Skip to content
GitLab
Projects
Groups
Snippets
Help
Loading...
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
D
deckard
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
32
Issues
32
List
Boards
Labels
Service Desk
Milestones
Merge Requests
4
Merge Requests
4
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Operations
Operations
Incidents
Environments
Packages & Registries
Packages & Registries
Container Registry
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Knot projects
deckard
Commits
fc5657f6
Commit
fc5657f6
authored
Jan 22, 2018
by
Petr Špaček
Browse files
Options
Browse Files
Download
Plain Diff
Merge branch 'kskroll-sentinel' into 'master'
Test draft-ietf-dnsop-kskroll-sentinel-00#section-2 See merge request
!97
parents
387e8845
297d8e06
Pipeline
#32103
failed with stage
in 1 minute
Changes
105
Pipelines
1
Expand all
Hide whitespace changes
Inline
Side-by-side
Showing
105 changed files
with
1516 additions
and
253 deletions
+1516
-253
.gitlab-ci.yml
.gitlab-ci.yml
+1
-1
doc/scenario_guide.rst
doc/scenario_guide.rst
+1
-0
doc/user_guide.rst
doc/user_guide.rst
+1
-0
pydnstest/scenario.py
pydnstest/scenario.py
+8
-2
sets/resolver/iter_badraw.rpl
sets/resolver/iter_badraw.rpl
+1
-1
sets/resolver/iter_cname_badauth.rpl
sets/resolver/iter_cname_badauth.rpl
+2
-2
sets/resolver/iter_cname_cache.rpl
sets/resolver/iter_cname_cache.rpl
+2
-2
sets/resolver/iter_cname_double.rpl
sets/resolver/iter_cname_double.rpl
+2
-2
sets/resolver/iter_cname_nx.rpl
sets/resolver/iter_cname_nx.rpl
+2
-2
sets/resolver/iter_cname_qnamecopy.rpl
sets/resolver/iter_cname_qnamecopy.rpl
+2
-2
sets/resolver/iter_cycle.rpl
sets/resolver/iter_cycle.rpl
+2
-2
sets/resolver/iter_cycle_noh.rpl
sets/resolver/iter_cycle_noh.rpl
+2
-2
sets/resolver/iter_domain_sale.rpl
sets/resolver/iter_domain_sale.rpl
+2
-2
sets/resolver/iter_domain_sale_nschange.rpl
sets/resolver/iter_domain_sale_nschange.rpl
+2
-2
sets/resolver/iter_donotq127.rpl
sets/resolver/iter_donotq127.rpl
+1
-1
sets/resolver/iter_formerr.rpl
sets/resolver/iter_formerr.rpl
+3
-3
sets/resolver/iter_hint_lame.rpl
sets/resolver/iter_hint_lame.rpl
+2
-2
sets/resolver/iter_lame_aaaa.rpl
sets/resolver/iter_lame_aaaa.rpl
+2
-2
sets/resolver/iter_lame_noaa.rpl
sets/resolver/iter_lame_noaa.rpl
+3
-3
sets/resolver/iter_lame_nosoa.rpl
sets/resolver/iter_lame_nosoa.rpl
+2
-2
sets/resolver/iter_lamescrub.rpl
sets/resolver/iter_lamescrub.rpl
+1
-1
sets/resolver/iter_minim_a.rpl
sets/resolver/iter_minim_a.rpl
+2
-2
sets/resolver/iter_minim_a_nxdomain.rpl
sets/resolver/iter_minim_a_nxdomain.rpl
+2
-2
sets/resolver/iter_minim_nonempty.rpl
sets/resolver/iter_minim_nonempty.rpl
+2
-2
sets/resolver/iter_minim_ns.rpl
sets/resolver/iter_minim_ns.rpl
+2
-2
sets/resolver/iter_mod.rpl
