1 1.1 christos ; config options 2 1.1 christos ; The island of trust is at example.com 3 1.1 christos server: 4 1.1 christos trust-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b" 5 1.1 christos val-override-date: "20070916134226" 6 1.1 christos target-fetch-policy: "0 0 0 0 0" 7 1.1 christos qname-minimisation: "no" 8 1.1 christos fake-sha1: yes 9 1.1 christos trust-anchor-signaling: no 10 1.1 christos minimal-responses: no 11 1.1 christos nsid: "ascii_hopsa kidee" 12 1.1 christos ede: yes 13 1.1.1.2 christos access-control: 127.0.0.0/8 allow_snoop 14 1.1 christos 15 1.1 christos stub-zone: 16 1.1 christos name: "." 17 1.1 christos stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET. 18 1.1 christos CONFIG_END 19 1.1 christos 20 1.1 christos SCENARIO_BEGIN Test for NSID in SERVFAIL response due to DNSSEC bogus 21 1.1 christos 22 1.1 christos ; K.ROOT-SERVERS.NET. 23 1.1 christos RANGE_BEGIN 0 100 24 1.1 christos ADDRESS 193.0.14.129 25 1.1 christos ENTRY_BEGIN 26 1.1 christos MATCH opcode qtype qname 27 1.1 christos ADJUST copy_id 28 1.1 christos REPLY QR NOERROR 29 1.1 christos SECTION QUESTION 30 1.1 christos . IN NS 31 1.1 christos SECTION ANSWER 32 1.1 christos . IN NS K.ROOT-SERVERS.NET. 33 1.1 christos SECTION ADDITIONAL 34 1.1 christos K.ROOT-SERVERS.NET. IN A 193.0.14.129 35 1.1 christos ENTRY_END 36 1.1 christos 37 1.1 christos ENTRY_BEGIN 38 1.1 christos MATCH opcode qtype qname 39 1.1 christos ADJUST copy_id 40 1.1 christos REPLY QR NOERROR 41 1.1 christos SECTION QUESTION 42 1.1 christos www.example.com. IN A 43 1.1 christos SECTION AUTHORITY 44 1.1 christos com. IN NS a.gtld-servers.net. 45 1.1 christos SECTION ADDITIONAL 46 1.1 christos a.gtld-servers.net. IN A 192.5.6.30 47 1.1 christos ENTRY_END 48 1.1 christos RANGE_END 49 1.1 christos 50 1.1 christos ; a.gtld-servers.net. 51 1.1 christos RANGE_BEGIN 0 100 52 1.1 christos ADDRESS 192.5.6.30 53 1.1 christos ENTRY_BEGIN 54 1.1 christos MATCH opcode qtype qname 55 1.1 christos ADJUST copy_id 56 1.1 christos REPLY QR NOERROR 57 1.1 christos SECTION QUESTION 58 1.1 christos com. IN NS 59 1.1 christos SECTION ANSWER 60 1.1 christos com. IN NS a.gtld-servers.net. 61 1.1 christos SECTION ADDITIONAL 62 1.1 christos a.gtld-servers.net. IN A 192.5.6.30 63 1.1 christos ENTRY_END 64 1.1 christos 65 1.1 christos ENTRY_BEGIN 66 1.1 christos MATCH opcode qtype qname 67 1.1 christos ADJUST copy_id 68 1.1 christos REPLY QR NOERROR 69 1.1 christos SECTION QUESTION 70 1.1 christos www.example.com. IN A 71 1.1 christos SECTION AUTHORITY 72 1.1 christos example.com. IN NS ns.example.com. 73 1.1 christos SECTION ADDITIONAL 74 1.1 christos ns.example.com. IN A 1.2.3.4 75 1.1 christos ENTRY_END 76 1.1 christos RANGE_END 77 1.1 christos 78 1.1 christos ; ns.example.com. 79 1.1 christos RANGE_BEGIN 0 100 80 1.1 christos ADDRESS 1.2.3.4 81 1.1 christos ENTRY_BEGIN 82 1.1 christos MATCH opcode qtype qname 83 1.1 christos ADJUST copy_id 84 1.1 christos REPLY QR NOERROR 85 1.1 christos SECTION QUESTION 86 1.1 christos example.com. IN NS 87 1.1 christos SECTION ANSWER 88 1.1 christos example.com. IN NS ns.example.com. 89 1.1 christos example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854} 90 1.1 christos SECTION ADDITIONAL 91 1.1 christos ns.example.com. IN A 1.2.3.4 92 1.1 christos ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854} 93 1.1 christos ENTRY_END 94 1.1 christos 95 1.1 christos ; response to DNSKEY priming query 96 1.1 christos ENTRY_BEGIN 97 1.1 christos MATCH opcode qtype qname 98 1.1 christos ADJUST copy_id 99 1.1 christos REPLY QR NOERROR 100 1.1 christos SECTION QUESTION 101 1.1 christos example.com. IN DNSKEY 102 1.1 christos SECTION ANSWER 103 1.1 christos example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b} 104 1.1 christos example.com. 3600 IN RRSIG DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854} 105 1.1 christos SECTION AUTHORITY 106 1.1 christos example.com. IN NS ns.example.com. 107 1.1 christos example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854} 108 1.1 christos SECTION ADDITIONAL 109 1.1 christos ns.example.com. IN