1 //! Utilities to deserialize and validate RFC 9102 proofs
3 use alloc::borrow::ToOwned;
6 use core::cmp::{self, Ordering};
13 use crate::ser::write_name;
15 /// Gets the trusted root anchors
17 /// These are available at <https://data.iana.org/root-anchors/root-anchors.xml>
18 pub fn root_hints() -> Vec<DS> {
20 let mut res = vec![DS {
21 name: ".".try_into().unwrap(), key_tag: 19036, alg: 8, digest_type: 2,
22 digest: hex_lit::hex!("49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5").to_vec(),
24 name: ".".try_into().unwrap(), key_tag: 20326, alg: 8, digest_type: 2,
25 digest: hex_lit::hex!("E06D44B80B8F1D39A95C0B0D7C65D08458E880409BBC683457104237C7F8EC8D").to_vec(),
27 // In tests, add the trust anchor from RFC 9102
30 name: ".".try_into().unwrap(), key_tag: 47005, alg: 13, digest_type: 2,
31 digest: hex_lit::hex!("2eb6e9f2480126691594d649a5a613de3052e37861634641bb568746f2ffc4d4").to_vec(),
36 #[derive(Debug, PartialEq)]
37 /// An error when validating DNSSEC signatures or other data
38 pub enum ValidationError {
39 /// An algorithm used in signing was not supported.
41 /// In general DNS usage the resulting data should be used anyway, as we were able to verify
42 /// that a zone wished to use the unsupported algorithm.
44 /// However, in cases where signing is mandatory, this can be treated as an error.
46 /// The provided data was invalid or signatures did not validate.
50 pub(crate) fn bytes_to_rsa_pk<'a>(pubkey: &'a [u8])
51 -> Result<signature::RsaPublicKeyComponents<&'a [u8]>, ()> {
52 if pubkey.len() <= 3 { return Err(()); }
57 exponent_length = ((pubkey[1] as usize) << 8) | (pubkey[2] as usize);
60 exponent_length = pubkey[0] as usize;
64 if pubkey.len() <= pos + exponent_length { return Err(()); }
65 Ok(signature::RsaPublicKeyComponents {
66 n: &pubkey[pos + exponent_length..],
67 e: &pubkey[pos..pos + exponent_length]
71 fn verify_rrsig<'a, RR: Record, Keys>(sig: &RRSig, dnskeys: Keys, mut records: Vec<&RR>)
72 -> Result<(), ValidationError>
73 where Keys: IntoIterator<Item = &'a DnsKey> {
74 for record in records.iter() {
75 if sig.ty != record.ty() { return Err(ValidationError::Invalid); }
77 for dnskey in dnskeys.into_iter() {
78 if dnskey.key_tag() == sig.key_tag {
79 // Protocol must be 3, otherwise its not DNSSEC
80 if dnskey.protocol != 3 { continue; }
81 // The ZONE flag must be set if we're going to validate RRs with this key.
82 if dnskey.flags & 0b1_0000_0000 == 0 { continue; }
83 if dnskey.alg != sig.alg { continue; }
85 let mut signed_data = Vec::with_capacity(2048);
86 signed_data.extend_from_slice(&sig.ty.to_be_bytes());
87 signed_data.extend_from_slice(&sig.alg.to_be_bytes());
88 signed_data.extend_from_slice(&sig.labels.to_be_bytes());
89 signed_data.extend_from_slice(&sig.orig_ttl.to_be_bytes());
90 signed_data.extend_from_slice(&sig.expiration.to_be_bytes());
91 signed_data.extend_from_slice(&sig.inception.to_be_bytes());
92 signed_data.extend_from_slice(&sig.key_tag.to_be_bytes());
93 write_name(&mut signed_data, &sig.key_name);
95 records.sort_unstable();
97 for record in records.iter() {
98 let record_labels = record.name().labels() as usize;
99 let labels = sig.labels.into();
100 // For NSec types, the name should already match the wildcard, so we don't do any
101 // filtering here. This is relied upon in `verify_rr_stream` to check whether an
102 // NSec record is matching via wildcard (as otherwise we'd allow a resolver to
103 // change the name out from under us and change the wildcard to something else).