sets/resolver/iter_mod.rpl
+3
-3
sets/resolver/iter_multiple_A.rpl
sets/resolver/iter_multiple_A.rpl
+1
-1
sets/resolver/iter_ns_badaa.rpl
sets/resolver/iter_ns_badaa.rpl
+2
-2
sets/resolver/iter_ns_badglue.rpl
sets/resolver/iter_ns_badglue.rpl
+2
-2
sets/resolver/iter_ns_badip.rpl
sets/resolver/iter_ns_badip.rpl
+2
-2
sets/resolver/iter_ns_noglue.rpl
sets/resolver/iter_ns_noglue.rpl
+2
-2
sets/resolver/iter_ns_spoof.rpl
sets/resolver/iter_ns_spoof.rpl
+3
-3
sets/resolver/iter_pc_a.rpl
sets/resolver/iter_pc_a.rpl
+2
-2
sets/resolver/iter_pc_aaaa.rpl
sets/resolver/iter_pc_aaaa.rpl
+2
-2
sets/resolver/iter_pcdirect.rpl
sets/resolver/iter_pcdirect.rpl
+2
-2
sets/resolver/iter_pclame.rpl
sets/resolver/iter_pclame.rpl
+2
-2
sets/resolver/iter_pcname.rpl
sets/resolver/iter_pcname.rpl
+2
-2
sets/resolver/iter_pcnamech.rpl
sets/resolver/iter_pcnamech.rpl
+2
-2
sets/resolver/iter_pcnamechrec.rpl
sets/resolver/iter_pcnamechrec.rpl
+2
-2
sets/resolver/iter_pcttl.rpl
sets/resolver/iter_pcttl.rpl
+3
-3
sets/resolver/iter_reclame_one.rpl
sets/resolver/iter_reclame_one.rpl
+2
-2
sets/resolver/iter_reclame_two.rpl
sets/resolver/iter_reclame_two.rpl
+2
-2
sets/resolver/iter_recurse.rpl
sets/resolver/iter_recurse.rpl
+2
-2
sets/resolver/iter_refuse.rpl
sets/resolver/iter_refuse.rpl
+1
-1
sets/resolver/iter_req_qname.rpl
sets/resolver/iter_req_qname.rpl
+4
-4
sets/resolver/iter_resolve.rpl
sets/resolver/iter_resolve.rpl
+2
-2
sets/resolver/iter_soamin.rpl
sets/resolver/iter_soamin.rpl
+2
-2
sets/resolver/iter_tcbit.rpl
sets/resolver/iter_tcbit.rpl
+3
-3
sets/resolver/iter_validate.rpl
sets/resolver/iter_validate.rpl
+3
-3
sets/resolver/iter_validate_child_zone_noaddr.rpl
sets/resolver/iter_validate_child_zone_noaddr.rpl
+3
-3
sets/resolver/iter_validate_extradata.rpl
sets/resolver/iter_validate_extradata.rpl
+3
-3
sets/resolver/iter_validate_nsec_nxdomain.rpl
sets/resolver/iter_validate_nsec_nxdomain.rpl
+3
-3
sets/resolver/nsec3_wildcard_no_data_response.rpl
sets/resolver/nsec3_wildcard_no_data_response.rpl
+1
-1
sets/resolver/nsec_name_error_response-part2.rpl
sets/resolver/nsec_name_error_response-part2.rpl
+3
-3
sets/resolver/nsec_name_error_response.rpl
sets/resolver/nsec_name_error_response.rpl
+3
-3
sets/resolver/nsec_no_data_response.rpl
sets/resolver/nsec_no_data_response.rpl
+3
-3
sets/resolver/nsec_ref_to_unsigned1.rpl
sets/resolver/nsec_ref_to_unsigned1.rpl
+1
-1
sets/resolver/nsec_ref_to_unsigned2.rpl
sets/resolver/nsec_ref_to_unsigned2.rpl
+1
-1
sets/resolver/nsec_ref_to_unsigned3.rpl
sets/resolver/nsec_ref_to_unsigned3.rpl
+1
-1
sets/resolver/nsec_wildcard_answer_response.rpl
sets/resolver/nsec_wildcard_answer_response.rpl
+3
-3
sets/resolver/nsec_wildcard_no_data_response-part2.rpl