A 1.2.3.4 110 1.1 christos ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854} 111 1.1 christos ENTRY_END 112 1.1 christos 113 1.1 christos ; nodata for ns.example.com AAAA 114 1.1 christos ENTRY_BEGIN 115 1.1 christos MATCH opcode qtype qname 116 1.1 christos ADJUST copy_id 117 1.1 christos REPLY QR AA NOERROR 118 1.1 christos SECTION QUESTION 119 1.1 christos ns.example.com. IN AAAA 120 1.1 christos SECTION ANSWER 121 1.1.1.2 christos SECTION AUTHORITY 122 1.1.1.2 christos example.com. 3600 IN SOA ns.example.com. root.example.com. 4 1440 0 3600 604800 3600 123 1.1.1.2 christos example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AC23LvSspto6Zqctz05urK/2OKTnB+7nppMKInYkyjZbZotq2wjJA9s= 124 1.1 christos SECTION ADDITIONAL 125 1.1 christos ENTRY_END 126 1.1 christos 127 1.1 christos 128 1.1 christos ; response to query of interest 129 1.1 christos ENTRY_BEGIN 130 1.1 christos MATCH opcode qtype qname 131 1.1 christos ADJUST copy_id 132 1.1 christos REPLY QR NOERROR 133 1.1 christos SECTION QUESTION 134 1.1 christos www.example.com. IN A 135 1.1 christos SECTION ANSWER 136 1.1 christos www.example.com. IN A 10.20.30.40 137 1.1 christos ;good signature 138 1.1 christos ;www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= ;{id = 2854} 139 1.1 christos ;missing 140 1.1 christos www.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2855 example.com. MC0CFC99iE9K5y2WNgI0gFvBWaTi9wm6AhUAoUqOpDtG5Zct+Qr9F3mSdnbc6V4= 141 1.1 christos SECTION AUTHORITY 142 1.1 christos example.com. IN NS ns.example.com. 143 1.1 christos example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854} 144 1.1 christos SECTION ADDITIONAL 145 1.1 christos ns.example.com. IN A 1.2.3.4 146 1.1 christos ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCQMyTjn7WWwpwAR1LlVeLpRgZGuQIUCcJDEkwAuzytTDRlYK7nIMwH1CM= ;{id = 2854} 147 1.1 christos ENTRY_END 148 1.1 christos RANGE_END 149 1.1 christos 150 1.1 christos STEP 1 QUERY 151 1.1 christos ENTRY_BEGIN 152 1.1 christos REPLY RD DO 153 1.1 christos SECTION QUESTION 154 1.1 christos www.example.com. IN A 155 1.1 christos SECTION ADDITIONAL 156 1.1 christos HEX_EDNSDATA_BEGIN 157 1.1 christos 00 03 ; Opcode NSID (3) 158 1.1 christos 00 00 ; Length 0 159 1.1 christos HEX_EDNSDATA_END 160 1.1 christos ENTRY_END 161 1.1 christos 162 1.1 christos ; recursion happens here. 163 1.1 christos STEP 10 CHECK_ANSWER 164 1.1 christos ENTRY_BEGIN 165 1.1 christos MATCH all ede=9 166 1.1 christos REPLY QR RD RA DO SERVFAIL 167 1.1 christos SECTION QUESTION 168 1.1 christos www.example.com. IN A 169 1.1 christos SECTION ANSWER 170 1.1 christos SECTION ADDITIONAL 171 1.1 christos HEX_EDNSDATA_BEGIN 172 1.1 christos 00 03 ; Opcode NSID (3) 173 1.1 christos 00 0b ; Length 11 174 1.1 christos 68 6F 70 73 61 20 ; "hopsa " 175 1.1 christos 6B 69 64 65 65 ; "kidee" 176 1.1 christos HEX_EDNSDATA_END 177 1.1 christos ENTRY_END 178 1.1 christos 179 1.1.1.2 christos ; Redo the query without RD to check EDE caching. 180 1.1.1.2 christos STEP 11 QUERY 181 1.1.1.2 christos ENTRY_BEGIN 182 1.1.1.2 christos REPLY DO 183 1.1.1.2 christos SECTION QUESTION 184 1.1.1.2 christos www.example.com. IN A 185 1.1.1.2 christos SECTION ADDITIONAL 186 1.1.1.2 christos HEX_EDNSDATA_BEGIN 187 1.1.1.2 christos 00 03 ; Opcode NSID (3) 188 1.1.1.2 christos 00 00 ; Length 0 189 1.1.1.2 christos HEX_EDNSDATA_END 190 1.1.1.2 christos ENTRY_END 191 1.1.1.2 christos 192 1.1.1.2 christos STEP 12 CHECK_ANSWER 193 1.1.1.2 christos ENTRY_BEGIN 194 1.1.1.2 christos MATCH all ede=9 195 1.1.1.2 christos REPLY QR RA DO SERVFAIL 196 1.1.1.2 christos SECTION QUESTION 197 1.1.1.2 christos www.example.com. IN A 198 1.1.1.2 christos SECTION ANSWER 199 1.1.1.2 christos SECTION ADDITIONAL 200 1.1.1.2 christos HEX_EDNSDATA_BEGIN 201 1.1.1.2 christos 00 03 ; Opcode NSID (3) 202 1.1.1.2 christos 00 0b ; Length 11 203 1.1.1.2 christos 68 6F 70 73 61 20 ; "hopsa " 204 1.1.1.2 christos 6B 69 64 65 65 ; "kidee" 205 1.1.1.2 christos HEX_EDNSDATA_END 206 1.1.1.2 christos ENTRY_END 207 1.1.1.2 christos 208 1.1 christos SCENARIO_END 209
Indexes created Sat Jun 27 00:24:51 UTC 2026