1 ; config options 2 ; The island of trust is at example.com 3 server: 4 trust-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b" 5 val-override-date: "20070916134226" 6 target-fetch-policy: "0 0 0 0 0" 7 qname-minimisation: "no" 8 fake-sha1: yes 9 trust-anchor-signaling: no 10 11 stub-zone: 12 name: "." 13 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET. 14 CONFIG_END 15 16 SCENARIO_BEGIN Test validator with a dname used twice 17 18 ; K.ROOT-SERVERS.NET. 19 RANGE_BEGIN 0 100 20 ADDRESS 193.0.14.129 21 ENTRY_BEGIN 22 MATCH opcode qtype qname 23 ADJUST copy_id 24 REPLY QR NOERROR 25 SECTION QUESTION 26 . IN NS 27 SECTION ANSWER 28 . IN NS K.ROOT-SERVERS.NET. 29 SECTION ADDITIONAL 30 K.ROOT-SERVERS.NET. IN A 193.0.14.129 31 ENTRY_END 32 33 ENTRY_BEGIN 34 MATCH opcode subdomain 35 ADJUST copy_id copy_query 36 REPLY QR NOERROR 37 SECTION QUESTION 38 com. IN NS 39 SECTION AUTHORITY 40 com. IN NS a.gtld-servers.net. 41 SECTION ADDITIONAL 42 a.gtld-servers.net. IN A 192.5.6.30 43 ENTRY_END 44 RANGE_END 45 46 ; a.gtld-servers.net. 47 RANGE_BEGIN 0 100 48 ADDRESS 192.5.6.30 49 ENTRY_BEGIN 50 MATCH opcode qtype qname 51 ADJUST copy_id 52 REPLY QR NOERROR 53 SECTION QUESTION 54 com. IN NS 55 SECTION ANSWER 56 com. IN NS a.gtld-servers.net. 57 SECTION ADDITIONAL 58 a.gtld-servers.net. IN A 192.5.6.30 59 ENTRY_END 60 61 ENTRY_BEGIN 62 MATCH opcode subdomain 63 ADJUST copy_id copy_query 64 REPLY QR NOERROR 65 SECTION QUESTION 66 example.com. IN NS 67 SECTION AUTHORITY 68 example.com. IN NS ns.example.com. 69 SECTION ADDITIONAL 70 ns.example.com. IN A 1.2.3.4 71 ENTRY_END 72 RANGE_END 73 74 ; ns.example.com. 75 RANGE_BEGIN 0 100 76 ADDRESS 1.2.3.4 77 ENTRY_BEGIN 78 MATCH opcode qtype qname 79 ADJUST copy_id 80 REPLY QR NOERROR 81 SECTION QUESTION 82 example.com. IN NS 83 SECTION ANSWER 84 example.com. IN NS ns.example.com. 85 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854} 86 SECTION ADDITIONAL 87 ns.example.com. IN A 1.2.3.4 88 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854} 89 ENTRY_END 90 91 ; response to DNSKEY priming query 92 ENTRY_BEGIN 93 MATCH opcode qtype qname 94 ADJUST copy_id 95 REPLY QR NOERROR 96 SECTION QUESTION 97 example.com. IN DNSKEY 98 SECTION ANSWER 99 example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b} 100 example.com. 3600 IN RRSIG DNSKEY DSA 2 3600 20070926134150 20070829134150 2854 example.com. MCwCFBQRtlR4BEv9ohi+PGFjp+AHsJuHAhRCvz0shggvnvI88DFnBDCczHUcVA== ;{id = 2854} 101 SECTION AUTHORITY 102 example.com. IN NS ns.example.com. 103 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854} 104 SECTION ADDITIONAL 105 ns.example.com. IN A 1.2.3.4 106 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854} 107 ENTRY_END 108 109 ; response to query of interest 110 ENTRY_BEGIN 111 MATCH opcode qtype qname 112 ADJUST copy_id 113 REPLY QR AA NOERROR 114 SECTION QUESTION 115 a.a.test-dname-2.example.com. IN A 116 SECTION ANSWER 117 test-dname-2.example.com. 3600 IN DNAME test-2.example.com. 118 test-dname-2.example.com. 3600 IN RRSIG DNAME 3 3 3600 20070926134150 20070829134150 2854 example.com. AB9F05uhCzJ0hFbu/033nWLEMDoDrIY1PL69PsD9kMUuyzT4irnUlGY= 119 ; unsigned CNAME 120 a.a.test-dname-2.example.com. IN CNAME a.a.test-2.example.com. 121 ENTRY_END 122 123 ENTRY_BEGIN 124 MATCH opcode qtype qname 125 ADJUST copy_id 126 REPLY QR AA NOERROR 127 SECTION QUESTION 128 a.a.test-2.example.com. IN A 129 SECTION ANSWER 130 a.a.test-2.example.com. 3600 IN CNAME a.test-dname-2.example.com. 131 a.a.test-2.example.com. 3600 IN RRSIG CNAME 3 5 3600 20070926134150 20070829134150 2854 example.com. AECBiHVJ8qaSV3sC7LcOlSF2W4b9JD+g44fQ2EvkKqGJVUJfa6840i8= 132 ENTRY_END 133 134 ENTRY_BEGIN 135 MATCH opcode qtype qname 136 ADJUST copy_id 137 REPLY QR AA NOERROR 138 SECTION QUESTION 139 a.test-dname-2.example.com. IN A 140 SECTION ANSWER 141 test-dname-2.example.com. 3600 IN DNAME test-2.example.com. 142 test-dname-2.example.com. 3600 IN RRSIG DNAME 3 3 3600 20070926134150 20070829134150 2854 example.com. AB9F05uhCzJ0hFbu/033nWLEMDoDrIY1PL69PsD9kMUuyzT4irnUlGY= 143 ; unsigned CNAME 144 a.test-dname-2.example.com. IN CNAME a.test-2.example.com. 145 SECTION AUTHORITY 146 snow.example.com. 3600 IN NSEC a.a.test-2.example.com. A AAAA RRSIG NSEC 147 snow.example.com. 3600 IN RRSIG NSEC 3 3 3600 20070926134150 20070829134150 2854 example.com. AHy/eDMTc5D7Q7Svh/B/r/twvHn8GTzYgSwO1jFasFrb2Gmtk8waXaM= 148 ENTRY_END 149 150 ENTRY_BEGIN 151 MATCH opcode qtype qname 152 ADJUST copy_id 153 REPLY QR AA NOERROR 154 SECTION QUESTION 155 a.test-2.example.com. IN A 156 SECTION ANSWER 157 SECTION AUTHORITY 158 example.com. 3600 IN SOA ns.example.com. root.example.com. 1 3600 300 7200 3600 159 example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AEO4JOt/lNSVk3InhQz4MvUXll2vOOuZklfB7HpnW45kvEqHsqfWuNw= 160 snow.example.com. 3600 IN NSEC a.a.test-2.example.com. A AAAA RRSIG NSEC 161 snow.example.com. 3600 IN RRSIG NSEC 3 3 3600 20070926134150 20070829134150 2854 example.com. AHy/eDMTc5D7Q7Svh/B/r/twvHn8GTzYgSwO1jFasFrb2Gmtk8waXaM= 162 ENTRY_END 163 RANGE_END 164 165 STEP 1 QUERY 166 ENTRY_BEGIN 167 REPLY RD DO 168 SECTION QUESTION 169 a.a.test-dname-2.example.com. IN A 170 ENTRY_END 171 172 ; recursion happens here. 173 STEP 10 CHECK_ANSWER 174 ENTRY_BEGIN 175 MATCH all ttl 176 REPLY QR RD RA AD DO NOERROR 177 SECTION QUESTION 178 a.a.test-dname-2.example.com. IN A 179 SECTION ANSWER 180 test-dname-2.example.com. 3600 IN DNAME test-2.example.com. 