1 ; 2 ; DS match test file. 3 ; test matching of DS hash against DNSKEYs. 4 ; 5 ; enter ENTRYs with a DS and a DNSKEY. 6 ; These are matched against another. 7 ; If the query name starts with 'yes' then it must match. 8 ; If the query name starts with 'no' then it must not match. 9 10 ; These are SHA256 and SHA384 tests from the draft-ietf-dnsext-ecdsa-04 11 12 ENTRY_BEGIN 13 SECTION QUESTION 14 yes. IN A 15 SECTION ANSWER 16 example.net. 3600 IN DS 55648 13 2 ( b4c8c1fe2e7477127b27115656ad6256f424625bf5c1 e2770ce6d6e37df61d17 ) 17 example.net. 3600 IN DNSKEY 257 3 13 ( GojIhhXUN/u4v54ZQqGSnyhWJwaubCvTmeexv7bR6edb krSqQpF64cYbcB7wNcP+e+MAnLr+Wi9xMWyQLc8NAA== ) 18 ENTRY_END 19 20 ENTRY_BEGIN 21 SECTION QUESTION 22 yes. IN A 23 SECTION ANSWER 24 example.net. 3600 IN DS 10771 14 4 ( 72d7b62976ce06438e9c0bf319013cf801f09ecc84b8 d7e9495f27e305c6a9b0563a9b5f4d288405c3008a94 6df983d6 ) 25 example.net. 3600 IN DNSKEY 257 3 14 ( xKYaNhWdGOfJ+nPrL8/arkwf2EY3MDJ+SErKivBVSum1 w/egsXvSADtNJhyem5RCOpgQ6K8X1DRSEkrbYQ+OB+v8 /uX45NBwY8rp65F6Glur8I/mlVNgF6W/qTI37m40 ) 26 ENTRY_END 27 28 ; same entry as above, but corrupted by a change in the DS, MUST fail 29 ENTRY_BEGIN 30 SECTION QUESTION 31 no. IN A 32 SECTION ANSWER 33 example.net. 3600 IN DS 55648 13 2 ( b4c8c1fe2e7477126b27115656ad6256f424625bf5c1 e2770ce6d6e37df61d17 ) 34 example.net. 3600 IN DNSKEY 257 3 13 ( GojIhhXUN/u4v54ZQqGSnyhWJwaubCvTmeexv7bR6edb krSqQpF64cYbcB7wNcP+e+MAnLr+Wi9xMWyQLc8NAA== ) 35 ENTRY_END 36 37 ; same entry as above, but corrupted by a change in the DS, MUST fail 38 ENTRY_BEGIN 39 SECTION QUESTION 40 no. IN A 41 SECTION ANSWER 42 example.net. 3600 IN DS 10771 14 4 ( 72d7b62976ce06438e9c0cf319013cf801f09ecc84b8 d7e9495f27e305c6a9b0563a9b5f4d288405c3008a94 6df983d6 ) 43 example.net. 3600 IN DNSKEY 257 3 14 ( xKYaNhWdGOfJ+nPrL8/arkwf2EY3MDJ+SErKivBVSum1 w/egsXvSADtNJhyem5RCOpgQ6K8X1DRSEkrbYQ+OB+v8 /uX45NBwY8rp65F6Glur8I/mlVNgF6W/qTI37m40 ) 44 ENTRY_END 45 46
Indexes created Mon Mar 02 05:31:46 UTC 2026