Frank Denis
|
56a8e2eb6a
|
Add TTL and serve-stale support to the DNS cache
Force certificate refresh on load
|
5 years ago |
Frank Denis
|
2135af9610
|
up
|
5 years ago |
Frank Denis
|
c98a202f80
|
Add a simple built-in DNS cache
(TTL is not handled yet)
|
5 years ago |
Frank Denis
|
cf1cbdb51d
|
Split the resolution part
|
5 years ago |
Frank Denis
|
2366456eb0
|
up
|
5 years ago |
Frank Denis
|
1dd5ed07c1
|
Import from dnscrypt-wrapper
|
5 years ago |
Frank Denis
|
e681e43070
|
ADd a key cache and improve logging
|
5 years ago |
Frank Denis
|
f0c6235d33
|
Save states asynchronously
|
5 years ago |
Frank Denis
|
bc4b10f637
|
Save resolver keys and certificates in the state
|
5 years ago |
Frank Denis
|
0592855b25
|
kaboom the compiler
|
5 years ago |
Frank Denis
|
77a5878a52
|
Remove unused things
|
5 years ago |
Frank Denis
|
8268f4d241
|
Better auto renewal
|
5 years ago |
Frank Denis
|
6c10602af6
|
Automatic cert renewal
|
5 years ago |
Frank Denis
|
93774a892f
|
Set Unix permissions on the state file
|
5 years ago |
Frank Denis
|
00cab788b8
|
Drop privileges
|
5 years ago |
Frank Denis
|
e31363e926
|
Move everything to a configuration file
|
5 years ago |
Frank Denis
|
2c519a2b46
|
Move to TOML (1)
|
5 years ago |
Frank Denis
|
d8d8757c74
|
TLS proxy return code
|
5 years ago |
Frank Denis
|
a62b4a0cf7
|
Add TLS proxying
|
5 years ago |
Frank Denis
|
a0454b8aff
|
Detect TLS connections
|
5 years ago |
Frank Denis
|
89704db220
|
Be less restrictive regarding packet sizes
|
5 years ago |
Frank Denis
|
7c76ee9a13
|
Clean a few things
|
5 years ago |
Frank Denis
|
a135814891
|
Persist the provider key
Of course we also need to persist the resolver keys
|
5 years ago |
Frank Denis
|
67a935f291
|
Padding
|
5 years ago |
Frank Denis
|
0505f886e5
|
Handle truncated responses when len(query)<len(response)
|
5 years ago |
Frank Denis
|
eb1b857274
|
Send encrypted DNS responses
|
5 years ago |
Frank Denis
|
65c2bba989
|
Keep the shared secret around
|
5 years ago |
Frank Denis
|
337eb4924d
|
Refactor a bit, remove question padding
|
5 years ago |
Frank Denis
|
5f0bb6daf5
|
Start decrypting DNSCrypt queries
|
5 years ago |
Frank Denis
|
58c5452084
|
Set TCP source address for outgoing connections
|
5 years ago |
Frank Denis
|
e1bd1f52dc
|
Recycle old connections
|
5 years ago |
Frank Denis
|
236b424fbe
|
Keep track of the number of clients
|
5 years ago |
Frank Denis
|
82924686d9
|
Check the peer address
Just for paranoia, as it is redundant with the connect() call, but
cheap enough and the connect() call may eventually be removed.
|
5 years ago |
Frank Denis
|
0c1ba485f4
|
merge
|
5 years ago |
Frank Denis
|
0b3eabb488
|
Retry truncated responses over TCP
|
5 years ago |
Frank Denis
|
35819a2375
|
Proxying
|
5 years ago |
Frank Denis
|
f7b2a1777a
|
up
|
5 years ago |
Frank Denis
|
46c933e398
|
Print the DNS stamp at startup
|
5 years ago |
Frank Denis
|
8689469722
|
up
|
5 years ago |
Frank Denis
|
1dc7ce9a05
|
up
|
5 years ago |