sets/resolver/nsec_wildcard_no_data_response-part2.rpl
+3
-3
sets/resolver/nsec_wildcard_no_data_response.rpl
sets/resolver/nsec_wildcard_no_data_response.rpl
+3
-3
sets/resolver/val_cname_loop1.rpl
sets/resolver/val_cname_loop1.rpl
+1
-1
sets/resolver/val_cname_loop1_3.rpl
sets/resolver/val_cname_loop1_3.rpl
+1
-1
sets/resolver/val_cname_loop3.rpl
sets/resolver/val_cname_loop3.rpl
+1
-1
sets/resolver/val_cname_new_signer.rpl
sets/resolver/val_cname_new_signer.rpl
+1
-1
sets/resolver/val_cname_oob.rpl
sets/resolver/val_cname_oob.rpl
+1
-1
sets/resolver/val_cname_to_unsigned.rpl
sets/resolver/val_cname_to_unsigned.rpl
+1
-1
sets/resolver/val_cname_to_unsigned_fake_rrsig.rpl
sets/resolver/val_cname_to_unsigned_fake_rrsig.rpl
+1
-1
sets/resolver/val_deleg_nons.rpl
sets/resolver/val_deleg_nons.rpl
+5
-5
sets/resolver/val_faildnskey.rpl
sets/resolver/val_faildnskey.rpl
+5
-5
sets/resolver/val_nokeyprime.rpl
sets/resolver/val_nokeyprime.rpl
+5
-5
sets/resolver/val_nsec3_b1_nameerror.rpl
sets/resolver/val_nsec3_b1_nameerror.rpl
+4
-4
sets/resolver/val_nsec3_b1_nameerror_noce.rpl
sets/resolver/val_nsec3_b1_nameerror_noce.rpl
+4
-4
sets/resolver/val_nsec3_b1_nameerror_nonc.rpl
sets/resolver/val_nsec3_b1_nameerror_nonc.rpl
+4
-4
sets/resolver/val_nsec3_b1_nameerror_nowc.rpl
sets/resolver/val_nsec3_b1_nameerror_nowc.rpl
+4
-4
sets/resolver/val_nsec3_b21_nodataent.rpl
sets/resolver/val_nsec3_b21_nodataent.rpl
+4
-4
sets/resolver/val_nsec3_b21_nodataent_wr.rpl
sets/resolver/val_nsec3_b21_nodataent_wr.rpl
+4
-4
sets/resolver/val_nsec3_b2_nodata.rpl
sets/resolver/val_nsec3_b2_nodata.rpl
+5
-5
sets/resolver/val_nsec3_b2_nodata_nons.rpl
sets/resolver/val_nsec3_b2_nodata_nons.rpl
+5
-5
sets/resolver/val_nsec3_b3_optout.rpl
sets/resolver/val_nsec3_b3_optout.rpl
+4
-4
sets/resolver/val_nsec3_b3_optout_noce.rpl
sets/resolver/val_nsec3_b3_optout_noce.rpl
+5
-5
sets/resolver/val_nsec3_b3_optout_nonc.rpl
sets/resolver/val_nsec3_b3_optout_nonc.rpl
+5
-5
sets/resolver/val_nsec3_b4_wild.rpl
sets/resolver/val_nsec3_b4_wild.rpl
+4
-4
sets/resolver/val_nsec3_b5_wcnodata.rpl
sets/resolver/val_nsec3_b5_wcnodata.rpl
+4
-4
sets/resolver/val_nsec3_b5_wcnodata_noce.rpl
sets/resolver/val_nsec3_b5_wcnodata_noce.rpl
+4
-4
sets/resolver/val_nsec3_b5_wcnodata_nonc.rpl
sets/resolver/val_nsec3_b5_wcnodata_nonc.rpl
+4
-4
sets/resolver/val_nsec3_b5_wcnodata_nowc.rpl
sets/resolver/val_nsec3_b5_wcnodata_nowc.rpl
+4
-4
sets/resolver/val_nsec3_cnametocnamewctoposwc.rpl
sets/resolver/val_nsec3_cnametocnamewctoposwc.rpl
+4
-4
sets/resolver/val_nsec3_entnodata_optout_badopt.rpl
sets/resolver/val_nsec3_entnodata_optout_badopt.rpl
+5
-5
sets/resolver/val_nsec3_nods_badsig.rpl
sets/resolver/val_nsec3_nods_badsig.rpl
+5
-5
sets/resolver/val_nsec3_nods_soa.rpl
