From 45d6379135504814ab723b57f0eb8be23393a51d Mon Sep 17 00:00:00 2001 From: Daniel Baumann Date: Sat, 27 Apr 2024 09:24:22 +0200 Subject: Adding upstream version 1:9.16.44. Signed-off-by: Daniel Baumann --- .../system/nsupdate/ns3/delegation.test.db.in | 15 +++++ bin/tests/system/nsupdate/ns3/dnskey.test.db.in | 15 +++++ bin/tests/system/nsupdate/ns3/example.db.in | 15 +++++ .../system/nsupdate/ns3/multisigner.test.db.in | 14 +++++ bin/tests/system/nsupdate/ns3/named.conf.in | 73 ++++++++++++++++++++++ .../system/nsupdate/ns3/nsec3param.test.db.in | 15 +++++ bin/tests/system/nsupdate/ns3/sign.sh | 51 +++++++++++++++ bin/tests/system/nsupdate/ns3/too-big.test.db.in | 15 +++++ 8 files changed, 213 insertions(+) create mode 100644 bin/tests/system/nsupdate/ns3/delegation.test.db.in create mode 100644 bin/tests/system/nsupdate/ns3/dnskey.test.db.in create mode 100644 bin/tests/system/nsupdate/ns3/example.db.in create mode 100644 bin/tests/system/nsupdate/ns3/multisigner.test.db.in create mode 100644 bin/tests/system/nsupdate/ns3/named.conf.in create mode 100644 bin/tests/system/nsupdate/ns3/nsec3param.test.db.in create mode 100644 bin/tests/system/nsupdate/ns3/sign.sh create mode 100644 bin/tests/system/nsupdate/ns3/too-big.test.db.in (limited to 'bin/tests/system/nsupdate/ns3') diff --git a/bin/tests/system/nsupdate/ns3/delegation.test.db.in b/bin/tests/system/nsupdate/ns3/delegation.test.db.in new file mode 100644 index 0000000..195c73b --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/delegation.test.db.in @@ -0,0 +1,15 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; SPDX-License-Identifier: MPL-2.0 +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, you can obtain one at https://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +$TTL 10 +delegation.test. IN SOA delegation.test. hostmaster.delegation.test. 1 3600 900 2419200 3600 +delegation.test. IN NS delegation.test. +delegation.test. IN A 10.53.0.3 diff --git a/bin/tests/system/nsupdate/ns3/dnskey.test.db.in b/bin/tests/system/nsupdate/ns3/dnskey.test.db.in new file mode 100644 index 0000000..df503fe --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/dnskey.test.db.in @@ -0,0 +1,15 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; SPDX-License-Identifier: MPL-2.0 +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, you can obtain one at https://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +$TTL 10 +dnskey.test. IN SOA dnskey.test. hostmaster.dnskey.test. 1 3600 900 2419200 3600 +dnskey.test. IN NS dnskey.test. +dnskey.test. IN A 10.53.0.3 diff --git a/bin/tests/system/nsupdate/ns3/example.db.in b/bin/tests/system/nsupdate/ns3/example.db.in new file mode 100644 index 0000000..92c0998 --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/example.db.in @@ -0,0 +1,15 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; SPDX-License-Identifier: MPL-2.0 +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, you can obtain one at https://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +example. 10 IN SOA example. hostmaster.example. 1 3600 900 2419200 3600 +example. 10 IN NS example. +example. 10 IN A 10.53.0.3 +example. 10 IN NSEC3PARAM 1 1 0 - diff --git a/bin/tests/system/nsupdate/ns3/multisigner.test.db.in b/bin/tests/system/nsupdate/ns3/multisigner.test.db.in new file mode 100644 index 0000000..7b4d91c --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/multisigner.test.db.in @@ -0,0 +1,14 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; SPDX-License-Identifier: MPL-2.0 +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, you can obtain one at https://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +multisigner.test. 10 IN SOA multisigner.test. hostmaster.multisigner.test. 1 3600 900 2419200 3600 +multisigner.test. 10 IN NS multisigner.test. +multisigner.test. 10 IN A 10.53.0.3 diff --git a/bin/tests/system/nsupdate/ns3/named.conf.in b/bin/tests/system/nsupdate/ns3/named.conf.in new file mode 100644 index 0000000..f87048a --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/named.conf.in @@ -0,0 +1,73 @@ +/* + * Copyright (C) Internet Systems Consortium, Inc. ("ISC") + * + * SPDX-License-Identifier: MPL-2.0 + * + * This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, you can obtain one at https://mozilla.org/MPL/2.0/. + * + * See the COPYRIGHT file distributed with this work for additional + * information