⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 tests.sh

📁 bind-3.2.
💻 SH
字号:
🔍 
#!/bin/sh## Copyright (C) 2000, 2001  Internet Software Consortium.## Permission to use, copy, modify, and distribute this software for any# purpose with or without fee is hereby granted, provided that the above# copyright notice and this permission notice appear in all copies.## THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM# DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL# INTERNET SOFTWARE CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT,# INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING# FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,# NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION# WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.# $Id: tests.sh,v 1.33 2001/02/23 06:22:11 bwelling Exp $SYSTEMTESTTOP=... $SYSTEMTESTTOP/conf.shstatus=0n=0rm -f dig.out.*DIGOPTS="+tcp +noadd +nosea +nostat +noquest +nocmd +dnssec -p 5300"# Check the example. domainecho "I:checking that zone transfer worked ($n)"ret=0$DIG $DIGOPTS a.example. @10.53.0.2 a > dig.out.ns2.test$n || ret=1$DIG $DIGOPTS a.example. @10.53.0.3 a > dig.out.ns3.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns3.test$n || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking positive validation ($n)"ret=0$DIG $DIGOPTS +noauth a.example. @10.53.0.2 a > dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth a.example. @10.53.0.4 a > dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking negative validation ($n)"ret=0$DIG $DIGOPTS +noauth q.example. @10.53.0.2 a > dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth q.example. @10.53.0.4 a > dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check the insecure.example domainecho "I:checking 1-server insecurity proof ($n)"ret=0$DIG $DIGOPTS a.insecure.example. @10.53.0.3 a > dig.out.ns3.test$n || ret=1$DIG $DIGOPTS a.insecure.example. @10.53.0.4 a > dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns3.test$n dig.out.ns4.test$n || ret=1grep "status: NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# Note - this is looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check the secure.example domainecho "I:checking multi-stage positive validation ($n)"ret=0$DIG $DIGOPTS +noauth a.secure.example. @10.53.0.3 a > dig.out.ns3.test$n || ret=1$DIG $DIGOPTS +noauth a.secure.example. @10.53.0.4 a > dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns3.test$n dig.out.ns4.test$n || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check the bogus domainecho "I:checking failed validation ($n)"ret=0$DIG $DIGOPTS a.bogus.example. @10.53.0.4 a > dig.out.ns4.test$n || ret=1grep "SERVFAIL" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Try validating with a bad trusted key.# This should fail.echo "I:checking that validation fails with a misconfigured trusted key ($n)"ret=0$DIG $DIGOPTS example. soa @10.53.0.5 > dig.out.ns5.test$n || ret=1grep "SERVFAIL" dig.out.ns5.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check the insecure.secure.example domain (insecurity proof)echo "I:checking 2-server insecurity proof ($n)"ret=0$DIG $DIGOPTS a.insecure.secure.example. @10.53.0.2 a \	> dig.out.ns2.test$n || ret=1$DIG $DIGOPTS a.insecure.secure.example. @10.53.0.4 a \	> dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "status: NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# Note - this is looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check a negative response in insecure.secure.exampleecho "I:checking 2-server insecurity proof with a negative answer ($n)"ret=0$DIG $DIGOPTS q.insecure.secure.example. @10.53.0.2 a > dig.out.ns2.test$n \	|| ret=1$DIG $DIGOPTS q.insecure.secure.example. @10.53.0.4 a > dig.out.ns4.test$n \	|| ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "status: NXDOMAIN" dig.out.ns4.test$n > /dev/null || ret=1# Note - this is looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check that the query for a security root is successful and has ad setecho "I:checking security root query ($n)"ret=0$DIG $DIGOPTS . @10.53.0.4 key > dig.out.ns4.test$n || ret=1grep "NOERROR" dig.out.ns4.test$n > /dev/null || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`# Check that the setting the cd bit worksecho "I:checking cd bit on a positive answer ($n)"ret=0$DIG $DIGOPTS +noauth example. soa @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$DIG $DIGOPTS +noauth +cdflag example. soa @10.53.0.5 \	> dig.out.ns5.test$n || ret=1$PERL ../digcomp.pl dig.out.ns4.test$n dig.out.ns5.test$n || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1# Note - this is looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns5.