feat: add https proxy server implementation

[bliuchak]

This PR represents simplification of #602. It contains changes related only to HTTPS proxy server support.

Scope:

• https proxy server + backward compatibility

Out Of Scope (should be fixed separately):

• TLS overhead. It's not included in connection statistic.
• HTTPS upstream proxy. By default they should work out of the box, however we're missing test coverage for them. Also TLS overhead is not included in connection statistic when HTTPS upstream proxy is used.
• IPv6 tests with HTTPS proxy. In general IPv6 with HTTPS proxy should work with no issue, however I can't proof it in tests due to limitation of got-scrapting.

Note: I might miss some edge cases for HTTPS server proxy, however I think that current coverage is good enough and covers core logic fully (80/20) and is backward compatible (HTTP proxy server tests pass).

[jirimoravcik]

Thanks for the PR, looks great, had a few comments

[jirimoravcik]

(opt) This file would benefit from a split into multiple ones.

[tobice]

Yep, you already have https-stress-test.js, so maybe the new nice https scenarios could be stand-alone files as well?

[bliuchak]

Fine, I'll take a look at it.

[tobice]

Honestly I have no idea how proxy-chain works and my general knowledge of proxies is still limited 😄 So I'm leaving the actual functionality review to Jirka and Ludvík.

From my PoV the application code change is small, well documented and easy to read. No concerns there.

The tests, especially the new ones, would benefit from splitting into files. Also one scenario caught my attention due to its nested structure. I'm not sure why that's needed.

Finally, I'd expand on the PR description. You can e.g. add there the nice diagram from the original PR.

[tobice]

I'm a bit confused by these descriptions. Is this one even correct? Shouldn't it be from client to proxy?

Also Bytes received from client to proxy. is not very good English, which further complicates the readability.

I'd do:

• Bytes sent by client to proxy
• Bytes received by proxy from client

This should be clear and unambiguous.

[tobice]

Suggested change

	const secureDefaults: https.ServerOptions = {
	const effectiveOptions: https.ServerOptions = {

(nit) IMHO these are no longer defaults.

[tobice]

Suggested change

	const HTTPS_DEFAULTS = {
	const HTTPS_DEFAULT_OPTIONS = {

(opt) Just more consistent naming across the code...

[tobice]

What happens if the server is HTTPs but somebody tries to establish an insecure connection? Is that even possible? 🤔

[tobice]

Suggested change

	const TUNNELS = 100;
	const TUNNEL_COUNT = 100;

(opt)(nit)

Dtto below for REQUESTS.

[tobice]

(opt) The describe has only one it. Maybe you can inline it?

[tobice]

Why not make the test async and then do await server.listen()? 🤔 In general the structure of this test is super weird and confusing with all the nesting and relying on done.

Maybe you can promisify the socket communication instead to keep the structure more flat?

await server.listen();

const badSocked = tls.connect({ ... });

await new Promise((resolve) => badSocket.on('close', resolve));
await promiseDelay(1000); // We have utility like this somewhere

(I can see you are doing that below.)

[tobice]

Yep, you already have https-stress-test.js, so maybe the new nice https scenarios could be stand-alone files as well?