dc96bced39
Fix #1051
8 years ago
94a341fe2c
Refine SIGCHLD handling
8 years ago
f67518a9d4
Fix #1050
8 years ago
97c58ad44d
Refine signal handling
8 years ago
61b82c45c5
Add SIP003 plugin support ( #1044 )
https://github.com/shadowsocks/shadowsocks-org/issues/28
8 years ago
47b3406739
Disable fast_open when setsockopt failed
8 years ago
3383501e7b
Disable fast_open when it's not supported
8 years ago
80565eece1
Refine the log of obfuscating
8 years ago
8cb4f81eba
Add HTTP/TLS obfuscating. [SIP001] ( #1009 )
Add experimental HTTP/TLS obfuscating as an **optional extension** of shadowsocks protocol.
More discussions can be found here: https://github.com/shadowsocks/shadowsocks-org/issues/26
As this feature is still a SIP (Shadowsocks Improvement Proposal), it's very unstable and experimental. So,
1. Don't enable it unless you know what it is.
2. Be very careful when using it in production environment.
8 years ago
32f52dabf9
Fix #1008
8 years ago
8e52029d31
Fix #1006
8 years ago
e6c0780435
memset zero before using
Signed-off-by: Syrone Wong <wong.syrone@gmail.com>
8 years ago
9db8c3abe8
zeroize some structs before using
Signed-off-by: Syrone Wong <wong.syrone@gmail.com>
8 years ago
25cc062e5d
Use cork_container_of instead
8 years ago
a63a33861f
Add container_of
8 years ago
baff29e970
Fix issues found by cppcheck
- GNU treats void* as char* when doing pointer arithmetic, so let's make it clear
- Fix memory leak, save copy from malloc() and pass the original pointer to free()
- minor type mismatches
Signed-off-by: Syrone Wong <wong.syrone@gmail.com>
8 years ago
fd388e0502
Fix #972
8 years ago
1c738323a7
Similar fix as #967
8 years ago
a8fdd77fbf
add `user` config option
8 years ago
aca5f5ddb4
Fix #966 again ( #967 )
* SO_REUSEADDR for remote sockfd
avoid ERROR: bind_to_address: Address already in use
* set addr->sin_port to be 0
* Update server.c
* Update server.c
* Update server.c
* Update server.c
* Update server.c
* Update server.c
* Update server.c
8 years ago
dbc530ccb1
Fix #966
8 years ago
c0b26e380e
Fix #985
8 years ago
52e391962f
Add option for firewall rules
8 years ago
79a98a66d8
Refine geteuid()
8 years ago
2b7c487b09
Refine #954
8 years ago
6d9331a56d
Fix #954
8 years ago
12612c6395
Refine key string
8 years ago
07d2b1a005
exit when running as a nonexistent user and warn when running as root
8 years ago
d1765df9f9
support ipv6_first option in config file ( #946 )
8 years ago
5cd294879b
Add -6 option for #942
8 years ago
39436d7618
Refine set_linger
8 years ago
1ed725daf8
Refine APIs for auto-blocking
8 years ago
87b01a14d5
Fix #939
8 years ago
60c25dbace
Reduce the side effects
8 years ago
bac7ba79dd
Drop FIN packets to misbehaving clients ( #925 )
* Drop FIN if detecting bad clients
* Fix the command line
* Refine iptables rules
* Refine euid
8 years ago
869f3b7bc8
Refine error handling of ATYP
8 years ago
e2f8b9a34a
Refine error levels
8 years ago
aac4240e9f
Fix #909
8 years ago
4a760fd50b
Fix #907 #908
8 years ago
cfae8dcfcc
Refine outbound feature #905
8 years ago
a7f5359cab
New feature: ss-server outbound block ( #905 )
* New feature: server outbound block
* Update server_block_chn.acl
* Update server_block_chn.acl
Add Baidu-HK
* cleanup
8 years ago
8bb961c29a
Ignore IPs in white list. #899
8 years ago
85a5c86637
Refine LRU cache by clearing old objects
8 years ago
31e30e35ba
Update server.c ( #898 )
Friendlize init message while listen on an IPv6 address.
8 years ago
7029cfca3a
Refine event handling
8 years ago
435401bf7c
Refine auto blocking
8 years ago
3c6bec8d6a
Fix a typo
8 years ago
2dd96d3036
Refine the ACL behavior
8 years ago
c4880e6cf4
Refine ACL for malicious request
8 years ago
efafb59647
Fix #863
8 years ago
Max Lv
Syrone Wong
Rayson zhu
tim-le
Rayson Zhu
Kim