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking cd bit on a negative answer ($n)"ret=0$DIG $DIGOPTS q.example. soa @10.53.0.4 > dig.out.ns4.test$n || ret=1$DIG $DIGOPTS +cdflag q.example. soa @10.53.0.5 > dig.out.ns5.test$n || ret=1$PERL ../digcomp.pl dig.out.ns4.test$n dig.out.ns5.test$n || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1# Note - this is looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns5.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking cd bit on a query that should fail ($n)"ret=0$DIG $DIGOPTS a.bogus.example. soa @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$DIG $DIGOPTS +cdflag a.bogus.example. soa @10.53.0.5 \	> dig.out.ns5.test$n || ret=1$PERL ../digcomp.pl dig.out.ns4.test$n dig.out.ns5.test$n || ret=1grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null || ret=1# Note - this is looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns5.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking cd bit on an insecurity proof ($n)"ret=0$DIG $DIGOPTS +noauth a.insecure.example. soa @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$DIG $DIGOPTS +noauth +cdflag a.insecure.example. soa @10.53.0.5 \	> dig.out.ns5.test$n || ret=1$PERL ../digcomp.pl dig.out.ns4.test$n dig.out.ns5.test$n || ret=1grep "status: NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# Note - these are looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null && ret=1grep "flags:.*ad.*QUERY" dig.out.ns5.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking cd bit on a negative insecurity proof ($n)"ret=0$DIG $DIGOPTS q.insecure.example. soa @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$DIG $DIGOPTS +cdflag q.insecure.example. soa @10.53.0.5 \	> dig.out.ns5.test$n || ret=1$PERL ../digcomp.pl dig.out.ns4.test$n dig.out.ns5.test$n || ret=1grep "status: NXDOMAIN" dig.out.ns4.test$n > /dev/null || ret=1# Note - these are looking for failure, hence the &&grep "flags:.*ad.*QUERY" dig.out.ns4.test$n > /dev/null && ret=1grep "flags:.*ad.*QUERY" dig.out.ns5.test$n > /dev/null && ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking that validation of an ANY query works ($n)"ret=0$DIG $DIGOPTS +noauth foo.example. any @10.53.0.2 > dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth foo.example. any @10.53.0.4 > dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# 2 records in the zone, 1 NXT, 3 SIGsgrep "ANSWER: 6" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking that validation of a query returning a CNAME works ($n)"ret=0$DIG $DIGOPTS +noauth cname1.example. txt @10.53.0.2 \	> dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth cname1.example. txt @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# the CNAME & its sig, the TXT and its SIGgrep "ANSWER: 4" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking that validation of a query returning a DNAME works ($n)"ret=0$DIG $DIGOPTS +noauth foo.dname1.example. txt @10.53.0.2 \	> dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth foo.dname1.example. txt @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# The DNAME & its sig, the TXT and its SIG, and the synthesized CNAME.# It would be nice to test that the CNAME is being synthesized by the# recursive server and not cached, but I don't know how.grep "ANSWER: 5" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking that validation of an ANY query returning a CNAME works ($n)"ret=0$DIG $DIGOPTS +noauth cname2.example. any @10.53.0.2 \	> dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth cname2.example. any @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "NOERROR" dig.out.ns4.test$n > /dev/null || ret=1# The CNAME, NXT, and their SIGsgrep "ANSWER: 4" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:checking that validation of an ANY query returning a DNAME works ($n)"ret=0$DIG $DIGOPTS +noauth foo.dname2.example. any @10.53.0.2 \	> dig.out.ns2.test$n || ret=1$DIG $DIGOPTS +noauth foo.dname2.example. any @10.53.0.4 \	> dig.out.ns4.test$n || ret=1$PERL ../digcomp.pl dig.out.ns2.test$n dig.out.ns4.test$n || ret=1grep "NOERROR" dig.out.ns4.test$n > /dev/null || ret=1n=`expr $n + 1`if [ $ret != 0 ]; then echo "I:failed"; fistatus=`expr $status + $ret`echo "I:exit status: $status"exit $status

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -