diff options
| author |   florian <florian@openbsd.org> | 2019-01-24 17:39:43 +0000 |
|---|---|---|
| committer | florian <florian@openbsd.org> | 2019-01-24 17:39:43 +0000 |
| commit | d265a5d353d317bc97eb3111703cf93f33b12fdd (patch) | |
| tree | cd3ed70642fe35642b902616ab0f2dd4932526d0 /lib/libc/string/wcslcpy.c | |
| parent | Accept the host key fingerprint as a synonym for "yes" when accepting (diff) | |
| download | wireguard-openbsd-d265a5d353d317bc97eb3111703cf93f33b12fdd.tar.xz wireguard-openbsd-d265a5d353d317bc97eb3111703cf93f33b12fdd.zip | |
Open and close listening sockets on localhost:53 depending on if we can
resolve at all.
We come up without listening and open IPv4 and IPv6 sockets once the
resolver process has determinded that we can speak DNS to the outside
world.
Furthermore close the listening sockets when the resolver process
notices that we can no longer speak DNS to the outside.
This is a last-ditch effort to get out of libc resolver's way and let
it speak directly to e.g. dhcp provided resolvers.
With the recomended configuration of having 127.0.0.1 first in
/etc/resolv.conf and then add dhcp provided resolvers after that our
libc resolver will receive a port unreachable error and immediately
switch to the next one if unwind is not listening on port 53.
(Networks have been observed in the wild that intercept DNS packets and
answer NXDOMAIN if an edns0 option is send with the query.)
Diffstat (limited to 'lib/libc/string/wcslcpy.c')
0 files changed, 0 insertions, 0 deletions