Security/DNS Over HTTPS: Difference between revisions

Jump to navigation Jump to search

Security/DNS Over HTTPS (view source)

Revision as of 18:28, 16 July 2020

465 bytes added ,  16 July 2020
add trrselect flow
(undo align cfr screenshot on the right)
(add trrselect flow)
Line 36: Line 36:
* A network-provided endpoint, if detected, will take precedence over the default provider when on that network. (See Provider Steering below)
* A network-provided endpoint, if detected, will take precedence over the default provider when on that network. (See Provider Steering below)
* This feature is controlled by the prefs `doh-rollout.trr-selection.enabled`.
* This feature is controlled by the prefs `doh-rollout.trr-selection.enabled`.
* TODO: sub-page for documenting the mechanism, flow diagram, links to code/docs
 
=== Dry-Run Mechanism ===
 
* Default provider selection is done in two phases: a dry-run followed by committing the result.
* By default, this feature is dry-run-only, and records the result in a pref `doh-rollout.trr-selection.dry-run-result`.
* Committing the result is enabled by another pref `doh-rollout.trr-selection.commit-result`. If this is true, then after the dry-run step, the `dry-run-result` will be copied into `doh-rollout.uri`.
 
[[File:DoH automatic provider selection flow.png|frameless|DoH automatic provider selection flow]]


== Provider Steering ==
== Provider Steering ==
Nhnt11
63

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1229168"

Navigation menu