Move local DoH configuration to its own section
This commit is contained in:
Frank Denis
parent
be996c486f
commit
6a679cc543
|
|
@ -33,9 +33,7 @@ type Config struct {
|
||||||
ServerNames []string `toml:"server_names"`
|
ServerNames []string `toml:"server_names"`
|
||||||
DisabledServerNames []string `toml:"disabled_server_names"`
|
DisabledServerNames []string `toml:"disabled_server_names"`
|
||||||
ListenAddresses []string `toml:"listen_addresses"`
|
ListenAddresses []string `toml:"listen_addresses"`
|
||||||
LocalDoHListenAddresses []string `toml:"local_doh_listen_addresses"`
|
LocalDoH LocalDoHConfig `toml:"local_doh"`
|
||||||
LocalDoHCertFile string `toml:"local_doh_cert_file"`
|
|
||||||
LocalDoHCertKeyFile string `toml:"local_doh_cert_key_file"`
|
|
||||||
Daemonize bool
|
Daemonize bool
|
||||||
UserName string `toml:"user_name"`
|
UserName string `toml:"user_name"`
|
||||||
ForceTCP bool `toml:"force_tcp"`
|
ForceTCP bool `toml:"force_tcp"`
|
||||||
|
|
@ -97,9 +95,6 @@ func newConfig() Config {
|
||||||
return Config{
|
return Config{
|
||||||
LogLevel: int(dlog.LogLevel()),
|
LogLevel: int(dlog.LogLevel()),
|
||||||
ListenAddresses: []string{"127.0.0.1:53"},
|
ListenAddresses: []string{"127.0.0.1:53"},
|
||||||
LocalDoHListenAddresses: []string{"127.0.0.1:443"},
|
|
||||||
LocalDoHCertFile: "localhost.pem",
|
|
||||||
LocalDoHCertKeyFile: "localhost.pem",
|
|
||||||
Timeout: 5000,
|
Timeout: 5000,
|
||||||
KeepAlive: 5,
|
KeepAlive: 5,
|
||||||
CertRefreshDelay: 240,
|
CertRefreshDelay: 240,
|
||||||
|
|
@ -195,6 +190,12 @@ type BrokenImplementationsConfig struct {
|
||||||
BrokenQueryPadding []string `toml:"broken_query_padding"`
|
BrokenQueryPadding []string `toml:"broken_query_padding"`
|
||||||
}
|
}
|
||||||
|
|
||||||
|
type LocalDoHConfig struct {
|
||||||
|
ListenAddresses []string `toml:"listen_addresses"`
|
||||||
|
CertFile string `toml:"cert_file"`
|
||||||
|
CertKeyFile string `toml:"cert_key_file"`
|
||||||
|
}
|
||||||
|
|
||||||
type ServerSummary struct {
|
type ServerSummary struct {
|
||||||
Name string `json:"name"`
|
Name string `json:"name"`
|
||||||
Proto string `json:"proto"`
|
Proto string `json:"proto"`
|
||||||
|
|
@ -331,7 +332,7 @@ func ConfigLoad(proxy *Proxy, flags *ConfigFlags) error {
|
||||||
proxy.certRefreshDelayAfterFailure = time.Duration(10 * time.Second)
|
proxy.certRefreshDelayAfterFailure = time.Duration(10 * time.Second)
|
||||||
proxy.certIgnoreTimestamp = config.CertIgnoreTimestamp
|
proxy.certIgnoreTimestamp = config.CertIgnoreTimestamp
|
||||||
proxy.ephemeralKeys = config.EphemeralKeys
|
proxy.ephemeralKeys = config.EphemeralKeys
|
||||||
if len(config.ListenAddresses) == 0 && len(config.LocalDoHListenAddresses) == 0 {
|
if len(config.ListenAddresses) == 0 && len(config.LocalDoH.ListenAddresses) == 0 {
|
||||||
dlog.Debug("No local IP/port configured")
|
dlog.Debug("No local IP/port configured")
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -355,9 +356,9 @@ func ConfigLoad(proxy *Proxy, flags *ConfigFlags) error {
|
||||||
proxy.serversInfo.lbEstimator = config.LBEstimator
|
proxy.serversInfo.lbEstimator = config.LBEstimator
|
||||||
|
|
||||||
proxy.listenAddresses = config.ListenAddresses
|
proxy.listenAddresses = config.ListenAddresses
|
||||||
proxy.localDoHListenAddresses = config.LocalDoHListenAddresses
|
proxy.localDoHListenAddresses = config.LocalDoH.ListenAddresses
|
||||||
proxy.localDoHCertFile = config.LocalDoHCertFile
|
proxy.localDoHCertFile = config.LocalDoH.CertFile
|
||||||
proxy.localDoHCertKeyFile = config.LocalDoHCertKeyFile
|
proxy.localDoHCertKeyFile = config.LocalDoH.CertKeyFile
|
||||||
proxy.daemonize = config.Daemonize
|
proxy.daemonize = config.Daemonize
|
||||||
proxy.pluginBlockIPv6 = config.BlockIPv6
|
proxy.pluginBlockIPv6 = config.BlockIPv6
|
||||||
proxy.cache = config.Cache
|
proxy.cache = config.Cache
|
||||||
|
|
|
||||||
|
|
@ -340,6 +340,29 @@ cache_neg_max_ttl = 600
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
##################################
|
||||||
|
# Local DoH server #
|
||||||
|
##################################
|
||||||
|
|
||||||
|
[local_doh]
|
||||||
|
|
||||||
|
## dnscrypt-proxy can act as a local DoH server. By doing so, web browsers
|
||||||
|
## requiring a direct connection to a DoH server in order to enable some
|
||||||
|
## features will enable these, without bypassing your DNS proxy..
|
||||||
|
|
||||||
|
## Addresses that the local DoH server should listen to
|
||||||
|
|
||||||
|
# listen_addresses = ['127.0.0.1:3000']
|
||||||
|
|
||||||
|
|
||||||
|
## Certificate file and key - Note that the certificate has to be trusted.
|
||||||
|
## See the Wiki for more information.
|
||||||
|
|
||||||
|
# cert_file = "localhost.pem"
|
||||||
|
# cert_key_file = "localhost.pem"
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
###############################
|
###############################
|
||||||
# Query logging #
|
# Query logging #
|
||||||
###############################
|
###############################
|
||||||
|
|
|
||||||
|
|
@ -184,7 +184,7 @@ func (proxy *Proxy) addLocalDoHListener(listenAddrStr string) {
|
||||||
}
|
}
|
||||||
FileDescriptorNum++
|
FileDescriptorNum++
|
||||||
|
|
||||||
dlog.Noticef("Now listening to %v [HTTP]", listenAddrStr)
|
dlog.Noticef("Now listening to %v [DoH]", listenAddrStr)
|
||||||
go proxy.localDoHListener(listenerTCP.(*net.TCPListener))
|
go proxy.localDoHListener(listenerTCP.(*net.TCPListener))
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -323,7 +323,7 @@ func (proxy *Proxy) localDoHListenerFromAddr(listenAddr *net.TCPAddr) error {
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
}
|
}
|
||||||
dlog.Noticef("Now listening to %v [HTTP]", listenAddr)
|
dlog.Noticef("Now listening to %v [DoH]", listenAddr)
|
||||||
go proxy.localDoHListener(acceptPc)
|
go proxy.localDoHListener(acceptPc)
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue