1. 6
    untls: Reexposes a TCP over TLS port as a local TCP port show networking github.com/lucasew
    authored by lucasew avatar lucasew (hidden by 2 users) |
    Archive.org Archive.today Ghostarchive
    | 6 comments

This is a basic service to workaround a limitation in Tailscale Funnel. Basically I wanted to expose a Minecraft server to play with the boys but Minecraft doesn’t support TCP over TLS sockets.

    1. 7
      fanf avatar fanf

      Like stunnel?

      1. 7
        kivikakk avatar kivikakk

        socat can do this too, using an OPENSSL address on one side.

        1. 1
          lucasew avatar lucasew

          It doesn’t listen a TLS socket.

          It connects to a TLS socket and reexpose as a unencrypted TCP socket on localhost

          1. 5
            ClashTheBunny avatar ClashTheBunny

            Stunnel can be either a client or a server: https://gist.github.com/ohpe/e02596a2c2247ea1a212e019c355e2c3

        2. 5
          ThinkChaos avatar ThinkChaos

          GetFreePort is inherently racy and not a pattern you should copy. It’s better to just pass 0 to listen and then get the socket’s local address if you need to know it.

          1. 1
            gsquire avatar gsquire

            I have a small suggestion. You may want to use a bytes.Buffer here where you call Reset after acquiring one from the pool.

            Thanks for sharing!