]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3801d0e) | patch
Add tests for NSEC3 invalid length
authorOndřej Surý <ondrej@isc.org>
Fri, 20 Feb 2026 14:44:14 +0000 (15:44 +0100)
committerOndřej Surý <ondrej@sury.org>
Tue, 24 Feb 2026 13:57:58 +0000 (14:57 +0100)
commit7b737bc1c412345c0164f49073253b89d35bee0a
tree88f942ee7da27acc11c9b4cdeabf191a279a8f6ftree | snapshot
parent3801d0ebbf8da69077af84dae7f7ec23718b839bcommit | diff
Add tests for NSEC3 invalid length

Adds a static system test that fails to load an NSEC3 record with an
invalid next part length.  Additionally, introduces a dynamic test using
a crafted authoritative DNS proxy to inject invalid NSEC3 records on the
fly to test runtime behavior.
14 files changed:
bin/tests/system/checkzone/zones/bad-nsec3-length.db [new file with mode: 0644] blob
bin/tests/system/nsec3/ans7/ans.py [new file with mode: 0644] blob
bin/tests/system/nsec3/common.py diff | blob | blame | history
bin/tests/system/nsec3/ns5/named.conf.j2 [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/Kevil.test.+013+10491.key [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/Kevil.test.+013+10491.private [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/Kevil.test.+013+12713.key [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/Kevil.test.+013+12713.private [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/evil.test.db [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/named.conf.j2 [new file with mode: 0644] blob
bin/tests/system/nsec3/ns6/setup.sh [new file with mode: 0644] blob
bin/tests/system/nsec3/setup.sh diff | blob | blame | history
bin/tests/system/nsec3/tests_nsec3_initial.py diff | blob | blame | history
bin/tests/system/nsec3/tests_nsec3_length.py [new file with mode: 0644] blob
Mirror of https://gitlab.isc.org/isc-projects/bind9.git