Disable UPDATE message truncation

ibauersachs · ibauersachs · commit 8444680476c0 · 2025-01-05T13:49:45.000+01:00
Closes #356
diff --git a/pom.xml b/pom.xml
@@ -305,6 +305,12 @@
                             <exclude>org.xbill.DNS.spi.DnsjavaInetAddressResolverProvider</exclude>
                         </excludes>
                         <overrideCompatibilityChangeParameters>
+                            <overrideCompatibilityChangeParameter>
+                                <compatibilityChange>INTERFACE_ADDED</compatibilityChange>
+                                <binaryCompatible>true</binaryCompatible>
+                                <sourceCompatible>true</sourceCompatible>
+                                <semanticVersionLevel>PATCH</semanticVersionLevel>
+                            </overrideCompatibilityChangeParameter>
                             <overrideCompatibilityChangeParameter>
                                 <compatibilityChange>ANNOTATION_DEPRECATED_ADDED</compatibilityChange>
                                 <semanticVersionLevel>PATCH</semanticVersionLevel>
diff --git a/src/main/java/org/xbill/DNS/Header.java b/src/main/java/org/xbill/DNS/Header.java
@@ -97,6 +97,13 @@ static int setFlag(int flags, int bit, boolean value) {
     }
   }
 
+  static boolean getFlag(int flags, int bit) {
+    checkFlag(bit);
+
+    // bits are indexed from left to right
+    return (flags & (1 << (15 - bit))) != 0;
+  }
+
   /**
    * Sets a flag to the supplied value
    *
@@ -123,9 +130,7 @@ public void unsetFlag(int bit) {
    * @see Flags
    */
   public boolean getFlag(int bit) {
-    checkFlag(bit);
-    // bits are indexed from left to right
-    return (flags & (1 << (15 - bit))) != 0;
+    return getFlag(flags, bit);
   }
 
   boolean[] getFlags() {
diff --git a/src/main/java/org/xbill/DNS/Message.java b/src/main/java/org/xbill/DNS/Message.java
@@ -467,10 +467,10 @@ private int sectionToWire(DNSOutput out, int section, Compression c, int maxLeng
     return n - count;
   }
 
-  /* Returns true if the message could be rendered. */
-  private void toWire(DNSOutput out, int maxLength) {
+  /* Returns true if the message could be completely rendered (i.e. not truncated). */
+  private boolean toWire(DNSOutput out, int maxLength) {
     if (maxLength < Header.LENGTH) {
-      return;
+      return false;
     }
 
     int tempMaxLength = maxLength;
@@ -529,6 +529,8 @@ private void toWire(DNSOutput out, int maxLength) {
       generatedTsig = tsigrec;
       out.writeU16At(additionalCount + 1, startpos + 10);
     }
+
+    return !Header.getFlag(flags, Flags.TC);
   }
 
   /**
@@ -546,10 +548,8 @@ public byte[] toWire() {
 
   /**
    * Returns an array containing the wire format representation of the Message with the specified
-   * maximum length. This will generate a truncated message (with the TC bit) if the message doesn't
-   * fit, and will also sign the message with the TSIG key set by a call to {@link #setTSIG(TSIG,
-   * int, TSIGRecord)}. This method may return an empty byte array if the message could not be
-   * rendered at all; this could happen if maxLength is smaller than a DNS header, for example.
+   * maximum length. Equivalent to calling {@link #toWire(int maxLength, boolean truncate)
+   * toWire(maxLength, true)}.
    *
    * <p>Do NOT use this method in conjunction with {@link TSIG#apply(Message, TSIGRecord)}, it
    * produces inconsistent results! Use {@link #setTSIG(TSIG, int, TSIGRecord)} instead.
@@ -567,6 +567,36 @@ public byte[] toWire(int maxLength) {
     return out.toByteArray();
   }
 
+  /**
+   * Returns an array containing the wire format representation of the Message with the specified
+   * maximum length. If {@code truncate} is {@code true} it will generate a truncated message (with
+   * the TC bit) if the message doesn't fit, otherwise an exception will be thrown. It will also
+   * sign the message with the TSIG key set by a call to {@link #setTSIG(TSIG, int, TSIGRecord)}.
+   * This method may return an empty byte array if the message could not be rendered at all; this
+   * could happen if maxLength is smaller than a DNS header, for example.
+   *
+   * <p>Do NOT use this method in conjunction with {@link TSIG#apply(Message, TSIGRecord)}, it
+   * produces inconsistent results! Use {@link #setTSIG(TSIG, int, TSIGRecord)} instead.
+   *
+   * @param maxLength The maximum length of the message.
+   * @return The wire format of the message, or an empty array if the message could not be rendered
+   *     into the specified length.
+   * @throws MessageSizeExceededException When the message size would exceed the specified {@code
+   *     maxLength}.
+   * @see Flags
+   * @see TSIG
+   */
+  public byte[] toWire(int maxLength, boolean truncate) throws MessageSizeExceededException {
+    DNSOutput out = new DNSOutput();
+    boolean completelyRendered = toWire(out, maxLength);
+    if (!completelyRendered && !truncate) {
+      throw new MessageSizeExceededException(maxLength);
+    }
+
+    size = out.current();
+    return out.toByteArray();
+  }
+
   /**
    * Sets the TSIG key to sign a message.
    *
diff --git a/src/main/java/org/xbill/DNS/MessageSizeExceededException.java b/src/main/java/org/xbill/DNS/MessageSizeExceededException.java
@@ -0,0 +1,16 @@
+// SPDX-License-Identifier: BSD-3-Clause
+package org.xbill.DNS;
+
+import lombok.Getter;
+
+/** Indicates that converting a {@link Message} to wire format exceeded the maximum length. */
+@Getter
+public final class MessageSizeExceededException extends Exception {
+  /** Gets the maximum allowed size (in bytes). */
+  private final int maxSize;
+
+  MessageSizeExceededException(int maxSize) {
+    super("Message size would exceed the allowed maximum of " + maxSize + " bytes");
+    this.maxSize = maxSize;
+  }
+}
diff --git a/src/main/java/org/xbill/DNS/SimpleResolver.java b/src/main/java/org/xbill/DNS/SimpleResolver.java
@@ -353,7 +353,16 @@ public CompletionStage<Message> sendAsync(Message query, Executor executor) {
 
