2016-04-16 16:16:52 +01:00
|
|
|
package file
|
|
|
|
|
|
|
|
|
|
import (
|
2018-04-22 08:34:35 +01:00
|
|
|
"context"
|
2016-04-16 16:16:52 +01:00
|
|
|
"strings"
|
|
|
|
|
"testing"
|
|
|
|
|
|
2017-09-21 15:15:47 +01:00
|
|
|
"github.com/coredns/coredns/plugin/pkg/dnstest"
|
2017-09-14 09:36:06 +01:00
|
|
|
"github.com/coredns/coredns/plugin/test"
|
2016-04-16 16:16:52 +01:00
|
|
|
|
|
|
|
|
"github.com/miekg/dns"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
var delegationTestCases = []test.Case{
|
|
|
|
|
{
|
|
|
|
|
Qname: "a.delegated.miek.nl.", Qtype: dns.TypeTXT,
|
|
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS a.delegated.miek.nl."),
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.miek.nl. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.miek.nl. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Qname: "delegated.miek.nl.", Qtype: dns.TypeNS,
|
2017-12-11 13:22:19 +00:00
|
|
|
Ns: []dns.RR{
|
2016-04-16 16:16:52 +01:00
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS a.delegated.miek.nl."),
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
},
|
2016-11-05 14:39:49 +00:00
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.miek.nl. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.miek.nl. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Qname: "foo.delegated.miek.nl.", Qtype: dns.TypeA,
|
|
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS a.delegated.miek.nl."),
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.miek.nl. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.miek.nl. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Qname: "foo.delegated.miek.nl.", Qtype: dns.TypeTXT,
|
|
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS a.delegated.miek.nl."),
|
|
|
|
|
test.NS("delegated.miek.nl. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.miek.nl. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.miek.nl. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
2016-04-16 16:16:52 +01:00
|
|
|
},
|
2016-04-16 16:24:15 +01:00
|
|
|
{
|
|
|
|
|
Qname: "miek.nl.", Qtype: dns.TypeSOA,
|
|
|
|
|
Answer: []dns.RR{
|
|
|
|
|
test.SOA("miek.nl. 1800 IN SOA linode.atoom.net. miek.miek.nl. 1282630057 14400 3600 604800 14400"),
|
|
|
|
|
},
|
2016-12-07 20:37:29 +00:00
|
|
|
Ns: miekAuth,
|
2016-04-16 16:24:15 +01:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Qname: "miek.nl.", Qtype: dns.TypeAAAA,
|
|
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.SOA("miek.nl. 1800 IN SOA linode.atoom.net. miek.miek.nl. 1282630057 14400 3600 604800 14400"),
|
|
|
|
|
},
|
|
|
|
|
},
|
2016-04-16 16:16:52 +01:00
|
|
|
}
|
|
|
|
|
|
2016-11-05 14:39:49 +00:00
|
|
|
var secureDelegationTestCases = []test.Case{
|
|
|
|
|
{
|
2018-08-29 12:26:22 +01:00
|
|
|
Qname: "a.delegated.example.org.", Qtype: dns.TypeTXT, Do: true,
|
2016-11-05 14:39:49 +00:00
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 1 EE72CABD1927759CDDA92A10DBF431504B9E1F13"),
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 2 E4B05F87725FA86D9A64F1E53C3D0E6250946599DFE639C45955B0ED416CDDFA"),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS a.delegated.example.org."),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
test.RRSIG("delegated.example.org. 1800 IN RRSIG DS 13 3 1800 20161129153240 20161030153240 49035 example.org. rlNNzcUmtbjLSl02ZzQGUbWX75yCUx0Mug1jHtKVqRq1hpPE2S3863tIWSlz+W9wz4o19OI4jbznKKqk+DGKog=="),
|
|