104 if record.ty() != NSec::TYPE && record_labels != labels {
105 if record_labels < labels { return Err(ValidationError::Invalid); }
106 let signed_name = record.name().trailing_n_labels(sig.labels);
107 debug_assert!(signed_name.is_some());
108 if let Some(name) = signed_name {
109 signed_data.extend_from_slice(b"\x01*");
110 write_name(&mut signed_data, name);
111 } else { return Err(ValidationError::Invalid); }
113 write_name(&mut signed_data, record.name());
115 signed_data.extend_from_slice(&record.ty().to_be_bytes());
116 signed_data.extend_from_slice(&1u16.to_be_bytes()); // The INternet class
117 signed_data.extend_from_slice(&sig.orig_ttl.to_be_bytes());
118 record.write_u16_len_prefixed_data(&mut signed_data);
121 let sig_validation = match sig.alg {
123 let alg = if sig.alg == 8 {
124 &signature::RSA_PKCS1_1024_8192_SHA256_FOR_LEGACY_USE_ONLY
126 &signature::RSA_PKCS1_1024_8192_SHA512_FOR_LEGACY_USE_ONLY
128 bytes_to_rsa_pk(&dnskey.pubkey).map_err(|_| ValidationError::Invalid)?
129 .verify(alg, &signed_data, &sig.signature)
130 .map_err(|_| ValidationError::Invalid)
133 let alg = if sig.alg == 13 {
134 &signature::ECDSA_P256_SHA256_FIXED
136 &signature::ECDSA_P384_SHA384_FIXED
139 // Add 0x4 identifier to the ECDSA pubkey as expected by ring.
140 let mut key = Vec::with_capacity(dnskey.pubkey.len() + 1);
142 key.extend_from_slice(&dnskey.pubkey);
144 signature::UnparsedPublicKey::new(alg, &key)
145 .verify(&signed_data, &sig.signature)
146 .map_err(|_| ValidationError::Invalid)
149 signature::UnparsedPublicKey::new(&signature::ED25519, &dnskey.pubkey)
150 .verify(&signed_data, &sig.signature)
151 .map_err(|_| ValidationError::Invalid)
153 _ => return Err(ValidationError::UnsupportedAlgorithm),
156 // When fuzzing, treat any signature starting with a 1 as valid, but only after
157 // parsing and checking signatures to give that code a chance to panic.
158 if sig.signature.get(0) == Some(&1) {
163 // Note that technically there could be a key tag collision here, causing spurious
164 // verification failure. In most zones, there's only 2-4 DNSKEY entries, meaning a
165 // spurious collision shouldn't be much more often than one every billion zones. Much
166 // more likely in such a case, someone is just trying to do a KeyTrap attack, so we
167 // simply hard-fail and return an error immediately.
173 Err(ValidationError::Invalid)
176 /// Verify [`RRSig`]s over [`DnsKey`], returning a reference to the [`RRSig`] that matched, if any.
177 fn verify_dnskeys<'r, 'd, RI, R, DI, D>(sigs: RI, dses: DI, records: Vec<&DnsKey>)
178 -> Result<&'r RRSig, ValidationError>
179 where RI: IntoIterator<IntoIter = R>, R: Iterator<Item = &'r RRSig>,
180 DI: IntoIterator<IntoIter = D>, D: Iterator<Item = &'d DS> + Clone {
181 let mut validated_dnskeys = Vec::with_capacity(records.len());
182 let dses = dses.into_iter();
184 let mut had_known_digest_type = false;
185 let mut had_ds = false;
186 for ds in dses.clone() {
188 if ds.digest_type == 1 || ds.digest_type == 2 || ds.digest_type == 4 {
189 had_known_digest_type = true;
193 if !had_ds { return Err(ValidationError::Invalid); }
194 if !had_known_digest_type { return Err(ValidationError::UnsupportedAlgorithm); }
196 for dnskey in records.iter() {
197 // Only use SHA1 DS records if we don't have any SHA256/SHA384 DS RRs.
