Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


  • Green square indicates latest release already supports this functionality
  • Blue square indicates that a patch is available in our git repo. See here for details: DNS-over-TLS patches
  • Yellow square indicates work in progress
  • 2015 - patches planned for 2015
  • (warning) Requires building against a patched version of libunbound


Most of the implementations above use only the STARTTLS/CH/TXT query text to negotiate the upgrade to TLS by default (the TO bit proposed in the draft in NOT used since it is not assigned by IANA, but may be available as an option in some implementations).

*    getdns uses libunbound in recursive mode
**  Pipelining and OOOP are not applicable for synchronous applications