]> git.saurik.com Git - apple/network_cmds.git/blame_incremental - unbound/testdata/val_unalgo_dlv.rpl
network_cmds-596.100.2.tar.gz
[apple/network_cmds.git] / unbound / testdata / val_unalgo_dlv.rpl
... / ...
CommitLineData
1; config options
2; The island of trust is at example.com (the DLV repository)
3server:
4 dlv-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
5 val-override-date: "20070916134226"
6 target-fetch-policy: "0 0 0 0 0"
7
8stub-zone:
9 name: "."
10 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
11CONFIG_END
12
13SCENARIO_BEGIN Test validator with unknown algorithm DLV anchor
14; positive response for DLV.
15; but only has unknown algos
16; have to treat zone as insecure
17
18; K.ROOT-SERVERS.NET.
19RANGE_BEGIN 0 100
20 ADDRESS 193.0.14.129
21ENTRY_BEGIN
22MATCH opcode qtype qname
23ADJUST copy_id
24REPLY QR NOERROR
25SECTION QUESTION
26. IN NS
27SECTION ANSWER
28. IN NS K.ROOT-SERVERS.NET.
29SECTION ADDITIONAL
30K.ROOT-SERVERS.NET. IN A 193.0.14.129
31ENTRY_END
32
33ENTRY_BEGIN
34MATCH opcode subdomain
35ADJUST copy_id copy_query
36REPLY QR NOERROR
37SECTION QUESTION
38com. IN A
39SECTION AUTHORITY
40com. IN NS a.gtld-servers.net.
41SECTION ADDITIONAL
42a.gtld-servers.net. IN A 192.5.6.30
43ENTRY_END
44
45ENTRY_BEGIN
46MATCH opcode subdomain
47ADJUST copy_id copy_query
48REPLY QR NOERROR
49SECTION QUESTION
50net. IN A
51SECTION AUTHORITY
52net. IN NS a.gtld-servers.net.
53SECTION ADDITIONAL
54a.gtld-servers.net. IN A 192.5.6.30
55ENTRY_END
56RANGE_END
57
58; a.gtld-servers.net.
59RANGE_BEGIN 0 100
60 ADDRESS 192.5.6.30
61ENTRY_BEGIN
62MATCH opcode qtype qname
63ADJUST copy_id
64REPLY QR NOERROR
65SECTION QUESTION
66com. IN NS
67SECTION ANSWER
68com. IN NS a.gtld-servers.net.
69SECTION ADDITIONAL
70a.gtld-servers.net. IN A 192.5.6.30
71ENTRY_END
72
73ENTRY_BEGIN
74MATCH opcode qtype qname
75ADJUST copy_id
76REPLY QR NOERROR
77SECTION QUESTION
78net. IN NS
79SECTION ANSWER
80net. IN NS a.gtld-servers.net.
81SECTION ADDITIONAL
82a.gtld-servers.net. IN A 192.5.6.30
83ENTRY_END
84
85ENTRY_BEGIN
86MATCH opcode subdomain
87ADJUST copy_id copy_query
88REPLY QR NOERROR
89SECTION QUESTION
90example.com. IN A
91SECTION AUTHORITY
92example.com. IN NS ns.example.com.
93SECTION ADDITIONAL
94ns.example.com. IN A 1.2.3.4
95ENTRY_END
96
97ENTRY_BEGIN
98MATCH opcode subdomain
99ADJUST copy_id copy_query
100REPLY QR NOERROR
101SECTION QUESTION
102example.net. IN A
103SECTION AUTHORITY
104example.net. IN NS ns.example.net.
105SECTION ADDITIONAL
106ns.example.net. IN A 1.2.3.5
107ENTRY_END
108RANGE_END
109
110; ns.example.com.
111RANGE_BEGIN 0 100
112 ADDRESS 1.2.3.4
113ENTRY_BEGIN
114MATCH opcode qtype qname
115ADJUST copy_id
116REPLY QR NOERROR
117SECTION QUESTION
118example.com. IN NS
119SECTION ANSWER
120example.com. IN NS ns.example.com.
121example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
122SECTION ADDITIONAL
123ns.example.com. IN A 1.2.3.4
124ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
125ENTRY_END
126
127; response to DNSKEY priming query
128ENTRY_BEGIN
129MATCH opcode qtype qname
130ADJUST copy_id
131REPLY QR NOERROR
132SECTION QUESTION
133example.com. IN DNSKEY
134SECTION ANSWER
135example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b}
136example.com. 3600 IN RRSIG DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854}
137SECTION AUTHORITY
138example.com. IN NS ns.example.com.
