Skip to content

Apply cipher suite fix for Reddit TLS fingerprinting and add GHCR publishing #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mitchross merged 10 commits into from
Dec 5, 2025
Merged

Apply cipher suite fix for Reddit TLS fingerprinting and add GHCR publishing #1

mitchross merged 10 commits into from
Dec 5, 2025

Conversation

Copy link

Copilot AI commented Dec 5, 2025
edited
Loading

Reddit now fingerprints and blocks requests based on rustls's default cipher suite ordering. This implements the workaround from upstream PR redlib-org#510 and adds automated multi-arch Docker image publishing to GHCR.

Changes

TLS Fingerprinting Fix

  • Match Firefox 145.0 cipher suite configuration in src/client.rs
  • Reorder TLS 1.3 and 1.2 cipher suites to avoid detection pattern
  • Add rustls = "0.21.12" dependency for explicit cipher configuration
pub static HTTPS_CONNECTOR: LazyLock<HttpsConnector<HttpConnector>> = LazyLock::new(|| {
    hyper_rustls::HttpsConnectorBuilder::new()
        .with_tls_config(
            rustls::ClientConfig::builder()
                .with_cipher_suites(&[
                    rustls::cipher_suite::TLS13_AES_256_GCM_SHA384,
                    rustls::cipher_suite::TLS13_AES_128_GCM_SHA256,
                    // ... Firefox cipher suite order
                ])
                // ...
        )
        // ...
});

GHCR Publishing Workflow

  • Multi-arch builds (amd64, arm64, armv7) via .github/workflows/ghcr.yml
  • Digest-based manifest creation for platform-specific images
  • Build from source using Dockerfile.build (multi-stage Alpine-based)
  • Auto-publish on push to main, version tags, and manual dispatch
  • Fixed CVE in actions/download-artifact (updated to v4.1.8)

Documentation

  • DOCKER.md - Container usage and multi-arch details
  • DEPLOYMENT.md - Post-merge verification steps
  • Updated README.md with quick start for this fork

Post-Merge

Images will be available at ghcr.io/mitchross/redlib:latest with automatic builds on push.

Original prompt

read thru this issue from latest pots up, make the change that works , apoply to my fork and create a ghcr package / github action

redlib-org#446

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

Copilot AI self-assigned this Dec 5, 2025
Copilot AI and others added 9 commits December 5, 2025 17:35
@mitchross
Apply cipher suite fix to avoid Reddit TLS fingerprinting
20fe942 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Add GitHub Actions workflow for GHCR publishing
f8e0184 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Add documentation for GHCR Docker images and fork info
b736ae9 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Address code review feedback: remove debug code and test branch
8a9bfa2 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Fix typo in comment: suite -> suites
5e19be5 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Add comprehensive PR summary documentation
38b1474 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Add deployment checklist and verification guide
1524ea3 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Security: Update actions/download-artifact to v4.1.8 to fix CVE
e2e3654 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
@mitchross
Update security documentation with CVE fix details
9bfac4e 
Co-authored-by: mitchross <6330506+mitchross@users.noreply.github.com>
Copilot AI changed the title [WIP] Create GitHub Action for GHCR package Apply cipher suite fix for Reddit TLS fingerprinting and add GHCR publishing Dec 5, 2025
Copilot AI requested a review from mitchross December 5, 2025 17:52
@mitchross mitchross marked this pull request as ready for review December 5, 2025 18:25
@mitchross mitchross merged commit 9524b10 into main Dec 5, 2025
6 of 12 checks passed
@mitchross
Copy link
Owner

mitchross commented Dec 5, 2025

actions are failing

Copilot AI mentioned this pull request Dec 5, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mitchross mitchross Awaiting requested review from mitchross

Assignees

@mitchross mitchross

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mitchross