test/plugin_dnssec_test.go

package test

import (
	"io/ioutil"
	"os"
	"testing"

	"github.com/coredns/coredns/plugin/test"

	"github.com/miekg/dns"
)

func TestLookupBalanceRewriteCacheDnssec(t *testing.T) {
	t.Parallel()
	name, rm, err := test.TempFile(".", exampleOrg)
	if err != nil {
		t.Fatalf("Failed to create zone: %s", err)
	}
	defer rm()
	rm1 := createKeyFile(t)
	defer rm1()

	corefile := `example.org:0 {
    file ` + name + `
    rewrite type ANY HINFO
    dnssec {
        key file ` + base + `
    }
    loadbalance
}
`
	ex, udp, _, err := CoreDNSServerAndPorts(corefile)
	if err != nil {
		t.Fatalf("Could not get CoreDNS serving instance: %s", err)
	}
	defer ex.Stop()

	c := new(dns.Client)
	m := new(dns.Msg)
	m.SetQuestion("example.org.", dns.TypeA)
	m.SetEdns0(4096, true)
	res, _, err := c.Exchange(m, udp)
	if err != nil {
		t.Fatalf("Could not send query: %s", err)
	}
	sig := 0
	for _, a := range res.Answer {
		if a.Header().Rrtype == dns.TypeRRSIG {
			sig++
		}
	}
	if sig == 0 {
		t.Errorf("Expected RRSIGs, got none")
		t.Logf("%v\n", res)
	}
}

func createKeyFile(t *testing.T) func() {
	ioutil.WriteFile(base+".key",
		[]byte(`example.org. IN DNSKEY 256 3 13 tDyI0uEIDO4SjhTJh1AVTFBLpKhY3He5BdAlKztewiZ7GecWj94DOodg ovpN73+oJs+UfZ+p9zOSN5usGAlHrw==`),
		0644)
	ioutil.WriteFile(base+".private",
		[]byte(`Private-key-format: v1.3
Algorithm: 13 (ECDSAP256SHA256)
PrivateKey: HPmldSNfrkj/aDdUMFwuk/lgzaC5KIsVEG3uoYvF4pQ=
Created: 20160426083115
Publish: 20160426083115
Activate: 20160426083115`),
		0644)
	return func() {
		os.Remove(base + ".key")
		os.Remove(base + ".private")
	}
}

const base = "Kexample.org.+013+44563"
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`package test`

			`import (`
			`"io/ioutil"`
			`"os"`
			`"testing"`

Remove the word middleware (#1067) * Rename middleware to plugin first pass; mostly used 'sed', few spots where I manually changed text. This still builds a coredns binary. * fmt error * Rename AddMiddleware to AddPlugin * Readd AddMiddleware to remain backwards compat 2017-09-14 09:36:06 +01:00			`"github.com/coredns/coredns/plugin/test"`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00
			`"github.com/miekg/dns"`
			`)`

			`func TestLookupBalanceRewriteCacheDnssec(t *testing.T) {`
Run tests in parallel (#478) Create a small speedup running the tests: PASS ok github.com/miekg/coredns/test 10.329s PASS ok github.com/miekg/coredns/test 6.079s Skip the etcd ones. Doing the middleware//_test ones doesn't yield any speedup as these are still done on a per directory basis. 2017-01-12 08:13:50 +00:00			`t.Parallel()`
Pr 311 2 (#312) * Add a setup test for middleware/file This fix adds a setup test for middleware/file so that there is a basic coverage for the Corefile processing of middleware/file. This fix is related to 308 (Will look into it). Signed-off-by: Yong Tang <yong.tang.github@outlook.com> * middleware/file: use helper function for test Fixup setup_test.go and use the test.TempFile function to make things somewhat shorter. Use clean up the use of testing.T in TempFile - it is not used. 2016-10-02 15:58:01 +01:00			`name, rm, err := test.TempFile(".", exampleOrg)`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`if err != nil {`
Extend presubmit to covert test and request (#1846) Fix the casing and fix use of context as we were still referencing the non-std lib context - no wondering how this could have worked... 2018-06-01 15:12:49 +01:00			`t.Fatalf("Failed to create zone: %s", err)`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`}`
			`defer rm()`
			`rm1 := createKeyFile(t)`
			`defer rm1()`

			corefile := `example.org:0 {
			file ` + name + `
Rewrite edns0 (#561) * Add edns0 code rewrite * check arg count * change `new`; set EDNS0 if request doesn't have it set * change set to replace_or_append * change to append_or_replace * return error in new * update documents * fixt UT * return error * go fmt * Rework for more general EDNS0 use Also changed how rules are created and validated. Implements EDNS0 NSID in addition to local. * go fmt * README updates, NSID tests and fixes * gofmt -s -w * Fix tests for rewrite syntax change * Add tests, fix error message * Review nits * Missed on nit * More tests, integration test, fix edns0 parse issue * Fix README, use RewriteIgnored * go fmt 2017-03-06 16:32:17 -05:00			`rewrite type ANY HINFO`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`dnssec {`
			key file ` + base + `
			`}`
			`loadbalance`
			`}`
			`
tests: CoreDNSServerAndPorts (#972) * tests: CoreDNSServerAndPorts Copy from kubernetes.go and renamed to fit the style, adapted almost all callers. This is a mechanicl change, no testdata was changed. * typos 2017-08-24 11:35:14 +01:00			`ex, udp, _, err := CoreDNSServerAndPorts(corefile)`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`if err != nil {`
middleware/cache: split cache in positive and negative and use lru (#298) Make the cache memory bounded, by using a LRU cache. Also split the cache in a positive and negative one - each with its own controls. Extend the cache stanza to allow for this: cache { positive limit [ttl] negative limit [ttl] } is now possible. This also add a cache_test.go in the toplevel test/ directory that exercises the caching path. Fixes #260 2016-10-02 08:31:44 +01:00			`t.Fatalf("Could not get CoreDNS serving instance: %s", err)`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`}`
			`defer ex.Stop()`

			`c := new(dns.Client)`
			`m := new(dns.Msg)`
			`m.SetQuestion("example.org.", dns.TypeA)`
			`m.SetEdns0(4096, true)`
			`res, _, err := c.Exchange(m, udp)`
			`if err != nil {`
			`t.Fatalf("Could not send query: %s", err)`
			`}`
			`sig := 0`
			`for _, a := range res.Answer {`
			`if a.Header().Rrtype == dns.TypeRRSIG {`
			`sig++`
			`}`
			`}`
			`if sig == 0 {`
Fix presubmit (#1850) Uppercase these test cases as well. 2018-06-02 20:28:56 +01:00			`t.Errorf("Expected RRSIGs, got none")`
Bail out on failure when starting up Don't silently hide failures, barf on startup. Also add more integration tests that should catch some of these things. 2016-04-27 10:48:22 +00:00			`t.Logf("%v\n", res)`
			`}`
			`}`

			`func createKeyFile(t *testing.T) func() {`
			`ioutil.WriteFile(base+".key",`
			[]byte(`example.org. IN DNSKEY 256 3 13 tDyI0uEIDO4SjhTJh1AVTFBLpKhY3He5BdAlKztewiZ7GecWj94DOodg ovpN73+oJs+UfZ+p9zOSN5usGAlHrw==`),
			`0644)`
			`ioutil.WriteFile(base+".private",`
			[]byte(`Private-key-format: v1.3
			`Algorithm: 13 (ECDSAP256SHA256)`
			`PrivateKey: HPmldSNfrkj/aDdUMFwuk/lgzaC5KIsVEG3uoYvF4pQ=`
			`Created: 20160426083115`
			`Publish: 20160426083115`
			Activate: 20160426083115`),
			`0644)`
			`return func() {`
			`os.Remove(base + ".key")`
			`os.Remove(base + ".private")`
			`}`
			`}`

			`const base = "Kexample.org.+013+44563"`