sets/resolver/val_nsec3_nods_soa.rpl
+5
-5
sets/resolver/val_nsec3_noopt_ref.rpl
sets/resolver/val_nsec3_noopt_ref.rpl
+1
-1
sets/resolver/val_positive_nosigs.rpl
sets/resolver/val_positive_nosigs.rpl
+5
-5
sets/resolver/val_referral_nods.rpl
sets/resolver/val_referral_nods.rpl
+1
-1
sets/resolver/val_secds_nosig.rpl
sets/resolver/val_secds_nosig.rpl
+5
-5
sets/resolver/val_ta_sentinel.rpl
sets/resolver/val_ta_sentinel.rpl
+483
-0
sets/resolver/val_ta_sentinel/K.+008+48409.key
sets/resolver/val_ta_sentinel/K.+008+48409.key
+5
-0
sets/resolver/val_ta_sentinel/K.+008+48409.private
sets/resolver/val_ta_sentinel/K.+008+48409.private
+13
-0
sets/resolver/val_ta_sentinel/root.db
sets/resolver/val_ta_sentinel/root.db
+20
-0
sets/resolver/val_ta_sentinel_insecure.rpl
sets/resolver/val_ta_sentinel_insecure.rpl
+363
-0
sets/resolver/val_ta_sentinel_nokey.rpl
sets/resolver/val_ta_sentinel_nokey.rpl
+361
-0
sets/resolver/val_wild_pos_multi.rpl
sets/resolver/val_wild_pos_multi.rpl
+3
-3
template/kresd.j2
template/kresd.j2
+7
-1
template/unbound.j2
template/unbound.j2
+4
-0
No files found.
.gitlab-ci.yml
View file @
fc5657f6
image
:
cznic/ci-debian-kresd
image
:
$CI_REGISTRY/knot/knot-resolver/ci:debian-stable
variables
:
LC_ALL
:
C.UTF-8
...
...
doc/scenario_guide.rst
View file @
fc5657f6
...
...
@@ -416,6 +416,7 @@ Format is list of "key: value" pairs, one pair per line. There is no explicit st
config option default meaning
========================== ======= =====================================================================
do-not-query-localhost on on = queries cannot be sent to 127.0.0.1/8 or ::1/128 addresses
domain-insecure (none) domain name specifying DNS sub-tree with explicitly disabled DNSSEC validation
force-ipv6 off use a IPv6 address as ``stub-addr``
harden-glue on additional checks on glue addresses
query-minimization on RFC 7816 query algorithm enabled; default inherited from QMIN environment variable
...
...
doc/user_guide.rst
View file @
fc5657f6
...
...
@@ -190,6 +190,7 @@ DNS specifics:
- ``HARDEN_GLUE`` [bool]_ - enables or disables additional checks on glue addresses
- ``QMIN`` [bool]_ - enables or disables query minimization respectively
- ``TRUST_ANCHORS`` - list of trust anchors in form of a DS records, see `scenario guide <doc/scenario_guide.rst>`_
- ``NEGATIVE_TRUST_ANCHORS`` - list of domain names with explicitly disabled DNSSEC validation
.. [bool] boolean expressed as string ``true``/``false``
...
...
pydnstest/scenario.py
View file @
fc5657f6
...
...
@@ -935,6 +935,7 @@ def parse_config(scn_cfg, qmin, installdir):
sockfamily
=
0
# auto-select value for socket.getaddrinfo
trust_anchor_list
=
[]
trust_anchor_files
=
{}
negative_ta_list
=
[]
stub_addr
=
None
override_timestamp
=
None
...
...
