Accueil Explorer Aide
Connexion
zorun
/
kea
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: 46dba3a3c6
Branches Tags
kea
/
tests
/
lettuce
/
features
/
xfrin_bind10.feature

xfrin_bind10.feature 4.1 KB
Historique Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. Feature: Xfrin
    2. 

  2.     Tests for Xfrin, specific for BIND 10 behaviour.
    3. 

  3. 

  4.     Scenario: Retransfer command
    5. 

  5.     # Standard check to test (non-)existence of a file.
    6. 

  6.     # This file is actually automatically created.
    7. 

  7.     The file data/test_nonexistent_db.sqlite3 should not exist
    8. 

  8. 

  9.     Given I have bind10 running with configuration xfrin/retransfer_master.conf with cmdctl port 47804 as master
    10. 

  10.     And wait for master stderr message BIND10_STARTED_CC
    11. 

  11.     And wait for master stderr message CMDCTL_STARTED
    12. 

  12.     And wait for master stderr message AUTH_SERVER_STARTED
    13. 

  13.     And wait for master stderr message XFROUT_STARTED
    14. 

  14.     And wait for master stderr message ZONEMGR_STARTED
    15. 

  15. 

  16.     And I have bind10 running with configuration xfrin/retransfer_slave.conf
    17. 

  17.     And wait for bind10 stderr message BIND10_STARTED_CC
    18. 

  18.     And wait for bind10 stderr message CMDCTL_STARTED
    19. 

  19.     And wait for bind10 stderr message AUTH_SERVER_STARTED
    20. 

  20.     And wait for bind10 stderr message XFRIN_STARTED
    21. 

  21.     And wait for bind10 stderr message ZONEMGR_STARTED
    22. 

  22. 

  23.     # Now we use the first step again to see if the file has been created
    24. 

  24.     The file data/test_nonexistent_db.sqlite3 should exist
    25. 

  25. 

  26.     A query for www.example.org to [::1]:47806 should have rcode REFUSED
    27. 

  27.     When I send bind10 the command Xfrin retransfer example.org IN ::1 47807
    28. 

  28.     Then wait for new bind10 stderr message XFRIN_TRANSFER_SUCCESS not XFRIN_XFR_PROCESS_FAILURE
    29. 

  29.     Then wait for new bind10 stderr message ZONEMGR_RECEIVE_XFRIN_SUCCESS
    30. 

  30.     A query for www.example.org to [::1]:47806 should have rcode NOERROR
    31. 

  31. 

  32.     # The transferred zone should have 11 non-NSEC3 RRs and 1 NSEC3 RR.
    33. 

  33.     # The following check will get these by AXFR, so the total # of RRs
    34. 

  34.     # should be 13, counting the duplicated SOA.
    35. 

  35.     # At this point we can confirm both in and out of AXFR for a zone
    36. 

  36.     # containing an NSEC3 RR.
    37. 

  37.     # We don't have to specify the address/port here; the defaults will work.
    38. 

  38.     When I do an AXFR transfer of example.org
    39. 

  39.     Then transfer result should have 13 rrs
    40. 

  40. 

  41. 

  42. 

  43.     Scenario: Transfer with TSIG
    44. 

  44.     # Similar setup to the test above, but this time, we add TSIG configuration
    45. 

  45. 

  46.     # In order to check that the tests don't give false positives because config
    47. 

  47.     # happens to be right (like no TSIG on either side), we take an existing
    48. 

  48.     # non-TSIG config, add TSIG on the master side, see it fail, add TSIG
    49. 

  49.     # on the slave side, then check again.
    50. 

  50. 

  51.     Given I have bind10 running with configuration xfrin/retransfer_master.conf with cmdctl port 47804 as master
    52. 

  52.     And wait for master stderr message AUTH_SERVER_STARTED
    53. 

  53.     And wait for master stderr message XFROUT_STARTED
    54. 

  54. 

  55.     And I have bind10 running with configuration xfrin/retransfer_slave.conf
    56. 

  56.     And wait for bind10 stderr message CMDCTL_STARTED
    57. 

  57.     And wait for bind10 stderr message XFRIN_STARTED
    58. 

  58. 

  59.     # Set slave config for 'automatic' xfrin
    60. 

  60.     When I set bind10 configuration Xfrin/zones to [{"master_port": 47806, "name": "example.org", "master_addr": "::1"}]
    61. 

  61. 

  62.     # Make sure it is fully open
    63. 

  63.     When I send bind10 the command Xfrin retransfer example.org
    64. 

  64.     Then wait for new bind10 stderr message XFRIN_TRANSFER_SUCCESS not XFRIN_XFR_PROCESS_FAILURE
    65. 

  65.     And wait for new bind10 stderr message ZONEMGR_RECEIVE_XFRIN_SUCCESS
    66. 

  66. 

  67.     # First to master, a transfer should then fail
    68. 

  68.     When I send bind10 the following commands with cmdctl port 47804:
    69. 

  69.     """
    70. 

  70.     config add tsig_keys/keys "example.key.:c2VjcmV0"
    71. 

  71.     config set Xfrout/zone_config[0]/transfer_acl [{"action": "ACCEPT", "from": "::1", "key": "example.key."}]
    72. 

  72.     config commit
    73. 

  73.     """
    74. 

  74. 

  75.     # Transfer should fail
    76. 

  76.     When I send bind10 the command Xfrin retransfer example.org
    77. 

  77.     Then wait for new bind10 stderr message XFRIN_XFR_TRANSFER_PROTOCOL_ERROR not XFRIN_TRANSFER_SUCCESS
    78. 

  78.     # Set client to use TSIG as well
    79. 

  79.     When I send bind10 the following commands:
    80. 

  80.     """
    81. 

  81.     config add tsig_keys/keys "example.key.:c2VjcmV0"
    82. 

  82.     config set Xfrin/zones[0]/tsig_key  "example.key.:c2VjcmV0"
    83. 

  83.     config commit
    84. 

  84.     """
    85. 

  85. 

  86.     # Transwer should succeed now
    87. 

  87.     When I send bind10 the command Xfrin retransfer example.org
    88. 

  88.     Then wait for new bind10 stderr message XFRIN_TRANSFER_SUCCESS not XFRIN_XFR_PROCESS_FAILURE
    89.