Support ESNI and/or HTTPSSVC Resource Record
- Program: Knot DNS
- Issue type: Feature request
Short description
The request is about supporting ESNI and/or HTTPSSVC DNS Resource Record as mentioned in the ESNI Internet Draft and the HTTPSSVC Internet Draft.
Use case
Any browser correctly supporting ESNI (none at the moment, Firefox only does it with DoH support) will be able to send a ClientHello message with an encrypted server_name to an HTTP server supporting ESNI (h2o built with picotls) thanks to the publishing of the DNS RR related to ESNI when Knot DNS will support it.
Description
Knot DNS should support ESNI DNS Resource Record and/or HTTPSSVC Resource Records. But gnutls currently does not support ESNI: it is in their backlog.
BIND9 might soon support HTTPSSVC RR (under review process).