dearsky/numa
1
0
Fork 0
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases 25 Wiki Activity

fix: accept tls:// and https:// in [[forwarding]] upstreams #101

Merged
razvandimescu merged 1 commits from fix/forward-tls-upstream into main 2026-04-14 18:09:59 +08:00
Conversation 0 Commits 1 Files Changed 5 +75 -15
razvandimescu commented 2026-04-14 14:23:28 +08:00 (Migrated from github.com)
Copy Link

Summary

  • [[forwarding]] rules now accept tls://IP[:port]#hostname and https://…/dns-query in addition to plain UDP, closing #100
  • Root cause: config.rs reached for parse_upstream_addr (UDP-only primitive) instead of the richer parse_upstream used by [upstream].address and fallback
  • Fix is a type widening: ForwardingRule.upstream: SocketAddr → Upstream. parse_upstream_addr demoted to pub(crate) so the same mistake can't recur from outside the crate
  • numa.toml gains commented DoT and DoH [[forwarding]] examples

Test plan

  • Red-first: added forwarding_upstream_accepts_{dot,doh}_scheme tests — verified they failed with the exact error from #100 before the fix, pass after
  • Existing UDP regression tests kept passing: forwarding_upstream_{with_explicit_port,defaults_to_port_53,invalid_upstream_returns_error}, merge/precedence tests, and end-to-end forwarding_rule_overrides_special_use_domain + pipeline_forwarding_returns_upstream_answer in ctx.rs
  • Added matches!(Upstream::Udp(_)) variant pin on the UDP path so future drift (e.g. parser choosing a different variant for a bare IP) gets caught
  • make all green (fmt, clippy -D warnings, audit, build, 284 tests)
## Summary - `[[forwarding]]` rules now accept `tls://IP[:port]#hostname` and `https://…/dns-query` in addition to plain UDP, closing #100 - Root cause: `config.rs` reached for `parse_upstream_addr` (UDP-only primitive) instead of the richer `parse_upstream` used by `[upstream].address` and `fallback` - Fix is a type widening: `ForwardingRule.upstream: SocketAddr → Upstream`. `parse_upstream_addr` demoted to `pub(crate)` so the same mistake can't recur from outside the crate - `numa.toml` gains commented DoT and DoH `[[forwarding]]` examples ## Test plan - [x] Red-first: added `forwarding_upstream_accepts_{dot,doh}_scheme` tests — verified they failed with the exact error from #100 before the fix, pass after - [x] Existing UDP regression tests kept passing: `forwarding_upstream_{with_explicit_port,defaults_to_port_53,invalid_upstream_returns_error}`, merge/precedence tests, and end-to-end `forwarding_rule_overrides_special_use_domain` + `pipeline_forwarding_returns_upstream_answer` in `ctx.rs` - [x] Added `matches!(Upstream::Udp(_))` variant pin on the UDP path so future drift (e.g. parser choosing a different variant for a bare IP) gets caught - [x] `make all` green (fmt, clippy `-D warnings`, audit, build, 284 tests)
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
bug
Something isn't working
 dependencies
Pull requests that update a dependency file
 docker
Pull requests that update docker code
 documentation
Improvements or additions to documentation
 duplicate
This issue or pull request already exists
 enhancement
New feature or request
 github_actions
Pull requests that update GitHub Actions code
 good first issue
Good for newcomers
 help wanted
Extra attention is needed
 invalid
This doesn't seem right
 question
Further information is requested
 rust
Pull requests that update rust code
 wontfix
This will not be worked on
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
dearsky
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: dearsky/numa#101
Delete Branch "fix/forward-tls-upstream"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?