feat(network-proxy): add MITM support and gate limited-mode CONNECT (#9859)

## Description - Adds MITM support (CA load/issue, TLS termination, optional body inspection). - Adds `codex-network-proxy init` to create `CODEX_HOME/network_proxy/mitm`. - Enforces limited-mode HTTPS correctly: `CONNECT` requires MITM, otherwise blocked with `mitm_required`. - Keeps `origin/main` layering/reload semantics (managed layers included in reload checks). - Centralizes block reasons (`REASON_MITM_REQUIRED`) and removes `println!`. - Scope is MITM-only (no SOCKS changes). gated by `mitm=false` (default)
2026-04-28 08:34:54 +00:00 · 2026-02-24 10:15:15 -08:00
parent ca556fa313
commit 8d3d58f992
13 changed files with 1091 additions and 12 deletions
--- a/codex-rs/network-proxy/src/config.rs
+++ b/codex-rs/network-proxy/src/config.rs
@@ -45,6 +45,8 @@ pub struct NetworkProxySettings {
    #[serde(default)]
    pub allow_unix_sockets: Vec<String>,
    pub allow_local_binding: bool,
+    #[serde(default)]
+    pub mitm: bool,
 }

 impl Default for NetworkProxySettings {
@@ -65,6 +67,7 @@ impl Default for NetworkProxySettings {
            denied_domains: Vec::new(),
            allow_unix_sockets: Vec::new(),
            allow_local_binding: true,
+            mitm: false,
        }
    }
 }
@@ -74,6 +77,7 @@ impl Default for NetworkProxySettings {
 pub enum NetworkMode {
    /// Limited (read-only) access: only GET/HEAD/OPTIONS are allowed for HTTP. HTTPS CONNECT is
    /// blocked unless MITM is enabled so the proxy can enforce method policy on inner requests.
+    /// SOCKS5 remains blocked in limited mode.
    Limited,
    /// Full network access: all HTTP methods are allowed, and HTTPS CONNECTs are tunneled without
    /// MITM interception.
@@ -393,6 +397,7 @@ mod tests {
                denied_domains: Vec::new(),
                allow_unix_sockets: Vec::new(),
                allow_local_binding: true,
+                mitm: false,
            }
        );
    }