198 let trust_sha1 = dses.clone().all(|ds| ds.digest_type != 2 && ds.digest_type != 4);
199 for ds in dses.clone() {
200 if ds.alg != dnskey.alg { continue; }
201 if dnskey.key_tag() == ds.key_tag {
202 let mut ctx = match ds.digest_type {
203 1 if trust_sha1 => crypto::hash::Hasher::sha1(),
204 2 => crypto::hash::Hasher::sha256(),
205 4 => crypto::hash::Hasher::sha384(),
208 write_name(&mut ctx, &dnskey.name);
209 ctx.update(&dnskey.flags.to_be_bytes());
210 ctx.update(&dnskey.protocol.to_be_bytes());
211 ctx.update(&dnskey.alg.to_be_bytes());
212 ctx.update(&dnskey.pubkey);
213 let hash = ctx.finish();
214 if hash.as_ref() == &ds.digest {
215 validated_dnskeys.push(*dnskey);
222 let mut found_unsupported_alg = false;
224 match verify_rrsig(sig, validated_dnskeys.iter().map(|k| *k), records.clone()) {
225 Ok(()) => return Ok(sig),
226 Err(ValidationError::UnsupportedAlgorithm) => {
227 // There may be redundant signatures by different keys, where one we don't
228 // supprt and another we do. Ignore ones we don't support, but if there are
229 // no more, return UnsupportedAlgorithm
230 found_unsupported_alg = true;
232 Err(ValidationError::Invalid) => {
233 // If a signature is invalid, just immediately fail, avoiding KeyTrap issues.
234 return Err(ValidationError::Invalid);
239 if found_unsupported_alg {
240 Err(ValidationError::UnsupportedAlgorithm)
242 Err(ValidationError::Invalid)
246 /// Given a set of [`RR`]s, [`verify_rr_stream`] checks what it can and returns the set of
247 /// non-[`RRSig`]/[`DnsKey`]/[`DS`] records which it was able to verify using this struct.
249 /// It also contains signing and expiry times, which must be validated before considering the
250 /// contained records verified.
251 #[derive(Debug, Clone)]
252 pub struct VerifiedRRStream<'a> {
253 /// The set of verified [`RR`]s, not including [`DnsKey`], [`RRSig`], [`NSec`], and [`NSec3`]
256 /// These are not valid unless the current UNIX time is between [`Self::valid_from`] and
257 /// [`Self::expires`].
258 pub verified_rrs: Vec<&'a RR>,
259 /// The latest [`RRSig::inception`] of all the [`RRSig`]s validated to verify
260 /// [`Self::verified_rrs`].
262 /// Any records in [`Self::verified_rrs`] should not be considered valid unless this is before
263 /// the current UNIX time.
265 /// While the field here is a u64, the algorithm used to identify rollovers will fail in 2133.
267 /// The earliest [`RRSig::expiration`] of all the [`RRSig`]s validated to verify
268 /// [`Self::verified_rrs`].
270 /// Any records in [`Self::verified_rrs`] should not be considered valid unless this is after
271 /// the current UNIX time.
273 /// While the field here is a u64, the algorithm used to identify rollovers will fail in 2133.
275 /// The minimum [`RRSig::orig_ttl`] of all the [`RRSig`]s validated to verify
276 /// [`Self::verified_rrs`].
278 /// Any caching of [`Self::verified_rrs`] must not last longer than this value, in seconds.
279 pub max_cache_ttl: u32,
282 fn resolve_time(time: u32) -> u64 {
283 // RFC 2065 was published in January 1997, so we arbitrarily use that as a cutoff and assume
284 // any timestamps before then are actually past 2106 instead.
285 // We ignore leap years for simplicity.
286 if time < 60*60*24*365*27 {
287 (time as u64) + (u32::MAX as u64)
293 fn nsec_ord(a: &str, b: &str) -> Ordering {
294 let mut a_label_iter = a.rsplit(".");
295 let mut b_label_iter = b.rsplit(".");
297 match (a_label_iter.next(), b_label_iter.next()) {
298 (Some(_), None) => return Ordering::Greater,
299 (None, Some(_)) => return Ordering::Less,
300 (Some(a_label), Some(b_label)) => {
301 let mut a_bytes = a_label.bytes();
302 let mut b_bytes = b_label.bytes();
304 match (a_bytes.next(), b_bytes.next()) {
305 (Some(_), None) => return Ordering::Greater,
306 (None, Some(_)) => return Ordering::Less,
307 (Some(mut a), Some(mut b)) => {
308 if a >= 'A' as u8 && a <= 'Z' as u8 {
309 a += 'a' as u8 - 'A' as u8;
311 if b >= 'A' as u8 && b <= 'Z' as u8 {
312 b += 'a' as u8 - 'A' as u8;
314 if a != b { return a.cmp(&b); }
316 (None, None) => break,
320 (None, None) => return Ordering::Equal,
324 fn nsec_ord_extra<T, U>(a: &(&str, T, U), b: &(&str, T, U)) -> Ordering {
330 fn rfc4034_sort_test() {
331 // Test nsec_ord based on RFC 4034 section 6.1's example
332 // Note that we replace the \200 example with \7f as I have no idea what \200 is
333 let v = vec!["example.", "a.example.", "yljkjljk.a.example.", "Z.a.example.",
334 "zABC.a.EXAMPLE.", "z.example.", "\001.z.example.", "*.z.example.", "\x7f.z.example."];
335 let mut sorted = v.clone();
336 sorted.sort_unstable_by(|a, b| nsec_ord(*a, *b));
337 assert_eq!(sorted, v);
340 /// Verifies the given set of resource records.