@@ -946,9 +947,11 @@ def parse_config(scn_cfg, qmin, installdir):
# Enable selectively for some tests
if
k
==
'do-not-query-localhost'
:
do_not_query_localhost
=
str2bool
(
v
)
if
k
==
'harden-glue'
:
elif
k
==
'domain-insecure'
:
negative_ta_list
.
append
(
v
)
elif
k
==
'harden-glue'
:
harden_glue
=
str2bool
(
v
)
if
k
==
'query-minimization'
:
el
if
k
==
'query-minimization'
:
qmin
=
str2bool
(
v
)
elif
k
==
'trust-anchor'
:
trust_anchor
=
v
.
strip
(
'"
\'
'
)
...
...
@@ -1000,9 +1003,12 @@ def parse_config(scn_cfg, qmin, installdir):
%
(
v
,
str
(
ex
)))
elif
k
==
'force-ipv6'
and
v
.
upper
()
==
'TRUE'
:
sockfamily
=
socket
.
AF_INET6
else
:
raise
NotImplementedError
(
'unsupported CONFIG key "%s"'
%
k
)
ctx
=
{
"DO_NOT_QUERY_LOCALHOST"
:
str
(
do_not_query_localhost
).
lower
(),
"NEGATIVE_TRUST_ANCHORS"
:
negative_ta_list
,
"FEATURES"
:
features
,
"HARDEN_GLUE"
:
str
(
harden_glue
).
lower
(),
"INSTALL_DIR"
:
installdir
,
...
...
sets/resolver/iter_badraw.rpl
View file @
fc5657f6
name: "."
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cname_badauth.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "3 2 1 0 0"
name: "."
;
target-fetch-policy: "3 2 1 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cname_cache.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cname_double.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cname_nx.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cname_qnamecopy.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cycle.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_cycle_noh.rpl
View file @
fc5657f6
; config options
harden-glue: "no"
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_domain_sale.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_domain_sale_nschange.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_donotq127.rpl
View file @
fc5657f6
; config options
name: "."
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_formerr.rpl
View file @
fc5657f6
; config options
harden-referral-path: no
target-fetch-policy: "0 0 0 0 0"
name: "."
;
harden-referral-path: no
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_hint_lame.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
; minimization does not affect priming query
query-minimization: off
...
...
sets/resolver/iter_lame_aaaa.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_lame_noaa.rpl
View file @
fc5657f6
; config options
harden-referral-path: no
target-fetch-policy: "0 0 0 0 0"
name: "."
;
harden-referral-path: no
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
; test with pre-scripted replies does not make sense with qmin
query-minimization: off
...
...
sets/resolver/iter_lame_nosoa.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_lamescrub.rpl
View file @
fc5657f6
; config options
name: "."
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_minim_a.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
;
target-fetch-policy: "0 0 0 0 0"
query-minimization: on
name: "."
;
name: "."
stub-addr: 127.0.0.10 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_minim_a_nxdomain.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
;
target-fetch-policy: "0 0 0 0 0"
query-minimization: on
name: "."
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_minim_nonempty.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
;
target-fetch-policy: "0 0 0 0 0"
query-minimization: on
name: "."
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_minim_ns.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
;
target-fetch-policy: "0 0 0 0 0"
query-minimization: on
name: "."
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_mod.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
module-config: "iterator"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
module-config: "iterator"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_multiple_A.rpl
View file @
fc5657f6
; config options
; The island of trust is at example.com
server:
;
server:
trust-anchor: "example.com. IN DS 438 10 2 33F8133EB48EDB093839E985600EB7B7009EB5AC312D11CCA9007F6B 71D94D7B"
val-override-date: "20160308103040"
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
...
...
sets/resolver/iter_ns_badaa.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "3 2 1 0 0"
name: "."
;
target-fetch-policy: "3 2 1 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_ns_badglue.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "3 2 1 0 0"
name: "."
;
target-fetch-policy: "3 2 1 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_ns_badip.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "3 2 1 0 0"
name: "."
;
target-fetch-policy: "3 2 1 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_ns_noglue.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "3 2 1 0 0"
name: "."
