h3, quic upstreams not working in v0.107.39 on FreeBSD #6301
Comments
|
same issue |
avhm
changed the title
|
@avhm, hello and thanks for the report. Could you please collect a verbose log to help us troubleshoot the issue? You may send it to devteam@adguard.com. |
|
I cannot reproduce this.
Is it the same with the default AdGuard Home build? Also, is it the same for all HTTP/3 upstreams, or only for the unfiltered AdGuard DNS one? |
|
DNS-over-Quic and DNS-over-HTTPS3 are making problems now, |
|
@ainar-g It's the same for all http3 upstreams (was using three separate upstreams), I've only tested the h3:// designation in the DNS upstream UI, not by changing the http3 config (configuration yml is defaults otherwise) Platform is OPNsense 23.7.6-amd64 on FreeBSD 13.2-RELEASE-p3 installed via mimugmail community plugin |
I'll dump this for you tonight when I can get some downtime on the Opnsense router. |
|
Thanks, we've received the logs, but unfortunately they show the opposite, that the HTTP/3 is actually used: Perhaps the upstream check is faulty? Can you send the logs that appear when you push Test upstreams with an |
|
It was another user who sent in the logs I assume, but can confirm (for me at least) that this was an issue with resolution, not just the test. All upstream resolvers were set with h3:// After updating, no requests were returning until I manually set the upstream resolvers to https instead of h3. I'll run the logging on my side with the test trigger too before sending them in later. |
|
Seems like there are quite a few people with issues with QUIC and HTTP/3 in v0.107.39. This is most likely related to quic-go/quic-go#4105. We'll try to rollback to a previous version and see if that fixes the situation. |
|
Logs sent, only thing jumping out at me in the log is failing IPV6 requests - my ISP doesn't route IPV6, so wondering if this is causing the failure state. It looks to me like the IPv4 queries were successful and that H3 is actually working as intended, but for some reason the failing IPv6 queries trigger a failure. |
|
Thanks for the logs, @avhm! Looks like it is indeed the quic-go error I've mentioned previously. We'll try a rollback of the library. |
ainar-g
added
needs investigation
ainar-g
changed the title
|
We've released v0.108.0-a.729+506d7131 on the Edge channel. Could any of you please try it out and tell us if QUIC and HTTP/3 upstreams work again? (See the Platforms page on the Wiki for links to the builds and follow the manual update instructions with the archive.) |
|
Testing upstreams (including QUIC but not H3) is successful with the Edge channel version for me. |
|
Does quic-go/quic-go#4110 fix the problem? Do you have any advice for us how we can find these kind of bugs in the future before a release? This would have been discovered if we had run our test suite on FreeBSD, but unfortunately GitHub Actions doesn't come with any FreeBSD runners. |
|
@marten-seemann, I've pushed a branch of ./dnsproxy -u 'quic://dns.adguard-dns.com' -von a FreeBSD VM in Qemu seems to work, unlike the version currently in our (Anyone willing to test that fix on a real FreeBSD can switch to that branch, run
I've been thinking about the same thing for a while now. There are GitHub actions that run VMs on one of GitHub's blessed systems, but at that point it's not that different from cross-compiling the test binary with If anybody else has any suggestions, please share. |
|
I have same problem here, I am using Version: v0.108.0-b.47, I am on FreeBSD too. In DNS settings, when I test the DNS upstream, I have this erros: Server "h3://unfiltered.adguard-dns.com/dns-query": could not be used, please check that you've written it correctly I didn't have this issue before. This was after installing v0.108.0-b.47 Thanks |
|
Did anybody else test the fix by @marten-seemann? We need to decide whether to rollback to the previous version or wait for quic-go to merge the fix. |
|
My OPNsense firewall isn't set up to build anything, but I tried this on a different FreeBSD box and it seems to be doing the right thing with commit a27ca72: |
I just tested Version: v0.108.0-a.730+733d6c1f with only quic://unfiltered.adguard-dns.com and quic://dns.adguard-dns.com is working. This is the response: Response details Response details this is the response for h3://unfiltered.adguard-dns.com/dns-query : Response details Response details |
|
I just released v0.39.1 with the fix for the ECN control message on FreeBSD. |
Updates AdguardTeam/AdGuardHome#6301. Squashed commit of the following: commit 2114596 Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Tue Oct 17 15:47:52 2023 +0300 all: upd quic-go
Updates #6301. Squashed commit of the following: commit 1199ea2 Merge: 7218fdc f514f36 Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Tue Oct 17 16:54:36 2023 +0300 Merge branch 'master' into 6301-upd-dnsproxy-quic-go commit 7218fdc Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Tue Oct 17 16:23:24 2023 +0300 all: upd dnsproxy, quic-go
|
The newest Beta release, v0.108.0-b.48, contains the fix from @marten-seemann. If we get a confirmation that it works on FreeBSD for anyone here, we'll be able to ship the final release this week. |
|
"Test upstreams" and a |
ainar-g
added
bug
P2: High
and removed
needs investigation
|
@avhm, this should be fixed in v0.107.40. Can you (or anyone else experiencing the issue in v0.107.39) please check? |
|
@ainar-g confirmed, just updated and ran the tests again, all looking good. Thanks for the fast turn around! |
|
I can also confirm that the update fixed it, see attached screenshots: |
Updates AdguardTeam#6301. Squashed commit of the following: commit e1a1b03 Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Thu Oct 12 21:41:14 2023 +0300 all: rollback quic-go
Updates AdguardTeam#6301. Squashed commit of the following: commit 1199ea2 Merge: 7218fdc f514f36 Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Tue Oct 17 16:54:36 2023 +0300 Merge branch 'master' into 6301-upd-dnsproxy-quic-go commit 7218fdc Author: Ainar Garipov <A.Garipov@AdGuard.COM> Date: Tue Oct 17 16:23:24 2023 +0300 all: upd dnsproxy, quic-go
and others
Prerequisites
I have checked the Wiki and Discussions and found no answer
I have searched other issues and found no duplicates
I want to report a bug and not ask a question or ask for help
I have set up AdGuard Home correctly and configured clients to use it. (Use the Discussions for help with installing and configuring clients.)
Platform (OS and CPU architecture)
FreeBSD, AMD64 (aka x86_64)
Installation
Custom package (OpenWrt, HomeAssistant, etc; please mention in the description)
Setup
On a router, DHCP is handled by the router
AdGuard Home version
v0.107.39
Action
I've previously been using upstreams designated as:
h3://unfiltered.adguard-dns.com/dns-queryHowever, once updating to v0.107.39 these now all fail. Swapping back to:
https://unfiltered.adguard-dns.com/dns-queryfixes the issue, but not ideal.
Happy to dig into this in more detail if required, just lmk what's helpful for diagnosis.
Expected result
I expected forcing http3 to function
Actual result
All requests to these upstreams fail.
Additional information and/or screenshots
No response
The text was updated successfully, but these errors were encountered: