1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
|
/*
* This file is part of PowerDNS or dnsdist.
* Copyright -- PowerDNS.COM B.V. and its contributors
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of version 2 of the GNU General Public License as
* published by the Free Software Foundation.
*
* In addition, for the avoidance of any doubt, permission is granted to
* link this program with OpenSSL and to (re)distribute the binaries
* produced as the result of such linking.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
*/
#ifdef HAVE_CONFIG_H
#include "config.h"
#endif
#include <string>
#include "shuffle.hh"
#include "dns_random.hh"
#include "dnsparser.hh"
// shuffle, maintaining some semblance of order
void pdns::shuffle(std::vector<DNSZoneRecord>& rrs)
{
std::vector<DNSZoneRecord>::iterator first, second;
// We assume the CNAMES are listed first in the ANSWER section and the the other records
// and we want to shuffle the other records only
// First we scan for the first non-CNAME ANSWER record
for (first = rrs.begin(); first != rrs.end(); ++first) {
if (first->dr.d_place == DNSResourceRecord::ANSWER && first->dr.d_type != QType::CNAME) {
break;
}
}
// And then for one past the last ANSWER record
for (second = first; second != rrs.end(); ++second)
if (second->dr.d_place != DNSResourceRecord::ANSWER)
break;
// Now shuffle the non-CNAME ANSWER records
dns_random_engine r;
if (second - first > 1) {
shuffle(first, second, r);
}
// now shuffle the ADDITIONAL records in the same manner as the ANSWER records
for (first = second; first != rrs.end(); ++first) {
if (first->dr.d_place == DNSResourceRecord::ADDITIONAL && first->dr.d_type != QType::CNAME) {
break;
}
}
for (second = first; second != rrs.end(); ++second) {
if (second->dr.d_place != DNSResourceRecord::ADDITIONAL) {
break;
}
}
if (second - first > 1) {
shuffle(first, second, r);
}
// we don't shuffle the rest
}
// shuffle, maintaining some semblance of order
static void shuffle(std::vector<DNSRecord>& rrs, bool includingAdditionals)
{
// This shuffles in the same style as the above method, keeping CNAME in the front and RRSIGs at the end
std::vector<DNSRecord>::iterator first, second;
for (first = rrs.begin(); first != rrs.end(); ++first) {
if (first->d_place == DNSResourceRecord::ANSWER && first->d_type != QType::CNAME) {
break;
}
}
for (second = first; second != rrs.end(); ++second) {
if (second->d_place != DNSResourceRecord::ANSWER || second->d_type == QType::RRSIG) {
break;
}
}
pdns::dns_random_engine r;
if (second - first > 1) {
shuffle(first, second, r);
}
if (!includingAdditionals) {
return;
}
// now shuffle the additional records
for (first = second; first != rrs.end(); ++first) {
if (first->d_place == DNSResourceRecord::ADDITIONAL && first->d_type != QType::CNAME) {
break;
}
}
for (second = first; second != rrs.end(); ++second) {
if (second->d_place != DNSResourceRecord::ADDITIONAL) {
break;
}
}
if (second - first > 1) {
shuffle(first, second, r);
}
// we don't shuffle the rest
}
static uint16_t mapTypesToOrder(uint16_t type)
{
if (type == QType::CNAME)
return 0;
if (type == QType::RRSIG)
return 65535;
else
return 1;
}
// make sure rrs is sorted in d_place order to avoid surprises later
// then shuffle the parts that desire shuffling
void pdns::orderAndShuffle(vector<DNSRecord>& rrs, bool includingAdditionals)
{
std::stable_sort(rrs.begin(), rrs.end(), [](const DNSRecord& a, const DNSRecord& b) {
return std::make_tuple(a.d_place, mapTypesToOrder(a.d_type)) < std::make_tuple(b.d_place, mapTypesToOrder(b.d_type));
});
shuffle(rrs, includingAdditionals);
}
|
