From: W.C.A. Wijngaards Date: Fri, 12 Sep 2025 09:23:29 +0000 (+0200) Subject: - xfr-tsig, remove rpl unit test. X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=c904a3d375b4cb55577e67b95ff1740bb24175f6;p=thirdparty%2Funbound.git - xfr-tsig, remove rpl unit test. --- diff --git a/testdata/auth_tsig.rpl b/testdata/auth_tsig.rpl deleted file mode 100644 index 373eec6d7..000000000 --- a/testdata/auth_tsig.rpl +++ /dev/null @@ -1,125 +0,0 @@ -; config options -server: - target-fetch-policy: "0 0 0 0 0" - log-queries: yes - access-control: 127.0.0.1 allow - access-control: 192.0.2.1 allow - -; This tsig key is used for testing. -tsig-key: - name: "test.key" - algorithm: sha256 - secret: "K2tf3TRjvQkVCmJF3/Z9vA==" - -auth-zone: - name: "example.com." - master-tsig: 1.2.3.44 test.key - allow-notify-tsig: 192.0.2.1 test.key - for-downstream: yes - for-upstream: yes - - ## this line generates zonefile: \n"/tmp/xxx.example.com"\n - zonefile: -TEMPFILE_NAME example.com - ## this is the inline file /tmp/xxx.example.com - ## the tempfiles are deleted when the testrun is over. -TEMPFILE_CONTENTS example.com -example.com. IN SOA ns.example.com. netadm.example.com. 2025090900 7200 3600 604800 3600 -www.example.com. IN A 1.2.3.4 -TEMPFILE_END - -stub-zone: - name: "." - stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET. -CONFIG_END - -SCENARIO_BEGIN Test authority zone with zone transfer with TSIG - -; ns.example.com. -RANGE_BEGIN 0 100 - ADDRESS 1.2.3.44 -ENTRY_BEGIN -MATCH opcode qtype qname -REPLY QR AA NOERROR -SECTION QUESTION -example.com. IN SOA -SECTION ANSWER -example.com. IN SOA ns.example.com. netadm.example.com. 2025090901 7200 3600 604800 3600 -SECTION ADDITIONAL -test.key. 0 ANY TSIG hmac-sha256. 1757593030 300 32 F7jAcAXEgvrs1gEFRIf/6SaXnBBXkmP6O97mBu3xFXI= 6149 NOERROR 0 -ENTRY_END -RANGE_END - -; Check that the zonefile was read in. -; before time is set, so that the zone is not expired yet. -STEP 10 QUERY -ENTRY_BEGIN -REPLY RD -SECTION QUESTION -www.example.com. IN A -ENTRY_END - -; recursion happens here. -STEP 20 CHECK_ANSWER -ENTRY_BEGIN -MATCH all -REPLY QR AA RD RA NOERROR -SECTION QUESTION -www.example.com. IN A -SECTION ANSWER -www.example.com. IN A 1.2.3.4 -ENTRY_END - -; Set the time for TSIG operations to give the same output. -; Thu 11 Sep 14:17:10 CEST 2025 -STEP 30 TIME_PASSES ELAPSE 1757593030 -; the zone is now waiting for the SOA refresh timer for an update, after -; setting its notify addresses. Because of elapsed time, the zone is expired. - -; - notify TSIG check on incoming. -STEP 40 QUERY -ENTRY_BEGIN -REPLY NOTIFY -SECTION QUESTION -example.com. IN A -ENTRY_END - -; without TSIG notify is refused. -STEP 50 CHECK_ANSWER -ENTRY_BEGIN -MATCH all -REPLY QR RA NOTIFY REFUSED -SECTION QUESTION -example.com. IN A -ENTRY_END - -STEP 60 QUERY ADDRESS 192.0.2.1 -ENTRY_BEGIN -REPLY NOTIFY -SECTION QUESTION -example.com. IN A -SECTION ADDITIONAL -test.key. 0 ANY TSIG hmac-sha256. 1757593030 300 32 m9xopNtJTm6dnNbFCnkl4jfQJDH3MwpXTTL0n7OGKn8= 0 NOERROR 0 -ENTRY_END - -STEP 70 CHECK_ANSWER -ENTRY_BEGIN -REPLY QR RA NOTIFY -MATCH all -SECTION QUESTION -example.com. IN A -SECTION ADDITIONAL -test.key. 0 ANY TSIG hmac-sha256. 1757593030 300 32 ELaTFUdcCmHErm2pJX2ooYlW0lqaG50D5IKEWZesrYE= 0 NOERROR 0 -ENTRY_END - -; Resolve the SOA lookup. -STEP 80 TRAFFIC - - -; - notify reply has TSIG reply. -; - SOA probe TSIG -; - SOA probe TSIG reply -; - XFR TSIG -; - check XFR TSIG - -SCENARIO_END diff --git a/testdata/tsig_test.4 b/testdata/tsig_test.4 index dafe32dc5..aab7b2434 100644 --- a/testdata/tsig_test.4 +++ b/testdata/tsig_test.4 @@ -1218,8 +1218,7 @@ call 1757420114 1 1 # end of tsig-verify-reply-xfr test, example.com AXFR with TSIG every NTH from # signed sequence -# for making tsig on testbound test. -# notify packet for example.com. +# sign a notify packet for example.com. packet 000020000001000000000000076578616D706C6503636F6D0000010001 endpacket