Frank Denis
c90579b731
Bump
2018-07-09 15:56:50 +02:00
Frank Denis
9b5948d697
Do not ignore ReadPrefixed() errors
2018-07-09 15:49:36 +02:00
Frank Denis
887f6ac299
Log invalid stamps
2018-07-09 15:47:59 +02:00
Frank Denis
dc602512ff
Don't call PledgeChild() too early
2018-07-07 21:03:08 +02:00
Frank Denis
127d4f0e68
Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy
2018-07-07 18:56:06 +00:00
Frank Denis
17e07d80bb
Fix pledge() usage
2018-07-07 20:50:44 +02:00
Frank Denis
35e4d36f67
Add sys/unix for pledge
2018-07-07 20:39:04 +02:00
Frank Denis
1f54214821
pledge() on OpenBSD
2018-07-07 20:27:09 +02:00
Frank Denis
09baa3c40b
Store the userName value again
2018-07-07 17:58:37 +00:00
Frank Denis
4dc756be4d
Error out if systemd sockets are used with the user_name option
2018-07-07 19:44:11 +02:00
Frank Denis
1019428ca0
username -> user_name
...
in case we want to add user_group and whatnot.
Remove the command-line option as it hides the caveats documented
in the configuration file.
Remove TODO. TODO statements always remain in that state forever.
2018-07-07 17:39:33 +02:00
Frank Denis
6cb43f8e4d
Of course, dropping privileges breaks with systemd sockets
2018-07-07 15:21:21 +00:00
Frank Denis
9345958d16
Better description of what username does
2018-07-05 18:12:46 +02:00
Frank Denis
c73e95256d
Implement an offline mode
...
Fixes #528
2018-07-05 18:05:24 +02:00
Frank Denis
73a43b31b9
Automatically restart after unexpected errors
2018-07-01 23:06:28 +02:00
Frank Denis
f9b6994fd2
An easier way to remove args[0]
2018-07-01 22:48:50 +02:00
Frank Denis
cc327fdc48
OPT records don't have any class
2018-06-26 15:46:31 +02:00
Frank Denis
97f604670c
Don't update OPT records
...
Fixes #527
2018-06-26 08:24:13 +02:00
John Spurlock
74093a65a2
Quick typo fix in example config. ( #511 )
2018-06-20 00:55:28 +02:00
Frank Denis
a1c8012fc6
Error handling when TCP connections fail
2018-06-18 19:19:53 +02:00
Frank Denis
2cb5bb5110
Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy
...
* 'master' of github.com:jedisct1/dnscrypt-proxy:
Note that Windows doesn't support username option (#494 )
2018-06-14 19:14:24 +02:00
Frank Denis
34e78a2446
Don't create a new session; it breaks `-service stop`.
2018-06-14 19:13:52 +02:00
Sebastian Schmidt
8f2972845d
Note that Windows doesn't support username option ( #494 )
2018-06-14 09:35:13 +02:00
Frank Denis
7f8b8d043e
Remove old daemonization code
...
We will be able do it using fork+exec
2018-06-13 17:31:47 +02:00
Frank Denis
09e39c785a
Keep the process running in foreground to avoid a breaking change/allow monitoring
...
This currently doesn't replace the previous process. Maybe there is a way to achieve
this in Go. Need to look closer at os.exec
Also start-child -> child
2018-06-13 17:24:16 +02:00
Frank Denis
fe0aa52fba
Make description more accessible in the example configuration file
...
Also don't enable this by default, as "nobody" may not exist everywhere
2018-06-13 16:54:57 +02:00
Sebastian Schmidt
aab7e6380f
Drop privileges with exec ( #467 )
...
* Drop privileges with exec and SysProcAttr
* Fix windows build
* Fix passing logfile fd
2018-06-13 16:52:41 +02:00
Frank Denis
ae54a7aafc
Revert "Do not mention systemd activation until #480 is solved"
...
This reverts commit 066345123b
.
2018-06-13 16:49:57 +02:00
dwimmer
b498e6655e
Fix systemd socket connections ( #492 )
...
Upstream systemd go library broke use of TCP and UDP sockets at the same time.
Changed to use lower level API to work around this. Also improved logging of
systemd socket connections to include systemd unit file name and address.
2018-06-13 16:49:32 +02:00
Frank Denis
066345123b
Do not mention systemd activation until #480 is solved
2018-06-08 06:35:47 +02:00
Frank Denis
9135efcaec
Use net.Conn everywhere
...
I don't know how to use a TCPConn as a Conn.
2018-06-06 19:06:44 +02:00
Frank Denis
7866e6da51
Bump
2018-06-06 16:14:31 +02:00
Frank Denis
0166f21b27
Add built-in support for Tor
2018-06-06 15:54:51 +02:00
Frank Denis
977dcad826
Improved return codes
2018-06-04 23:18:28 +02:00
Frank Denis
3bbdf93095
Log return codes in LTSV qeruylog files
...
DNS return codes are not enough; we need to change this to something
more expressive.
In particular, we can't use them to distinguish between a server block,
a blacklist block, and a plugin block such as the IPv6 blocker.
2018-06-04 21:35:07 +02:00
Frank Denis
b6e6a19b50
Make logging plugins independent from query/response plugins
2018-06-04 20:52:16 +02:00
Frank Denis
e747cf8704
Adapt to the new systemd API
2018-05-31 19:58:33 +02:00
Frank Denis
26579df8d1
Bump
2018-05-19 10:40:15 +02:00
Frank Denis
da06657963
application/dns-message
2018-05-19 02:39:32 +02:00
Frank Denis
33537be040
Use a netprobe address less likely to be blocked/considered invalid
2018-05-19 00:06:28 +02:00
Frank Denis
d87f3618ac
Bump
2018-05-16 11:41:55 +02:00
Frank Denis
281c2fa7f4
Don't add padding if the query matches the block size
...
Fixes #446
2018-05-16 11:31:47 +02:00
Frank Denis
255423588c
REFUSED responses are fine for filtering resolvers
2018-05-11 03:31:25 +02:00
Frank Denis
7774d9cf05
Avoid long lines
2018-05-10 22:19:04 +02:00
Frank Denis
6f047e07b8
Bump
2018-05-10 22:17:57 +02:00
Frank Denis
ce62981c44
Wait for network connectivity before starting the proxy
2018-05-10 21:59:25 +02:00
Frank Denis
3c1d7acdaf
Synthetic SOAs can have constant serial/mail
2018-05-10 10:54:15 +02:00
Frank Denis
cdf5b9ce6b
IPv6 issues on macOS should be gone
2018-05-10 10:46:11 +02:00
Frank Denis
17dd7336a8
Use a root server as the NS in synthetic SOA responses
2018-05-10 10:45:56 +02:00
Frank Denis
0b5c0af5ee
IPv6 blocking: add a synthetic SOA record
2018-05-10 10:39:21 +02:00