I’m getting these messages on Android. This is with Syncthing v2 beta9, however many STUN-related commits have been added to main
recently, so I assume this is going to affect Syncthing v1 also.
Is there anything that can be done either to fix or to suppress these messages? They seem to be sent every 5 minutes or so, flooding the GUI.
Just to be clear, I’m seeing them only on Android. On the desktop, there seem to be no such issues.
bt90
(Bt90)
April 14, 2025, 8:39pm
2
opened 06:58AM - 03 Apr 25 UTC
closed 12:23PM - 08 Apr 25 UTC
enhancement
### Feature description
I'd suggest that we resolve our own STUN servers via DN… S SRV. This will allow us to change the domain name and IP address of our own STUN server without having to patch Syncthing.
This should be enough to fend off most non-Syncthing users.
If there's a consensus that this is a viable approach, I'd start working on a PR.
### Problem or use case
As previously discussed on the forum, we may still want to host our own STUN server. The problem with such a service is that it tends to be abused by others, which ultimately led to the current server being shut down. Any hardcoded address in the codebase is likely to suffer the same fate sooner or later.
see https://forum.syncthing.net/t/stun-syncthing-net-doesnt-resolve-anymore/24075/8
### Alternatives or workarounds
Static secrets for the STUN server, but this could suffer the same fate. Anything that can simply be hardcoded into a WebRTC page will eventually be abused. DNS SRV requires backend logic, which should deter more offenders.
Let’s say we’re making sure the fallback mechanism works
bt90
(Bt90)
April 14, 2025, 9:32pm
3
Scratch that. I think this one is caused by the test record that still points to a special use IP address. Maybe Android is smart enough to block the resolution in this case.
calmh
(Jakob Borg)
April 14, 2025, 9:44pm
4
We should kill that warning regardless
1 Like
bt90
(Bt90)
April 15, 2025, 5:40am
5
Killing the warning is one thing. But I fear that we’re running into DNS problems on Android from the looks of it:
opened 08:15PM - 06 Oct 14 UTC
help wanted
OS-Android
It is possible to build Android OS binaries (not apps) without cgo. Those apps w… ill fail
because the Android OS does not define /etc/resolve.conf. Some more details on #8020 and
the linked CL.
@tomasz86 could you try building the app binary without the netgo
build tag?
calmh
(Jakob Borg)
April 15, 2025, 8:38am
6
I saw the same on my Mac the other day but forgot to investigate.