aboutsummaryrefslogtreecommitdiff
path: root/DnsTlsServer.cpp
Commit message (Collapse)AuthorAgeFilesLines
* Add toString for DnsTlsServerMike Yu2023-07-071-0/+5
| | | | | | | | | This toString() will output the IP address as well as the provider hostname. It makes the log clearer to tell us whether a private DNS is for opportunistic or strict mode. Test: atest Change-Id: Ie260ced35be234190e6fca137c45a8944ff0d35c
* Extend DnsTlsServer to return IP stringMike Yu2020-11-271-0/+6
| | | | | | | | No functionality change. Bug: 79727473 Test: cd packages/modules/DnsResolver && atest Change-Id: I7adca3f240197fe59f683abefaa0005af0fbc141
* Move connectTimeout to DnsTlsSocketMike Yu2020-09-261-1/+1
| | | | | | | | | | | | Because DnsTlsServer is not freshed along with creating or destroying a network, move the flag into Experiments class so that a new value of the flag can take effect on already-existing networks. Bug: 149445907 Bug: 120182528 Test: cd packages/modules/DnsResolver && atest Change-Id: I37afed9606765e7715ecb23e4946305ac79a21e3
* Make private DNS connect timeout configurableMike Yu2019-10-091-5/+1
| | | | | | | | | | | | | | | | | | It could take time to connect to a private DNS server if the system allows 6 syn-retransmissions (net.ipv4.tcp_syn_retries = 6), which can take time more than 2 minutes. This change allows us to configure the timeout value via dnsresolver binder service, and keep the default timeout value the same as the original design. Bug: 120182528 Bug: 141218721 Test: atest --include-subdirs packages/modules/DnsResolver Test: m com.android.resolv adb install com.android.resolv rebooted Change-Id: I8711a31172cfc671bf348191db363e7863831470
* Remove support for DNS-over-TLS certificate fingerprints.waynema2019-08-081-3/+2
| | | | | | | | | | Inject a test Certificate authority for DNS-OVER-TLS test, and It provides proper test coverage to TLS cerificate validation. Test: built, flashed, booted atest pass Change-Id: I32b8c743d991ba1f113b37165ff01f4b2acc9da2
* Make all the DnsTls headers private to libnetd_resolvBernie Innocenti2019-02-011-1/+1
| | | | | | Test: m libnetd_resolv netd Test: atest resolv_integration_test Change-Id: Icae95641733abe7fe86b903dd3bcf69b08c83285
* Merge libnetddns into libnetd_resolvMike Yu2018-10-301-0/+133
libnetddns is the library for DNS-over-TLS and is statically linked to netd. Deprecate it and move them to libnetd_resolv as a more general DNS library for netd. This change comprises: [1] Clean up netd/server/dns/*. Move all DnsTls* files to netd/resolv/ to parts of libnetd_resolv library. [2] Export DnsTls* classes being visible for netd. It will only be temporary for a while. [3] Remove the libssl dependency in netd. The relevant stuff is moved to libnetd_resolv. Note that DnsTls* classes are still required for DnsProxyListener and ResolverController to manipulate private DNS servers even after this change. Bug: 113628807 Test: as follows - built, flashed, booted - system/netd/tests/runtests.sh - DNS-over-TLS in live network passed Change-Id: Ieac5889b4ebe737f876b3dcbe1a8da2b2b1b629d
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-20 16:53:56 +0000