342 /// Given a set of arbitrary records, this attempts to validate DNSSEC data from the [`root_hints`]
343 /// through to any supported non-DNSSEC record types.
345 /// All records which could be validated are returned, though if an error is found validating any
346 /// contained record, only `Err` will be returned.
348 /// You MUST check that the current UNIX time is between [`VerifiedRRStream::valid_from`] and
349 /// [`VerifiedRRStream::expires`].
350 pub fn verify_rr_stream<'a>(inp: &'a [RR]) -> Result<VerifiedRRStream<'a>, ValidationError> {
352 let mut res = Vec::new();
353 let mut rrs_needing_non_existence_proofs = Vec::new();
354 let mut pending_ds_sets = Vec::with_capacity(1);
355 let mut latest_inception = 0;
356 let mut earliest_expiry = u64::MAX;
357 let mut min_ttl = u32::MAX;
358 'next_zone: while zone == "." || !pending_ds_sets.is_empty() {
360 if let Some((next_zone, ds_set)) = pending_ds_sets.pop() {
361 next_ds_set = Some(ds_set);
364 debug_assert_eq!(zone, ".");
368 let dnskey_rrsigs = inp.iter()
369 .filter_map(|rr| if let RR::RRSig(sig) = rr { Some(sig) } else { None })
370 .filter(|rrsig| rrsig.name.as_str() == zone && rrsig.ty == DnsKey::TYPE);
371 let dnskeys = inp.iter()
372 .filter_map(|rr| if let RR::DnsKey(dnskey) = rr { Some(dnskey) } else { None })
373 .filter(move |dnskey| dnskey.name.as_str() == zone);
374 let root_hints = root_hints();
375 let verified_dnskey_rrsig = if zone == "." {
376 verify_dnskeys(dnskey_rrsigs, &root_hints, dnskeys.clone().collect())?
378 debug_assert!(next_ds_set.is_some());
379 if next_ds_set.is_none() { break 'next_zone; }
380 verify_dnskeys(dnskey_rrsigs, next_ds_set.clone().unwrap(), dnskeys.clone().collect())?
382 latest_inception = cmp::max(latest_inception, resolve_time(verified_dnskey_rrsig.inception));
383 earliest_expiry = cmp::min(earliest_expiry, resolve_time(verified_dnskey_rrsig.expiration));
384 min_ttl = cmp::min(min_ttl, verified_dnskey_rrsig.orig_ttl);
385 for rrsig in inp.iter()
386 .filter_map(|rr| if let RR::RRSig(sig) = rr { Some(sig) } else { None })
387 .filter(move |rrsig| rrsig.key_name.as_str() == zone && rrsig.ty != DnsKey::TYPE)
389 if !rrsig.name.ends_with(zone) { return Err(ValidationError::Invalid); }
390 let signed_records = inp.iter()
391 .filter(|rr| rr.name() == &rrsig.name && rr.ty() == rrsig.ty);
392 match verify_rrsig(rrsig, dnskeys.clone(), signed_records.clone().collect()) {
394 Err(ValidationError::UnsupportedAlgorithm) => continue,
395 Err(ValidationError::Invalid) => {
396 // If a signature is invalid, just immediately fail, avoiding KeyTrap issues.
397 return Err(ValidationError::Invalid);
400 latest_inception = cmp::max(latest_inception, resolve_time(rrsig.inception));
401 earliest_expiry = cmp::min(earliest_expiry, resolve_time(rrsig.expiration));
402 min_ttl = cmp::min(min_ttl, rrsig.orig_ttl);
404 // RRSigs shouldn't cover child `DnsKey`s or other `RRSig`s
405 RRSig::TYPE|DnsKey::TYPE => return Err(ValidationError::Invalid),
407 if !pending_ds_sets.iter().any(|(pending_zone, _)| pending_zone == &rrsig.name.as_str()) {
408 pending_ds_sets.push((
410 signed_records.filter_map(|rr|
411 if let RR::DS(ds) = rr { Some(ds) }
412 else { debug_assert!(false, "We already filtered by type"); None })
417 if rrsig.labels != rrsig.name.labels() && rrsig.ty != NSec::TYPE {
418 if rrsig.ty == NSec3::TYPE {
419 // NSEC3 records should never appear on wildcards, so treat the
420 // whole proof as invalid
421 return Err(ValidationError::Invalid);
423 // If the RR used a wildcard, we need an NSEC/NSEC3 proof, which we
424 // check for at the end. Note that the proof should be for the
425 // "next closest" name, i.e. if the name here is a.b.c and it was
426 // signed as *.c, we want a proof for nothing being in b.c.
