Skip to content

dns: bypass EDNS query#22861

Merged
yanavlasov merged 6 commits intoenvoyproxy:mainfrom
botengyao:dns_filer_allow_edns
Sep 1, 2022
Merged

dns: bypass EDNS query#22861
yanavlasov merged 6 commits intoenvoyproxy:mainfrom
botengyao:dns_filer_allow_edns

Conversation

@botengyao
Copy link
Copy Markdown
Member

@botengyao botengyao commented Aug 26, 2022

Signed-off-by: Boteng Yao boteng@google.com

DNS filter will ignore the additional RRs as EDNS could have them, the filter will fall back to the traditional behavior.
Issue #22676.

Commit Message:
Additional Description:
Risk Level: Low
Testing:
Docs Changes:
Release Notes:
Platform Specific Features:
[Optional Runtime guard:]
[Optional Fixes #Issue]
[Optional Fixes commit #PR or SHA]
[Optional Deprecated:]
[Optional API Considerations:]

@botengyao
allow EDNS query
fb4e395 
Signed-off-by: Boteng Yao <boteng@google.com>
@botengyao
fix spell check
7006de0 
Signed-off-by: Boteng Yao <boteng@google.com>
@botengyao
add spelling dict
373f981 
Signed-off-by: Boteng Yao <boteng@google.com>
@botengyao
Copy link
Copy Markdown
Member Author

botengyao commented Aug 26, 2022

/assign @yanjunxiang-google

yanjunxiang-google
yanjunxiang-google reviewed Aug 29, 2022
View reviewed changes
Comment thread source/extensions/filters/udp/dns_filter/dns_parser.cc
@yanjunxiang-google
Copy link
Copy Markdown
Contributor

yanjunxiang-google commented Aug 29, 2022

/assign @yanavlasov

@yanavlasov
Copy link
Copy Markdown
Contributor

yanavlasov commented Aug 29, 2022

/wait

@botengyao
add counter
807df87 
Signed-off-by: Boteng Yao <boteng@google.com>
@botengyao
Merge remote-tracking branch 'upstream/main' into dns_filer_allow_edns
eda7d66 
Signed-off-by: Boteng Yao <boteng@google.com>
@botengyao
fix fuzzy counter
eb6aaad 
Signed-off-by: Boteng Yao <boteng@google.com>
@yanjunxiang-google
Copy link
Copy Markdown
Contributor

yanjunxiang-google commented Aug 30, 2022

LGTM

@yanavlasov yanavlasov merged commit 5263eec into envoyproxy:main Sep 1, 2022
@botengyao botengyao deleted the dns_filer_allow_edns branch September 1, 2022 19:32
@botengyao botengyao mentioned this pull request Dec 11, 2024
Merged
mattklein123 pushed a commit that referenced this pull request Dec 11, 2024
@botengyao
dns_filter: change dns filter to stable (#37618)
872ed32 
<!--
!!!ATTENTION!!!

If you are fixing *any* crash or *any* potential security issue, *do
not*
open a pull request in this repo. Please report the issue via emailing
envoy-security@googlegroups.com where the issue will be triaged
appropriately.
Thank you in advance for helping to keep Envoy secure.

!!!ATTENTION!!!

For an explanation of how to fill out the fields, please see the
relevant section
in
[PULL_REQUESTS.md](https://github.com/envoyproxy/envoy/blob/main/PULL_REQUESTS.md)
-->


Commit Message: 
Additional Description: I believe it is stable now since we conduct a
security review and improvement for dns filter like #18651 #20744 #22861
#17479 #34409 #34456 #34490 and so on
Risk Level: low
Testing:
Docs Changes:
Release Notes:

Signed-off-by: Boteng Yao <boteng@google.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@yanjunxiang-google yanjunxiang-google yanjunxiang-google left review comments

@yanavlasov yanavlasov yanavlasov approved these changes

@mattklein123 mattklein123 Awaiting requested review from mattklein123 mattklein123 is a code owner

Assignees

@yanavlasov yanavlasov

@yanjunxiang-google yanjunxiang-google

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@botengyao @yanjunxiang-google @yanavlasov