sagittarius 0.2.0

A fast, self-hosted DNS sinkhole in a single Rust binary
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238

//! Telemetry module — structured logging initialisation and runtime diagnostics.
//!
//! This module owns the one-time setup of the [`tracing`] global subscriber
//! (an `fmt` layer writing to stdout filtered by [`EnvFilter`]) as well as the
//! per-query event type, live-log ring buffer, and runtime statistics added in
//! E6.6.
//!
//! # Usage
//!
//! ```rust,ignore
//! // In main / app startup (E1.4 wires this):
//! let outcome = Telemetry::init();
//! Telemetry::log_startup(&config);
//! ```
//!
//! # Idempotency
//!
//! [`Telemetry::init`] uses `try_init()` semantics: it installs the subscriber
//! only if none has been set yet and returns [`InitOutcome`] to communicate
//! what happened. A second call (from another test or a double-init) never
//! panics — it returns [`InitOutcome::AlreadyInitialised`] and is a no-op.
//!
//! This is the right choice for a library/binary hybrid: tests share a
//! process, and the global subscriber can only be set once per process. Using
//! `try_init` instead of `init` lets every test call [`Telemetry::init`]
//! safely without coordinating who goes first.

// ── Submodules ────────────────────────────────────────────────────────────────

pub mod event;
pub mod live_log;
pub mod query_log_purge;
pub mod query_log_writer;
pub mod stats;

// ── Re-exports ────────────────────────────────────────────────────────────────

pub use event::{QUERY_LOG_CHANNEL_CAPACITY, QueryEvent, TelemetrySink};
pub use live_log::LiveLog;
pub use query_log_purge::QueryLogPurger;
pub use query_log_writer::QueryLogWriter;
pub use stats::{Stats, StatsSnapshot};

// ── Imports ───────────────────────────────────────────────────────────────────

use tracing::info;
use tracing_subscriber::{EnvFilter, fmt, layer::SubscriberExt, registry, util::SubscriberInitExt};

use crate::config::Config;

// ── InitOutcome ───────────────────────────────────────────────────────────────

/// The result of calling [`Telemetry::init`].
///
/// The caller can inspect this to decide whether to log a warning, but the
/// common case is to simply ignore it — the important property is that the
/// call never panics.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum InitOutcome {
    /// The subscriber was freshly installed; this is the first call.
    Initialised,
    /// A global subscriber was already set (e.g. a previous call in the same
    /// process or another test). The new subscriber was **not** installed.
    AlreadyInitialised,
}

// ── Telemetry ─────────────────────────────────────────────────────────────────

/// Handle for the logging/telemetry subsystem.
///
/// All methods are associated functions rather than instance methods because
/// the underlying state (the `tracing` global subscriber) is process-global.
/// There is nothing to store in an instance. Using a unit struct gives us a
/// namespaced API (`Telemetry::init`, `Telemetry::log_startup`) that is easy
/// to `use` or call without losing the module identity.
pub struct Telemetry;

impl Telemetry {
    /// Build an [`EnvFilter`] from an optional explicit directive string.
    ///
    /// - If `directive` is `Some(s)` and parses successfully, that filter is
    ///   returned.
    /// - If `directive` is `None` or the string fails to parse, the default
    ///   `info` level is used.
    ///
    /// This is factored out from [`init`](Self::init) so that tests can verify
    /// filter-construction logic **without** touching the process-global
    /// `RUST_LOG` env variable (which would be racy in parallel test runs).
    pub fn build_filter(directive: Option<&str>) -> EnvFilter {
        directive
            .and_then(|d| EnvFilter::try_new(d).ok())
            .unwrap_or_else(|| EnvFilter::new("info"))
    }

    /// Initialise the global [`tracing`] subscriber.
    ///
    /// Sets up an `fmt` layer writing structured log lines to **stdout**,
    /// filtered by [`EnvFilter`]:
    ///
    /// - If `RUST_LOG` is set in the environment, its value is used as the
    ///   filter directive.
    /// - Otherwise, the filter defaults to `info`.
    ///
    /// The function is **idempotent**: calling it a second time returns
    /// [`InitOutcome::AlreadyInitialised`] without panicking. This is
    /// implemented by using `try_init()` on the registry, which returns an
    /// `Err` (rather than panicking) when a subscriber is already installed.
    pub fn init() -> InitOutcome {
        // Route through `build_filter` so the env-driven path is the same code
        // the unit tests exercise. `RUST_LOG` is the conventional directive var.
        let directive = std::env::var("RUST_LOG").ok();
        let filter = Self::build_filter(directive.as_deref());

        let result = registry()
            .with(filter)
            .with(fmt::layer().with_writer(std::io::stdout))
            .try_init();

        match result {
            Ok(()) => InitOutcome::Initialised,
            Err(_) => InitOutcome::AlreadyInitialised,
        }
    }

