Do not expand query UDP buffer size if already set to a smaller value (#5602)

Signed-off-by: Krzysztof Narkiewicz <knarkiewicz@bloomberg.net> Signed-off-by: Krzysztof Narkiewicz <knarkiewicz@bloomberg.net> Co-authored-by: Krzysztof Narkiewicz <knarkiewicz@bloomberg.net>
2022-09-07 14:53:30 +01:00 · 2022-09-07 14:53:30 +01:00 · 07159c8d87
commit 07159c8d87
parent 0511ca2e4d
2 changed files with 81 additions and 60 deletions
--- a/plugin/bufsize/bufsize.go
+++ b/plugin/bufsize/bufsize.go
@ -1,4 +1,4 @@
-// Package bufsize implements a plugin that modifies EDNS0 buffer size.
+// Package bufsize implements a plugin that clamps EDNS0 buffer size preventing packet fragmentation.
 package bufsize
 import (
@ -17,10 +17,9 @@ type Bufsize struct {
 // ServeDNS implements the plugin.Handler interface.
 func (buf Bufsize) ServeDNS(ctx context.Context, w dns.ResponseWriter, r *dns.Msg) (int, error) {
-	if option := r.IsEdns0(); option != nil {
+	if option := r.IsEdns0(); option != nil && int(option.UDPSize()) > buf.Size {
 		option.SetUDPSize(uint16(buf.Size))
 	}
 	return plugin.NextOrFailure(buf.Name(), buf.Next, ctx, w, r)
 }
--- a/plugin/bufsize/bufsize_test.go
+++ b/plugin/bufsize/bufsize_test.go
@ -4,7 +4,6 @@ import (
 	"context"
 	"testing"
 	"github.com/coredns/coredns/plugin"
 	"github.com/coredns/coredns/plugin/test"
 	"github.com/coredns/coredns/plugin/whoami"
@ -12,69 +11,92 @@ import (
 )
 func TestBufsize(t *testing.T) {
-	em := Bufsize{
+	const maxBufSize = 1024
-		Size: 512,
+
 	setUpWithRequestBufsz := func(bufferSize uint16) (Bufsize, *dns.Msg) {
 		p := Bufsize{
 			Size: maxBufSize,
 			Next: whoami.Whoami{},
 		}
 		r := new(dns.Msg)
 		r.SetQuestion(dns.Fqdn("."), dns.TypeA)
 		r.Question[0].Qclass = dns.ClassINET
 		if bufferSize > 0 {
 			r.SetEdns0(bufferSize, false)
 		}
 		return p, r
 	}
-	tests := []struct {
+	t.Run("Limit response buffer size", func(t *testing.T) {
-		next            plugin.Handler
+		// GIVEN
-		qname           string
+		//		plugin initialized with maximum buffer size
-		inputBufsize    uint16
+		//		request has larger buffer size than allowed
-		outgoingBufsize uint16
+		p, r := setUpWithRequestBufsz(maxBufSize + 128)
 		expectedErr     error
 	}{
 		// This plugin is responsible for limiting outgoing query's bufize
 		{
 			next:            whoami.Whoami{},
 			qname:           ".",
 			inputBufsize:    1200,
 			outgoingBufsize: 512,
 			expectedErr:     nil,
 		},
 		// If EDNS is not enabled, this plugin should not add it
 		{
 			next:            whoami.Whoami{},
 			qname:           ".",
 			outgoingBufsize: 512,
 			expectedErr:     nil,
 		},
 	}
-	for i, tc := range tests {
+		// WHEN
-		req := new(dns.Msg)
+		//		request is processed
-		req.SetQuestion(dns.Fqdn(tc.qname), dns.TypeA)
+		_, err := p.ServeDNS(context.Background(), &test.ResponseWriter{}, r)
 		req.Question[0].Qclass = dns.ClassINET
 		em.Next = tc.next
-		if tc.inputBufsize != 0 {
+		// THEN
-			req.SetEdns0(tc.inputBufsize, false)
+		//		no error
 		//		OPT RR present
 		//		request buffer size is limited
 		if err != nil {
 			t.Errorf("unexpected error %s", err)
 		}
 		option := r.IsEdns0()
 		if option == nil {
 			t.Errorf("OPT RR not present")
 		}
 		if option.UDPSize() != maxBufSize {
 			t.Errorf("buffer size not limited")
 		}
 	})
-		_, err := em.ServeDNS(context.Background(), &test.ResponseWriter{}, req)
+	t.Run("Do not increase response buffer size", func(t *testing.T) {
 		// GIVEN
 		//		plugin initialized with maximum buffer size
 		//		request has smaller buffer size than allowed
 		const smallerBufferSize = maxBufSize - 128
 		p, r := setUpWithRequestBufsz(smallerBufferSize)
-		if err != tc.expectedErr {
+		// WHEN
-			t.Errorf("Test %d: Expected error is %v, but got %v", i, tc.expectedErr, err)
+		//		request is processed
-		}
+		_, err := p.ServeDNS(context.Background(), &test.ResponseWriter{}, r)
-		if tc.outgoingBufsize != 0 {
+		// THEN
-			for _, extra := range req.Extra {
+		//		no error
-				if option, ok := extra.(*dns.OPT); ok {
+		//		request buffer size is not expanded
-					b := option.UDPSize()
+		if err != nil {
-					if b != tc.outgoingBufsize {
+			t.Errorf("unexpected error %s", err)
 						t.Errorf("Test %d: Expected outgoing bufsize is %d, but got %d", i, tc.outgoingBufsize, b)
 					}
 				} else {
 					t.Errorf("Test %d: Not found OPT RR.", i)
 		}
 		option := r.IsEdns0()
 		if option == nil {
 			t.Errorf("OPT RR not present")
 		}
 		if option.UDPSize() != smallerBufferSize {
 			t.Errorf("buffer size should not be increased")
 		}
 	})
-		if tc.inputBufsize == 0 {
+	t.Run("Buffer size should not be set", func(t *testing.T) {
-			for _, extra := range req.Extra {
+		// GIVEN
-				if _, ok := extra.(*dns.OPT); ok {
+		//		plugin initialized with maximum buffer size
-					t.Errorf("Test %d: Found OPT RR on reply to query with no OPT RR.", i)
+		//		request has no EDNS0 option set
-				}
+		p, r := setUpWithRequestBufsz(0)
-			}
+
 		// WHEN
 		//		request is processed
 		_, err := p.ServeDNS(context.Background(), &test.ResponseWriter{}, r)
 		// THEN
 		//		no error
 		//		OPT RR is not appended
 		if err != nil {
 			t.Errorf("unexpected error %s", err)
 		}
 		if r.IsEdns0() != nil {
 			t.Errorf("EDNS0 enabled for incoming request")
 		}
 	})
 }