   CompletableFuture<Message> sendAsync(Message query, boolean forceTcp, Executor executor) {
     int qid = query.getHeader().getID();
-    byte[] out = query.toWire(Message.MAXLENGTH);
+    boolean truncate = query.getHeader().getOpcode() != Opcode.UPDATE;
+    byte[] out;
+    try {
+      out = query.toWire(Message.MAXLENGTH, truncate);
+    } catch (MessageSizeExceededException e) {
+      CompletableFuture<Message> f = new CompletableFuture<>();
+      f.completeExceptionally(e);
+      return f;
+    }
+
     int udpSize = maxUDPSize(query);
     boolean tcp = forceTcp || out.length > udpSize;
     if (log.isTraceEnabled()) {
diff --git a/src/test/java/org/xbill/DNS/UpdateTest.java b/src/test/java/org/xbill/DNS/UpdateTest.java
@@ -0,0 +1,68 @@
+// SPDX-License-Identifier: BSD-3-Clause
+package org.xbill.DNS;
+
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.assertj.core.api.Assertions.assertThatThrownBy;
+
+import java.io.IOException;
+import java.net.UnknownHostException;
+import java.util.UUID;
+import java.util.concurrent.CompletableFuture;
+import org.junit.jupiter.api.Test;
+import org.xbill.DNS.io.IoClientFactory;
+import org.xbill.DNS.io.TcpIoClient;
+import org.xbill.DNS.io.UdpIoClient;
+
+class UpdateTest {
+  private static final Name exampleCom = Name.fromConstantString("example.com.");
+
+  private Update getLargeUpdateMessage() throws TextParseException {
+    Update u = new Update(exampleCom);
+    for (int i = 0; i < 2000; i++) {
+      u.add(
+          new TXTRecord(
+              new Name("name-" + i, exampleCom), DClass.IN, 900, UUID.randomUUID().toString()));
+    }
+    return u;
+  }
+
+  @Test
+  void toWireThrowsOnDisallowedTruncation() throws IOException {
+    Update u = getLargeUpdateMessage();
+    assertThatThrownBy(() -> u.toWire(Message.MAXLENGTH, false))
+        .isInstanceOf(MessageSizeExceededException.class);
+  }
+
+  @Test
+  void toWireAllowsTruncationByDefault() throws IOException, MessageSizeExceededException {
+    Update u = getLargeUpdateMessage();
+    int maxSize = 16384;
+    byte[] defaultOverloadResult = u.toWire(maxSize);
+    byte[] truncationAllowedResult = u.toWire(maxSize, true);
+    Message readBack = new Message(defaultOverloadResult);
+    assertThat(defaultOverloadResult).isEqualTo(truncationAllowedResult).hasSizeLessThan(maxSize);
+    assertThat(readBack.getHeader().getFlag(Flags.TC)).isTrue();
+  }
+
+  @Test
+  void resolverForbidsTruncation() throws TextParseException, UnknownHostException {
+    Update u = getLargeUpdateMessage();
+    SimpleResolver r = new SimpleResolver("127.0.0.1");
+    r.setIoClientFactory(
+        new IoClientFactory() {
+          @Override
+          public TcpIoClient createOrGetTcpClient() {
+            return (local, remote, query, data, timeout) -> CompletableFuture.completedFuture(data);
+          }
+
+          @Override
+          public UdpIoClient createOrGetUdpClient() {
+            throw new RuntimeException("Not implemented");
+          }
+        });
+    r.setTCP(true);
+    assertThatThrownBy(() -> r.send(u))
+        .rootCause()
+        .isInstanceOf(MessageSizeExceededException.class);
+  }
+}

Original file line number	Diff line number	Diff line change
`@@ -97,6 +97,13 @@ static int setFlag(int flags, int bit, boolean value) {`
`97`	`97`	`}`
`98`	`98`	`}`
`99`	`99`
	`100`	`+ static boolean getFlag(int flags, int bit) {`
	`101`	`+ checkFlag(bit);`
	`102`	`+`
	`103`	`+ // bits are indexed from left to right`
	`104`	`+ return (flags & (1 << (15 - bit))) != 0;`
	`105`	`+ }`
	`106`	`+`
`100`	`107`	`/**`
`101`	`108`	`* Sets a flag to the supplied value`
`102`	`109`	`*`
`@@ -123,9 +130,7 @@ public void unsetFlag(int bit) {`
`123`	`130`	`* @see Flags`
`124`	`131`	`*/`
`125`	`132`	`public boolean getFlag(int bit) {`
`126`		`- checkFlag(bit);`
`127`		`- // bits are indexed from left to right`
`128`		`- return (flags & (1 << (15 - bit))) != 0;`
	`133`	`+ return getFlag(flags, bit);`
`129`	`134`	`}`
`130`	`135`
`131`	`136`	`boolean[] getFlags() {`