From: Remi Gacogne Date: Tue, 27 Nov 2018 15:11:49 +0000 (+0100) Subject: fuzzing: Add some corpus for OSS-Fuzz X-Git-Tag: auth-4.2.0-alpha1~6^2~3 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=11ef89971c4751ee03e83bc73b95223b5bb7c1f0;p=thirdparty%2Fpdns.git fuzzing: Add some corpus for OSS-Fuzz --- diff --git a/fuzzing/corpus/raw-dns-packets/basic.raw b/fuzzing/corpus/raw-dns-packets/basic.raw new file mode 100644 index 0000000000..d27a62a7c3 Binary files /dev/null and b/fuzzing/corpus/raw-dns-packets/basic.raw differ diff --git a/fuzzing/corpus/raw-dns-packets/ecs.raw b/fuzzing/corpus/raw-dns-packets/ecs.raw new file mode 100644 index 0000000000..ec671c2736 Binary files /dev/null and b/fuzzing/corpus/raw-dns-packets/ecs.raw differ diff --git a/fuzzing/corpus/raw-dns-packets/powerdns-ds.raw b/fuzzing/corpus/raw-dns-packets/powerdns-ds.raw new file mode 100644 index 0000000000..84e08d3caa Binary files /dev/null and b/fuzzing/corpus/raw-dns-packets/powerdns-ds.raw differ diff --git a/fuzzing/corpus/raw-dns-packets/powerdns-referral-com.raw b/fuzzing/corpus/raw-dns-packets/powerdns-referral-com.raw new file mode 100644 index 0000000000..e3604a541b Binary files /dev/null and b/fuzzing/corpus/raw-dns-packets/powerdns-referral-com.raw differ diff --git a/fuzzing/corpus/raw-dns-packets/root-ns-answer.raw b/fuzzing/corpus/raw-dns-packets/root-ns-answer.raw new file mode 100644 index 0000000000..ffe5ed44f4 Binary files /dev/null and b/fuzzing/corpus/raw-dns-packets/root-ns-answer.raw differ diff --git a/fuzzing/corpus/zones/basic.rpz b/fuzzing/corpus/zones/basic.rpz new file mode 100644 index 0000000000..d97d573cc1 --- /dev/null +++ b/fuzzing/corpus/zones/basic.rpz @@ -0,0 +1,62 @@ +$TTL 2h; +$ORIGIN domain.example.com. +@ SOA powerdns.example.net. hostmaster.example.com ( 1 12h 15m 3w 2h) + NS powerdns.example.net. +; begin RPZ RR definitions + +;; QNAME Trigger + +; QNAME Trigger NXDOMAIN Action +; kills whole domain +nxdomain.org CNAME . +*.nxdomain-apex.org CNAME . + +; QNAME Trigger PASSTHRU Action +; typically only used for bypass +mail.nxdomain-apix.org CNAME rpz-passthru. + +; QNAME Trigger DROP Action +; kills whole domain +example.net CNAME rpz-drop. +*.example.net CNAME rpz-drop. + +; QNAME Trigger Truncate Action +; kills whole domain +truncate.org CNAME rpz-tcp-only. +*.truncate-apex.org CNAME rpz-tcp-only. + +; QNAME Trigger Local-Data Action +; sends to a local website +; kills whole domain +local.org CNAME explanation.example.com. +*.local.org CNAME explanation.example.com. + +local-a.org A 192.168.2.5 +*.local-a-apex.org A 192.168.2.5 + +; CLIENT-IP Trigger DROP Action +; kills all DNS activity from this client +24.0.0.0.127.rpz-client-ip CNAME rpz-drop. + +; CLIENT-IP Trigger TCP-ONLY Action +; slows-up all DNS activity from this client +32.1.0.0.10.rpz-client-ip CNAME rpz-tcp-only. + +; IP Trigger NXDOMAIN Action +; any answer containing IP range +32.2.0.0.10.rpz-ip CNAME . + +;; NSDNAME Trigger +;; if ns1.example.org appears in the authority section +;; of any answer + +; NSDNAME Trigger NXDOMAIN Action +; kills specific name server +dns-eu1.powerdns.net.rpz-nsdname CNAME . +; this will kill any name servers from example.org +*.powerdns.net.rpz-nsdname CNAME . + +; NSDNAME Trigger TCP-ONLY Action +; kills specific name server +*.gtld-servers.net.rpz-nsdname CNAME rpz-tcp-only. +