181 test-dname-2.example.com. 3600 IN RRSIG DNAME 3 3 3600 20070926134150 20070829134150 2854 example.com. AB9F05uhCzJ0hFbu/033nWLEMDoDrIY1PL69PsD9kMUuyzT4irnUlGY= ;{id = 2854} 182 a.a.test-dname-2.example.com. 3600 IN CNAME a.a.test-2.example.com. 183 a.a.test-2.example.com. 3600 IN CNAME a.test-dname-2.example.com. 184 a.a.test-2.example.com. 3600 IN RRSIG CNAME 3 5 3600 20070926134150 20070829134150 2854 example.com. AECBiHVJ8qaSV3sC7LcOlSF2W4b9JD+g44fQ2EvkKqGJVUJfa6840i8= ;{id = 2854} 185 a.test-dname-2.example.com. 3600 IN CNAME a.test-2.example.com. 186 187 SECTION AUTHORITY 188 example.com. 3600 IN SOA ns.example.com. root.example.com. 1 3600 300 7200 3600 189 example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AEO4JOt/lNSVk3InhQz4MvUXll2vOOuZklfB7HpnW45kvEqHsqfWuNw= ;{id = 2854} 190 snow.example.com. 3600 IN NSEC a.a.test-2.example.com. A AAAA RRSIG NSEC 191 snow.example.com. 3600 IN RRSIG NSEC 3 3 3600 20070926134150 20070829134150 2854 example.com. AHy/eDMTc5D7Q7Svh/B/r/twvHn8GTzYgSwO1jFasFrb2Gmtk8waXaM= ;{id = 2854} 192 ENTRY_END 193 194 ; Check cache response for DNAME 195 ; so 100+ the authority will not respond any more : must be from cache. 196 STEP 110 TIME_PASSES ELAPSE 10 197 198 STEP 120 QUERY 199 ENTRY_BEGIN 200 REPLY RD DO 201 SECTION QUESTION 202 a.a.test-dname-2.example.com. IN A 203 ENTRY_END 204 205 STEP 130 CHECK_ANSWER 206 ENTRY_BEGIN 207 MATCH all ttl 208 REPLY QR RD RA AD DO NOERROR 209 SECTION QUESTION 210 a.a.test-dname-2.example.com. IN A 211 SECTION ANSWER 212 test-dname-2.example.com. 3590 IN DNAME test-2.example.com. 213 test-dname-2.example.com. 3590 IN RRSIG DNAME 3 3 3600 20070926134150 20070829134150 2854 example.com. AB9F05uhCzJ0hFbu/033nWLEMDoDrIY1PL69PsD9kMUuyzT4irnUlGY= ;{id = 2854} 214 a.a.test-dname-2.example.com. 3590 IN CNAME a.a.test-2.example.com. 215 a.a.test-2.example.com. 3590 IN CNAME a.test-dname-2.example.com. 216 a.a.test-2.example.com. 3590 IN RRSIG CNAME 3 5 3600 20070926134150 20070829134150 2854 example.com. AECBiHVJ8qaSV3sC7LcOlSF2W4b9JD+g44fQ2EvkKqGJVUJfa6840i8= ;{id = 2854} 217 a.test-dname-2.example.com. 3590 IN CNAME a.test-2.example.com. 218 219 SECTION AUTHORITY 220 example.com. 3590 IN SOA ns.example.com. root.example.com. 1 3600 300 7200 3600 221 example.com. 3590 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AEO4JOt/lNSVk3InhQz4MvUXll2vOOuZklfB7HpnW45kvEqHsqfWuNw= ;{id = 2854} 222 snow.example.com. 3590 IN NSEC a.a.test-2.example.com. A AAAA RRSIG NSEC 223 snow.example.com. 3590 IN RRSIG NSEC 3 3 3600 20070926134150 20070829134150 2854 example.com. AHy/eDMTc5D7Q7Svh/B/r/twvHn8GTzYgSwO1jFasFrb2Gmtk8waXaM= ;{id = 2854} 224 ENTRY_END 225 226 SCENARIO_END 227
Indexes created Mon Jun 01 00:24:59 UTC 2026