regarding copyright ownership. + */ + +// NS3 + +options { + query-source address 10.53.0.3 dscp 7; + notify-source 10.53.0.3 dscp 8; + transfer-source 10.53.0.3 dscp 9; + port @PORT@; + pid-file "named.pid"; + listen-on { 10.53.0.3; }; + listen-on-v6 { none; }; + recursion no; + notify yes; + dnssec-validation yes; +}; + +zone "example" { + type primary; + allow-update { any; }; + file "example.db"; +}; + +zone "nsec3param.test" { + type primary; + allow-update { any; }; + file "nsec3param.test.db.signed"; +}; + +zone "dnskey.test" { + type primary; + allow-update { any; }; + file "dnskey.test.db.signed"; +}; + +zone "many.test" { + type secondary; + primaries { 10.53.0.1; }; + allow-update-forwarding { any; }; + file "many.test.bk"; +}; + +zone "delegation.test" { + type primary; + allow-update { any; }; + file "delegation.test.db.signed"; +}; + +zone "too-big.test" { + type primary; + allow-update { any; }; + max-records 3; + file "too-big.test.db"; +}; + +/* Zone for testing CDS and CDNSKEY updates from other provider */ +zone "multisigner.test" { + type primary; + allow-update { any; }; + dnssec-policy "default"; + file "multisigner.test.db"; +}; diff --git a/bin/tests/system/nsupdate/ns3/nsec3param.test.db.in b/bin/tests/system/nsupdate/ns3/nsec3param.test.db.in new file mode 100644 index 0000000..b26f5bd --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/nsec3param.test.db.in @@ -0,0 +1,15 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; SPDX-License-Identifier: MPL-2.0 +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, you can obtain one at https://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +$TTL 10 +nsec3param.test. IN SOA nsec3param.test. hostmaster.nsec3param.test. 1 3600 900 2419200 3600 +nsec3param.test. IN NS nsec3param.test. +nsec3param.test. IN A 10.53.0.3 diff --git a/bin/tests/system/nsupdate/ns3/sign.sh b/bin/tests/system/nsupdate/ns3/sign.sh new file mode 100644 index 0000000..c3db402 --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/sign.sh @@ -0,0 +1,51 @@ +#!/bin/sh -e + +# Copyright (C) Internet Systems Consortium, Inc. ("ISC") +# +# SPDX-License-Identifier: MPL-2.0 +# +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, you can obtain one at https://mozilla.org/MPL/2.0/. +# +# See the COPYRIGHT file distributed with this work for additional +# information regarding copyright ownership. + +SYSTEMTESTTOP=../.. +. $SYSTEMTESTTOP/conf.sh + +zone=nsec3param.test. +infile=nsec3param.test.db.in +zonefile=nsec3param.test.db + +keyname1=$($KEYGEN -q -a ${DEFAULT_ALGORITHM} -n zone -f KSK $zone) +keyname2=$($KEYGEN -q -a ${DEFAULT_ALGORITHM} -n zone $zone) + +cat $infile $keyname1.key $keyname2.key >$zonefile + +$SIGNER -P -3 - -H 1 -o $zone -k $keyname1 $zonefile $keyname2 > /dev/null + +zone=dnskey.test. +infile=dnskey.test.db.in +zonefile=dnskey.test.db + +keyname1=$($KEYGEN -q -a ${DEFAULT_ALGORITHM} -n zone -f KSK $zone) +keyname2=$($KEYGEN -q -a ${DEFAULT_ALGORITHM} -n zone $zone) + +cat $infile $keyname1.key $keyname2.key >$zonefile + +$SIGNER -P -o $zone -k $keyname1 $zonefile $keyname2 > /dev/null + +zone=delegation.test. +infile=delegation.test.db.in +zonefile=delegation.test.db + +keyname1=$($KEYGEN -q -a ${DEFAULT_ALGORITHM} -3 -f KSK $zone) +keyname2=$($KEYGEN -q -a ${DEFAULT_ALGORITHM} -3 $zone) + +cat $infile $keyname1.key $keyname2.key >$zonefile + +$SIGNER -A -3 - -P -o $zone -k $keyname1 $zonefile $keyname2 > /dev/null + +# Just copy multisigner.db.in because it is signed with dnssec-policy. +cp multisigner.test.db.in multisigner.test.db diff --git a/bin/tests/system/nsupdate/ns3/too-big.test.db.in b/bin/tests/system/nsupdate/ns3/too-big.test.db.in new file mode 100644 index 0000000..45ee9ad --- /dev/null +++ b/bin/tests/system/nsupdate/ns3/too-big.test.db.in @@ -0,0 +1,15 @@ +; Copyright (C) Internet Systems Consortium, Inc. ("ISC") +; +; SPDX-License-Identifier: MPL-2.0 +; +; This Source Code Form is subject to the terms of the Mozilla Public +; License, v. 2.0. If a copy of the MPL was not distributed with this +; file, you can obtain one at https://mozilla.org/MPL/2.0/. +; +; See the COPYRIGHT file distributed with this work for additional +; information regarding copyright ownership. + +$TTL 10 +too-big.test. IN SOA too-big.test. hostmaster.too-big.test. 1 3600 900 2419200 3600 +too-big.test. IN NS too-big.test. +too-big.test. IN A 10.53.0.3 -- cgit v1.2.3