Tom Lebreux
c888547e5b
Remove file limit bump
...
Starting with Go 1.19 [0] the file limit is increased by default.
[0]: 8427429c59
2024-05-09 09:03:55 +02:00
Simon Ser
70551807b9
Use scfg unmarshaler to load config file
2024-04-14 23:38:57 +02:00
Simon Ser
3fd3471799
Silence connection errors by default
...
Often times the connection-level errors clutter the logs, for
instance with failed TLS handshakes or unknown hostname.
2023-01-26 11:43:59 +01:00
Simon Ser
bc53657f5d
Upgrade certmagic to v0.16
2022-07-07 10:49:10 +02:00
Simon Ser
759013750f
Bump RLIMIT_NOFILE
...
We're a TCP server, we'll handle potentially a lot of FDs.
See https://0pointer.net/blog/file-descriptor-limits.html
2022-02-03 10:27:16 +01:00
Simon Ser
f7fc805026
Fix SIGINT handling
...
Go's not very helpful here.
2021-02-17 18:37:30 +01:00
minus
4548a7fe65
Add config reloading
...
Instead of updating the configuration, we configure a new Server instance and
then migrate Listeners that still exist to it. Open client connections are
left completely untouched.
Closes https://todo.sr.ht/~emersion/tlstunnel/1
2021-01-07 16:35:03 +01:00
Simon Ser
4684feb935
Move ACME logger setup to cmd/tlstunnel
...
This will allow us to customize the logger options depending on CLI
flags.
2020-10-28 12:09:30 +01:00
Simon Ser
a2bf967da7
Switch to scfg
...
And we get nested blocks for free.
2020-10-19 16:47:50 +02:00
Simon Ser
18dd507ea5
Don't try to guess listening address
...
Always listen on all hosts. Only use the host part of a frontend
address for TLS cert names.
Customizing the listen host will be better done with a `bind`
directive, like Caddy does.
2020-09-12 13:41:11 +02:00
Simon Ser
fd46214036
Store certificates in /var/lib/tlstunnel by default
2020-09-10 23:33:09 +02:00
Simon Ser
2fdea9d4ed
Move back directive processing to tlstunnel package
2020-09-10 15:05:43 +02:00
Simon Ser
ec2a768909
Move executable to cmd/tlstunnel
...
This allows us to expose the toplevel tlstunnel package.
2020-09-10 14:49:59 +02:00