grpc access logs: include passed in command parsers when validating commands by AntonKanug · Pull Request #42915 · envoyproxy/envoy

AntonKanug · 2026-01-08T23:25:57Z

Commit Message: grpc access logs: include passed in command parsers when validating commands
Additional Description:
Risk Level:
Testing:
Docs Changes:
Release Notes:
Platform Specific Features:

Fixes listener initializing errors when using custom tag substitution for dns filter logs.

delta config for type.googleapis.com/envoy.config.listener.v3.Listener rejected: Error adding/updating listener(s) listener: Not supported field in StreamInfo: QUERY_NAME

repokitteh-read-only · 2026-01-08T23:26:02Z

As a reminder, PRs marked as draft will not be automatically assigned reviewers,
or be handled by maintainer-oncall triage.

Please mark your PR as ready when you want it to be reviewed!

🐱

Caused by: #42915 was opened by AntonKanug.

see: more, trace.

AntonKanug · 2026-01-09T10:26:35Z

cc @wbpcode

wbpcode · 2026-01-11T12:32:45Z

Thanks for this contribution. But

I think to configure DNS's related format in the listener make no sense anyway?
We prefer only keep HTTP and TCP's format as built-in and to reduce the potential name conflict?

AntonKanug · 2026-01-11T12:39:33Z

I think to configure DNS's related format in the listener make no sense anyway?

We use a udp listener with dns filter (similar to this example)

We prefer only keep HTTP and TCP's format as built-in and to reduce the potential name conflict?

whats the suggestion to fix envoy rejecting listener config due to command not being recognized in this case?

delta config for type.googleapis.com/envoy.config.listener.v3.Listener rejected: Error adding/updating listener(s) listener: Not supported field in StreamInfo: QUERY_NAME

wbpcode · 2026-01-24T07:28:59Z

We use a udp listener with dns filter (similar to this example)

Sorry, I didn't make it clear. I mean, at the listener level, we cannot access the single DNS query attributes anyway, right? Then, we we need to configure the DNS command that? Could we remove the UDP listener's access logger or to update listener level format?

wbpcode · 2026-01-28T14:19:26Z

/wait

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com> u Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com> format Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com> test Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com> update Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com> u Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

AntonKanug · 2026-02-09T15:36:46Z

From slack conversation:

the issue seems to be that non built in command parsers are not taken into account when validating commands, updated PR to fix that

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

yanjunxiang-google · 2026-02-11T22:59:03Z

Could you please add some integration tests to reproduce the issue and verify the change?

yanjunxiang-google · 2026-02-11T22:58:12Z

test/extensions/filters/udp/dns_filter/dns_filter_test_utils.cc


-    const std::string record_name = parseDnsNameRecord(buffer, available_bytes, offset);
+    uint64_t available_bytes_uint64 = available_bytes;
+    const std::string record_name = parseDnsNameRecord(buffer, available_bytes_uint64, offset);


emm, this change seems to be just a cleanup, not related to the issue, right?

yeah unrelated to the issue, size_t vs uint64_t caused problems when running tests on my mac

Signed-off-by: Wesley Hung <whung@palantir.com>

yanjunxiang-google · 2026-02-12T20:37:47Z

test/extensions/filters/udp/dns_filter/dns_filter_integration_test.cc

  EXPECT_EQ(DNS_RESPONSE_CODE_NO_ERROR, response_ctx_->getQueryResponseCode());
 }
+
+class DnsFilterAccessLogIntegrationTest


Maybe put the new access log integration tests in a new file: dns_filter_access_log_integration_test.cc?

Otherwise LGTM!

done in 20c6ad0

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

AntonKanug · 2026-02-14T09:18:53Z

@yanjunxiang-google @wbpcode
#43457 was opened after this pr with the same changes and was merged without the integration tests 😕

cc @farmpiggie

AntonKanug force-pushed the antonk/dns-logs-on-init branch 2 times, most recently from 18b765e to a903416 Compare January 8, 2026 23:48

AntonKanug marked this pull request as ready for review January 9, 2026 10:25

AntonKanug requested a review from mattklein123 as a code owner January 9, 2026 10:25

AntonKanug force-pushed the antonk/dns-logs-on-init branch 2 times, most recently from 1d7ad8d to e3925b1 Compare January 9, 2026 12:39

tyxia assigned wbpcode Jan 12, 2026

repokitteh-read-only bot added the waiting label Jan 28, 2026

AntonKanug requested review from wbpcode and yanjunxiang-google as code owners February 9, 2026 08:10

repokitteh-read-only bot removed the waiting label Feb 9, 2026

AntonKanug force-pushed the antonk/dns-logs-on-init branch from a69afac to b406204 Compare February 9, 2026 08:14

AntonKanug added 2 commits February 9, 2026 03:22

pass command paraser

c99ca13

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

AntonKanug force-pushed the antonk/dns-logs-on-init branch from b406204 to c99ca13 Compare February 9, 2026 08:23

unused

a02328e

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

yanjunxiang-google reviewed Feb 11, 2026

View reviewed changes

unit test

f1b62b3

Signed-off-by: Wesley Hung <whung@palantir.com>

farmpiggie force-pushed the antonk/dns-logs-on-init branch 2 times, most recently from 8b2622e to 4417392 Compare February 12, 2026 17:47

add integ test

ae18ab9

Signed-off-by: Wesley Hung <whung@palantir.com>

farmpiggie force-pushed the antonk/dns-logs-on-init branch from 4417392 to ae18ab9 Compare February 12, 2026 18:57

yanjunxiang-google reviewed Feb 12, 2026

View reviewed changes

mv to file

20c6ad0

Signed-off-by: Anton Kanugalawattage <antondilon@gmail.com>

AntonKanug requested a review from yanjunxiang-google February 13, 2026 03:42

AntonKanug changed the title ~~dns_filter: make DNS format commands available at config initialization~~ grpc access logs: include passed in command parsers when validating commands Feb 13, 2026

AntonKanug mentioned this pull request Feb 14, 2026

access_log(grpc): pass command parsers to custom tags (fix DNS filter validation) #43457

Merged

Conversation

AntonKanug commented Jan 8, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

repokitteh-read-only bot commented Jan 8, 2026

Uh oh!

AntonKanug commented Jan 9, 2026

Uh oh!

wbpcode commented Jan 11, 2026

Uh oh!

AntonKanug commented Jan 11, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

wbpcode commented Jan 24, 2026

Uh oh!

wbpcode commented Jan 28, 2026

Uh oh!

AntonKanug commented Feb 9, 2026

Uh oh!

yanjunxiang-google commented Feb 11, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

yanjunxiang-google Feb 11, 2026

Choose a reason for hiding this comment

Uh oh!

AntonKanug Feb 11, 2026

Choose a reason for hiding this comment

Uh oh!

yanjunxiang-google Feb 12, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

AntonKanug Feb 13, 2026

Choose a reason for hiding this comment

Uh oh!

AntonKanug commented Feb 14, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

AntonKanug commented Jan 8, 2026 •

edited

Loading

AntonKanug commented Jan 11, 2026 •

edited

Loading

yanjunxiang-google commented Feb 11, 2026 •

edited

Loading

yanjunxiang-google Feb 12, 2026 •

edited

Loading