Bug 294981 - www/firefox-esr: enable resolving HTTPS RR using OS's resolver
Summary: www/firefox-esr: enable resolving HTTPS RR using OS's resolver
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Christoph Moench-Tegeder
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2026-05-03 16:12 UTC by Andre Albsmeier
Modified: 2026-05-11 04:28 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (gecko)

Attachments
patch (1.54 KB, patch)
2026-05-03 16:12 UTC, Andre Albsmeier 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Andre Albsmeier 2026-05-03 16:12:42 UTC 
Created attachment 270384 [details]
patch

Since firefox 129 HTTPS RRs can be resolved using the operating system's DNS resolver. Enable this for FreeBSD as well.

Test with

about:networking#dnslookuptool

on a domain with HTTPS RRs (e.g. google.com) and w/o DoH enabled.
Comment 1 commit-hook freebsd_committer freebsd_triage 2026-05-10 18:38:44 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=c839877b69be0e7f18d8337b9ec2eb52f208f981

commit c839877b69be0e7f18d8337b9ec2eb52f208f981
Author:     Christoph Moench-Tegeder <cmt@FreeBSD.org>
AuthorDate: 2026-05-10 18:35:23 +0000
Commit:     Christoph Moench-Tegeder <cmt@FreeBSD.org>
CommitDate: 2026-05-10 18:35:23 +0000

    www/firefox{,-esr} mail/thunderbird{,-esr}: native DNS HTTPS resolving

    This enables the geckos to use the OS' resolver to resolve
    DNS HTTPS RRs (see RFC 9460 https://www.rfc-editor.org/rfc/rfc9460
    for specs on that)

    PR:             294981
    Submitted by:   Andre Albsmeier

 mail/thunderbird-esr/Makefile                      |  1 +
 .../files/patch-dns-resolve-https-rr (new)         | 34 ++++++++++++++++++++++
 mail/thunderbird/Makefile                          |  1 +
 .../files/patch-dns-resolve-https-rr (new)         | 34 ++++++++++++++++++++++
 www/firefox-esr/Makefile                           |  1 +
 .../files/patch-dns-resolve-https-rr (new)         | 34 ++++++++++++++++++++++
 www/firefox/Makefile                               |  2 +-
 www/firefox/files/patch-dns-resolve-https-rr (new) | 34 ++++++++++++++++++++++
 8 files changed, 140 insertions(+), 1 deletion(-)
Comment 2 commit-hook freebsd_committer freebsd_triage 2026-05-10 18:40:46 UTC 
A commit in branch 2026Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=6fafccff59f3978c1b625cf795d6c72d38a958de

commit 6fafccff59f3978c1b625cf795d6c72d38a958de
Author:     Christoph Moench-Tegeder <cmt@FreeBSD.org>
AuthorDate: 2026-05-10 18:35:23 +0000
Commit:     Christoph Moench-Tegeder <cmt@FreeBSD.org>
CommitDate: 2026-05-10 18:40:03 +0000

    www/firefox{,-esr} mail/thunderbird{,-esr}: native DNS HTTPS resolving

    This enables the geckos to use the OS' resolver to resolve
    DNS HTTPS RRs (see RFC 9460 https://www.rfc-editor.org/rfc/rfc9460
    for specs on that)

    PR:             294981
    Submitted by:   Andre Albsmeier

    (cherry picked from commit c839877b69be0e7f18d8337b9ec2eb52f208f981)

 mail/thunderbird-esr/Makefile                      |  1 +
 .../files/patch-dns-resolve-https-rr (new)         | 34 ++++++++++++++++++++++
 mail/thunderbird/Makefile                          |  1 +
 .../files/patch-dns-resolve-https-rr (new)         | 34 ++++++++++++++++++++++
 www/firefox-esr/Makefile                           |  1 +
 .../files/patch-dns-resolve-https-rr (new)         | 34 ++++++++++++++++++++++
 www/firefox/Makefile                               |  2 +-
 www/firefox/files/patch-dns-resolve-https-rr (new) | 34 ++++++++++++++++++++++
 8 files changed, 140 insertions(+), 1 deletion(-)
Comment 3 Christoph Moench-Tegeder freebsd_committer freebsd_triage 2026-05-10 18:42:17 UTC 
there's always more than just one gecko port :)
Thanks for the patch, committed something similar.
Comment 4 Andre Albsmeier 2026-05-11 04:28:26 UTC 
(In reply to Christoph Moench-Tegeder from comment #3)
True, but I can only test firefox ESR.