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.example.org. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.example.org. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
2018-08-29 12:26:22 +01:00
|
|
|
Qname: "delegated.example.org.", Qtype: dns.TypeNS, Do: true,
|
2017-12-11 13:22:19 +00:00
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 1 EE72CABD1927759CDDA92A10DBF431504B9E1F13"),
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 2 E4B05F87725FA86D9A64F1E53C3D0E6250946599DFE639C45955B0ED416CDDFA"),
|
2016-11-05 14:39:49 +00:00
|
|
|
test.NS("delegated.example.org. 1800 IN NS a.delegated.example.org."),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
2017-12-11 13:22:19 +00:00
|
|
|
test.RRSIG("delegated.example.org. 1800 IN RRSIG DS 13 3 1800 20161129153240 20161030153240 49035 example.org. rlNNzcUmtbjLSl02ZzQGUbWX75yCUx0Mug1jHtKVqRq1hpPE2S3863tIWSlz+W9wz4o19OI4jbznKKqk+DGKog=="),
|
2016-11-05 14:39:49 +00:00
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.example.org. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.example.org. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
2018-08-29 12:26:22 +01:00
|
|
|
Qname: "foo.delegated.example.org.", Qtype: dns.TypeA, Do: true,
|
2016-11-05 14:39:49 +00:00
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 1 EE72CABD1927759CDDA92A10DBF431504B9E1F13"),
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 2 E4B05F87725FA86D9A64F1E53C3D0E6250946599DFE639C45955B0ED416CDDFA"),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS a.delegated.example.org."),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
test.RRSIG("delegated.example.org. 1800 IN RRSIG DS 13 3 1800 20161129153240 20161030153240 49035 example.org. rlNNzcUmtbjLSl02ZzQGUbWX75yCUx0Mug1jHtKVqRq1hpPE2S3863tIWSlz+W9wz4o19OI4jbznKKqk+DGKog=="),
|
|
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.example.org. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.example.org. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
2018-08-29 12:26:22 +01:00
|
|
|
Qname: "foo.delegated.example.org.", Qtype: dns.TypeDS, Do: true,
|
2016-11-05 14:39:49 +00:00
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 1 EE72CABD1927759CDDA92A10DBF431504B9E1F13"),
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 2 E4B05F87725FA86D9A64F1E53C3D0E6250946599DFE639C45955B0ED416CDDFA"),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS a.delegated.example.org."),
|
|
|
|
|
test.NS("delegated.example.org. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
test.RRSIG("delegated.example.org. 1800 IN RRSIG DS 13 3 1800 20161129153240 20161030153240 49035 example.org. rlNNzcUmtbjLSl02ZzQGUbWX75yCUx0Mug1jHtKVqRq1hpPE2S3863tIWSlz+W9wz4o19OI4jbznKKqk+DGKog=="),
|
|
|
|
|
},
|
|
|
|
|
Extra: []dns.RR{
|
|
|
|
|
test.A("a.delegated.example.org. 1800 IN A 139.162.196.78"),
|
|
|
|
|
test.AAAA("a.delegated.example.org. 1800 IN AAAA 2a01:7e00::f03c:91ff:fef1:6735"),
|
|
|
|
|
},
|
|
|
|
|
},
|
2017-12-11 14:17:41 +00:00
|
|
|
{
|
2018-08-29 12:26:22 +01:00
|
|
|
Qname: "delegated.example.org.", Qtype: dns.TypeDS, Do: true,
|
2017-12-11 14:17:41 +00:00
|
|
|
Answer: []dns.RR{
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 1 EE72CABD1927759CDDA92A10DBF431504B9E1F13"),
|
|
|
|
|
test.DS("delegated.example.org. 1800 IN DS 10056 5 2 E4B05F87725FA86D9A64F1E53C3D0E6250946599DFE639C45955B0ED416CDDFA"),
|
|
|
|
|
test.RRSIG("delegated.example.org. 1800 IN RRSIG DS 13 3 1800 20161129153240 20161030153240 49035 example.org. rlNNzcUmtbjLSl02ZzQGUbWX75yCUx0Mug1jHtKVqRq1hpPE2S3863tIWSlz+W9wz4o19OI4jbznKKqk+DGKog=="),
