diff options
Diffstat (limited to 'bin/tests/system/filter-aaaa/ns4')
-rw-r--r-- | bin/tests/system/filter-aaaa/ns4/named1.conf.in | 37 | ||||
-rw-r--r-- | bin/tests/system/filter-aaaa/ns4/named2.conf.in | 37 | ||||
-rw-r--r-- | bin/tests/system/filter-aaaa/ns4/root.db | 22 | ||||
-rwxr-xr-x | bin/tests/system/filter-aaaa/ns4/sign.sh | 30 | ||||
-rw-r--r-- | bin/tests/system/filter-aaaa/ns4/signed.db.in | 23 | ||||
-rw-r--r-- | bin/tests/system/filter-aaaa/ns4/signed.db.presigned | 110 | ||||
-rw-r--r-- | bin/tests/system/filter-aaaa/ns4/unsigned.db | 23 |
7 files changed, 282 insertions, 0 deletions
diff --git a/bin/tests/system/filter-aaaa/ns4/named1.conf.in b/bin/tests/system/filter-aaaa/ns4/named1.conf.in new file mode 100644 index 0000000..f70c7a6 --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/named1.conf.in @@ -0,0 +1,37 @@ +/* + * Copyright (C) Internet Systems Consortium, Inc. ("ISC") + * + * This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. + * + * See the COPYRIGHT file distributed with this work for additional + * information regarding copyright ownership. + */ + +options { + query-source address 10.53.0.4; + notify-source 10.53.0.4; + transfer-source 10.53.0.4; + port @PORT@; + pid-file "named.pid"; + listen-on { 10.53.0.4; }; + listen-on-v6 { fd92:7065:b8e:ffff::4; }; + recursion no; + notify yes; + filter-aaaa-on-v4 break-dnssec; + filter-aaaa { 10.53.0.4; }; +}; + +key rndc_key { + secret "1234abcd8765"; + algorithm hmac-sha256; +}; + +controls { + inet 10.53.0.4 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; +}; + +zone "." { type master; file "root.db"; }; +zone "signed" { type master; file "signed.db.signed"; }; +zone "unsigned" { type master; file "unsigned.db"; }; diff --git a/bin/tests/system/filter-aaaa/ns4/named2.conf.in b/bin/tests/system/filter-aaaa/ns4/named2.conf.in new file mode 100644 index 0000000..3d2b29b --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/named2.conf.in @@ -0,0 +1,37 @@ +/* + * Copyright (C) Internet Systems Consortium, Inc. ("ISC") + * + * This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. + * + * See the COPYRIGHT file distributed with this work for additional + * information regarding copyright ownership. + */ + +options { + query-source address 10.53.0.4; + notify-source 10.53.0.4; + transfer-source 10.53.0.4; + port @PORT@; + pid-file "named.pid"; + listen-on { 10.53.0.4; }; + listen-on-v6 { fd92:7065:b8e:ffff::4; }; + recursion no; + notify yes; + filter-aaaa-on-v6 break-dnssec; + filter-aaaa { fd92:7065:b8e:ffff::4; }; +}; + +key rndc_key { + secret "1234abcd8765"; + algorithm hmac-sha256; +}; + +controls { + inet 10.53.0.4 port @CONTROLPORT@ allow { any; } keys { rndc_key; }; +}; + +zone "." { type master; file "root.db"; }; +zone "signed" { type master; file "signed.db.signed"; }; +zone "unsigned" { type master; file "unsigned.db"; }; diff --git a/bin/tests/system/filter-aaaa/ns4/root.db b/bin/tests/system/filter-aaaa/ns4/root.db new file mode 100644 index 0000000..1511cc9 --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/root.db @@ -0,0 +1,22 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, You can obtain one at http://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +@ SOA ns.utld hostmaster.ns.utld ( 1 3600 1200 604800 60 ) +@ NS ns.utld +ns.utld A 10.53.0.4 +ns.utld AAAA fd92:7065:b8e:ffff::4 +; + +signed NS ns.signed +ns.signed A 10.53.0.4 +ns.signed AAAA fd92:7065:b8e:ffff::4 + +unsigned NS ns.unsigned +ns.unsigned A 10.53.0.4 +ns.unsigned AAAA fd92:7065:b8e:ffff::4 diff --git a/bin/tests/system/filter-aaaa/ns4/sign.sh b/bin/tests/system/filter-aaaa/ns4/sign.sh new file mode 100755 index 0000000..f755581 --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/sign.sh @@ -0,0 +1,30 @@ +#!/bin/sh +# +# Copyright (C) Internet Systems Consortium, Inc. ("ISC") +# +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at http://mozilla.org/MPL/2.0/. +# +# See the COPYRIGHT file distributed with this work for additional +# information regarding copyright ownership. + +SYSTEMTESTTOP=../.. +. $SYSTEMTESTTOP/conf.sh + +SYSTESTDIR=filter-aaaa + +dlvsets= + +zone=signed. +infile=signed.db.in +zonefile=signed.db.signed +outfile=signed.db.signed + +keyname1=`$KEYGEN -r $RANDFILE -a DSA -b 768 -n zone $zone 2> /dev/null` +keyname2=`$KEYGEN -f KSK -r $RANDFILE -a DSA -b 768 -n zone $zone 2> /dev/null` + +cat $infile $keyname1.key $keyname2.key >$zonefile + +$SIGNER -r $RANDFILE -o $zone -f $outfile $zonefile > /dev/null 2> signer.err || cat signer.err +echo_i "signed $zone" diff --git a/bin/tests/system/filter-aaaa/ns4/signed.db.in b/bin/tests/system/filter-aaaa/ns4/signed.db.in new file mode 100644 index 0000000..623b2b9 --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/signed.db.in @@ -0,0 +1,23 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, You can obtain one at http://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +$TTL 120 +@ SOA ns.signed. hostmaster.ns.signed. ( 1 3600 1200 604800 60 ) +@ NS ns +@ MX 10 mx + +ns A 10.53.0.4 + AAAA fd92:7065:b8e:ffff::4 + +a-only NS 1.0.0.1 +aaaa-only AAAA 2001:db8::2 +dual A 1.0.0.3 +dual AAAA 2001:db8::3 +mx A 1.0.0.3 +mx AAAA 2001:db8::3 diff --git a/bin/tests/system/filter-aaaa/ns4/signed.db.presigned b/bin/tests/system/filter-aaaa/ns4/signed.db.presigned new file mode 100644 index 0000000..d96c104 --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/signed.db.presigned @@ -0,0 +1,110 @@ +; File written on Thu May 1 12:22:01 2014 +; dnssec_signzone version 9.8.5-P1 +signed. 120 IN SOA ns.utld. hostmaster.ns.utld. ( + 1 ; serial + 3600 ; refresh (1 hour) + 1200 ; retry (20 minutes) + 604800 ; expire (1 week) + 60 ; minimum (1 minute) + ) + 120 RRSIG SOA 3 1 120 20820519033608 ( + 20140501012201 20366 signed. + BMC1gbQgLgNsb9G6rElwoY6Krb6lV/WFsd/j + LO3aVnPXgU/noM1IBjs= ) + 120 NS ns.utld. + 120 RRSIG NS 3 1 120 20820519033608 ( + 20140501012201 20366 signed. + BF9dWcW8GHL4QMp7rbeQgfUQmwEvskiMFqgt + GJqepDLkV4WXtw3TRK4= ) + 120 MX 10 mx.signed. + 120 RRSIG MX 3 1 120 20820519033608 ( + 20140501012201 20366 signed. + BJ7bngL8eZ9GrjQvHj0FDOgk2M6+YoW+cIAh + ZjGKcK431aUFMS3YSGE= ) + 60 NSEC a-only.signed. NS SOA MX RRSIG NSEC DNSKEY + 60 RRSIG NSEC 3 1 60 20820519033608 ( + 20140501012201 20366 signed. + BHMei3tCaM9eYTPLRn93c6qp9ADL1Hxy+HlN + cLTyzzC+UxjUoI9O2VI= ) + 120 DNSKEY 256 3 3 ( + BPLuLs4Ylbx3WZ8Ebj6GF+uEfI+J+RcaI1G3 + TW4JHqVqeBa0gkPjnCDsK9VeUx5CR8i/T18f + YrOSojvASvdvG+TLNN9Jx+5A7c/43WzDOe2B + jeAlfZSl1Bie/ccGL6W1+lVvlO0OHI54EoKs + KxRub2izdouH4867a8dwahBlm14oWYXjqk3+ + /ubDCPdXdTUvvLnDd9zyDpWYBXisb/3F8R1v + IcqyKDfJSTQSofLK+JlD+n7cv7U7pQWQn2qA + t/NkGcwF8EAbiQPmcF1BY6NnEMQ5XxNayAF5 + Eza+i/kf3hLtS12cqW8hWm7aRYZWbzC4uUZL + WGK0XfAK2d/vT8ZMZo1oaYEvy3xHwfsFgrFV + qebm2ZFEomHpQ4KOSL1UhVI8uegUgnnovHjC + eS4q72Fh+LZTD8C4 + ) ; key id = 20366 + 120 DNSKEY 257 3 3 ( + BPLuLs4Ylbx3WZ8Ebj6GF+uEfI+J+RcaI1G3 + TW4JHqVqeBa0gkPjnCDsK9VeUx5CR8i/T18f + YrOSojvASvdvG+TLNN9Jx+5A7c/43WzDOe2B + jeAlfZSl1Bie/ccGL6W1+lVvlO0OHI54EoKs + KxRub2izdouH4867a8dwahBlm14oWYXjqk3+ + /ubDCPdXdTUvvLnDd9zyDpWYBXisb/3F8R1v + IcqyKDfJSTQSofLK+JlD+n7cv7U7pQWQn2qA + t/NkGcwF8EAbiQPmcF1BY6NnEMQ5XxNayAF5 + Eza+i/kf3hLtS12cqW8hWm7aRYZWbzC4uUZL + WGK0XfAK2d/vT8ZMZo1oaYEvy3xHwfsFgrFV + qebm2ZFEomHpQ4KOSL1UhVI8uegUgnnovHjC + eS4q72Fh+LZTD8C4 + ) ; key id = 20367 + 120 RRSIG DNSKEY 3 1 120 20820519033608 ( + 20140501012201 20366 signed. + BBhlUYWd3f00zsSl+UJTxeVZUimQP8iMjf6j + Q7uPoI37BUz9NbZhTCg= ) + 120 RRSIG DNSKEY 3 1 120 20820519033608 ( + 20140501012201 20367 signed. + BHPcogpnebYByfzp/KT53GsIiT3yPk/4atwj + NNsPFmVLqb/6yjotWQ0= ) +a-only.signed. 120 IN NS 1.0.0.1.signed. + 60 NSEC aaaa-only.signed. NS RRSIG NSEC + 60 RRSIG NSEC 3 2 60 20820519033608 ( + 20140501012201 20366 signed. + BF1Wt+NtJ1Cuoj1H1D9BCS33ImdgkZeyEKuz + 8FT66wAFigkXQ1zNofw= ) +aaaa-only.signed. 120 IN AAAA 2001:db8::2 + 120 RRSIG AAAA 3 2 120 20820519033608 ( + 20140501012201 20366 signed. + BJFHllFzB91E/NWN1KjgmLuXQgDsGqBOuMuk + eNEc0RmToi3wV+TZwt0= ) + 60 NSEC dual.signed. AAAA RRSIG NSEC + 60 RRSIG NSEC 3 2 60 20820519033608 ( + 20140501012201 20366 signed. + BGfjvmN9LAHU2r9hXKgZRwyL4mZt4N/uBR1y + TKOGBOyx6b0hVHmGPnw= ) +dual.signed. 120 IN A 1.0.0.3 + 120 RRSIG A 3 2 120 20820519033608 ( + 20140501012201 20366 signed. + BEHMwkdjcbK++gvR/a36hSHf+uLwNUpbwKiw + PpmEz0be+gavwU0qSmY= ) + 120 AAAA 2001:db8::3 + 120 RRSIG AAAA 3 2 120 20820519033608 ( + 20140501012201 20366 signed. + BPKR07CI/4KFd5L7aLMvQifiYDb1EbAP2BIp + SgErW40i5qkFz9u588s= ) + 60 NSEC mx.signed. A AAAA RRSIG NSEC + 60 RRSIG NSEC 3 2 60 20820519033608 ( + 20140501012201 20366 signed. + BGJ0Ei6QbWJva3NwVSE/Bojcodsbu0sSVVLJ + QE8F5puTbx6qZ2dqrv4= ) +mx.signed. 120 IN A 1.0.0.3 + 120 RRSIG A 3 2 120 20820519033608 ( + 20140501012201 20366 signed. + BOyL/Pi5Ih/Xt3b1icWIqoagM7ZKXzPKrmbQ + VOZIvn0nmCj/gjShka4= ) + 120 AAAA 2001:db8::3 + 120 RRSIG AAAA 3 2 120 20820519033608 ( + 20140501012201 20366 signed. + BL1n80SXkdcDRaFa66xHIrMMFiYUnrM0zoGj + ArI7APPAxthUKN+ptAQ= ) + 60 NSEC signed. A AAAA RRSIG NSEC + 60 RRSIG NSEC 3 2 60 20820519033608 ( + 20140501012201 20366 signed. + BG6+zIJRFY4HqyUzPLcErSJibgtxxqfuHGYP + kXX9V0coQ3zBC92s2jo= ) diff --git a/bin/tests/system/filter-aaaa/ns4/unsigned.db b/bin/tests/system/filter-aaaa/ns4/unsigned.db new file mode 100644 index 0000000..8f155bb --- /dev/null +++ b/bin/tests/system/filter-aaaa/ns4/unsigned.db @@ -0,0 +1,23 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, You can obtain one at http://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +$TTL 120 +@ SOA ns.unsigned. hostmaster.ns.unsigned. ( 1 3600 1200 604800 60 ) +@ NS ns +@ MX 10 mx + +ns A 10.53.0.4 + AAAA fd92:7065:b8e:ffff::4 + +a-only NS 1.0.0.4 +aaaa-only AAAA 2001:db8::5 +dual A 1.0.0.6 +dual AAAA 2001:db8::6 +mx A 1.0.0.3 +mx AAAA 2001:db8::3 |