Skip to content

[processor/dnslookup] Initial implementation #39642

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 12 commits into
base: main
Choose a base branch
from
Draft

[processor/dnslookup] Initial implementation #39642

wants to merge 12 commits into from

Conversation

kaisecheng
Copy link
Contributor

@kaisecheng kaisecheng commented Apr 24, 2025
edited
Loading

Description

This PR adds a new DNS Lookup processor for resolving hostnames to IP and reversing DNS lookups IP to hostname.

Resolution Order and Retry Mechanism

The processor implements a chain of resolvers with the following resolution order

  1. Hostfiles - when hostname is not in files, the processor continues to the next resolver in the chain. Note that later hostfiles in the list take precedence over earlier ones for duplicate entries.
  2. Custom DNS servers - "no resolution" is a valid result and the chain stops. For each DNS server, temporary failures trigger retries. The resolver prefers IPv4 addresses over IPv6 when both are available.
  3. System resolver - same as (2), uses the operating system's default DNS as the final fallback

Caching

  • Successful resolutions are cached in a "hit cache" with configurable TTL
  • Failed lookups are cached in a "miss cache" to avoid repeated expensive failures
  • Both caches implement LRU eviction policies

Config

  dnslookup:
    # Forward DNS resolution configuration (hostname to IP)
    # Default: enabled
    resolve:
      enabled: true
      # Context for attributes: "resource" or "record". Default: "resource"
      context: "record"
      # List of attributes to check for hostnames. The first valid hostname is used. Default: ["source.address"]
      attributes: ["source.address"]
      # Attribute to store the resolved IP.  Default: "source.ip"
      resolved_attribute: "source.ip"

    # Reverse DNS resolution configuration (IP to hostname)
    # Default: disabled
    reverse:
      enabled: true
      # Context for attributes: "resource" or "record". Default: "resource"
      context: "record"
      # List of attributes to check for IPs. The first valid IP is used. Default: ["source.ip"]
      attributes: ["server.ip"]
      # Attribute to store the resolved hostname. Default: "source.address"
      resolved_attribute: "server.address"

    # Maximum number of failed resolutions to cache. Default: 1000
    miss_cache_size: 1000
    # Time-to-live (seconds) for failed resolution cache entries. Default: 60
    miss_cache_ttl: 60
    # Maximum number of successful resolutions to cache. Default: 10000
    hit_cache_size: 10000 
    # Time-to-live (seconds) for successful resolution cache entries. Default: 300
    hit_cache_ttl: 300
    # Maximum number of retry attempts for DNS lookups. Default: 1
    max_retries: 1
    # Timeout (seconds) for individual DNS lookups. Default: 0.5
    timeout: 0.5
    
    # Path to custom host files. Default: []
    hostfiles: 
      - "/path/to/host/file"
      - "/path/to/other/file"
    
    # Address of custom DNS servers. Default: []
    nameservers:
      - 8.8.8.8
      - 1.1.1.1
    
    # Enable the system resolver. Default: true
    enable_system_resolver: true

Link to tracking issue

#34398

TODO

  • tests for factory and prcoessor
  • readme
  • changelog

Testing

Added unit test for all resolvers

Documentation

cc @edmocosta

kaisecheng added 12 commits April 25, 2025 00:18
@kaisecheng
Update dependency
d8c360a
@kaisecheng
Remove config enabled check
5c6be01
@kaisecheng
Rework retry and error handling
cde1e47 
Move retry from chain resolver to nameserver resolver.
No resolution is considered as success and stored in hit cache.
Handle hostname/IP not found
Handle non retryable error
@kaisecheng
Fix config names
9a26047
@kaisecheng
Update default cache settings
195de01
@kaisecheng
Add debug log
4318017
@kaisecheng
Add hostname normalization
62a48f7
@kaisecheng
Fix hostfile defer close
c845c04
@kaisecheng
Prioritize IPv4 in nameserver
554b818
@kaisecheng
Add nameserver tests
3ce0eb4 
- Add test dependency
- Add Lookup interface for mock
- Add validation to nameserver address
@kaisecheng
Add cache tests
c8c4743
@kaisecheng
Add chain, util and hostfile tests
7727531
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrzej-stencel andrzej-stencel Awaiting requested review from andrzej-stencel andrzej-stencel is a code owner

@edmocosta edmocosta Awaiting requested review from edmocosta edmocosta is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
processor/dnslookup
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kaisecheng