Log DNS resolved answers

        "util.cpp",

        "Dns64Configuration.cpp",

        "DnsProxyListener.cpp",

        "DnsQueryLog.cpp",

        "DnsResolver.cpp",

        "DnsResolverService.cpp",

        "DnsStats.cpp",

    return (arc4random_uniform(subsampling_denom) == 0) ? subsampling_denom : 0;

}

void maybeLogQuery(int eventType, const android_net_context& netContext,

                   const NetworkDnsEventReported& event, const std::string& query_name,

                   const std::vector<std::string>& ip_addrs) {

    // Skip reverse queries.

    if (eventType == INetdEventListener::EVENT_GETHOSTBYADDR) return;

    for (const auto& query : event.dns_query_events().dns_query_event()) {

        // Log it when the cache misses.

        if (query.cache_hit() != CS_FOUND) {

            const int timeTakenMs = event.latency_micros() / 1000;

            DnsQueryLog::Record record(netContext.dns_netid, netContext.uid, netContext.pid,

                                       query_name, ip_addrs, timeTakenMs);

            gDnsResolv->dnsQueryLog().push(std::move(record));

            return;

        }

    }

}

void reportDnsEvent(int eventType, const android_net_context& netContext, int latencyUs,

                    int returnCode, NetworkDnsEventReported& event, const std::string& query_name,

                    const std::vector<std::string>& ip_addrs = {}, int total_ip_addr_count = 0) {

                                         event.private_dns_modes(), dnsQueryBytesField, rate);

    }

    maybeLogQuery(eventType, netContext, event, query_name, ip_addrs);

    const auto& listeners = ResolverEventReporter::getInstance().getListeners();

    if (listeners.size() == 0) {

        LOG(ERROR) << __func__

/*

 * Copyright (C) 2019 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 *

 */

#include "DnsQueryLog.h"

#include <android-base/stringprintf.h>

namespace android::net {

namespace {

std::string maskHostname(const std::string& hostname) {

    // Boundary issue is handled in substr().

    return hostname.substr(0, 1) + "***";

}

// Return the string of masked addresses of the first v4 address and the first v6 address.

std::string maskIps(const std::vector<std::string>& ips) {

    std::string ret;

    bool v4Found = false, v6Found = false;

    for (const auto& ip : ips) {

        if (auto pos = ip.find_first_of(':'); pos != ip.npos && !v6Found) {

            ret += ip.substr(0, pos + 1) + "***, ";

            v6Found = true;

        } else if (auto pos = ip.find_first_of('.'); pos != ip.npos && !v4Found) {

            ret += ip.substr(0, pos + 1) + "***, ";

            v4Found = true;

        }

        if (v6Found && v4Found) break;

    }

    return ret.empty() ? "" : ret.substr(0, ret.length() - 2);

}

// Return the readable string format "hr:min:sec.ms".

std::string timestampToString(const std::chrono::system_clock::time_point& ts) {

    using std::chrono::duration_cast;

    using std::chrono::milliseconds;

    const auto time_sec = std::chrono::system_clock::to_time_t(ts);

    char buf[32];

    std::strftime(buf, sizeof(buf), "%H:%M:%S", std::localtime(&time_sec));

    int ms = duration_cast<milliseconds>(ts.time_since_epoch()).count() % 1000;

    return android::base::StringPrintf("%s.%03d", buf, ms);

}

}  // namespace

void DnsQueryLog::push(Record&& record) {

    std::lock_guard guard(mLock);

    mQueue.push_back(std::move(record));

    if (mQueue.size() > kLogSize) {

        mQueue.pop_front();

    }

}

void DnsQueryLog::dump(netdutils::DumpWriter& dw) const {

    dw.println("DNS query log (last %ld minutes):", kValidityMinutes.count());

    netdutils::ScopedIndent indentStats(dw);

    const auto now = std::chrono::system_clock::now();

    std::lock_guard guard(mLock);

    for (const auto& record : mQueue) {

        if (now - record.timestamp > kValidityMinutes) continue;

        const std::string maskedHostname = maskHostname(record.hostname);

        const std::string maskedIpsStr = maskIps(record.addrs);

        const std::string time = timestampToString(record.timestamp);

        dw.println("time=%s netId=%u uid=%u pid=%d hostname=%s answer=[%s] (%dms)", time.c_str(),

                   record.netId, record.uid, record.pid, maskedHostname.c_str(),

                   maskedIpsStr.c_str(), record.timeTaken);

    }

}

}  // namespace android::net

/*

 * Copyright (C) 2019 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 *

 */

#pragma once

#include <deque>

#include <string>

#include <vector>

#include <android-base/thread_annotations.h>

#include <netdutils/DumpWriter.h>

namespace android::net {

// A circular buffer based class used for query logging. It's thread-safe for concurrent access.

class DnsQueryLog {

  public:

    static constexpr std::string_view DUMP_KEYWORD = "querylog";

    struct Record {

        Record(uint32_t netId, uid_t uid, pid_t pid, const std::string& hostname,

               const std::vector<std::string>& addrs, int timeTaken)

            : netId(netId),

              uid(uid),

              pid(pid),

              hostname(hostname),

              addrs(addrs),

              timeTaken(timeTaken) {}

        const uint32_t netId;

        const uid_t uid;

        const pid_t pid;

        const std::chrono::system_clock::time_point timestamp = std::chrono::system_clock::now();

        const std::string hostname;

        const std::vector<std::string> addrs;

        const int timeTaken;

    };

    void push(Record&& record) EXCLUDES(mLock);

    void dump(netdutils::DumpWriter& dw) const EXCLUDES(mLock);

  private:

    mutable std::mutex mLock;

    std::deque<Record> mQueue GUARDED_BY(mLock);

    // The capacity of the circular buffer.

    static constexpr size_t kLogSize = 200;

    // Limit to dump the queries within last |kValidityMinutes| minutes.

    static constexpr std::chrono::minutes kValidityMinutes{60};

};

}  // namespace android::net

#define _DNS_RESOLVER_H_

#include "DnsProxyListener.h"

#include "DnsQueryLog.h"

#include "ResolverController.h"

#include "netd_resolv/resolv.h"

#include "netdutils/Log.h"

    DnsResolver(DnsResolver const&) = delete;

    void operator=(DnsResolver const&) = delete;

    DnsQueryLog& dnsQueryLog() { return mQueryLog; }

    ResolverController resolverCtrl;

  private:

    DnsResolver() {}

    DnsProxyListener mDnsProxyListener;

    DnsQueryLog mQueryLog;

};

extern DnsResolver* gDnsResolv;