set AD bit to false in hickory

this is purely DNSSEC related which we don't use, and DNSSEC on matrix
is unbearable for federation (no one sets it up properly, it's extremely taxing, etc)

Signed-off-by: strawberry <strawberry@puppygock.gay>

src/service/globals/resolver.rs

@@ -74,6 +74,7 @@ impl Resolver {
 			4 => hickory_resolver::config::LookupIpStrategy::Ipv6thenIpv4,
 			_ => hickory_resolver::config::LookupIpStrategy::Ipv4thenIpv6,
 		};
+		opts.authentic_data = false;
 
 		let resolver = Arc::new(TokioAsyncResolver::tokio(conf, opts));
 		let overrides = Arc::new(StdRwLock::new(TlsNameMap::new()));