From 47e29f96dfb9f254babcf4763912dc5e9a07ee2a Mon Sep 17 00:00:00 2001
From: Simon Zolin <s.zolin@adguard.com>
Date: Thu, 12 Sep 2019 18:23:33 +0300
Subject: [PATCH] + dnsforward: disable Mozilla DoH - block
 use-application-dns.net

---
 dnsforward/dnsforward.go | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/dnsforward/dnsforward.go b/dnsforward/dnsforward.go
index 0fffd0a5..ad4fe19f 100644
--- a/dnsforward/dnsforward.go
+++ b/dnsforward/dnsforward.go
@@ -419,6 +419,13 @@ func (s *Server) handleDNSRequest(p *proxy.Proxy, d *proxy.DNSContext) error {
 		s.conf.OnDNSRequest(d)
 	}
 
+	// disable Mozilla DoH
+	if (d.Req.Question[0].Qtype == dns.TypeA || d.Req.Question[0].Qtype == dns.TypeAAAA) &&
+		d.Req.Question[0].Name == "use-application-dns.net." {
+		d.Res = s.genNXDomain(d.Req)
+		return nil
+	}
+
 	// use dnsfilter before cache -- changed settings or filters would require cache invalidation otherwise
 	s.RLock()
 	// Synchronize access to s.dnsFilter so it won't be suddenly uninitialized while in use.