mirror of
https://github.com/coredns/coredns.git
synced 2025-12-31 06:00:28 -05:00
b21c752d7f
Enable "gosec" linter.
Exclude:
- All G115 (integer overflow) findings, to be fixed separately.
Add targeted gosec annotations for:
- non-crypto math/rand usage
- md5 used only for file change detection
- G114 ("net/http serve with no timeout settings"), to be fixed
separately.
Other findings fixed.
Signed-off-by: Ville Vesilehto <ville@vesilehto.fi>
39 lines
1.0 KiB
Go
39 lines
1.0 KiB
Go
// Package rand is used for concurrency safe random number generator.
|
|
// This package provides a thread-safe wrapper around math/rand for use in
|
|
// load balancing and server selection. It is NOT suitable for cryptographic
|
|
// purposes and should not be used for security-sensitive operations.
|
|
package rand
|
|
|
|
import (
|
|
"math/rand"
|
|
"sync"
|
|
)
|
|
|
|
// Rand is used for concurrency safe random number generator.
|
|
type Rand struct {
|
|
m sync.Mutex
|
|
r *rand.Rand
|
|
}
|
|
|
|
// New returns a new Rand from seed.
|
|
func New(seed int64) *Rand {
|
|
return &Rand{r: rand.New(rand.NewSource(seed))} // #nosec G404 -- non-cryptographic RNG by design (load balancing only).
|
|
}
|
|
|
|
// Int returns a non-negative pseudo-random int from the Source in Rand.r.
|
|
func (r *Rand) Int() int {
|
|
r.m.Lock()
|
|
v := r.r.Int()
|
|
r.m.Unlock()
|
|
return v
|
|
}
|
|
|
|
// Perm returns, as a slice of n ints, a pseudo-random permutation of the
|
|
// integers in the half-open interval [0,n) from the Source in Rand.r.
|
|
func (r *Rand) Perm(n int) []int {
|
|
r.m.Lock()
|
|
v := r.r.Perm(n)
|
|
r.m.Unlock()
|
|
return v
|
|
}
|