Accueil Explorer Aide
Connexion
zorun
/
kea
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: cdf229b32e
Branches Tags
kea
/
tests
/
tools
/
badpacket
/
README

README 2.0 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 
  1. "badpacket" is a tool intended to test that a nameserver can cope with
    2. 

  2. incorrectly-formatted DNS messages.
    3. 

  3. 

  4. This particular incarnation of the tool allows the flags field of a DNS message
    5. 

  5. (the third and fourth bytes) to be set to any bit combination (including ones
    6. 

  6. that invalid in a query).  As well as setting the bits to a particular
    7. 

  7. combination, it is possible to specify ranges for bit/field values; when this
    8. 

  8. is done, the tool will send a set of packets so that each combination of flag
    9. 

  9. bits is checked.
    10. 

  10. 

  11. To illustrate this, consider the following command:
    12. 

  12. 

  13. badpacket --address 192.0.2.21 --port 5301 --aa 0-1 --cd 1
    14. 

  14.           --rc 0-2 ftp.example.com
    15. 

  15. 

  16. (The command has been split across two lines for clarity.)
    17. 

  17. 

  18. The address and port flags are self-evident.  The other flags specify settings
    19. 

  19. for the AA bit (0 and 1), CD bit (always 1) and the RCODE field (0, 1, 2). (The
    20. 

  20. remaining fields are not specified, so will always be zero.)  There are six
    21. 

  21. combinations of these values, so six packets will sent to the remote server with
    22. 

  22. the following settings:
    23. 

  23. 

  24. AA RCODE  CD Rest
    25. 

  25. 0    0    1   0
    26. 

  26. 0    1    1   0
    27. 

  27. 0    2    1   0
    28. 

  28. 1    0    1   0
    29. 

  29. 1    1    1   0
    30. 

  30. 1    2    1   0
    31. 

  31. 

  32. Each packet will cause a line to be output to stdout, which will have the
    33. 

  33. following form:
    34. 

  34. 

  35. SUCCESS: (QR:0 OP:0 AA:0 TC:0 RD:0 RA:0 Z:0 AD:0 CD:1 RC:0)
    36. 

  36.          (qr:1 op:0 aa:0 tc:0 rd:0 ra:1 z:0 ad:0 cd:1 rc:0)
    37. 

  37. 

  38. (Again the text has been split across two lines for clarity.)
    39. 

  39. 

  40. Each lines contains a status (SUCCESS indicates that a response was received,
    41. 

  41. regardless of the contents of the response), the state of the fields in the
    42. 

  42. flags word of the packet sent (in upper-case letters) and the state of the
    43. 

  43. fields in the flags word of the response (in lower-case letters).
    44. 

  44. 

  45. TODO: At the moment the tool is limited to just alerting the flags field.
    46. 

  46. Future work should extend the program to other bad packets. Ideas are:
    47. 

  47. 

  48. * Flasify the values in the various count fields
    49. 

  49. * Add data to sections that should be empty.
    50. 

  50. * Deliberately mangle the names placed in the message sections (e.g. by altering
    51. 

  51.   the label count fields).
    52.