]> CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/blob - testdata/subnet_val_positive.crpl
projects / FreeBSD / FreeBSD.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Vendor import of Unbound 1.7.1.
[FreeBSD/FreeBSD.git] / testdata / subnet_val_positive.crpl
1 ; Test subnet option in combination with dnssec
2
3 server:
4         trust-anchor: "example.com.    3600    IN      DS      2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
5         val-override-date: "20070916134226"
6         trust-anchor-signaling: no
7         target-fetch-policy: "0 0 0 0 0"
8         send-client-subnet: 1.2.3.4
9         max-client-subnet-ipv4: 17
10         module-config: "subnetcache validator iterator"
11         verbosity: 3
12
13 stub-zone:
14         name: "."
15         stub-addr: 193.0.14.129         # K.ROOT-SERVERS.NET.
16 CONFIG_END
17
18 SCENARIO_BEGIN Test validator with positive response
19
20 ; K.ROOT-SERVERS.NET.
21 RANGE_BEGIN 0 100
22         ADDRESS 193.0.14.129 
23         ENTRY_BEGIN
24                 MATCH opcode qtype qname ednsdata
25                 ADJUST copy_id
26                 REPLY QR NOERROR
27                 SECTION QUESTION
28                         . IN NS
29                 SECTION ANSWER
30                         . IN NS K.ROOT-SERVERS.NET.
31                 SECTION ADDITIONAL
32                         HEX_EDNSDATA_BEGIN
33                                 ;; we expect to receive empty
34                         HEX_EDNSDATA_END
35                         K.ROOT-SERVERS.NET.     IN      A       193.0.14.129
36         ENTRY_END
37
38         ENTRY_BEGIN
39                 MATCH opcode qtype qname ednsdata
40                 ADJUST copy_id
41                 REPLY QR NOERROR
42                 SECTION QUESTION
43                         www.example.com. IN A
44                 SECTION AUTHORITY
45                         com.    IN NS   a.gtld-servers.net.
46                 SECTION ADDITIONAL
47                         HEX_EDNSDATA_BEGIN
48                                 ;; we expect to receive empty
49                         HEX_EDNSDATA_END
50                         a.gtld-servers.net.     IN      A       192.5.6.30
51         ENTRY_END
52 RANGE_END
53
54 ; a.gtld-servers.net.
55 RANGE_BEGIN 0 100
56         ADDRESS 192.5.6.30
57         ENTRY_BEGIN
58                 MATCH opcode qtype qname ednsdata
59                 ADJUST copy_id
60                 REPLY QR NOERROR
61                 SECTION QUESTION
62                         com. IN NS
63                 SECTION ANSWER
64                         com.    IN NS   a.gtld-servers.net.
65                 SECTION ADDITIONAL
66                         HEX_EDNSDATA_BEGIN
67                                 ;; we expect to receive empty
68                         HEX_EDNSDATA_END
69                         a.gtld-servers.net.     IN      A       192.5.6.30
70         ENTRY_END
71
72         ENTRY_BEGIN
73                 MATCH opcode qtype qname ednsdata
74                 ADJUST copy_id
75                 REPLY QR NOERROR
76                 SECTION QUESTION
77                         www.example.com. IN A
78                 SECTION AUTHORITY
79                         example.com.    IN NS   ns.example.com.
80                 SECTION ADDITIONAL
81                         HEX_EDNSDATA_BEGIN
82                                 ;; we expect to receive empty
83                         HEX_EDNSDATA_END
84                         ns.example.com.         IN      A       1.2.3.4
85         ENTRY_END
86 RANGE_END
87
88 ; ns.example.com.
89 RANGE_BEGIN 0 100
90         ADDRESS 1.2.3.4
91         ENTRY_BEGIN
92                 MATCH opcode qtype qname ednsdata
93                 ADJUST copy_id
94                 REPLY QR NOERROR
95                 SECTION QUESTION
96                         example.com. IN NS
97                 SECTION ANSWER
98                         example.com.    IN NS   ns.example.com.
99                         example.com.    3600    IN      RRSIG   NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
100                 SECTION ADDITIONAL
101                         HEX_EDNSDATA_BEGIN
102                                 ;; we expect to receive empty
103                         HEX_EDNSDATA_END
104                         ns.example.com.         IN      A       1.2.3.4
105                         ns.example.com. 3600    IN      RRSIG   A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
106         ENTRY_END
107
108         ; response to DNSKEY priming query
109         ENTRY_BEGIN
110                 MATCH opcode qtype qname ednsdata
111                 ADJUST copy_id
112                 REPLY QR NOERROR
113                 SECTION QUESTION
114                         example.com. IN DNSKEY
115                 SECTION ANSWER
116                         example.com.    3600    IN      DNSKEY  256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b}
117                         example.com.    3600    IN      RRSIG   DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854}
118                 SECTION AUTHORITY
119                         example.com.    IN NS   ns.example.com.
120                         example.com.    3600    IN      RRSIG   NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
121                 SECTION ADDITIONAL
122                         HEX_EDNSDATA_BEGIN
123                                 ;; we expect to receive empty
124                         HEX_EDNSDATA_END
125                         ns.example.com.         IN      A       1.2.3.4
126                         ns.example.com. 3600    IN      RRSIG   A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
127         ENTRY_END
128
129         ; response to query of interest
130         ENTRY_BEGIN
131                 MATCH opcode qtype qname ednsdata
132                 ADJUST copy_id
133                 REPLY QR NOERROR
134                 SECTION QUESTION
135                         www.example.com. IN A
136                 SECTION ANSWER
137                         www.example.com. IN A   10.20.30.40
138                         ns.example.com. 3600    IN      RRSIG   A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
139                 SECTION AUTHORITY
140                         example.com.    IN NS   ns.example.com.
141                         example.com.    3600    IN      RRSIG   NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
142                 SECTION ADDITIONAL
143                         HEX_EDNSDATA_BEGIN
144                                                         ; client is 127.0.0.1
145                                 00 08           ; OPC
146                                 00 07           ; option length
147                                 00 01           ; Family
148                                 11 00           ; source mask, scopemask
149                                 7f 00 00        ; address
150                         HEX_EDNSDATA_END
151                         ns.example.com.         IN      A       1.2.3.4
152                         www.example.com.        3600    IN      RRSIG   A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
153         ENTRY_END
154 RANGE_END
155
156 STEP 1 QUERY
157 ENTRY_BEGIN
158         REPLY RD DO
159         SECTION QUESTION
160                 www.example.com. IN A
161 ENTRY_END
162
163 ; recursion happens here.
164 STEP 10 CHECK_ANSWER
165 ENTRY_BEGIN
166         MATCH all ednsdata
167         REPLY QR RD RA AD NOERROR
168         SECTION QUESTION
169                 www.example.com. IN A
170         SECTION ANSWER
171                 www.example.com. IN A   10.20.30.40
172                 www.example.com.        3600    IN      RRSIG   A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854}
173         SECTION AUTHORITY
174                 example.com.    IN NS   ns.example.com.
175                 example.com.    3600    IN      RRSIG   NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
176         SECTION ADDITIONAL
177                 HEX_EDNSDATA_BEGIN
178                         ;; we expect to receive empty
179                 HEX_EDNSDATA_END
180                 ns.example.com.         IN      A       1.2.3.4
181                 ns.example.com. 3600    IN      RRSIG   A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854}
182 ENTRY_END
183
184 SCENARIO_END
Unnamed repository; edit this file 'description' to name the repository.