mirror of
https://github.com/cloudflare/cloudflared.git
synced 2026-06-23 04:10:20 +00:00
João "Pisco" Fernandes
9388e7f48c
Remove the DNS over HTTPS (DoH) proxy feature built on CoreDNS due to security vulnerabilities (GO-2025-3942, GO-2026-4289). This removes: - Standalone proxy-dns command (cloudflared proxy-dns) - Tunnel subcommand (cloudflared tunnel proxy-dns) - Proxy-dns flags for tunnel run (--proxy-dns, --proxy-dns-port, etc.) - Config file resolver section support - tunneldns/ package (CoreDNS-based implementation) - Related component tests BREAKING CHANGE: The proxy-dns feature is no longer available. Users should migrate to alternative DNS over HTTPS solutions.
25 lines
1.2 KiB
Python
25 lines
1.2 KiB
Python
#!/usr/bin/env python
|
|
from conftest import CfdModes
|
|
from constants import METRICS_PORT
|
|
import time
|
|
from util import LOGGER, start_cloudflared, wait_tunnel_ready, get_quicktunnel_url, send_requests
|
|
|
|
class TestQuickTunnels:
|
|
def test_quick_tunnel(self, tmp_path, component_tests_config):
|
|
config = component_tests_config(cfd_mode=CfdModes.QUICK)
|
|
LOGGER.debug(config)
|
|
with start_cloudflared(tmp_path, config, cfd_pre_args=["tunnel", "--ha-connections", "1"], cfd_args=["--hello-world"], new_process=True):
|
|
wait_tunnel_ready(require_min_connections=1)
|
|
time.sleep(10)
|
|
url = get_quicktunnel_url()
|
|
send_requests(url, 3, True)
|
|
|
|
def test_quick_tunnel_url(self, tmp_path, component_tests_config):
|
|
config = component_tests_config(cfd_mode=CfdModes.QUICK)
|
|
LOGGER.debug(config)
|
|
with start_cloudflared(tmp_path, config, cfd_pre_args=["tunnel", "--ha-connections", "1"], cfd_args=["--url", f"http://localhost:{METRICS_PORT}/"], new_process=True):
|
|
wait_tunnel_ready(require_min_connections=1)
|
|
time.sleep(10)
|
|
url = get_quicktunnel_url()
|
|
send_requests(url+"/ready", 3, True)
|