Commit Graph

1039 Commits

Author SHA1 Message Date
Frank Denis ac0f0d2ff0 Change end of lines to DOS style for Windows packages
Completely untested yet

Fixes #146
2018-02-19 00:37:06 +01:00
Frank Denis 2027d970dd Go 1.10 final is released 2018-02-16 21:59:06 +01:00
Frank Denis af11196a5c Disable CoinBlocker by default
See https://github.com/jedisct1/dnscrypt-proxy/issues/119#issuecomment-365936840
2018-02-15 15:12:50 +01:00
Frank Denis 29f1c4c662 Fix format string 2018-02-15 00:46:47 +01:00
Frank Denis 8ce8deb959 Whitelist github.com/github.io 2018-02-14 15:56:59 +01:00
Frank Denis d85214252a Update deps 2018-02-14 14:39:43 +01:00
Frank Denis ac395b03fc Bump the default timeout up 2018-02-11 20:51:48 +01:00
Frank Denis ebe79c5df1 Added the browser mining domains list from CoinBlocker
Checked by @mastad0n

Fixes #119
2018-02-11 20:46:41 +01:00
Frank Denis c7ec3ada15
Merge pull request #120 from bdossantos/fix/generate-blacklist-timeout
feat: add a flag to setup the open URL timeout
2018-02-11 20:24:40 +01:00
Benjamin Dos Santos 53e9c79194
feat: add a flag to setup the open URL timeout
Sometimes I randomly encounter a timeout when I generate blacklist. This commit add the
ability to increase the timeout delay (default to 10s).
2018-02-11 19:24:21 +01:00
Frank Denis 2f00ad5ff0 Error out if unknown properties are found in the config file
And thanks to this, an inconsistency in the example config file vs the parser
was found (`timeout` vs `timeout_ms`).

Fixes #113
2018-02-10 21:21:43 +01:00
Frank Denis 32db89d2ee Strip extra newline 2018-02-09 22:40:56 +01:00
Frank Denis ebe41535ba Format 2018-02-09 22:40:29 +01:00
Frank Denis f7630ad8fd
Merge pull request #111 from amitbl/master
Cache Plugin: return non-fixed TTL for cached entries
2018-02-09 22:38:57 +01:00
Amit 5dbfc39f7d Cache Plugin: return non-fixed TTL for cached entries (refactor) 2018-02-09 22:13:24 +02:00
Amit 65dfa8ecca Cache Plugin: return non-fixed TTL for cached entries (refactor) 2018-02-09 22:11:12 +02:00
Amit 2a6a1852f1 Cache Plugin: return non-fixed TTL for cached entries 2018-02-09 17:59:04 +02:00
Frank Denis c42ae840db
Merge pull request #107 from Bitti09/master
switched  to https version  when available
2018-02-08 16:21:17 +01:00
Bitti09 a4e4c9da8e switched to https version when available 2018-02-08 16:18:40 +01:00
Frank Denis 063a9b6957 Remove Solaris test builds 2018-02-07 23:37:56 +01:00
Frank Denis 148b19cfd1 Use Go 1.10rc2 2018-02-07 22:50:38 +01:00
Frank Denis dfe68118c6 Don't suggest that URLs are optional in the example config file
This is confusing, and virtually everybody needs to specify
URLs no matter what.

Fixes #101
2018-02-07 10:48:41 +01:00
Frank Denis 16c75172ad Remove "starting"
Fixes #97
2018-02-06 19:33:58 +01:00
Frank Denis 453299e49a 2.0.0 final 2018-02-06 16:13:06 +01:00
Frank Denis d644cf0c41 Move servers down 2018-02-06 16:11:53 +01:00
Frank Denis 6863ab66d5 Update dlog 2018-02-06 16:07:54 +01:00
Frank Denis 404c21816e Use a more permanent URLm even if it's a redirect 2018-02-06 14:27:45 +01:00
Frank Denis f6b6d70615 Add knobs to filter by protocol 2018-02-06 14:11:58 +01:00
Frank Denis 31c16c0dbb Nits 2018-02-05 19:25:52 +01:00
Frank Denis af0833387a Close idle connections after an error; reduce idle connections timeout 2018-02-05 19:03:04 +01:00
Frank Denis 7f5d67881b Add a super secret way to print cert hashes
Not so secret. The purpose is to avoid log pollution, while still
allowing people setting up DoH servers to quickly view the
certificate chain.
2018-02-05 13:24:17 +01:00
Frank Denis 5c52199ee1 draft 3 says queries should use "dns", previous drafts said "body"
Send both until servers adjust :/
2018-02-05 11:36:15 +01:00
Frank Denis 43f3e64bd9 DoH: fallback to GET on servers that don't support POST 2018-02-05 11:30:10 +01:00
Frank Denis 8a7569555c Don't warn if lbStrategy is empty 2018-02-05 01:53:23 +01:00
Frank Denis a43352e160 Make the load-balancing strategy configurable 2018-02-04 21:23:39 +01:00
Frank Denis 88434fc39f Prepare support for multiple load balancing strategies 2018-02-04 21:13:54 +01:00
Frank Denis f319088506 restrict. is too restrictive 2018-02-04 15:20:17 +01:00
Frank Denis 6f546b4c21 Use Cache-Control 2018-02-04 13:48:51 +01:00
Frank Denis 6b49470b95 Update deps, include cachecontrol 2018-02-04 13:48:40 +01:00
Frank Denis ed60976dd2 Infer TTL from Date: and Expire: headers
Unfortunately, Google DNS sets Expire: to the same value as Date:

So we may want to use Cache-Control instead.
2018-02-04 13:35:40 +01:00
Frank Denis 458da8fa77 DoH: use 0 as a transaction ID
Reject short TCP queries early by the way
2018-02-04 12:57:54 +01:00
Frank Denis 2eed62f1e2 Add a setMaxTTL() function
Will be useful to interprete HTTP cache headers in DoH
2018-02-04 12:39:33 +01:00
Frank Denis 454e1bdfbc Link to the latest draft of DNS-over-HTTPS 2018-02-04 12:20:26 +01:00
Frank Denis a4b70fa56d Last released candidate, so people can test cloaking 2018-02-04 12:00:24 +01:00
Frank Denis 9d69811de9 Add limits to HTTP requests 2018-02-04 11:33:04 +01:00
Frank Denis 9ee7e522b1 Proper stamps length check 2018-02-04 11:04:29 +01:00
Frank Denis cfeb25a4c2 cloak: decrement TTL 2018-02-04 09:36:57 +01:00
Frank Denis d005a76dc4 Add some comments 2018-02-04 02:29:09 +01:00
Frank Denis 18167c0f47 If we already performed a resolution before, even partial, don't retry
(at least until the TTL expires)

So, if www.google.com is cloaked, and forcesafesearch returns a A
record but no AAAA, return the cloaked A record for A queries, but
don't return the actual AAAA record for AAAA queries: return a
synthetic empty response instead.
2018-02-04 02:22:38 +01:00
Frank Denis 5c18c51116 We need to manage the TTL properly, but in the meantime, reduce log verbosity 2018-02-04 02:12:45 +01:00