    /// Emit a structured startup log line at `info` level.
    ///
    /// Logs the binary name and version (from the package metadata compiled
    /// into the binary via `env!`) together with the resolved operational
    /// configuration: DNS bind addresses, admin bind address, and database
    /// path.
    ///
    /// Call this once after [`init`](Self::init) returns.
    pub fn log_startup(cfg: &Config) {
        info!(
            name = env!("CARGO_PKG_NAME"),
            version = env!("CARGO_PKG_VERSION"),
            dns_addrs = ?cfg.dns_addrs,
            admin_addr = %cfg.admin_addr,
            db_path = ?cfg.db_path,
            "starting sagittarius",
        );
    }
}

// ── Tests ─────────────────────────────────────────────────────────────────────

#[cfg(test)]
mod tests {
    use super::*;

    // ── Idempotency ───────────────────────────────────────────────────────────
    //
    // The global tracing subscriber can only be installed once per process.
    // Tests run in parallel and share the same process, so we cannot assert
    // which specific `InitOutcome` the first call produces — it depends on
    // which test (or the binary itself) happens to call `Telemetry::init`
    // first.
    //
    // What we *can* assert is that neither call panics, and that the second
    // call (which happens sequentially *within this test*) always returns
    // `AlreadyInitialised`.

    #[test]
    fn init_is_idempotent_no_panic() {
        // First call — outcome is indeterminate (another test may have gone first).
        let _first = Telemetry::init();

        // Second call in the same test — must not panic and must return
        // `AlreadyInitialised` because we just ensured one is set.
        let second = Telemetry::init();
        assert_eq!(second, InitOutcome::AlreadyInitialised);
    }

    // ── EnvFilter construction ────────────────────────────────────────────────
    //
    // We test filter construction via `build_filter` rather than by mutating
    // the process-global `RUST_LOG` environment variable. Mutating env vars in
    // parallel tests is inherently racy (another test might read or write
    // `RUST_LOG` concurrently), so we avoid it entirely.

    #[test]
    fn build_filter_none_yields_info_default() {
        // Without any directive, the filter should accept `info`-level events.
        let filter = Telemetry::build_filter(None);
        // EnvFilter's Display implementation shows the active directives; an
        // `info` default renders as "info".
        assert_eq!(filter.to_string(), "info");
    }

    #[test]
    fn build_filter_explicit_directive_parses() {
        // A valid directive string is accepted without error.
        let filter = Telemetry::build_filter(Some("sagittarius=debug"));
        // The directive round-trips through Display.
        assert_eq!(filter.to_string(), "sagittarius=debug");
    }

    #[test]
    fn build_filter_invalid_directive_falls_back_to_info() {
        // An unparseable directive string falls back to the `info` default.
        let filter = Telemetry::build_filter(Some("this=is=not=valid====="));
        assert_eq!(filter.to_string(), "info");
    }

    #[test]
    fn build_filter_multiple_directives() {
        // Multiple directives separated by commas are accepted.
        let filter = Telemetry::build_filter(Some("warn,sagittarius=debug"));
        let s = filter.to_string();
        assert!(
            s.contains("sagittarius=debug"),
            "expected directive in: {s}"
        );
    }

    // ── log_startup smoke test ────────────────────────────────────────────────

    #[test]
    fn log_startup_does_not_panic() {
        use crate::config::SessionCookieSecurePolicy;
        use std::net::SocketAddr;
        use std::path::PathBuf;

        // Ensure a subscriber is installed so the tracing event is dispatched
        // (or swallowed) without panicking.
        let _ = Telemetry::init();

        let cfg = Config {
            dns_addrs: vec!["0.0.0.0:53".parse::<SocketAddr>().unwrap()],
            admin_addr: "127.0.0.1:8080".parse::<SocketAddr>().unwrap(),
            db_path: PathBuf::from("sagittarius.db"),
            session_cookie_secure: SessionCookieSecurePolicy::Auto,
        };

        // Must not panic.
        Telemetry::log_startup(&cfg);
    }
}