|
|
|
|
|
},
|
|
|
|
|
Ns: []dns.RR{
|
|
|
|
|
test.NS("example.org. 1800 IN NS a.iana-servers.net."),
|
|
|
|
|
test.NS("example.org. 1800 IN NS b.iana-servers.net."),
|
|
|
|
|
test.RRSIG("example.org. 1800 IN RRSIG NS 13 2 1800 20161129153240 20161030153240 49035 example.org. llrHoIuw="),
|
|
|
|
|
},
|
|
|
|
|
},
|
2016-11-05 14:39:49 +00:00
|
|
|
}
|
|
|
|
|
|
2016-12-07 20:37:29 +00:00
|
|
|
var miekAuth = []dns.RR{
|
|
|
|
|
test.NS("miek.nl. 1800 IN NS ext.ns.whyscream.net."),
|
|
|
|
|
test.NS("miek.nl. 1800 IN NS linode.atoom.net."),
|
|
|
|
|
test.NS("miek.nl. 1800 IN NS ns-ext.nlnetlabs.nl."),
|
|
|
|
|
test.NS("miek.nl. 1800 IN NS omval.tednet.nl."),
|
|
|
|
|
}
|
|
|
|
|
|
2016-04-16 16:16:52 +01:00
|
|
|
func TestLookupDelegation(t *testing.T) {
|
2016-11-05 14:39:49 +00:00
|
|
|
testDelegation(t, dbMiekNLDelegation, testzone, delegationTestCases)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func TestLookupSecureDelegation(t *testing.T) {
|
|
|
|
|
testDelegation(t, exampleOrgSigned, "example.org.", secureDelegationTestCases)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func testDelegation(t *testing.T, z, origin string, testcases []test.Case) {
|
2017-06-08 18:43:11 +01:00
|
|
|
zone, err := Parse(strings.NewReader(z), origin, "stdin", 0)
|
2016-04-16 16:16:52 +01:00
|
|
|
if err != nil {
|
2016-11-05 14:39:49 +00:00
|
|
|
t.Fatalf("Expect no error when reading zone, got %q", err)
|
2016-04-16 16:16:52 +01:00
|
|
|
}
|
|
|
|
|
|
2016-11-05 14:39:49 +00:00
|
|
|
fm := File{Next: test.ErrorHandler(), Zones: Zones{Z: map[string]*Zone{origin: zone}, Names: []string{origin}}}
|
2016-04-16 16:16:52 +01:00
|
|
|
ctx := context.TODO()
|
|
|
|
|
|
2016-11-05 14:39:49 +00:00
|
|
|
for _, tc := range testcases {
|
2016-04-16 16:16:52 +01:00
|
|
|
m := tc.Msg()
|
|
|
|
|
|
2017-09-21 15:15:47 +01:00
|
|
|
rec := dnstest.NewRecorder(&test.ResponseWriter{})
|
2016-04-16 16:16:52 +01:00
|
|
|
_, err := fm.ServeDNS(ctx, rec, m)
|
|
|
|
|
if err != nil {
|
2019-01-19 11:23:13 +00:00
|
|
|
t.Errorf("Expected no error, got %q", err)
|
2016-04-16 16:16:52 +01:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2016-09-07 11:10:16 +01:00
|
|
|
resp := rec.Msg
|
2019-01-19 11:23:13 +00:00
|
|
|
if err := test.SortAndCheck(resp, tc); err != nil {
|
|
|
|
|
t.Error(err)
|
|
|
|
|
}
|
2016-04-16 16:16:52 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-09-23 09:14:12 +01:00
|
|
|
const dbMiekNLDelegation = `
|
2016-04-16 16:16:52 +01:00
|
|
|
$TTL 30M
|
|
|
|
|
$ORIGIN miek.nl.
|
|
|
|
|
@ IN SOA linode.atoom.net. miek.miek.nl. (
|
|
|
|
|
1282630057 ; Serial
|
|
|
|
|
4H ; Refresh
|
|
|
|
|
1H ; Retry
|
|
|
|
|
7D ; Expire
|
|
|
|
|
4H ) ; Negative Cache TTL
|
|
|
|
|
IN NS linode.atoom.net.
|
|
|
|
|
IN NS ns-ext.nlnetlabs.nl.
|
|
|
|
|
IN NS omval.tednet.nl.
|
|
|
|
|
IN NS ext.ns.whyscream.net.
|
|
|
|
|
|
|
|
|
|
IN MX 1 aspmx.l.google.com.
|
|
|
|
|
IN MX 5 alt1.aspmx.l.google.com.
|
|
|
|
|
IN MX 5 alt2.aspmx.l.google.com.
|
|
|
|
|
IN MX 10 aspmx2.googlemail.com.
|
|
|
|
|
IN MX 10 aspmx3.googlemail.com.
|
|
|
|
|
|
|
|
|
|
delegated IN NS a.delegated
|
|
|
|
|
IN NS ns-ext.nlnetlabs.nl.
|
|
|
|
|
|
|
|
|
|
a.delegated IN TXT "obscured"
|
|
|
|
|
IN A 139.162.196.78
|
|
|
|
|
IN AAAA 2a01:7e00::f03c:91ff:fef1:6735
|
|
|
|
|
|
|
|
|
|
a IN A 139.162.196.78
|
|
|
|
|
IN AAAA 2a01:7e00::f03c:91ff:fef1:6735
|
|
|
|
|
www IN CNAME a
|
|
|
|
|
archive IN CNAME a`
|