;
target-fetch-policy: "3 2 1 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_ns_spoof.rpl
View file @
fc5657f6
; config options
harden-referral-path: yes
target-fetch-policy: "0 0 0 0 0"
name: "."
;
harden-referral-path: yes
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pc_a.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pc_aaaa.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pcdirect.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pclame.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pcname.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pcnamech.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pcnamechrec.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_pcttl.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
do-ip6: no
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
do-ip6: no
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_reclame_one.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_reclame_two.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_recurse.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_refuse.rpl
View file @
fc5657f6
; config options
server:
;
server:
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_req_qname.rpl
View file @
fc5657f6
; config options
server:
target-fetch-policy: "0 0 0 0 0"
;
server:
;
target-fetch-policy: "0 0 0 0 0"
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_resolve.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_soamin.rpl
View file @
fc5657f6
; config options
target-fetch-policy: "0 0 0 0 0"
name: "."
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_tcbit.rpl
View file @
fc5657f6
; config options
harden-referral-path: no
target-fetch-policy: "0 0 0 0 0"
name: "."
;
harden-referral-path: no
;
target-fetch-policy: "0 0 0 0 0"
;
name: "."
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
CONFIG_END
...
...
sets/resolver/iter_validate.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5"
val-override-timestamp: "1437625000"
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 198.41.0.4 # a.root-servers.net.
CONFIG_END
...
...
sets/resolver/iter_validate_child_zone_noaddr.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5"
val-override-timestamp: "1441892800"
query-minimization: off
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 198.41.0.4 # a.root-servers.net.
CONFIG_END
...
...
sets/resolver/iter_validate_extradata.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5"
val-override-timestamp: "1437625000"
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 198.41.0.4 # a.root-servers.net.
CONFIG_END
...
...
sets/resolver/iter_validate_nsec_nxdomain.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5"
val-override-timestamp: "1438783903"
query-minimization: off
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 198.41.0.4 # a.root-servers.net.
CONFIG_END
...
...
sets/resolver/nsec3_wildcard_no_data_response.rpl
View file @
fc5657f6
; config options
server:
;
server:
stub-addr: 193.0.14.129
trust-anchor: ". 3600 IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5"
val-override-timestamp: "1450794800"
...
...
sets/resolver/nsec_name_error_response-part2.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 17272 13 4 B87AD8C76DC2244E7AA57285057BF533F2E248CC8D7E1A071D8A3837A711A5EA705C4707E6E8911DA653BE1AE019927B"
val-override-timestamp: "1442323400"
do-not-query-localhost: off
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 127.0.0.1 # ns.
CONFIG_END
...
...
sets/resolver/nsec_name_error_response.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 17272 13 4 B87AD8C76DC2244E7AA57285057BF533F2E248CC8D7E1A071D8A3837A711A5EA705C4707E6E8911DA653BE1AE019927B"
val-override-timestamp: "1442323400"
do-not-query-localhost: off
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 127.0.0.1 # ns.
CONFIG_END
...
...
sets/resolver/nsec_no_data_response.rpl
View file @
fc5657f6
; config options
server:
;
server:
trust-anchor: ". 3600 IN DS 17272 13 4 B87AD8C76DC2244E7AA57285057BF533F2E248CC8D7E1A071D8A3837A711A5EA705C4707E6E8911DA653BE1AE019927B"
val-override-timestamp: "1442839270"
do-not-query-localhost: off
stub-zone:
name: "."
;
stub-zone:
;
name: "."
stub-addr: 127.0.0.1 # ns.
CONFIG_END
...
...
sets/resolver/nsec_ref_to_unsigned1.rpl
View file @
fc5657f6
; config options
; The island of trust is at example.com
server:
;
server:
trust-anchor: "example.com. IN DS 438 10 2 33F8133EB48EDB093839E985600EB7B7009EB5AC312D11CCA9007F6B 71D94D7B"
val-override-date: "20160308103040"
stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
...
...
sets/resolver/nsec_ref_to_unsigned2.rpl
View file @
fc5657f6
; config options