samoht
commented
3 years ago LGTM
Closed djs55 closed 3 years ago
samoht
commented
3 years ago LGTM
avsm
commented
3 years ago Looks fine. You may want to add a (vendored_dirs) field to cover the dns directory. https://dune.readthedocs.io/en/stable/dune-files.html#vendored-dirs-since-1-11
djs55
commented
3 years ago @avsm thanks, useful tip!
Previously we used 2 libraries:
ocaml-dns-forward: this was originally split out from this treeocaml-dnsHowever:
ocaml-dnsis completely different from version 2.0.0 onwards. It's now based on a DNS library with different goals, prioritising standards compliance; while we prioritise backwards compatibility with old resolvers. If we updated to the new implementation we might expose bugs in old clients which we wouldn't be able to work around easily. It would be interesting to try upgrading later, after we have updated all the other dependencies.ocaml-dns-forwardlibrary was never used by anyone else. It's really an implementation ofvpnkit-specific policy so should live in this repo anyway.Furthermore
ocaml-dnscontains lots of code we don't need and dependencies we don't want (e.g.hashcons). By vendoring it we can avoid the dependencies from the unused code.ocaml-dns-forwardis now unused, since we don't try to use it to talk to split-tunnel DNS servers in VPNs. It will be easier to trim if all the code lives in one place.This is a required step on the plan to vendor all the OCaml dependencies, to make building easier (and on Windows: to make building possible again)