|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
*/ |
|
package com.sun.jndi.dns; |
|
|
|
import java.io.IOException; |
|
import java.net.DatagramSocket; |
|
import java.net.ProtocolFamily; |
|
import java.net.SocketException; |
|
import java.net.InetSocketAddress; |
|
import java.nio.channels.DatagramChannel; |
|
import java.util.Objects; |
|
import java.util.Random; |
|
|
|
class DNSDatagramSocketFactory { |
|
static final int DEVIATION = 3; |
|
static final int THRESHOLD = 6; |
|
static final int BIT_DEVIATION = 2; |
|
static final int HISTORY = 32; |
|
static final int MAX_RANDOM_TRIES = 5; |
|
|
|
|
|
|
|
*/ |
|
static final class EphemeralPortRange { |
|
private EphemeralPortRange() {} |
|
static final int LOWER = sun.net.PortConfig.getLower(); |
|
static final int UPPER = sun.net.PortConfig.getUpper(); |
|
static final int RANGE = UPPER - LOWER + 1; |
|
} |
|
|
|
|
|
static final class PortHistory { |
|
final int capacity; |
|
final int[] ports; |
|
final Random random; |
|
int index; |
|
PortHistory(int capacity, Random random) { |
|
this.random = random; |
|
this.capacity = capacity; |
|
this.ports = new int[capacity]; |
|
} |
|
|
|
public boolean contains(int port) { |
|
int p = 0; |
|
for (int i=0; i<capacity; i++) { |
|
if ((p = ports[i]) == 0 || p == port) break; |
|
} |
|
return p == port; |
|
} |
|
// Adds the port to the history - doesn't check whether the port |
|
|
|
public boolean add(int port) { |
|
if (ports[index] != 0) { // at max capacity |
|
|
|
ports[random.nextInt(capacity)] = port; |
|
} else { |
|
ports[index] = port; |
|
} |
|
if (++index == capacity) index = 0; |
|
return true; |
|
} |
|
// Adds the port to the history if not already present. |
|
// Return true if the port was added, false if the port was already |
|
|
|
public boolean offer(int port) { |
|
if (contains(port)) return false; |
|
else return add(port); |
|
} |
|
} |
|
|
|
int lastport = 0; |
|
int suitablePortCount; |
|
int unsuitablePortCount; |
|
final ProtocolFamily family; |
|
final int thresholdCount; |
|
final int deviation; |
|
final Random random; |
|
final PortHistory history; |
|
|
|
DNSDatagramSocketFactory() { |
|
this(new Random()); |
|
} |
|
|
|
DNSDatagramSocketFactory(Random random) { |
|
this(Objects.requireNonNull(random), null, DEVIATION, THRESHOLD); |
|
} |
|
DNSDatagramSocketFactory(Random random, |
|
ProtocolFamily family, |
|
int deviation, |
|
int threshold) { |
|
this.random = Objects.requireNonNull(random); |
|
this.history = new PortHistory(HISTORY, random); |
|
this.family = family; |
|
this.deviation = Math.max(1, deviation); |
|
this.thresholdCount = Math.max(2, threshold); |
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
*/ |
|
public synchronized DatagramSocket open() throws SocketException { |
|
int lastseen = lastport; |
|
DatagramSocket s; |
|
|
|
boolean thresholdCrossed = unsuitablePortCount > thresholdCount; |
|
if (thresholdCrossed) { |
|
// Underlying stack does not support random UDP port out of the box. |
|
|
|
s = openRandom(); |
|
if (s != null) return s; |
|
|
|
// couldn't allocate a random port: reset all counters and fall |
|
|
|
unsuitablePortCount = 0; suitablePortCount = 0; lastseen = 0; |
|
} |
|
|
|
|
|
s = openDefault(); |
|
lastport = s.getLocalPort(); |
|
if (lastseen == 0) { |
|
history.offer(lastport); |
|
return s; |
|
} |
|
|
|
thresholdCrossed = suitablePortCount > thresholdCount; |
|
boolean farEnough = Integer.bitCount(lastseen ^ lastport) > BIT_DEVIATION |
|
&& Math.abs(lastport - lastseen) > deviation; |
|
boolean recycled = history.contains(lastport); |
|
boolean suitable = (thresholdCrossed || farEnough && !recycled); |
|
if (suitable && !recycled) history.add(lastport); |
|
|
|
if (suitable) { |
|
if (!thresholdCrossed) { |
|
suitablePortCount++; |
|
} else if (!farEnough || recycled) { |
|
unsuitablePortCount = 1; |
|
suitablePortCount = thresholdCount/2; |
|
} |
|
// Either the underlying stack supports random UDP port allocation, |
|
// or the new port is sufficiently distant from last port to make |
|
|
|
return s; |
|
} |
|
|
|
// Undecided... the new port was too close. Let's allocate a random |
|
|
|
assert !thresholdCrossed; |
|
DatagramSocket ss = openRandom(); |
|
if (ss == null) return s; |
|
unsuitablePortCount++; |
|
s.close(); |
|
return ss; |
|
} |
|
|
|
private DatagramSocket openDefault() throws SocketException { |
|
if (family != null) { |
|
try { |
|
DatagramChannel c = DatagramChannel.open(family); |
|
try { |
|
DatagramSocket s = c.socket(); |
|
s.bind(null); |
|
return s; |
|
} catch (Throwable x) { |
|
c.close(); |
|
throw x; |
|
} |
|
} catch (SocketException x) { |
|
throw x; |
|
} catch (IOException x) { |
|
SocketException e = new SocketException(x.getMessage()); |
|
e.initCause(x); |
|
throw e; |
|
} |
|
} |
|
return new DatagramSocket(); |
|
} |
|
|
|
synchronized boolean isUsingNativePortRandomization() { |
|
return unsuitablePortCount <= thresholdCount |
|
&& suitablePortCount > thresholdCount; |
|
} |
|
|
|
synchronized boolean isUsingJavaPortRandomization() { |
|
return unsuitablePortCount > thresholdCount ; |
|
} |
|
|
|
synchronized boolean isUndecided() { |
|
return !isUsingJavaPortRandomization() |
|
&& !isUsingNativePortRandomization(); |
|
} |
|
|
|
private DatagramSocket openRandom() { |
|
int maxtries = MAX_RANDOM_TRIES; |
|
while (maxtries-- > 0) { |
|
int port = EphemeralPortRange.LOWER |
|
+ random.nextInt(EphemeralPortRange.RANGE); |
|
try { |
|
if (family != null) { |
|
DatagramChannel c = DatagramChannel.open(family); |
|
try { |
|
DatagramSocket s = c.socket(); |
|
s.bind(new InetSocketAddress(port)); |
|
return s; |
|
} catch (Throwable x) { |
|
c.close(); |
|
throw x; |
|
} |
|
} |
|
return new DatagramSocket(port); |
|
} catch (IOException x) { |
|
// try again until maxtries == 0; |
|
} |
|
} |
|
return null; |
|
} |
|
|
|
} |