Change #271390
| Category | None |
| Changed by | Stefan Eissing <stefan@eissing.org> |
| Changed at | Tue 16 Jun 2026 23:15:43 |
| Repository | https://api.github.com/repos/curl/curl |
| Project | curl/curl |
| Branch | master |
| Revision | 92db819714dc80944aa5302cbb94bd58d6983518 |
Comments
cf-dns: pass peer for result lookups The DNS filter knows the peer it resolves and the code parts that want the results know the peer as well. Pass it to lookup methods to make sure results match. Background: when tunneling, the resolved peer is not always the one that other filters are looking for. Especially when HTTPS-RR results are accessed in TLS filters, those will differ. This prevents a HTTPS-RR for a proxy to be used for the origin when ECH is activated. To make ECH work through a tunnel, we need to start an additional resolve. Something to be fixed after 8.21. Closes #22042
Changed files
- docs/KNOWN_BUGS.md
- lib/cf-dns.c
- lib/cf-dns.h
- lib/cf-https-connect.c
- lib/cf-ip-happy.c
- lib/socks.c
- lib/vquic/cf-ngtcp2-cmn.c
- lib/vquic/cf-quiche.c
- lib/vtls/openssl.c
- lib/vtls/rustls.c
- lib/vtls/wolfssl.c