You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Brendan Creane
0b4c0f2080
net/dns/resolver: treat DNS REFUSED responses as soft errors in forwarder race ( #19053 ) ...
When racing multiple upstream DNS resolvers, a REFUSED (RCode 5) response
from a broken or misconfigured resolver could win the race and be returned
to the client before healthier resolvers had a chance to respond with a
valid answer. This caused complete DNS failure in cases where, e.g., a
broken upstream resolver returned REFUSED quickly while a working resolver
(such as 1.1.1.1) was still responding.
Previously, only SERVFAIL (RCode 2) was treated as a soft error. REFUSED
responses were returned as successful bytes and could win the race
immediately. This change also treats REFUSED as a soft error in the UDP
and TCP forwarding paths, so the race continues until a better answer
arrives. If all resolvers refuse, the first REFUSED response is returned
to the client.
Additionally, SERVFAIL responses from upstream resolvers are now returned
verbatim to the client rather than replaced with a locally synthesized
packet. Synthesized SERVFAIL responses were authoritative and guaranteed
to include a question section echoing the original query; upstream
responses carry no such guarantees but may include extended error
information (e.g. RFC 8914 extended DNS errors) that would otherwise
be lost.
Fixes #19024
Signed-off-by: Brendan Creane <bcreane@gmail.com>
4 weeks ago
..
publicdns
net/dns: add test for DoH upgrade of system DNS
3 months ago
resolvconffile
all: remove AUTHORS file and references to it
3 months ago
resolver
net/dns/resolver: treat DNS REFUSED responses as soft errors in forwarder race ( #19053 )
4 weeks ago
config.go
net/dns: make MagicDNS IPv6 registration opt-out now, not opt-in
2 months ago
dbus.go
all: remove AUTHORS file and references to it
3 months ago
debian_resolvconf.go
all: remove AUTHORS file and references to it
3 months ago
direct.go
all: remove AUTHORS file and references to it
3 months ago
direct_linux_test.go
all: remove AUTHORS file and references to it
3 months ago
direct_test.go
all: remove AUTHORS file and references to it
3 months ago
direct_unix_test.go
all: remove AUTHORS file and references to it
3 months ago
dns_clone.go
net/dns, ipn/local: skip health warnings in dns forwarder when accept-dns is false ( #18572 )
2 months ago
dns_view.go
net/dns, ipn/local: skip health warnings in dns forwarder when accept-dns is false ( #18572 )
2 months ago
flush_default.go
all: remove AUTHORS file and references to it
3 months ago
flush_windows.go
all: remove AUTHORS file and references to it
3 months ago
ini.go
all: remove AUTHORS file and references to it
3 months ago
ini_test.go
all: remove AUTHORS file and references to it
3 months ago
manager.go
appc,feature/conn25,net: Add DNS response interception for conn25
2 months ago
manager_darwin.go
all: remove AUTHORS file and references to it
3 months ago
manager_default.go
all: remove AUTHORS file and references to it
3 months ago
manager_freebsd.go
all: remove AUTHORS file and references to it
3 months ago
manager_linux.go
all: use Go 1.26 things, run most gofix modernizers
1 month ago
manager_linux_test.go
all: remove AUTHORS file and references to it
3 months ago
manager_openbsd.go
all: remove AUTHORS file and references to it
3 months ago
manager_plan9.go
all: remove AUTHORS file and references to it
3 months ago
manager_plan9_test.go
all: remove AUTHORS file and references to it
3 months ago
manager_solaris.go
all: remove AUTHORS file and references to it
3 months ago
manager_tcp_test.go
net/dns: make MagicDNS IPv6 registration opt-out now, not opt-in
2 months ago
manager_test.go
net/dns: make MagicDNS IPv6 registration opt-out now, not opt-in
2 months ago
manager_windows.go
control/controlknobs,net/dns,tailcfg: add a control knob that disables hosts file updates on Windows
2 months ago
manager_windows_test.go
all: remove AUTHORS file and references to it
3 months ago
nm.go
all: remove AUTHORS file and references to it
3 months ago
noop.go
net/dns: skip DNS base config when using userspace networking ( #18355 )
3 months ago
nrpt_windows.go
net/dns: use the correct separator for multiple servers in the same NRPT rule on Windows
4 weeks ago
openresolv.go
all: use Go 1.26 things, run most gofix modernizers
1 month ago
osconfig.go
all: remove AUTHORS file and references to it
3 months ago
osconfig_test.go
all: remove AUTHORS file and references to it
3 months ago
resolvconf-workaround.sh
all: remove AUTHORS file and references to it
3 months ago
resolvconf.go
all: remove AUTHORS file and references to it
3 months ago
resolvconfpath_default.go
all: remove AUTHORS file and references to it
3 months ago
resolvconfpath_gokrazy.go
all: remove AUTHORS file and references to it
3 months ago
resolvd.go
all: remove AUTHORS file and references to it
3 months ago
resolved.go
all: remove AUTHORS file and references to it
3 months ago
utf.go
all: remove AUTHORS file and references to it
3 months ago
utf_test.go
all: remove AUTHORS file and references to it
3 months ago
wsl_windows.go
all: use Go 1.26 things, run most gofix modernizers
1 month ago
Brendan Creane