Commit Graph

1162 Commits

Author SHA1 Message Date
Frank Denis 535bce308c Retry over a direct connection if we can't get a cert via a relay
This is temporary and only to provide compatibility with servers not
running the latest version of encrypted-dns-server.
2019-10-20 12:26:12 +02:00
Frank Denis f9c244db10 Fix typo
I'm quite surprised that it didn't break Android builds
2019-10-20 12:03:20 +02:00
Frank Denis 7fc7eb6f07 Bump 2019-10-20 02:15:06 +02:00
Frank Denis fbe9f225dd Reencrypt on TCP retries 2019-10-20 02:04:32 +02:00
Frank Denis 661477bf09 Note 2019-10-20 01:35:27 +02:00
Frank Denis ff13c813e4 Support relaying for certificates retrieval 2019-10-19 23:50:05 +02:00
Frank Denis d6b63aaf15 Pad certificate requests and add support for proxies 2019-10-19 22:08:02 +02:00
Alison Winters ac6fd3db39 differentiate between timeout and other error for dnscrypt servers 2019-10-19 10:36:26 +02:00
Markus Linnala 0058bc063e feature: service_linux: Support systemd watchdog 2019-10-19 09:36:39 +02:00
Frank Denis 18ba5fe528 Add a SERVFAIL comment because miekg/dns names are a bit unusual 2019-10-18 20:51:11 +02:00
Frank Denis 94cf37dacf Do the netprobe even in offline mode
This is likely to be required at least on Windows.
2019-10-18 20:34:26 +02:00
Frank Denis bcaf0bca96 proxy.certIgnoreTimestamp should only be downgradable 2019-10-18 20:30:41 +02:00
Markus Linnala e5221167e1 cleanup: serversInfo: refreshServer does not use previousIndex as index, use bool instead 2019-10-18 20:24:11 +02:00
Markus Linnala 2a51dca073 cleanup: serversInfo: fetchServerInfo does not use serversInfo 2019-10-18 20:24:11 +02:00
Markus Linnala 683b111bf9 cleanup: serversInfo: simplify handling onld/new servers 2019-10-18 20:24:11 +02:00
Markus Linnala 63520e494d fix: updateTTL guard against overflow 2019-10-18 20:24:11 +02:00
Markus Linnala 13e9c15212 cleanup: MinDNSPacketSize is checked next 2019-10-18 20:24:11 +02:00
Markus Linnala c699e7bec4 cleanup: estimators: simplify blindAdjust 2019-10-18 20:24:11 +02:00
Markus Linnala 111072dec5 change: systemd_linux: Fail if there is error to setup listeners 2019-10-18 20:24:11 +02:00
Markus Linnala acb4bbd002 fix: plugins: use deferred lock to catch all branches 2019-10-18 20:24:11 +02:00
Markus Linnala 5bf5fe6c1d cleanup: main: simplify proxy handling 2019-10-18 20:24:11 +02:00
Markus Linnala cab67ba5a9 cleanup: drop registerServer proxy as not used 2019-10-18 20:24:11 +02:00
Markus Linnala 21d71ac9be change: serversInfo: Use sort instead of own implementation 2019-10-18 20:24:11 +02:00
Markus Linnala 9b019574a0 cleanup: serversInfo : Simplify liveServers handling 2019-10-18 20:24:11 +02:00
Markus Linnala a941cbd893 cleanup: xtransport: simplify body creation 2019-10-18 20:24:11 +02:00
Markus Linnala 345ec56cab cleanup: xtransport: move onion check earlier to fail fast 2019-10-18 20:24:11 +02:00
Markus Linnala df03065eaf change: xtransport: Return http response status string as error, do name make own string
This gives much better possibilities to diagnose problems than error
message with only "informative" part being 500.
2019-10-18 20:24:11 +02:00
Markus Linnala 72681725b1 clanup: xtransport: use MaxDNSPacketSize more 2019-10-18 20:24:11 +02:00
Markus Linnala 0d553a9fa7 cleanup: Drop ExtractPort ExtractHost, use ExtractHostAndPort instead 2019-10-18 20:24:11 +02:00
Markus Linnala f0fae0c756 cleanup: xtransport: There is no function level foundIP in resolveUsingResolver
Rename foundIPx to foundIP just to make it nicer looking.
2019-10-18 20:24:11 +02:00
Markus Linnala 80fa99877f cleanup: proxy: use symbolic code for SERVFAIL 2019-10-18 20:24:11 +02:00
Markus Linnala e8ad2be9f9 change: android does not have systemd
Android is counted as being linux too.

At least according to wikipedia android does not have systemd:
https://en.wikipedia.org/wiki/Systemd
2019-10-18 20:24:11 +02:00
Markus Linnala 8c6a968e27 change: config: handle NetProbe fatal error and run only if not offline
All errors returned from NetProbe are managed as fatal later.
Decide, connection issues are not fatal but bad configuration is.
Without this configuration errors are silently ignored here.
2019-10-18 20:24:11 +02:00
Markus Linnala 32c387318a cleanup: config: drop duplicate code in showCerts setup 2019-10-18 20:24:11 +02:00
Markus Linnala ab94e7eb8a style: gofmt -w -s -d dnscrypt-proxy 2019-10-18 20:24:11 +02:00
Markus Linnala 5e5d1059d7 change: config: cache_max_expire default value from 8600 to 86400 2019-10-18 20:24:11 +02:00
Frank Denis be86d1df27 Fetch the list of relays 2019-10-18 15:53:56 +02:00
Frank Denis 4a5bf3ed8c Extra records don't necessarily need to raise a warning
Proper TXT records can still be present in the response.
2019-10-17 18:33:24 +02:00
Vladimir Bauer 108b7f8446 fix panic if dns.RR is not a *dns.TXT 2019-10-17 18:27:29 +02:00
Frank Denis 55c6cb6c79 Crude fix for #961 2019-10-15 00:47:05 +02:00
Frank Denis 858957ce91 up 2019-10-14 13:27:20 +02:00
Frank Denis 332ba9a7ed Up 2019-10-14 12:13:04 +02:00
Frank Denis dae384f078 2.0.29-beta.1 2019-10-14 12:11:13 +02:00
Frank Denis 322447aa91 Support multiple routes per destination 2019-10-14 12:08:47 +02:00
Frank Denis e9ec2aa801 Log anonymized DNS routes 2019-10-14 11:02:13 +02:00
Frank Denis e6b9f3c2c0 Update go-dnsstamps 2019-10-14 10:50:09 +02:00
Frank Denis f06967a020 Accept stamps of the new DNSCryptRelay type 2019-10-14 02:26:05 +02:00
Frank Denis 67f46b3c3e Update go-dnsstamps 2019-10-14 02:24:04 +02:00
Frank Denis 0e8ca9009e Implement Anonymized DNS 2019-10-14 01:45:38 +02:00
Frank Denis 63e6dbdac7 Avoid strings.ReplaceAll() that was introduced too recently 2019-10-12 22:22:28 +02:00