Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230

 

 

 

DoH support in Unbound package

User discussion about Debian Development, Debian Project News and Announcements. Not for support questions.
Post Reply
Message
Author
Cam Eliot
Posts: 4
Joined: 2021-05-03 13:21

DoH support in Unbound package

#1 Post by Cam Eliot »

DoH support is disabled in the Unbound package due to the nghttp2 library not being compiled in.

A bug was opened in early November 2020 with no action taken as yet: https://bugs.debian.org/cgi-bin/bugrepo ... bug=973793

Is there anything more that can be done here?

User avatar
sunrat
Administrator
Administrator
Posts: 6412
Joined: 2006-08-29 09:12
Location: Melbourne, Australia
Has thanked: 116 times
Been thanked: 461 times

Re: DoH support in Unbound package

#2 Post by sunrat »

What version of Debian are you using? I see the bug is for unbound 1.12.0-1. v1.13.1-1~bpo10+1 is available in buster backports or v1.13.1-1 in testing. No idea if DNS-over-HTTPS is active in those versions though.
Your post in the bug report mentions Ubuntu, support for which you should contact Ubuntu to file a Ubuntu bug report.
“ computer users can be divided into 2 categories:
Those who have lost data
...and those who have not lost data YET ”
Remember to BACKUP!

Cam Eliot
Posts: 4
Joined: 2021-05-03 13:21

Re: DoH support in Unbound package

#3 Post by Cam Eliot »

I may be wrong but I believe the Unbound package in Ubuntu is the same as the Debian package, so when Debian gets updated, so will Ubuntu.

Cam Eliot
Posts: 4
Joined: 2021-05-03 13:21

Re: DoH support in Unbound package

#4 Post by Cam Eliot »

Further to this, the changelogs look identical.

https://metadata.ftp-master.debian.org/ ... _changelog
http://changelogs.ubuntu.com/changelogs ... /changelog

So it would appear this bug being fixed in Debian would be mutually beneficial.

Cam Eliot
Posts: 4
Joined: 2021-05-03 13:21

Re: DoH support in Unbound package

#5 Post by Cam Eliot »

Confirmed, still the same situation in Bullseye:

May 3 20:59:34 instance-1 systemd[1]: Starting Unbound DNS server...
May 3 20:59:34 instance-1 unbound: [1483:0] notice: init module 0: subnet
May 3 20:59:34 instance-1 unbound: [1483:0] notice: init module 1: validator
May 3 20:59:34 instance-1 unbound: [1483:0] notice: init module 2: iterator
May 3 20:59:34 instance-1 unbound: [1483:0] warning: HTTPS port configured, but no TLS tls-service-key or tls-service-pem set
May 3 20:59:34 instance-1 unbound: [1483:0] warning: Unbound is not compiled with nghttp2. This is required to use DNS-over-HTTPS.
May 3 20:59:34 instance-1 systemd[1]: Started Unbound DNS server.
May 3 20:59:34 instance-1 systemd[1]: Condition check resulted in Unbound DNS server via resolvconf being skipped.
May 3 20:59:34 instance-1 unbound: [1483:0] info: start of service (unbound 1.13.1).

Post Reply