From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server-vie001.gnuweeb.org X-Spam-Level: X-Spam-Status: No, score=-1.2 required=5.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,URIBL_DBL_BLOCKED_OPENDNS, URIBL_ZEN_BLOCKED_OPENDNS autolearn=ham autolearn_force=no version=3.4.6 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gnuweeb.org; s=new2025; t=1759388707; bh=VAOpBx6e8Av4lEbzppHnXwWY9Ssj8VClil5t6K1HLBs=; h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version: Content-Type:In-Reply-To:X-Gw-Outgoing-Server-Hash:X-Gw-Message-ID: X-Gw-PM-Hash:Message-ID:Date:From:Reply-To:Subject:To:Cc: In-Reply-To:References:Resent-Date:Resent-From:Resent-To:Resent-Cc: User-Agent:Content-Type:Content-Transfer-Encoding; b=wBsaNcBXXGDyAFXbgZSr/AtAvJGSiCKrU7xfpPXUxxw15abkuWjfnr15THMmj7cXl PKn68MZMFZ5L/A4WTbQo+hj/B94E4432lQeMbldAONn5riGv/R+lXgMRrNjjaq/ReA 44O8MdVQfXH+ggwa/hlDvoBukoj7oCSVdyZYn7z2juoQVnTceSBDSbSKLflQ7R44hn r2BC+d/vd2Zjvn36XmThKXa9r72neN8gfHLu8PPqU0mnSQ8mNcC6u4QDUhcSVhftpz jQfpJwrxmnU+25YhRnDr34mKOORZaEHmKrW1mGTJ3qfG1noZskggYMMEwE+TWISgGk lULUThsHLCOOw== Received: from linux.gnuweeb.org (unknown [182.253.126.153]) by server-vie001.gnuweeb.org (Postfix) with ESMTPSA id 7E00B312798B; Thu, 2 Oct 2025 07:05:06 +0000 (UTC) Date: Thu, 2 Oct 2025 14:05:02 +0700 From: Ammar Faizi To: Alviro Iskandar Setiawan Cc: Ahmad Gani , GNU/Weeb Mailing List Subject: Re: [PATCH gwproxy v13 0/8] Initial work on integration of DNS parser lib in gwproxy Message-ID: <20251002070502.GA18177-ammarfaizi2@gnuweeb.org> References: <20250930085428.717195-1-alviro.iskandar@gnuweeb.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20250930085428.717195-1-alviro.iskandar@gnuweeb.org> X-Gw-Outgoing-Server-Hash: 01afd303c8b96d0c1d5e80aa96a4ee40ec69888f786fa24107c0862c0644af79 X-Gw-Message-ID: b4c797b957cbc187eaccd2c16efb8f138cf3c2441c048c2648ed58e458442a3f X-Gw-PM-Hash: 1c8e474b8a13c0fa92f5e1305c29ba82744320d278981455f02252f32360d8be List-Id: On Tue, Sep 30, 2025 at 03:54:20PM +0700, Alviro Iskandar Setiawan wrote: > How to test this feature: > ./configure --cc=clang --use-new-dns-resolver; > make -j$(nproc); > ./gwproxy --as-socks5=1 --raw-dns=1 --nr-workers=1 --log-level=4 --bind=[::]:1080 --dns-server=1.1.1.1:53; > > Then in another terminal, you can use curl to test it: > curl --proxy socks5h://[::1]:1080 http://example.com; Something is wrong with the DNS resolver when the host is IPv6 only. See the test result below. The first command passes the DNS resolution to the socks5 proxy using "socks5h" protocol. The second command doesn't pass the DNS resolution to the proxy ("socks5" protocol). It fails to connect when "socks5h" protocol is used. ammarfaizi2@integral2:~/p/gwproxy$ curl --proxy socks5h://[::1]:1080 http://ipv6.google.com -I curl: (97) Can't complete SOCKS5 connection to ipv6.google.com. (1) ammarfaizi2@integral2:~/p/gwproxy$ curl --proxy socks5://[::1]:1080 http://ipv6.google.com -I HTTP/1.1 200 OK Content-Type: text/html; charset=ISO-8859-1 Content-Security-Policy-Report-Only: object-src 'none';base-uri 'self';script-src 'nonce-R7kFvjRoN0JGjOEIlvYR6w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info." Date: Thu, 02 Oct 2025 07:00:52 GMT Server: gws X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Transfer-Encoding: chunked Expires: Thu, 02 Oct 2025 07:00:52 GMT Cache-Control: private Set-Cookie: AEC=AaJma5teFbD1EKZ-IdFFaFxb12EGStsW29TNoc6UTvdnTF_lvsrJ-uO5Pnw; expires=Tue, 31-Mar-2026 07:00:52 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax Set-Cookie: NID=525=kMxrGPvttMHU7RVD-aHf_zoDqInsQVb8IB0czwUdjrFGI8oy7dq9FOQlC1PyM88ERuAZpzCP7HG9YCCZVhMahRyjq03p6763EfLWm8CezRxWqCUK-x0pAmjE1_TZOvVbOGSATxFJcwwr40_84bnoVcMbsh8juhzFmWHi7I6mWwnhd76VxT19lDRimvAJnsOcAHEeTwSHx8H7O9E; expires=Fri, 03-Apr-2026 07:00:52 GMT; path=/; domain=.google.com; HttpOnly -- Ammar Faizi