostp/profiles.json - TUN interface: ostp0 (10.X.Y.Z) - Security: libc::geteuid() root check, ostp-guard integration - Error handling: graceful disconnect on Ctrl+C Commands: - ostp-client-linux setup # Interactive wizard - ostp-client-linux connect --profile default - ostp-client-linux connect --server 1.2.3.4:443 --psk HEX - ostp-client-linux status # Show connection info - ostp-client-linux disconnect # Kill running client - ostp-client-linux profiles list # List saved profiles - ostp-client-linux test --server X --psk Y Distribution updates: - Added ostp-client-linux (2.0 MB) to linux-x64 package - Updated SHA256SUMS with all 3 binaries - Updated README.md with client installation guide - Rebuilt ostp-server-linux-x64.tar.gz (6.86 MB total) Note: TUN interface and traffic relay are TODO (placeholders)
62 lines
2.4 KiB
TOML
62 lines
2.4 KiB
TOML
[workspace]
|
|
resolver = "2"
|
|
members = ["ostp", "oncp", "osn", "osds", "ostp-server", "ostp-client", "ostp-client-linux", "ostp-guard", "oncp-master", "ostp-daemon", "ostp-installer", "ostp-gui"]
|
|
|
|
[workspace.package]
|
|
version = "0.1.0"
|
|
edition = "2024"
|
|
authors = ["ospab.team"]
|
|
license = "Proprietary"
|
|
|
|
# ============================================================================
|
|
# HARDENED RELEASE PROFILE - Anti-Reverse Engineering
|
|
# ============================================================================
|
|
[profile.release]
|
|
lto = true # Link-Time Optimization - merges all code, removes boundaries
|
|
codegen-units = 1 # Single codegen unit - better optimization, harder to analyze
|
|
panic = "abort" # No unwinding info - smaller binary, no stack traces
|
|
strip = "symbols" # Remove ALL symbols - no function names in binary
|
|
opt-level = 3 # Maximum optimization
|
|
debug = false # No debug info
|
|
debug-assertions = false # No debug assertions
|
|
overflow-checks = false # No overflow checks (performance + less obvious control flow)
|
|
incremental = false # Reproducible builds
|
|
|
|
# Distribution build - even more aggressive
|
|
[profile.dist]
|
|
inherits = "release"
|
|
lto = "fat" # Full LTO across all crates
|
|
strip = "debuginfo" # Alternative stripping
|
|
|
|
[workspace.dependencies]
|
|
tokio = { version = "1.40", features = ["full"] }
|
|
ring = "0.17"
|
|
chacha20poly1305 = "0.10"
|
|
x25519-dalek = { version = "2.0", features = ["static_secrets"] }
|
|
bytes = "1.7"
|
|
rusqlite = { version = "0.32", features = ["bundled"] }
|
|
anyhow = "1.0"
|
|
thiserror = "2.0"
|
|
tracing = "0.1"
|
|
tracing-subscriber = { version = "0.3", features = ["env-filter"] }
|
|
uuid = { version = "1.10", features = ["v4", "serde"] }
|
|
serde = { version = "1.0", features = ["derive"] }
|
|
serde_json = "1.0"
|
|
hmac = "0.12"
|
|
sha2 = "0.10"
|
|
rand = "0.8"
|
|
chrono = { version = "0.4", features = ["serde"] }
|
|
clap = { version = "4.5", features = ["derive", "env"] }
|
|
hex = "0.4"
|
|
dialoguer = "0.11"
|
|
console = "0.15"
|
|
axum = "0.7"
|
|
tower = "0.4"
|
|
tower-http = { version = "0.5", features = ["cors", "trace"] }
|
|
hyper = { version = "1.0", features = ["full"] }
|
|
base64 = "0.21"
|
|
qrcode = "0.14"
|
|
image = { version = "0.24", default-features = false, features = ["png"] }
|
|
openssl = { version = "0.10", features = ["vendored"] }
|
|
reqwest = { version = "0.11", default-features = false, features = ["json"] }
|