Open Bug 1852752 Opened 8 months ago Updated 2 days ago

[meta] Allow resolving HTTPS (or arbitrary record types) RR with native DNS (without TRR)

Categories

(Core :: Networking: DNS, task, P3)

Product:
Core
Component:
Networking: DNS
Type:
task

Tracking

()

People

(Reporter: valentin, Assigned: kershaw)

References

(Depends on 5 open bugs, Blocks 1 open bug)

Details

(Keywords: meta, Whiteboard: [necko-triaged])

Considering how useful HTTPS records are, and that a lot of users don't have DoH enabled, we want to allow resolving HTTPS records with the native resolver.

Windows

On all platforms, we use getaddrinfo to resolve A and AAAA requests, but on Windows we also use DnsQuery_A to perform a second DNS resolution in order to get the TTL of the DNS record.
This same DNS_QueryA method can be used to resolve HTTPS records on windows
Linux

res_nquery
https://man7.org/linux/man-pages/man3/resolver.3.html

OSX

res_query
https://developer.apple.com/library/archive/documentation/System/Conceptual/ManPages_iPhoneOS/man3/res_query.3.html

Android

Theoretically we should be able to use the same linux implementation for Android too. However, as a follow-up we may want to look into using the available Android (Java) DNS APIs as we've determined that getaddrinfo sometimes hangs for an unexpected amount of time, so we need to check if that's also the case for this function as well.

Depends on: 1852900
Depends on: 1852901
Depends on: 1852902
Depends on: 1852904
Depends on: 1852907
Blocks: 1500289
Priority: P2 → P3

Another possibility at least on unix is the ldns library.

And on linux when systemd-resolved is used, then the org.freedesktop.resolve1 dbus api could be used.

Depends on: 1869269

With "HTTPS records", I assume you mean RFC 9460 https://www.rfc-editor.org/rfc/rfc9460.html ?

On Linux, it's difficult to depend on certain applications (like systemd or a commandline app) to be installed. "Linux Standard Base" (LSB) might be a helpful starting point.

With "HTTPS records", I assume you mean RFC 9460

Yes.

On Linux, it's difficult to depend on certain applications (like systemd or a commandline app) to be installed

Well, what I was envisioning is that at runtime firefox would detect if the org.freedesktop.resolv1 dbus interface is available, and if it is, use that, and if not fall back to something else. Although, I suppose that would probably add some complexity, and would still need something to fall back to.

Depends on: 1873461
Depends on: 1873898
Depends on: 1874464
Blocks: 1875718
Depends on: 1881123
Assignee: nobody → kershaw
No longer blocks: 1500289
Depends on: 1882856
Depends on: 1885529
Depends on: 1888815
Depends on: 1890999
Depends on: 1891423
Depends on: 1893944
Depends on: 1893970
Depends on: 1895226

This feature will be riding the trains in Firefox 127 - see bug 1890999.

See Also: → 1895908
You need to log in before you can comment on or make changes to this bug.