13 Commits

Author	SHA1	Message	Date
Tom Lebreux	c888547e5b	Remove file limit bump ... Starting with Go 1.19 [0] the file limit is increased by default. [0]: 8427429c59	2024-05-09 09:03:55 +02:00
Simon Ser	70551807b9	Use scfg unmarshaler to load config file	2024-04-14 23:38:57 +02:00
Simon Ser	3fd3471799	Silence connection errors by default ... Often times the connection-level errors clutter the logs, for instance with failed TLS handshakes or unknown hostname.	2023-01-26 11:43:59 +01:00
Simon Ser	bc53657f5d	Upgrade certmagic to v0.16	2022-07-07 10:49:10 +02:00
Simon Ser	759013750f	Bump RLIMIT_NOFILE ... We're a TCP server, we'll handle potentially a lot of FDs. See https://0pointer.net/blog/file-descriptor-limits.html	2022-02-03 10:27:16 +01:00
Simon Ser	f7fc805026	Fix SIGINT handling ... Go's not very helpful here.	2021-02-17 18:37:30 +01:00
minus	4548a7fe65	Add config reloading ... Instead of updating the configuration, we configure a new Server instance and then migrate Listeners that still exist to it. Open client connections are left completely untouched. Closes https://todo.sr.ht/~emersion/tlstunnel/1	2021-01-07 16:35:03 +01:00
Simon Ser	4684feb935	Move ACME logger setup to cmd/tlstunnel ... This will allow us to customize the logger options depending on CLI flags.	2020-10-28 12:09:30 +01:00
Simon Ser	a2bf967da7	Switch to scfg ... And we get nested blocks for free.	2020-10-19 16:47:50 +02:00
Simon Ser	18dd507ea5	Don't try to guess listening address ... Always listen on all hosts. Only use the host part of a frontend address for TLS cert names. Customizing the listen host will be better done with a `bind` directive, like Caddy does.	2020-09-12 13:41:11 +02:00
Simon Ser	fd46214036	Store certificates in /var/lib/tlstunnel by default	2020-09-10 23:33:09 +02:00
Simon Ser	2fdea9d4ed	Move back directive processing to tlstunnel package	2020-09-10 15:05:43 +02:00
Simon Ser	ec2a768909	Move executable to cmd/tlstunnel ... This allows us to expose the toplevel tlstunnel package.	2020-09-10 14:49:59 +02:00