Home Explore Help
Sign In
zorun
/
kea
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: dcd93a5689
Branches Tags
kea
/
tests
/
lettuce
/
features
/
xfrin_bind10.feature

xfrin_bind10.feature 4.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. Feature: Xfrin
    2. 

  2.     Tests for Xfrin, specific for BIND 10 behaviour.
    3. 

  3. 

  4.     Scenario: Retransfer command
    5. 

  5.     # Standard check to test (non-)existence of a file.
    6. 

  6.     # This file is actually automatically created.
    7. 

  7.     The file data/test_nonexistent_db.sqlite3 should not exist
    8. 

  8. 

  9.     Given I have bind10 running with configuration xfrin/retransfer_master.conf with cmdctl port 47804 as master
    10. 

  10.     And wait for master stderr message BIND10_STARTED_CC
    11. 

  11.     And wait for master stderr message CMDCTL_STARTED
    12. 

  12.     And wait for master stderr message AUTH_SERVER_STARTED
    13. 

  13.     And wait for master stderr message XFROUT_STARTED
    14. 

  14.     And wait for master stderr message ZONEMGR_STARTED
    15. 

  15. 

  16.     And I have bind10 running with configuration xfrin/retransfer_slave.conf
    17. 

  17.     And wait for bind10 stderr message BIND10_STARTED_CC
    18. 

  18.     And wait for bind10 stderr message CMDCTL_STARTED
    19. 

  19.     And wait for bind10 stderr message AUTH_SERVER_STARTED
    20. 

  20.     And wait for bind10 stderr message XFRIN_STARTED
    21. 

  21.     And wait for bind10 stderr message ZONEMGR_STARTED
    22. 

  22. 

  23.     # Now we use the first step again to see if the file has been created
    24. 

  24.     The file data/test_nonexistent_db.sqlite3 should exist
    25. 

  25. 

  26.     A query for www.example.org to [::1]:47806 should have rcode REFUSED
    27. 

  27.     When I send bind10 the command Xfrin retransfer example.org IN ::1 47807
    28. 

  28.     # The data we receive contain a NS RRset that refers to three names in the
    29. 

  29.     # example.org. zone. All these three are nonexistent in the data, producing
    30. 

  30.     # 3 separate warning messages in the log.
    31. 

  31.     And wait for new bind10 stderr message XFRIN_ZONE_WARN
    32. 

  32.     And wait for new bind10 stderr message XFRIN_ZONE_WARN
    33. 

  33.     And wait for new bind10 stderr message XFRIN_ZONE_WARN
    34. 

  34.     # But after complaining, the zone data should be accepted.
    35. 

  35.     Then wait for new bind10 stderr message XFRIN_TRANSFER_SUCCESS not XFRIN_XFR_PROCESS_FAILURE
    36. 

  36.     Then wait for new bind10 stderr message ZONEMGR_RECEIVE_XFRIN_SUCCESS
    37. 

  37.     A query for www.example.org to [::1]:47806 should have rcode NOERROR
    38. 

  38. 

  39.     # The transferred zone should have 11 non-NSEC3 RRs and 1 NSEC3 RR.
    40. 

  40.     # The following check will get these by AXFR, so the total # of RRs
    41. 

  41.     # should be 13, counting the duplicated SOA.
    42. 

  42.     # At this point we can confirm both in and out of AXFR for a zone
    43. 

  43.     # containing an NSEC3 RR.
    44. 

  44.     # We don't have to specify the address/port here; the defaults will work.
    45. 

  45.     When I do an AXFR transfer of example.org
    46. 

  46.     Then transfer result should have 13 rrs
    47. 

  47. 

  48. 

  49. 

  50.     Scenario: Transfer with TSIG
    51. 

  51.     # Similar setup to the test above, but this time, we add TSIG configuration
    52. 

  52. 

  53.     # In order to check that the tests don't give false positives because config
    54. 

  54.     # happens to be right (like no TSIG on either side), we take an existing
    55. 

  55.     # non-TSIG config, add TSIG on the master side, see it fail, add TSIG
    56. 

  56.     # on the slave side, then check again.
    57. 

  57. 

  58.     Given I have bind10 running with configuration xfrin/retransfer_master.conf with cmdctl port 47804 as master
    59. 

  59.     And wait for master stderr message AUTH_SERVER_STARTED
    60. 

  60.     And wait for master stderr message XFROUT_STARTED
    61. 

  61. 

  62.     And I have bind10 running with configuration xfrin/retransfer_slave.conf
    63. 

  63.     And wait for bind10 stderr message CMDCTL_STARTED
    64. 

  64.     And wait for bind10 stderr message XFRIN_STARTED
    65. 

  65. 

  66.     # Set slave config for 'automatic' xfrin
    67. 

  67.     When I set bind10 configuration Xfrin/zones to [{"master_port": 47806, "name": "example.org", "master_addr": "::1"}]
    68. 

  68. 

  69.     # Make sure it is fully open
    70. 

  70.     When I send bind10 the command Xfrin retransfer example.org
    71. 

  71.     Then wait for new bind10 stderr message XFRIN_TRANSFER_SUCCESS not XFRIN_XFR_PROCESS_FAILURE
    72. 

  72.     And wait for new bind10 stderr message ZONEMGR_RECEIVE_XFRIN_SUCCESS
    73. 

  73. 

  74.     # First to master, a transfer should then fail
    75. 

  75.     When I send bind10 the following commands with cmdctl port 47804:
    76. 

  76.     """
    77. 

  77.     config add tsig_keys/keys "example.key.:c2VjcmV0"
    78. 

  78.     config set Xfrout/zone_config[0]/transfer_acl [{"action": "ACCEPT", "from": "::1", "key": "example.key."}]
    79. 

  79.     config commit
    80. 

  80.     """
    81. 

  81. 

  82.     # Transfer should fail
    83. 

  83.     When I send bind10 the command Xfrin retransfer example.org
    84. 

  84.     Then wait for new bind10 stderr message XFRIN_XFR_TRANSFER_PROTOCOL_ERROR not XFRIN_TRANSFER_SUCCESS
    85. 

  85.     # Set client to use TSIG as well
    86. 

  86.     When I send bind10 the following commands:
    87. 

  87.     """
    88. 

  88.     config add tsig_keys/keys "example.key.:c2VjcmV0"
    89. 

  89.     config set Xfrin/zones[0]/tsig_key  "example.key."
    90. 

  90.     config commit
    91. 

  91.     """
    92. 

  92. 

  93.     # Transwer should succeed now
    94. 

  94.     When I send bind10 the command Xfrin retransfer example.org
    95. 

  95.     Then wait for new bind10 stderr message XFRIN_TRANSFER_SUCCESS not XFRIN_XFR_PROCESS_FAILURE
    96.