]> git.ipfire.org Git - thirdparty/bind9.git/commit
projects / thirdparty / bind9.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 34ff98a) | patch
Add tests for forwarder cache poisoning scenarios
authorMark Andrews <marka@isc.org>
Mon, 17 Jan 2022 13:19:47 +0000 (00:19 +1100)
committerPetr Špaček <pspacek@isc.org>
Fri, 8 Apr 2022 09:52:01 +0000 (11:52 +0200)
commit29f08170f05c2c96fb67f3b561b46aa0bae356f7
treea607a9e5f3dc1e96a89d8edc95f76ab42d45d332tree | snapshot
parent34ff98acd8a162efca11885c740f1c5a4161e328commit | diff
Add tests for forwarder cache poisoning scenarios

- Check that an NS in an authority section returned from a forwarder
  which is above the name in a configured "forward first" or "forward
  only" zone (i.e., net/NS in a response from a forwarder configured for
  local.net) is not cached.
- Test that a DNAME for a parent domain will not be cached when sent
  in a response from a forwarder configured to answer for a child.
- Check that glue is rejected if its name falls below that of zone
  configured locally.
- Check that an extra out-of-bailiwick data in the answer section is
  not cached (this was already working correctly, but was not explicitly
  tested before).

- v9_11 backport: Revert primary/secondary to master/slave,
  backport rndc helper, backport ns8 config.

(cherry picked from commit bf3fffff67e1de78e9387a93674d471bf4291604)
31 files changed:
bin/tests/system/forward/ans11/ans.py [new file with mode: 0644] blob
bin/tests/system/forward/clean.sh diff | blob | blame | history
bin/tests/system/forward/ns1/diditwork.net.db [new file with mode: 0644] blob
bin/tests/system/forward/ns1/named.conf.in diff | blob | blame | history
bin/tests/system/forward/ns1/net.example.lll [new file with mode: 0644] blob
bin/tests/system/forward/ns1/spoofed.net.db [new file with mode: 0644] blob
bin/tests/system/forward/ns1/sub.local.net.db [new file with mode: 0644] blob
bin/tests/system/forward/ns10/fakenet.zone [new file with mode: 0644] blob
bin/tests/system/forward/ns10/fakenet2.zone [new file with mode: 0644] blob
bin/tests/system/forward/ns10/fakesublocalnet.zone [new file with mode: 0644] blob
bin/tests/system/forward/ns10/fakesublocaltld.zone [new file with mode: 0644] blob
bin/tests/system/forward/ns10/named.conf.in [new file with mode: 0644] blob
bin/tests/system/forward/ns10/net.example.lll [new file with mode: 0644] blob
bin/tests/system/forward/ns10/spoofednet.zone [new file with mode: 0644] blob
bin/tests/system/forward/ns4/named.conf.in diff | blob | blame | history
bin/tests/system/forward/ns4/sibling.tld.db [new file with mode: 0644] blob
bin/tests/system/forward/ns8/named.conf.in [new file with mode: 0644] blob
bin/tests/system/forward/ns8/root.db [new file with mode: 0644] blob
bin/tests/system/forward/ns8/sub.local.tld.db [new file with mode: 0644] blob
bin/tests/system/forward/ns9/local.net.db [new file with mode: 0644] blob
bin/tests/system/forward/ns9/local.tld.db [new file with mode: 0644] blob
bin/tests/system/forward/ns9/named1.conf.in [new file with mode: 0644] blob
bin/tests/system/forward/ns9/named2.conf.in [new file with mode: 0644] blob
bin/tests/system/forward/ns9/named3.conf.in [new file with mode: 0644] blob
bin/tests/system/forward/ns9/named4.conf.in [new file with mode: 0644] blob
bin/tests/system/forward/ns9/root.db [new file with mode: 0644] blob
bin/tests/system/forward/prereq.sh diff | blob | blame | history
bin/tests/system/forward/setup.sh diff | blob | blame | history
bin/tests/system/forward/tests.sh diff | blob | blame | history
bin/tests/system/ifconfig.sh diff | blob | blame | history
util/copyrights diff | blob | blame | history
Mirror of https://gitlab.isc.org/isc-projects/bind9.git