From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.org/gmane.linux.lib.musl.general/12331 Path: news.gmane.org!.POSTED!not-for-mail From: =?UTF-8?Q?Stefan_Fr=c3=b6berg?= Newsgroups: gmane.linux.lib.musl.general Subject: Re: Feature request: TCP DNS support Date: Thu, 4 Jan 2018 14:55:54 +0200 Message-ID: <24fc24fd-115f-e3b3-6121-4bcc1de56a4e@petroprogram.com> References: <5e59a94d-251c-9c2d-89fd-731d43b2822d@petroprogram.com> <20180104013157.GQ1627@brightrain.aerifal.cx> Reply-To: musl@lists.openwall.com NNTP-Posting-Host: blaine.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Trace: blaine.gmane.org 1515070599 10446 195.159.176.226 (4 Jan 2018 12:56:39 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Thu, 4 Jan 2018 12:56:39 +0000 (UTC) User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0 Cc: musl@lists.openwall.com To: Rich Felker Original-X-From: musl-return-12347-gllmg-musl=m.gmane.org@lists.openwall.com Thu Jan 04 13:56:35 2018 Return-path: Envelope-to: gllmg-musl@m.gmane.org Original-Received: from mother.openwall.net ([195.42.179.200]) by blaine.gmane.org with smtp (Exim 4.84_2) (envelope-from ) id 1eX54L-0001p1-GM for gllmg-musl@m.gmane.org; Thu, 04 Jan 2018 13:56:25 +0100 Original-Received: (qmail 13671 invoked by uid 550); 4 Jan 2018 12:58:27 -0000 Mailing-List: contact musl-help@lists.openwall.com; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-ID: Original-Received: (qmail 13653 invoked from network); 4 Jan 2018 12:58:26 -0000 In-Reply-To: <20180104013157.GQ1627@brightrain.aerifal.cx> Content-Language: en-US Xref: news.gmane.org gmane.linux.lib.musl.general:12331 Archived-At: Hello Rich Rich Felker kirjoitti 04.01.2018 klo 03:31: > On Thu, Jan 04, 2018 at 02:05:06AM +0200, Stefan Fröberg wrote: >> Dear Sir >> >> I have managed to compile my own, statically linked, portable little >> browser that uses musl and QtWebKit. >> >> Initial tests looks good but when testing encrypted DNS-over-TLS (which >> needs TCP instead of UDP) with my system, >> I could get nowhere. >> So I guess musl does not yet support TCP DNS ? >> >> Could you please add support for passing TCP DNS requests too with musl ? >> >> It's all the rage now that Android has added support for it and the >> DNS-over-TLS >> standard starts to be finished, if not already finished. > The supported way to do this with musl is via a nameserver on > localhost responding to udp queries and performing whatever backend > queries you want it to do. This (having a ns on localhost) is > fundamentally necessary for meaningful DNSSEC support anyway, too. > > Even if musl did TCP itself, that wouldn't help you get DNS-over-TLS; > for that you would need a TLS stack in libc. And you really don't want > that. > > Rich Oh, but doesn't OpenSSL handle the encryption, aka TLS part ? What source files in musl now currently handle the namelookup ? Best regards Stefan Fröbreg