surge dns server 不支持 tcp mode

forkd

dns query默认走udp，大小有限制，每个datagram 512byte，对于超过限制的dns response会用tcp mode重试，但是经测试surge dns server好像不支持。
创建了两个测试SRV record，_s._tcp.edge.polarbox.win response 在limit内是成功的，_large._tcp.edge.polarbox.win response 超过limit用tcp mode重试一直失败。尝试了设置dns-server = system或者域名加入always-real-ip都没用。

case 1a: ali dns works as expected in udp mode

% nslookup -type=srv _s._tcp.edge.polarbox.win 223.5.5.5
Server:		223.5.5.5
Address:	223.5.5.5#53

Non-authoritative answer:
_s._tcp.edge.polarbox.win	service = 0 0 443 edge2.polarbox.win.
_s._tcp.edge.polarbox.win	service = 0 0 443 edge1.polarbox.win.

Authoritative answers can be found from:

case 1b: surge dns server works as expected in udp mode

% nslookup -type=srv _s._tcp.edge.polarbox.win
Server:		198.18.0.2
Address:	198.18.0.2#53

Non-authoritative answer:
_s._tcp.edge.polarbox.win	service = 0 0 443 edge1.polarbox.win.
_s._tcp.edge.polarbox.win	service = 0 0 443 edge2.polarbox.win.

Authoritative answers can be found from:

case 2a: ali dns works as expected in tcp mode

% nslookup -type=srv _large._tcp.edge.polarbox.win 223.5.5.5
;; Truncated, retrying in TCP mode.
Server:		223.5.5.5
Address:	223.5.5.5#53

Non-authoritative answer:
_large._tcp.edge.polarbox.win	service = 0 0 8443 large006.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large009.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large003.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large007.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large011.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large008.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large002.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large012.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large001.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large005.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large004.edge.polarbox.win.
_large._tcp.edge.polarbox.win	service = 0 0 8443 large010.edge.polarbox.win.

Authoritative answers can be found from:

case 2b: surge dns server fails in tcp mode

% nslookup -type=srv _large._tcp.edge.polarbox.win          
;; Truncated, retrying in TCP mode.
;; Connection to 198.18.0.2#53(198.18.0.2) for _large._tcp.edge.polarbox.win failed: timed out.
;; Connection to 198.18.0.2#53(198.18.0.2) for _large._tcp.edge.polarbox.win failed: timed out.
;; connection timed out; no servers could be reached
;; Connection to 198.18.0.2#53(198.18.0.2) for _large._tcp.edge.polarbox.win failed: timed out.

SurgeTeam

Surge 的 Fake DNS 确实不支持 TCP 查询，正常情况下操作系统不会以 TCP 方式进行查询，这只是 nslookup 工具自己的特定逻辑。

forkd

SurgeTeam 我不觉得是nslookup 工具自己的特定逻辑，在RFC里有说明。
根据RFC 2181 section-9

Where TC is set, the partial RRSet that would not completely fit may
be left in the response. When a DNS client receives a reply with TC
set, it should ignore that response, and query again, using a
mechanism, such as a TCP connection, that will permit larger replies.

TC TrunCation bit的说明在 RFC 1035 section-4.1.1 和RFC 1035 section-6.2

Surge可以考虑下实现这部分逻辑吗？
工作用的app一个功能依赖SRV record，因为response超过udp limit，打开surge时这个功能因为dns query失败完全不可用。

forkd

SurgeTeam
或者可以先修一下这个bug:
在 [Host] 里对特定域名指定了dns server，但是query这个域名的SRV record并没有用指定的dns server。

这样我可以自建dns server返回UDP limit内的response绕开这个问题。