1. 29 Apr, 2017 2 commits
  2. 27 Apr, 2017 3 commits
  3. 26 Apr, 2017 2 commits
  4. 24 Apr, 2017 3 commits
  5. 21 Apr, 2017 1 commit
  6. 22 Feb, 2017 4 commits
    • Dustin Lundquist's avatar
      Disable transparent proxy on other platforms · 302b6efd
      Dustin Lundquist authored
      Disable 'source client' directive on platforms which do not provide
      IP_TRANSPARENT.
      302b6efd
    • Dustin Lundquist's avatar
      Fallback on cross address family transparent proxy · 09cf8c55
      Dustin Lundquist authored
      When configured for transparent mode it is not possible use an IPv6
      source address when connecting to an IPv4 backend server or vice versa.
      If the address families differ, fall back to using the proxy hosts
      address for the connection to the backend server. When resolving backend
      server hostnames in transparent mode, only consider the resource records
      of the matching address family.
      09cf8c55
    • Dustin Lundquist's avatar
      Transparent proxy test · 422d8441
      Dustin Lundquist authored
      Introduce a test for transparent proxy mode. This test requires root
      privileges to create network namespaces, so it is not included in
      the make check suite.
      422d8441
    • Dustin Lundquist's avatar
      Transparent proxy support · 5a63c762
      Dustin Lundquist authored
      Add "source client" listener directive to enable transparent proxy support.
      There are not tests for the functionality since transparent proxying on
      localhost causes a port bind conflict and requires running tests as root.
      
      Resolves #179
      5a63c762
  7. 18 Feb, 2017 2 commits
  8. 17 Feb, 2017 3 commits
    • Dustin Lundquist's avatar
      Use accept4() and extended Linux socket() · c654a326
      Dustin Lundquist authored
      Linux offers accept4() and extended socket() functionality to open
      nonblocking sockets without two additional fnctl() calls per socket. If
      autoconf finds accept4() use these features. This should offer a small
      performance benefit by reduces the number of syscalls for each socket.
      c654a326
    • Dustin Lundquist's avatar
      Check result of setsockopt · 9c51d526
      Dustin Lundquist authored
      Check the result of setsockopt() calls and handle errors accordingly.
      9c51d526
    • Dustin Lundquist's avatar
      Error handling fixes · cafdba96
      Dustin Lundquist authored
      Return original error code in `init_listener()` rather than arbitrary
      negative numbers. Do not attempt to close invalid socket descriptor in
      binder failure case of `init_listener()`. Log `drop_perms()` errors to
      configured logger rather than stderr since we may have already
      daemonized at this point.
      cafdba96
  9. 28 Jan, 2017 1 commit
  10. 08 Oct, 2016 2 commits
  11. 28 Sep, 2016 1 commit
  12. 26 Aug, 2016 1 commit
  13. 20 Aug, 2016 2 commits
  14. 19 Aug, 2016 2 commits
    • Aaron Schrab's avatar
      Show table entry using default port in README · d2a245ec
      Aaron Schrab authored
      Remove the port specification from one of the example table entries in
      the README file and add a comment explaining that the port number from
      the listener will be used.
      
      I'm looking to set this up to proxy both http and https traffic using
      the same mappings from host name to backend, so I was curious if I'd
      need to duplicate that information. Reading the source of the man page I
      learned that this feature would let me avoid the duplication, but future
      people looking at this may find it nice to be able to learn that from
      the README file.
      d2a245ec
    • Aaron Schrab's avatar
      Remove link to user survey · a0ffe04e
      Aaron Schrab authored
      The survey is no longer accepting input, so it doesn't make sense ask
      people to provide it.
      a0ffe04e
  15. 29 Jul, 2016 2 commits
  16. 21 Jun, 2016 3 commits
    • Dustin Lundquist's avatar
      man: correct foreground flag description · 62fa1f0a
      Dustin Lundquist authored
      The foreground flag description erroneously stated that permissions were not dropped.
      
      Fixes #203
      62fa1f0a
    • Dustin Lundquist's avatar
      Merge branch 'logger' · a67ba5d8
      Dustin Lundquist authored
      a67ba5d8
    • Dustin Lundquist's avatar
      logger: fix first stderr log message case · 21768820
      Dustin Lundquist authored
      Fix case when using default stderr logger and first log message was
      lost. Previously the default_logger was initialized either by
      set_default_logger() or by init_default_logger() called when the first
      message was logged. Since default_logger was passed as an argument to
      vlog_msg(), default_logger was initialized too late and vlog_msg()
      returned early. Fix this by moving the default_logger initialization
      check into each log function so default_logger is initialized before the
      call to vlog_msg().
      21768820
  17. 19 Jun, 2016 4 commits
  18. 24 May, 2016 1 commit
  19. 09 May, 2016 1 commit