Skip to content

GODRIVER-3284 Allow valid SRV hostnames with less than 3 parts. #1898

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 3 commits into from
Jan 14, 2025
Merged

GODRIVER-3284 Allow valid SRV hostnames with less than 3 parts. #1898

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
b922c1c
GODRIVER-3284 Allow valid SRV hostnames with less than 3 parts.
qingyang-hu Oct 29, 2024
99d82ef
improve tests
qingyang-hu Dec 5, 2024
deae65b
update error message
qingyang-hu Jan 10, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
122 changes: 122 additions & 0 deletions x/mongo/driver/connstring/initial_dns_seedlist_discovery_prose_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,122 @@
// Copyright (C) MongoDB, Inc. 2024-present.
//
// Licensed under the Apache License, Version 2.0 (the "License"); you may
// not use this file except in compliance with the License. You may obtain
// a copy of the License at http://www.apache.org/licenses/LICENSE-2.0

package connstring

import (
"fmt"
"net"
"testing"

"go.mongodb.org/mongo-driver/v2/internal/assert"
"go.mongodb.org/mongo-driver/v2/x/mongo/driver/dns"
)

func TestInitialDNSSeedlistDiscoveryProse(t *testing.T) {
newTestParser := func(record string) *parser {
return &parser{&dns.Resolver{
LookupSRV: func(_, _, _ string) (string, []*net.SRV, error) {
return "", []*net.SRV{
{
Target: record,
Port: 27017,
},
}, nil
},
LookupTXT: func(string) ([]string, error) {
return nil, nil
},
}}
}

t.Run("1. Allow SRVs with fewer than 3 . separated parts", func(t *testing.T) {
t.Parallel()

cases := []struct {
record string
uri string
}{
{"test_1.localhost", "mongodb+srv://localhost"},
{"test_1.mongo.local", "mongodb+srv://mongo.local"},
}
for _, c := range cases {
c := c
t.Run(c.uri, func(t *testing.T) {
t.Parallel()

_, err := newTestParser(c.record).parse(c.uri)
assert.NoError(t, err, "expected no URI parsing error, got %v", err)
})
}
})
t.Run("2. Throw when return address does not end with SRV domain", func(t *testing.T) {
t.Parallel()

cases := []struct {
record string
uri string
}{
{"localhost.mongodb", "mongodb+srv://localhost"},
{"test_1.evil.local", "mongodb+srv://mongo.local"},
{"blogs.evil.com", "mongodb+srv://blogs.mongodb.com"},
}
for _, c := range cases {
c := c
t.Run(c.uri, func(t *testing.T) {
t.Parallel()

_, err := newTestParser(c.record).parse(c.uri)
assert.ErrorContains(t, err, "Domain suffix from SRV record not matched input domain")
})
}
})
t.Run("3. Throw when return address is identical to SRV hostname", func(t *testing.T) {
t.Parallel()

cases := []struct {
record string
uri string
labels int
}{
{"localhost", "mongodb+srv://localhost", 1},
{"mongo.local", "mongodb+srv://mongo.local", 2},
}
for _, c := range cases {
c := c
t.Run(c.uri, func(t *testing.T) {
t.Parallel()

_, err := newTestParser(c.record).parse(c.uri)
expected := fmt.Sprintf(
"Server record (%d levels) should have more domain levels than parent URI (%d levels)",
c.labels, c.labels,
)
assert.ErrorContains(t, err, expected)
})
}
})
t.Run("4. Throw when return address does not contain . separating shared part of domain", func(t *testing.T) {
t.Parallel()

cases := []struct {
record string
uri string
}{
{"test_1.cluster_1localhost", "mongodb+srv://localhost"},
{"test_1.my_hostmongo.local", "mongodb+srv://mongo.local"},
{"cluster.testmongodb.com", "mongodb+srv://blogs.mongodb.com"},
}
for _, c := range cases {
c := c
t.Run(c.uri, func(t *testing.T) {
t.Parallel()

_, err := newTestParser(c.record).parse(c.uri)
assert.ErrorContains(t, err, "Domain suffix from SRV record not matched input domain")
})
}
})
}
11 changes: 7 additions & 4 deletions x/mongo/driver/dns/dns.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -113,15 +113,18 @@ func (r *Resolver) fetchSeedlistFromSRV(host string, srvName string, stopOnErr b
func validateSRVResult(recordFromSRV, inputHostName string) error {
separatedInputDomain := strings.Split(strings.ToLower(inputHostName), ".")
separatedRecord := strings.Split(strings.ToLower(recordFromSRV), ".")
if len(separatedRecord) < 2 {
return errors.New("DNS name must contain at least 2 labels")
if l := len(separatedInputDomain); l < 3 && len(separatedRecord) <= l {
return fmt.Errorf("Server record (%d levels) should have more domain levels than parent URI (%d levels)", l, len(separatedRecord))
}
if len(separatedRecord) < len(separatedInputDomain) {
return errors.New("Domain suffix from SRV record not matched input domain")
}

inputDomainSuffix := separatedInputDomain[1:]
domainSuffixOffset := len(separatedRecord) - (len(separatedInputDomain) - 1)
inputDomainSuffix := separatedInputDomain
if len(inputDomainSuffix) > 2 {
inputDomainSuffix = inputDomainSuffix[1:]
}
domainSuffixOffset := len(separatedRecord) - len(inputDomainSuffix)

recordDomainSuffix := separatedRecord[domainSuffixOffset:]
for ix, label := range inputDomainSuffix {
Expand Down
Loading