139example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
140SECTION ADDITIONAL
141ns.example.com. IN A 1.2.3.4
142ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
143ENTRY_END
144
145; DLV query
146ENTRY_BEGIN
147MATCH opcode qtype qname
148ADJUST copy_id
149REPLY QR NOERROR
150SECTION QUESTION
151example.net.example.com. IN DLV
152SECTION ANSWER
153; algo 208 is unknown
154example.net.example.com. 3600 IN DLV 30899 208 1 14188c885f20623ad1d3bec42798f3f951793e4c ; xehac-mofum-malyd-bomaf-pegit-fuzes-ganin-misiz-nigel-nozog-soxix
155example.net.example.com. 3600 IN RRSIG DLV 3 4 3600 20070926134150 20070829134150 2854 example.com. AFBU1dN/KstcLfQQzy7ZKvPq+2hQg7D6QynqgwI3f8envPQGj782/NA= ;{id = 2854}
156;example.net.example.com. 3600 IN DLV 30899 5 1 14188c885f20623ad1d3bec42798f3f951793e4c ; xehac-mofum-malyd-bomaf-pegit-fuzes-ganin-misiz-nigel-nozog-soxix
157;example.net.example.com. 3600 IN RRSIG DLV 3 4 3600 20070926134150 20070829134150 2854 example.com. ACK48Q/oKwh/SM9yRiKjZYuc+AtEZ2yCPNJ15kKCN8nsVcv7xigmNTY= ;{id = 2854}
158SECTION AUTHORITY
159example.com. IN NS ns.example.com.
160example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
161SECTION ADDITIONAL
162ns.example.com. IN A 1.2.3.4
163ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
164ENTRY_END
165
166ENTRY_BEGIN
167MATCH opcode qtype qname
168ADJUST copy_id
169REPLY QR NOERROR
170SECTION QUESTION
171net.example.com. IN DLV
172SECTION ANSWER
173SECTION AUTHORITY
174example.com. IN SOA open.nlnetlabs.nl. hostmaster.nlnetlabs.nl. 2008081300 28800 7200 604800 3600
175example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AKPJnPBqfJKxE4P2iVYkSRJno9HmiXJZtjdqE8oBeq9Lk9FytcMdcig= ;{id = 2854}
176example.com IN NSEC example.net.example.com. SOA NS RRSIG NSEC
177example.com. 3600 IN RRSIG NSEC 3 2 3600 20070926134150 20070829134150 2854 example.com. AIoUkJ04/7/kJFDLocoqksqt9UL2RHHwlRfXAMxGdBHcNO+GSpG47Uk= ;{id = 2854}
178ENTRY_END
179
180ENTRY_BEGIN
181MATCH opcode qtype qname
182ADJUST copy_id
183REPLY QR NXDOMAIN
184SECTION QUESTION
185com.example.com. IN DLV
186SECTION ANSWER
187SECTION AUTHORITY
188example.com. IN SOA open.nlnetlabs.nl. hostmaster.nlnetlabs.nl. 2008081300 28800 7200 604800 3600
189example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AKPJnPBqfJKxE4P2iVYkSRJno9HmiXJZtjdqE8oBeq9Lk9FytcMdcig= ;{id = 2854}
190example.com IN NSEC example.net.example.com. SOA NS RRSIG NSEC
191example.com. 3600 IN RRSIG NSEC 3 2 3600 20070926134150 20070829134150 2854 example.com. AIoUkJ04/7/kJFDLocoqksqt9UL2RHHwlRfXAMxGdBHcNO+GSpG47Uk= ;{id = 2854}
192ENTRY_END
193
194RANGE_END
195
196; ns.example.net.
197RANGE_BEGIN 0 100
198 ADDRESS 1.2.3.5
199; DS RR is
200; example.net. 3600 IN DS 30899 5 1 14188c885f20623ad1d3bec42798f3f951793e4c ; xehac-mofum-malyd-bomaf-pegit-fuzes-ganin-misiz-nigel-nozog-soxix
201; DNSKEY prime query
202ENTRY_BEGIN
203MATCH opcode qtype qname
204ADJUST copy_id
205REPLY QR NOERROR
206SECTION QUESTION
207example.net. IN DNSKEY
208SECTION ANSWER
209example.net. 3600 IN DNSKEY 256 3 5 AQPQ41chR9DEHt/aIzIFAqanbDlRflJoRs5yz1jFsoRIT7dWf0r+PeDuewdxkszNH6wnU4QL8pfKFRh5PIYVBLK3 ;{id = 30899 (zsk), size = 512b}
210example.net. 3600 IN RRSIG DNSKEY RSASHA1 2 3600 20070926134150 20070829134150 30899 example.net. hiFzlQ8VoYgCuvIsfVuxC3mfJDqsTh0yc6abs5xMx5uEcIjb0dndFQx7INOM+imlzveEN73Hqp4OLFpFhsWLlw== ;{id = 30899}
211SECTION AUTHORITY
212example.net. IN NS ns.example.net.
