mirror of
https://github.com/NLnetLabs/unbound.git
synced 2026-02-18 18:25:10 -05:00
165 lines
4.5 KiB
Groff
165 lines
4.5 KiB
Groff
# Test with algorithm MD5
|
|
file-algorithm md5
|
|
|
|
tsig-key:
|
|
name: "test.key"
|
|
algorithm: md5
|
|
secret: "K2tf3TRjvQkVCmJF3/Z9vA=="
|
|
|
|
packet
|
|
# www.example.net. IN TXT
|
|
3a03010000010000000000000377777707657861
|
|
6d706c65036e65740000100001
|
|
endpacket
|
|
|
|
# check with the same contents
|
|
check-packet
|
|
3a03010000010000000000000377777707657861
|
|
6d706c65036e65740000100001
|
|
endpacket
|
|
|
|
# sign the query with <key> <timepoint> <expected function ret>
|
|
tsig-sign-query test.key 1750411954 1
|
|
|
|
check-packet
|
|
3a03010000010000000000010377777707657861
|
|
6d706c65036e657400001000010474657374036b
|
|
65790000fa00ff00000000003a08686d61632d6d
|
|
6435077369672d616c670372656703696e740000
|
|
0068552ab2012c0010d4a4778ce91160dc5dfd85
|
|
7e66f57bda3a0300000000
|
|
endpacket
|
|
|
|
# www.example.net A
|
|
packet
|
|
e707002000010000000000010377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
00000000
|
|
endpacket
|
|
|
|
tsig-sign-query test.key 1750419725 1
|
|
|
|
check-packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query test.key 1750419725 NOERROR NOERROR 0
|
|
|
|
# add some fudge to the time
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query test.key 1750419730 NOERROR NOERROR 0
|
|
|
|
# purposely make a bad digest
|
|
# changed 'www' (0x777777) to 'aaa' (0x616161)
|
|
packet
|
|
e707002000010000000000020361616107657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query test.key 1750419725 NOTAUTH BADSIG 0
|
|
|
|
# the wrong time is used, outside of the fudge region
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query test.key 1750819725 NOTAUTH BADTIME 1750819725
|
|
|
|
# An unknown key is used, 2222.key
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000432323232036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query 2222.key 1750419725 NOTAUTH BADKEY 0
|
|
|
|
# An unknown algorithm is used, hmac-UNK, 554e4b
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d554e4b077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query test.key 1750419725 NOTAUTH BADKEY 0
|
|
|
|
# truncated hash
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003408686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c000a
|
|
c00e00f1bafa240f41eee7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-verify-query test.key 1750419725 NOTAUTH BADTRUNC 0
|
|
|
|
# TSIG does not parse, removed bytes from the end.
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802
|
|
endpacket
|
|
|
|
tsig-verify-query . 1750419725 FORMERR NOERROR 0
|
|
|
|
# www.example.net A
|
|
packet
|
|
e707002000010000000000020377777707657861
|
|
6d706c65036e6574000001000100002910000000
|
|
000000000474657374036b65790000fa00ff0000
|
|
0000003a08686d61632d6d6435077369672d616c
|
|
670372656703696e740000006855490d012c0010
|
|
c00e00f1bafa240f41ee9cbe507b9802e7070000
|
|
0000
|
|
endpacket
|
|
|
|
tsig-sign-reply 1750419725 NOERROR 1
|
|
e707840000010001000000010377777707657861
|
|
6d706c65036e65740000010001c00c0001000100
|
|
000e1000040a141e2800002904d0000000000000
|
|
endpacket
|
|
|
|
# reply for www.example.net A
|
|
check-packet
|
|
e7078400000100010000000203777777076578616d706c65036e65740000010001c00c0001000100000e1000040a141e2800002904d00000000000000474657374036b65790000fa00ff00000000003a08686d61632d6d6435077369672d616c670372656703696e740000006855490d012c0010dc3c138476fcb04cc138aa5c59647b86e70700000000
|
|
endpacket
|