New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
nixos/sslh: make it possible (and the default) to listen on ipv6, plus regression test #77982
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
At any rate, lgtm but the option needs to be renamed to indicate it is a list.
2c88333
to
90845aa
Compare
Option renamed with |
Is there anything left to change? |
I've some intermittent NixOS test failures because grepping the journalctl fails. |
90845aa
to
72654ab
Compare
I changed the implementation of the test to use |
bump |
@GrahamcOfBorg build sslh.passthru.tests |
rebased on current nixos-unstable |
Hi! I'm an experimental bot. My goal is to guide this PR through its stages, hopefully ending with a merge. You can read up on the usage here. |
/marvin needs_review |
/status needs_review |
/status needs_work |
/status needs_review |
Thank you! |
Previously, sslh would only listen on ipv4 with no way to listen on both ipv6 and ipv4.
Things done
I added a regression test which tests ipv4, ipv6 and transparent proxying (as this is a tricky iptables setup, I think this is nice to have).
I also tested that
listenAddress = "0.0.0.0"
still works so this should be backward compatible.sandbox
innix.conf
on non-NixOS linux)nix-shell -p nixpkgs-review --run "nixpkgs-review wip"
./result/bin/
)nix path-info -S
before and after)