ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
12,227 Commits 589 Branches 805 Tags
3ad4e307b64bcf8baa984e10a4e7549dbeaea31d
Commit Graph

85 Commits

Author SHA1 Message Date
Mark Andrews
841ed46de5 1558. [func] New DNSSEC 'disable-algorithms'. Support entry into 
child zones for which we don't have a supported
                        algorithm.  Such child zones are treated as unsigned.
 2004-01-15 04:09:17 +00:00
Mark Andrews
35541328a8 1558. [func] New DNSSEC 'disable-algorithms'. Support entry into 
child zones for which we don't have a supported
                        algorithm.  Such child zones are treated as unsigned.

1557.   [func]          Implement missing DNSSEC tests for
                        * NOQNAME proof with wildcard answers.
                        * NOWILDARD proof with NXDOMAIN.
                        Cache and return NOQNAME with wildcard answers.
 2004-01-14 02:06:51 +00:00
Mark Andrews
b7e6fb4e84 whitespace 2003-10-26 21:33:47 +00:00
Mark Andrews
93d6dfaf66 1516. [func] Roll the DNSSEC types to RRSIG, NSEC and DNSKEY. 2003-09-30 06:00:40 +00:00
Mark Andrews
0f042c7c44 - improves tests of negative insecurity proofs, including tests for the 
SOA TTL 0 hack.
- adds +noauth to a few invocations of dig where the authority section is
  not important.
- removes the bogus first half of the dynamic zone test, which didn't
  do anything other than make the test suite fail if run twice.
- fixed the fact that the keyless.example zone wasn't being securely
  delegated.
bwelling
 2002-07-19 06:20:24 +00:00
Mark Andrews
0b09763c35 1328. [func] DS (delegation signer) support. 2002-06-17 04:01:37 +00:00
Mark Andrews
a04a323f9a 1273. [bug] The dnssec system test failed to remove the correct 
files.
 2002-04-24 00:46:25 +00:00
Mark Andrews
a7038d1a05 copyrights 2002-02-20 03:35:59 +00:00
Brian Wellington
4014b6a8ae although a privately secure zone was signed, it was never tested. 2002-02-13 01:32:12 +00:00
Brian Wellington
64ea670052 the dynamic zone test wasn't working as expected since the child zone wasn't 
securely delegated.
 2002-02-06 03:28:59 +00:00
Brian Wellington
4ca54c8f3b ns5 is the incorrectly configured server, not ns4. 2002-02-01 01:56:00 +00:00
Andreas Gustafsson
473ca0bf8c Added RT #2399 regression test 2002-01-22 22:27:29 +00:00
Brian Wellington
78baa4ccb8 some files weren't being removed. 2001-11-06 19:32:54 +00:00
Andreas Gustafsson
e4b5f088ca Added RT #1763 regression test 2001-09-19 21:19:52 +00:00
Andreas Gustafsson
1301637cc5 check that negative validation fails with a misconfigured trusted key 2001-09-19 20:47:02 +00:00
Brian Wellington
81b172466c *** empty log message *** 2001-09-17 17:47:20 +00:00
Brian Wellington
206bced36f order the parameters to dnssec-keygen consistently. 2001-09-17 17:42:04 +00:00
Andreas Gustafsson
25525110c1 fixed and simplified 2001-07-13 18:29:00 +00:00
Brian Wellington
f4d26dbdb6 fix redirection 2001-07-11 19:02:16 +00:00
Brian Wellington
1a8002871e require a build with openssl to run dnssec & tkey tests 2001-07-10 21:41:14 +00:00
Brian Wellington
7a224ba59b test that validation of an ANY query returning a DNAME works 2001-02-23 06:22:11 +00:00
Brian Wellington
529d1b9ada test that validation of a query returning a DNAME works 2001-02-23 06:14:44 +00:00
Brian Wellington
4f91c46a42 Test that both normal and ANY queries that match a CNAME are properly 
validated.
 2001-02-21 06:47:45 +00:00
Brian Wellington
a41ab607a4 Test that validation of ANY queries works. Also add data to be used for 