213example.net. 3600 IN RRSIG NS RSASHA1 2 3600 20070926134150 20070829134150 30899 example.net. E8JX0l4B+cSR5bkHQwOJy1pBmlLMTYCJ8EwfNMU/eCv0YhKwo26rHhn52FGisgv+Nwp7/NbhHqQ+kJgoZC94XA== ;{id = 30899}
214SECTION ADDITIONAL
215ns.example.net. IN A 1.2.3.5
216ns.example.net. 3600 IN RRSIG A RSASHA1 3 3600 20070926134150 20070829134150 30899 example.net. x+tQMC9FhzT7Fcy1pM5NrOC7E8nLd7THPI3C6ie4EwL8PrxllqlR3q/DKB0d/m0qCOPcgN6HFOYURV1s4uAcsw== ;{id = 30899}
217ENTRY_END
218
219; NS query
220ENTRY_BEGIN
221MATCH opcode qtype qname
222ADJUST copy_id
223REPLY QR NOERROR
224SECTION QUESTION
225example.net. IN NS
226SECTION ANSWER
227example.net. IN NS ns.example.net.
228example.net. 3600 IN RRSIG NS RSASHA1 2 3600 20070926134150 20070829134150 30899 example.net. E8JX0l4B+cSR5bkHQwOJy1pBmlLMTYCJ8EwfNMU/eCv0YhKwo26rHhn52FGisgv+Nwp7/NbhHqQ+kJgoZC94XA== ;{id = 30899}
229SECTION ADDITIONAL
230ns.example.net. IN A 1.2.3.5
231ns.example.net. 3600 IN RRSIG A RSASHA1 3 3600 20070926134150 20070829134150 30899 example.net. x+tQMC9FhzT7Fcy1pM5NrOC7E8nLd7THPI3C6ie4EwL8PrxllqlR3q/DKB0d/m0qCOPcgN6HFOYURV1s4uAcsw== ;{id = 30899}
232ENTRY_END
233
234; www.example.net query
235ENTRY_BEGIN
236MATCH opcode qtype qname
237ADJUST copy_id
238REPLY QR NOERROR
239SECTION QUESTION
240www.example.net. IN A
241SECTION ANSWER
242www.example.net. 3600 IN A 10.20.30.40
243www.example.net. 3600 IN RRSIG A 5 3 3600 20070926135752 20070829135752 30899 example.net. ACvv4RQVC7TbI57ewqFImRaVoymktJ5Cxn/FaCodIENt82LVM92nivbP2WtwWCsQHWp7FkrMxTlQTJwyAeXFyg== ;{id = 30899}
244SECTION AUTHORITY
245example.net. IN NS ns.example.net.
246example.net. 3600 IN RRSIG NS RSASHA1 2 3600 20070926134150 20070829134150 30899 example.net. E8JX0l4B+cSR5bkHQwOJy1pBmlLMTYCJ8EwfNMU/eCv0YhKwo26rHhn52FGisgv+Nwp7/NbhHqQ+kJgoZC94XA== ;{id = 30899}
247SECTION ADDITIONAL
248ns.example.net. IN A 1.2.3.5
249ns.example.net. 3600 IN RRSIG A RSASHA1 3 3600 20070926134150 20070829134150 30899 example.net. x+tQMC9FhzT7Fcy1pM5NrOC7E8nLd7THPI3C6ie4EwL8PrxllqlR3q/DKB0d/m0qCOPcgN6HFOYURV1s4uAcsw== ;{id = 30899}
250ENTRY_END
251
252
253RANGE_END
254
255STEP 1 QUERY
256ENTRY_BEGIN
257REPLY RD DO
258SECTION QUESTION
259www.example.net. IN A
260ENTRY_END
261
262; recursion happens here.
263STEP 10 CHECK_ANSWER
264ENTRY_BEGIN
265MATCH all
266REPLY QR RD RA DO NOERROR
267SECTION QUESTION
268www.example.net. IN A
269SECTION ANSWER
270www.example.net. 3600 IN A 10.20.30.40
271www.example.net. 3600 IN RRSIG A 5 3 3600 20070926135752 20070829135752 30899 example.net. ACvv4RQVC7TbI57ewqFImRaVoymktJ5Cxn/FaCodIENt82LVM92nivbP2WtwWCsQHWp7FkrMxTlQTJwyAeXFyg== ;{id = 30899}
272SECTION AUTHORITY
273example.net. IN NS ns.example.net.
274example.net. 3600 IN RRSIG NS RSASHA1 2 3600 20070926134150 20070829134150 30899 example.net. E8JX0l4B+cSR5bkHQwOJy1pBmlLMTYCJ8EwfNMU/eCv0YhKwo26rHhn52FGisgv+Nwp7/NbhHqQ+kJgoZC94XA== ;{id = 30899}
275SECTION ADDITIONAL
276ns.example.net. IN A 1.2.3.5
277ns.example.net. 3600 IN RRSIG A RSASHA1 3 3600 20070926134150 20070829134150 30899 example.net. x+tQMC9FhzT7Fcy1pM5NrOC7E8nLd7THPI3C6ie4EwL8PrxllqlR3q/DKB0d/m0qCOPcgN6HFOYURV1s4uAcsw== ;{id = 30899}
278ENTRY_END
279
280SCENARIO_END