aboutsummaryrefslogtreecommitdiff
path: root/plugin/dnssec/dnssec_test.go
diff options
context:
space:
mode:
authorGravatar Isolus <mail@bjoern-kinscher.de> 2017-10-08 13:28:35 +0200
committerGravatar Miek Gieben <miek@miek.nl> 2017-10-08 04:28:35 -0700
commitc1b9f74f98d2c3b65b026e8de06da7b1c4f41c7e (patch)
tree699aaef8eeb54099cf444d4560e1e0fc57f0e516 /plugin/dnssec/dnssec_test.go
parentc9bf91f1a737ea721b44328ee7755570dd0b115a (diff)
downloadcoredns-c1b9f74f98d2c3b65b026e8de06da7b1c4f41c7e.tar.gz
coredns-c1b9f74f98d2c3b65b026e8de06da7b1c4f41c7e.tar.zst
coredns-c1b9f74f98d2c3b65b026e8de06da7b1c4f41c7e.zip
plugin/dnssec: fix NSEC-records (#1138)
* add NSEC-records if entry exists but the requested type is missing * added test for dnssec fix
Diffstat (limited to 'plugin/dnssec/dnssec_test.go')
-rw-r--r--plugin/dnssec/dnssec_test.go21
1 files changed, 21 insertions, 0 deletions
diff --git a/plugin/dnssec/dnssec_test.go b/plugin/dnssec/dnssec_test.go
index 83ce70beb..34c9bf331 100644
--- a/plugin/dnssec/dnssec_test.go
+++ b/plugin/dnssec/dnssec_test.go
@@ -127,6 +127,20 @@ func TestSigningDname(t *testing.T) {
}
}
+func TestSigningEmpty(t *testing.T) {
+ d, rm1, rm2 := newDnssec(t, []string{"miek.nl."})
+ defer rm1()
+ defer rm2()
+
+ m := testEmptyMsg()
+ m.SetQuestion("a.miek.nl.", dns.TypeA)
+ state := request.Request{Req: m}
+ m = d.Sign(state, "miek.nl.", time.Now().UTC())
+ if !section(m.Ns, 2) {
+ t.Errorf("authority section should have 2 sig")
+ }
+}
+
func section(rss []dns.RR, nrSigs int) bool {
i := 0
for _, r := range rss {
@@ -181,6 +195,13 @@ func testMsgDname() *dns.Msg {
}
}
+func testEmptyMsg() *dns.Msg {
+ // don't care about the message header
+ return &dns.Msg{
+ Ns: []dns.RR{test.SOA("miek.nl. 1800 IN SOA ns.miek.nl. dnsmaster.miek.nl. 2017100301 200 100 604800 3600")},
+ }
+}
+
func newDnssec(t *testing.T, zones []string) (Dnssec, func(), func()) {
k, rm1, rm2 := newKey(t)
c := cache.New(defaultCap)
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-08 05:25:54 +0000