This option specifies the upstream domain name used for TLS authentication with
the supplied server certificate
+#### `option tls_port`
+
+This option specifies the TLS port for the upstream resolver. If not specified,
+this defaults to 853.
+
#### `list spki`
This list specifies the SPKI pinset which is verified against the keys in the
config resolver
option address '2606:4700:4700::1111'
option tls_auth_name 'cloudflare-dns.com'
+ # option tls_port 853
# list spki 'sha256/yioEpqeR4WtDwE9YxNVnCEkTxIjx6EEIwFSQW+lJsbc='
config resolver
option address '2606:4700:4700::1001'
option tls_auth_name 'cloudflare-dns.com'
+ # option tls_port 853
# list spki 'sha256/yioEpqeR4WtDwE9YxNVnCEkTxIjx6EEIwFSQW+lJsbc='
config resolver
option address '1.1.1.1'
option tls_auth_name 'cloudflare-dns.com'
+ # option tls_port 853
# list spki 'sha256/yioEpqeR4WtDwE9YxNVnCEkTxIjx6EEIwFSQW+lJsbc='
config resolver
option address '1.0.0.1'
option tls_auth_name 'cloudflare-dns.com'
+ # option tls_port 853
# list spki 'sha256/yioEpqeR4WtDwE9YxNVnCEkTxIjx6EEIwFSQW+lJsbc='
local config=$1
local address
local tls_auth_name
+ local tls_port
local tls_pubkey_pinset_section=0
if [ "$upstream_recursive_servers_section" = 0 ]; then
fi
config_get address "$config" address
config_get tls_auth_name "$config" tls_auth_name
+ config_get tls_auth_port "$config" tls_port ""
echo " - address_data: $address" >> "$config_file"
echo " tls_auth_name: \"$tls_auth_name\"" >> "$config_file"
+ if [ -n "$tls_port" ]; then
+ echo " tls_port: $tls_port" >> "$config_file"
+ fi
handle_resolver_spki()
{
projects / feed / packages.git / commitdiff