-
- Downloads
Pull request: Added DoH3 support, added TLS resumption
Merge in DNS/dnsproxy from doh3 to master
Squashed commit of the following:
commit 93dc50875caf2df86ce08f22f5fb74e33b7b5ac0
Author: Andrey Meshkov <am@adguard.com>
Date: Fri Sep 16 18:33:38 2022 +0300
fix review comments
commit d19fd61eb69f31c94a9374396cbbefeb566a2163
Author: Andrey Meshkov <am@adguard.com>
Date: Fri Sep 16 17:28:21 2022 +0300
upstream: added comments, minor fixes
commit 9e4bf71275e9d1d3bc1cd72e27812548e8158402
Author: Andrey Meshkov <am@adguard.com>
Date: Fri Sep 16 16:59:57 2022 +0300
upstream: added DoH3 support, added TLS resumption
The changes are pretty considerable in this PR.
First of all, DoH3 support has been added to dnsOverHTTPS. I haven't added
a new type of upstream for that, but added it to the already existing one.
Configuring supported HTTP versions is possible via upstream.Options. When all
versions are enabled, it will "probe" both TLS and QUIC and choose the one that
was faster (just like it's done in Chrome).
Command-line interface now supports a new argument "http3" that is supposed to
enable HTTP/3 globally. At this point it will only enable it for upstreams, but
in the future it will also enable it for the DoH server.
One more important change here is the introduction of TLS sessions cache. It
appears that we weren't benefiting from TLS session resumption mechanism at all,
thank god this is finally fixed.
Finally, AddressToUpstream now supports "h3://" scheme for those who want to try
DoH3 for a particular upstream without enabling it globally. The reasoning for
implementing this custom scheme is the following: currently, only a small share
of public resolvers fully support DoH3. Users may not want to spend time
"probing" every upstream for H3.
commit 8c76e435860699a2d5815fc702b7a7e928eba3ed
Merge: 1145771 1dd831b0
Author: Andrey Meshkov <am@adguard.com>
Date: Fri Sep 16 12:05:34 2022 +0300
Merge branch 'justus-forks-doq-0rtt' into doh3
commit 1145771f7621be5778cf14b47ccfb4aa20d07c81
Author: Andrey Meshkov <am@adguard.com>
Date: Fri Sep 16 11:45:42 2022 +0300
upstream: initial attempt to add a DOH3 upstream
Showing
- .github/workflows/lint.yaml 1 addition, 1 deletion.github/workflows/lint.yaml
- README.md 20 additions, 10 deletionsREADME.md
- go.mod 1 addition, 0 deletionsgo.mod
- go.sum 6 additions, 0 deletionsgo.sum
- main.go 16 additions, 0 deletionsmain.go
- proxy/errors.go 5 additions, 5 deletionsproxy/errors.go
- proxy/server_https.go 8 additions, 10 deletionsproxy/server_https.go
- proxy/upstreams.go 1 addition, 7 deletionsproxy/upstreams.go
- proxyutil/udp_unix.go 2 additions, 3 deletionsproxyutil/udp_unix.go
- upstream/bootstrap.go 104 additions, 51 deletionsupstream/bootstrap.go
- upstream/upstream.go 63 additions, 16 deletionsupstream/upstream.go
- upstream/upstream_dnscrypt.go 4 additions, 3 deletionsupstream/upstream_dnscrypt.go
- upstream/upstream_doh.go 236 additions, 7 deletionsupstream/upstream_doh.go
- upstream/upstream_doh_test.go 264 additions, 0 deletionsupstream/upstream_doh_test.go
- upstream/upstream_dot.go 4 additions, 3 deletionsupstream/upstream_dot.go
- upstream/upstream_plain.go 4 additions, 4 deletionsupstream/upstream_plain.go
- upstream/upstream_pool.go 32 additions, 25 deletionsupstream/upstream_pool.go
- upstream/upstream_pool_test.go 18 additions, 15 deletionsupstream/upstream_pool_test.go
- upstream/upstream_quic.go 45 additions, 35 deletionsupstream/upstream_quic.go
- upstream/upstream_quic_test.go 21 additions, 2 deletionsupstream/upstream_quic_test.go
Loading
Please register or sign in to comment