miracle091/dnscrypt-proxy
miracle091
/
dnscrypt-proxy
mirror of https://github.com/DNSCrypt/dnscrypt-proxy.git
1
0
Fork 0
Code Issues Releases Wiki Activity
694 Commits 11 Branches 89 Tags 58 MiB
Commit Graph

435 Commits

Author SHA1 Message Date
Frank Denis c90579b731 Bump 2018-07-09 15:56:50 +02:00
Frank Denis 9b5948d697 Do not ignore ReadPrefixed() errors 2018-07-09 15:49:36 +02:00
Frank Denis 887f6ac299 Log invalid stamps 2018-07-09 15:47:59 +02:00
Frank Denis dc602512ff Don't call PledgeChild() too early 2018-07-07 21:03:08 +02:00
Frank Denis 127d4f0e68 Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy 2018-07-07 18:56:06 +00:00
Frank Denis 17e07d80bb Fix pledge() usage 2018-07-07 20:50:44 +02:00
Frank Denis 35e4d36f67 Add sys/unix for pledge 2018-07-07 20:39:04 +02:00
Frank Denis 1f54214821 pledge() on OpenBSD 2018-07-07 20:27:09 +02:00
Frank Denis 09baa3c40b Store the userName value again 2018-07-07 17:58:37 +00:00
Frank Denis 4dc756be4d Error out if systemd sockets are used with the user_name option 2018-07-07 19:44:11 +02:00
Frank Denis 1019428ca0 username -> user_name 
in case we want to add user_group and whatnot.

Remove the command-line option as it hides the caveats documented
in the configuration file.

Remove TODO. TODO statements always remain in that state forever.
 2018-07-07 17:39:33 +02:00
Frank Denis 6cb43f8e4d Of course, dropping privileges breaks with systemd sockets 2018-07-07 15:21:21 +00:00
Frank Denis 9345958d16 Better description of what username does 2018-07-05 18:12:46 +02:00
Frank Denis c73e95256d Implement an offline mode 
Fixes #528
 2018-07-05 18:05:24 +02:00
Frank Denis 73a43b31b9 Automatically restart after unexpected errors 2018-07-01 23:06:28 +02:00
Frank Denis f9b6994fd2 An easier way to remove args[0] 2018-07-01 22:48:50 +02:00
Frank Denis cc327fdc48 OPT records don't have any class 2018-06-26 15:46:31 +02:00
Frank Denis 97f604670c Don't update OPT records 
Fixes #527
 2018-06-26 08:24:13 +02:00
John Spurlock 74093a65a2 Quick typo fix in example config. (#511) 2018-06-20 00:55:28 +02:00
Frank Denis a1c8012fc6 Error handling when TCP connections fail 2018-06-18 19:19:53 +02:00
Frank Denis 2cb5bb5110 Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy 
* 'master' of github.com:jedisct1/dnscrypt-proxy:
  Note that Windows doesn't support username option (#494)
 2018-06-14 19:14:24 +02:00
Frank Denis 34e78a2446 Don't create a new session; it breaks `-service stop`. 2018-06-14 19:13:52 +02:00
Sebastian Schmidt 8f2972845d Note that Windows doesn't support username option (#494) 2018-06-14 09:35:13 +02:00
Frank Denis 7f8b8d043e Remove old daemonization code 
We will be able do it using fork+exec
 2018-06-13 17:31:47 +02:00
Frank Denis 09e39c785a Keep the process running in foreground to avoid a breaking change/allow monitoring 
This currently doesn't replace the previous process. Maybe there is a way to achieve
this in Go. Need to look closer at os.exec

Also start-child -> child
 2018-06-13 17:24:16 +02:00
Frank Denis fe0aa52fba Make description more accessible in the example configuration file 
Also don't enable this by default, as "nobody" may not exist everywhere
 2018-06-13 16:54:57 +02:00
Sebastian Schmidt aab7e6380f Drop privileges with exec (#467) 
* Drop privileges with exec and SysProcAttr

* Fix windows build

* Fix passing logfile fd
 2018-06-13 16:52:41 +02:00
Frank Denis ae54a7aafc Revert "Do not mention systemd activation until #480 is solved" 
This reverts commit 066345123b.
 2018-06-13 16:49:57 +02:00
dwimmer b498e6655e Fix systemd socket connections (#492) 
Upstream systemd go library broke use of TCP and UDP sockets at the same time.
Changed to use lower level API to work around this. Also improved logging of
systemd socket connections to include systemd unit file name and address.
 2018-06-13 16:49:32 +02:00
Frank Denis 066345123b Do not mention systemd activation until #480 is solved 2018-06-08 06:35:47 +02:00
Frank Denis 9135efcaec Use net.Conn everywhere 
I don't know how to use a TCPConn as a Conn.
 2018-06-06 19:06:44 +02:00
Frank Denis 7866e6da51 Bump 2018-06-06 16:14:31 +02:00
Frank Denis 0166f21b27 Add built-in support for Tor 2018-06-06 15:54:51 +02:00
Frank Denis 977dcad826 Improved return codes 2018-06-04 23:18:28 +02:00
Frank Denis 3bbdf93095 Log return codes in LTSV qeruylog files 
DNS return codes are not enough; we need to change this to something
more expressive.

In particular, we can't use them to distinguish between a server block,
a blacklist block, and a plugin block such as the IPv6 blocker.
 2018-06-04 21:35:07 +02:00
Frank Denis b6e6a19b50 Make logging plugins independent from query/response plugins 2018-06-04 20:52:16 +02:00
Frank Denis e747cf8704 Adapt to the new systemd API 2018-05-31 19:58:33 +02:00
Frank Denis 26579df8d1 Bump 2018-05-19 10:40:15 +02:00
Frank Denis da06657963 application/dns-message 2018-05-19 02:39:32 +02:00
Frank Denis 33537be040 Use a netprobe address less likely to be blocked/considered invalid 2018-05-19 00:06:28 +02:00
Frank Denis d87f3618ac Bump 2018-05-16 11:41:55 +02:00
Frank Denis 281c2fa7f4 Don't add padding if the query matches the block size 
Fixes #446
 2018-05-16 11:31:47 +02:00
Frank Denis 255423588c REFUSED responses are fine for filtering resolvers 2018-05-11 03:31:25 +02:00
Frank Denis 7774d9cf05 Avoid long lines 2018-05-10 22:19:04 +02:00
Frank Denis 6f047e07b8 Bump 2018-05-10 22:17:57 +02:00
Frank Denis ce62981c44 Wait for network connectivity before starting the proxy 2018-05-10 21:59:25 +02:00
Frank Denis 3c1d7acdaf Synthetic SOAs can have constant serial/mail 2018-05-10 10:54:15 +02:00
Frank Denis cdf5b9ce6b IPv6 issues on macOS should be gone 2018-05-10 10:46:11 +02:00
Frank Denis 17dd7336a8 Use a root server as the NS in synthetic SOA responses 2018-05-10 10:45:56 +02:00
Frank Denis 0b5c0af5ee IPv6 blocking: add a synthetic SOA record 2018-05-10 10:39:21 +02:00