From: Simon Kelley Date: Sun, 9 Mar 2025 16:15:16 +0000 (+0000) Subject: Documentation for --do-0x20-encode. X-Git-Tag: v2.91rc6~2 X-Git-Url: https://thekelleys.org.uk/gitweb/?a=commitdiff_plain;h=fc9135ca9f8c78922b526a21ecca15a5c14e2d80;p=dnsmasq.git Documentation for --do-0x20-encode. --- diff --git a/CHANGELOG b/CHANGELOG index dbf9bd7..d151fda 100644 --- a/CHANGELOG +++ b/CHANGELOG @@ -113,9 +113,11 @@ version 2.91 badly with rare broken DNS servers which don't preserve the case of the query in their reply. The first time a reply is returned which matches the query in all respects except case, a warning - will be logged. If this coincides with DNS not functioning, it - is necessary to disable bit 0x20 encoding with --no-0x20-encode. - + will be logged. In this release, 0x020-encoding is default-off + and must be explicitly enabled with --do-0x20-encoding. In future + releases it may default on. You can avoid a future release + changing the behaviour of an installation with --no-x20-encode. + Fix a long-standing problem when two queries which are identical in every repect _except_ case, get combined by dnsmasq. If dnsmasq gets eg, two queries for example.com and Example.com diff --git a/man/dnsmasq.8 b/man/dnsmasq.8 index ff3ef6e..0d844c9 100644 --- a/man/dnsmasq.8 +++ b/man/dnsmasq.8 @@ -852,13 +852,17 @@ name on successive queries, for load-balancing. This turns off that behaviour, so that the records are always returned in the order that they are received from upstream. .TP -.B --no-0x20-encode -By default, dnsmasq scrambles the case of letters in DNS queries it sends upstream as a security feature. +.B --do-0x20-encode, --no-0x20-encode +Dnsmasq can scramble the case of letters in DNS queries it sends upstream as a security feature. This technique can interact badly with rare broken DNS servers which don't preserve the case of the query in their reply. The first time a reply is returned which matches the query in all respects except case, a warning will be logged. If this coincides with DNS not functioning, it -is necessary to disable this scrambling with --no-0x20-encode. +is necessary to disable the feature. As at version 2.91, 0x20 encoding +is disabled by default, and must be enabled with --do-0x20-encode. The default +may change in the future, so to be sure of its status after an upgrade, set --do-0x20-encode +or --no-0x20-encode in your config. --no-0x20-encode overrides --do-x20-encode or a future default +0x20-encode enable. .TP .B --use-stale-cache[=] When set, if a DNS name exists in the cache, but its time-to-live has expired, dnsmasq will return the data anyway. (It attempts to refresh the