70311614a0
Improve error message on DNSSEC failure
2020-01-31 10:58:07 +01:00
0f78684e5f
Add a test for the local DoH feature
2020-01-31 10:58:07 +01:00
cf1498c9f4
Properly compute the padding length for local DoH
...
Fixes #1173
2020-01-31 10:58:03 +01:00
d14d2b613a
Bump
2020-01-30 16:19:38 +01:00
a6026ce48a
Ignore lines starting with '#'
...
Fixes #1171
2020-01-30 16:16:05 +01:00
3a94523d65
Bump the cache size a little bit
2020-01-30 15:08:23 +01:00
0d0c5afd29
Update ChangeLog
2020-01-30 13:39:54 +01:00
c84a394817
Bump
2020-01-30 13:23:03 +01:00
f34d7b60fa
Implement serve-stale
2020-01-30 13:15:29 +01:00
f22461374c
Retry UDP queries on timeout
2020-01-29 18:53:39 +01:00
cd35e2e854
Update deps
2020-01-29 17:58:43 +01:00
f17ce1ae0d
Use constant, but arbitrary long padding
2020-01-29 17:57:59 +01:00
c323bcde21
Update deps
2020-01-29 01:07:08 +01:00
4d788aed85
Make UDP and TCP code similar when it comes to SOCKS proxying
...
Actually use the relay when both a relay and a SOCKS proxy are
configured.
Keep forcing TCP when SOCKS is enabled. I couldn't get UDP proxying
to work with Shadowsocks.
2020-01-27 16:07:08 +01:00
349320f291
Add support for inline comments in patterns lists
...
Fixes #1162
2020-01-25 15:45:23 +01:00
6fa865d538
Bump github.com/hashicorp/golang-lru from 0.5.3 to 0.5.4
...
Bumps [github.com/hashicorp/golang-lru](https://github.com/hashicorp/golang-lru ) from 0.5.3 to 0.5.4.
- [Release notes](https://github.com/hashicorp/golang-lru/releases )
- [Commits](https://github.com/hashicorp/golang-lru/compare/v0.5.3...v0.5.4 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-01-17 10:04:17 +01:00
b041eba311
Update deps
2020-01-15 19:58:59 +01:00
7ada3fcfb8
Support multiple fallback resolvers
2020-01-15 19:58:14 +01:00
f1bd4bf420
Update deps
2020-01-14 12:14:49 +01:00
26971d254d
go crypto update
2020-01-11 08:57:16 -07:00
4f03575943
ransomware tracker is no more
2020-01-11 08:55:22 -07:00
05593a8bbd
Ignore links that start with a hyphen or a dot
...
If you use filter blacklists you'll end up with many invalid links that start with a hyphen or a dot in the final blacklist.
2020-01-08 12:57:22 -07:00
7fb62d98ea
Use EDNS0 padding for local DoH
2020-01-05 21:12:29 -05:00
6fb42d0eae
Improve error message when local DoH is enabled without a certificate
...
Fixes #1136
2020-01-05 19:02:57 -05:00
5c37d3b9de
Update deps
2020-01-05 19:00:16 -05:00
19cebfdb0a
Mention that /dev/stdout is not for Windows systems
...
Fixes #1131
2020-01-03 21:13:04 -05:00
817d92fce0
Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy
...
* 'master' of github.com:jedisct1/dnscrypt-proxy:
sys/unix update
Blacklist motd.ubuntu.com
2020-01-01 11:37:30 +01:00
33c968b346
2020
2020-01-01 11:36:07 +01:00
fc1754c45f
sys/unix update
2019-12-30 20:25:29 +01:00
1c45d9e156
Blacklist motd.ubuntu.com
2019-12-27 21:21:05 +01:00
abd221738b
Explicit brackets
2019-12-23 23:17:46 +01:00
5ede397d33
Mention ipsum
2019-12-23 19:52:27 +01:00
69f00ca977
Don't use the message attribute to get an error message
...
Fixes #1123
2019-12-23 18:58:39 +01:00
a308c76191
Format
2019-12-23 18:55:37 +01:00
0e644c4b86
Add -config <config file> to the service configuration arguments
...
Maybe
fixes #1122
2019-12-23 15:35:52 +01:00
7e45b50d58
Move things around
2019-12-23 15:33:57 +01:00
c27d41faa0
Avoid unneeded DNS packet unpacking
2019-12-23 11:37:45 +01:00
adb6dac420
Strip EDNS0 options in responses
2019-12-22 18:02:33 +01:00
5118ed21fd
Use dumb padding even for GET queries
...
Resolvers such as Cloudflare always add padding to DoH responses
Resolvers such as Google only do if the question had dumb padding
Resolvers such as Cisco blindly return a copy of the question's padding
Some resolvers don't return any padding no matter what's in the question
Finally, other resolvers return FORMERR
This is a mess. A bad design inherited from DoT, that didn't fix
anything from Unbound's original experiment.
Also, padding with zeros as recommended is a bad idea. When using
GET, escaping makes the actual padding size 3 times as big as needed.
2019-12-22 17:34:16 +01:00
1585ede954
Use EDNS0 padding when using DoH over POST
...
This mechanism is horrible, slow (requires re-unpacking and re-packing
the query), should be done at transport layer and not at content layer, and
of course, it is incompatible with some resolvers.
However, in spite of https://go-review.googlesource.com/c/go/+/114316/2/src/net/http/transfer.go ,
we may still end up sending the header and the content in distinct packets.
So, use that horror for POST queries only. For GET, this is not needed.
2019-12-22 15:31:02 +01:00
0454463539
Pad GET queries
2019-12-22 14:43:21 +01:00
48817a4642
Unbeta
2019-12-21 21:29:13 +01:00
6f62a82496
Update deps
2019-12-21 21:28:07 +01:00
a7922a81fb
add some nonexistent zones
2019-12-21 14:34:29 +01:00
ebe3a37ddc
Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy
...
* 'master' of github.com:jedisct1/dnscrypt-proxy:
CI: don't hardcode the HTTP port
2.0.36-beta.1
agl/ed25519 is not required any more
CI: Change the local DoH port, run go tests, enable -race
2019-12-18 23:22:41 +01:00
ffb1a1b718
People really blacklist cdn.cloudflare.net ¯\_(ツ)_/¯
2019-12-18 23:21:50 +01:00
99c86283f6
CI: don't hardcode the HTTP port
2019-12-18 12:54:55 +01:00
80d45a2343
2.0.36-beta.1
2019-12-18 12:44:24 +01:00
44735cb97e
agl/ed25519 is not required any more
2019-12-18 12:40:52 +01:00
3ec6a814c2
CI: Change the local DoH port, run go tests, enable -race
2019-12-17 23:48:01 +01:00
Frank Denis
dependabot-preview[bot]
Cristian-J
unknown