]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f562f5c) | patch
Refactored Ip::Intercept::Lookup() (#1062)
authorEduard Bagdasaryan <eduard.bagdasaryan@measurement-factory.com>
Sat, 23 Jul 2022 03:27:08 +0000 (03:27 +0000)
committerSquid Anubis <squid-anubis@squid-cache.org>
Sat, 23 Jul 2022 03:27:16 +0000 (03:27 +0000)
commit96f97829e13e12cfaa59fa51ef73787c472563da
tree80877733bed7b94a39264e0199a8fa4e2b6ebb9atree
parentf562f5ce5db10be506960b4294942fc140631cfacommit | diff
Refactored Ip::Intercept::Lookup() (#1062)

The TPROXY lookup part was misleading -- the method only checked that
TPROXY was enabled by the configuration and did not change the accepted
connection settings.

Also do not assume that a listening port can have both COMM_TRANSPARENT
and COMM_INTERCEPTION flags set. Squid treats TPROXY and NAT modes as
mutually exclusive and rejects such configurations.

Also forbid invalid port configurations with tproxy mode where TPROXY is
prohibited by ./configure.

Also removed unused Ip::Intercept::StopInterception().
src/comm/TcpAcceptor.cc diff | blob | blame | history
src/ip/Intercept.cc diff | blob | blame | history
src/ip/Intercept.h diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git