CNAME/DNAME tests, but not the tests yet since they fail.
 2001-02-20 18:33:50 +00:00
Andreas Gustafsson
1988fd60fa share the root.hint file among most of the system tests instead of having multiple identical copies 2001-01-11 20:44:21 +00:00
Brian Wellington
499b34cea0 copyright update 2001-01-09 22:01:04 +00:00
Brian Wellington
ec772e873b 651. [func] The AD bit in responses now has the meaning 
specified in <draft-ietf-dnsext-ad-is-secure>.
 2001-01-04 00:24:26 +00:00
Andreas Gustafsson
f333ea9bdd added notify-source options 2000-11-28 19:07:00 +00:00
Brian Wellington
2c46670fb4 ignore stdout from the dnssec tools 2000-11-22 20:37:50 +00:00
Andreas Gustafsson
4f37905cc3 added 'transfer-source' directives to all system test named.conf 
files, so that tests succeed while transfer-source is still being (ab)used as
the notify source address
 2000-11-22 01:34:19 +00:00
Andreas Gustafsson
01da43e63a pass the +dnssec flag to DIG 2000-11-22 01:26:24 +00:00
Andreas Gustafsson
5a77e9620a make spacing in listen-on-v6 option consistent with other options 2000-11-21 23:50:10 +00:00
Andreas Gustafsson
bca6ff69a7 removed redundant comment 2000-11-20 17:53:41 +00:00
Andreas Gustafsson
321a6df4ff removed redundant "directory ." option 2000-09-01 19:36:05 +00:00
Brian Wellington
efd2baaa2b Remove the random.data file created by genrandom. 2000-08-11 18:45:30 +00:00
David Lawrence
816e576f77 new URL for the copyright notice 2000-08-09 04:37:43 +00:00
Brian Wellington
a7290af88f Added a small program to generate "random" data. It's not really random, 
but it's only for tests.  This allows the large files containing random
data to be removed from the tree.
 2000-08-08 21:47:55 +00:00
David Lawrence
40f53fa8d9 Trailing whitespace trimmed. Perhaps running "perl util/spacewhack.pl in your 
own CVS tree will help minimize CVS conflicts.  Maybe not.
Blame Graff for getting me to trim all trailing whitespace.
 2000-08-01 01:33:37 +00:00
Brian Wellington
529a6b5224 358. [cleanup] Rename the intermediate files used by the dnssec 
programs.
 2000-07-31 15:28:21 +00:00
Brian Wellington
60eb559222 - print the number of each test 
- add a missing simple negative response test
- check the status of the ad bit on responses
- test queries with the cd bit set
- remove duplicated arguments to dig
 2000-07-27 23:22:35 +00:00
David Lawrence
15a4474541 word wrap copyright notice at column 70 2000-07-27 09:55:03 +00:00
Andreas Gustafsson
8b2d2acbff in the multi-stage positive validation test, allow the 
recursive server to omit the authority section
 2000-07-19 19:54:50 +00:00
Brian Wellington
7f2ac7414c Test that a query for a security root succeeds. 2000-07-11 00:36:44 +00:00
Brian Wellington
e09caeceef print the test info before executing the test 2000-07-10 23:46:50 +00:00
Brian Wellington
b872e86042 Describe all the tests that are run and indicate which ones fail. 2000-07-10 21:40:16 +00:00
Brian Wellington
66b84e8952 - test insecurity proofs 
- use digcomp.pl's ability to check rcode
- generate less unneeded output
- use separate output files for each test, so that output isn't deleted
 2000-07-08 00:39:17 +00:00
Andreas Gustafsson
eebcaeb6a0 added CNAME RR for RT #153 regression test 2000-07-07 22:33:20 +00:00
Brian Wellington
1e8c2e72e7 remove extra spaces in I: lines 2000-07-07 18:25:20 +00:00
Brian Wellington
5618f70327 Modify the tests so that if any server doesn't die with a TERM signal, 
it's an error.
 2000-07-05 18:49:06 +00:00
David Lawrence
9c3531d72a add RCS id string 2000-06-22 22:00:42 +00:00