427 // Alternatively, if it was signed as *.b.c, we'd want a proof for
429 let proof_name = rrsig.name.trailing_n_labels(rrsig.labels + 1)
430 .ok_or(ValidationError::Invalid)?;
431 rrs_needing_non_existence_proofs.push((proof_name, &rrsig.key_name, rrsig.ty));
433 for record in signed_records {
434 if !res.contains(&record) { res.push(record); }
441 if res.is_empty() { return Err(ValidationError::Invalid) }
442 if latest_inception >= earliest_expiry { return Err(ValidationError::Invalid) }
444 // First sort the proofs we're looking for so that the retains below avoid shifting.
445 rrs_needing_non_existence_proofs.sort_unstable_by(nsec_ord_extra);
446 'proof_search_loop: while let Some((name, zone, ty)) = rrs_needing_non_existence_proofs.pop() {
447 let nsec_search = res.iter()
448 .filter_map(|rr| if let RR::NSec(nsec) = rr { Some(nsec) } else { None })
449 .filter(|nsec| nsec.name.ends_with(zone.as_str()));
450 for nsec in nsec_search {
451 let name_matches = nsec.name.as_str() == name;
452 let name_contained = nsec_ord(&nsec.name, &name) != Ordering::Greater &&
453 nsec_ord(&nsec.next_name, name) == Ordering::Greater;
454 if (name_matches && !nsec.types.contains_type(ty)) || name_contained {
455 rrs_needing_non_existence_proofs
456 .retain(|(n, _, t)| *n != name || (name_matches && nsec.types.contains_type(*t)));
457 continue 'proof_search_loop;
460 let nsec3_search = res.iter()
461 .filter_map(|rr| if let RR::NSec3(nsec3) = rr { Some(nsec3) } else { None })
462 .filter(|nsec3| nsec3.name.ends_with(zone.as_str()));
464 // Because we will only ever have two entries, a Vec is simpler than a map here.
465 let mut nsec3params_to_name_hash = Vec::new();
466 for nsec3 in nsec3_search.clone() {
467 if nsec3.hash_iterations > 2500 {
468 // RFC 5115 places different limits on the iterations based on the signature key
469 // length, but we just use 2500 for all key types
472 if nsec3.hash_algo != 1 { continue; }
473 if nsec3params_to_name_hash.iter()
474 .any(|(iterations, salt, _)| *iterations == nsec3.hash_iterations && *salt == &nsec3.salt)
477 let mut hasher = crypto::hash::Hasher::sha1();
478 write_name(&mut hasher, &name);
479 hasher.update(&nsec3.salt);
480 for _ in 0..nsec3.hash_iterations {
481 let res = hasher.finish();
482 hasher = crypto::hash::Hasher::sha1();
483 hasher.update(res.as_ref());
484 hasher.update(&nsec3.salt);
486 nsec3params_to_name_hash.push((nsec3.hash_iterations, &nsec3.salt, hasher.finish()));
488 if nsec3params_to_name_hash.len() >= 2 {
489 // We only allow for up to two sets of hash_iterations/salt per zone. Beyond that
490 // we assume this is a malicious DoSing proof and give up.
494 for nsec3 in nsec3_search {
495 if nsec3.flags != 0 {
496 // This is an opt-out NSEC3 (or has unknown flags set). Thus, we shouldn't rely on
497 // it as proof that some record doesn't exist.
500 if nsec3.hash_algo != 1 { continue; }
501 let name_hash = if let Some((_, _, hash)) =
502 nsec3params_to_name_hash.iter()
503 .find(|(iterations, salt, _)| *iterations == nsec3.hash_iterations && *salt == &nsec3.salt)
508 let (start_hash_base32, _) = nsec3.name.split_once(".")
509 .unwrap_or_else(|| { debug_assert!(false); ("", "")});
510 let start_hash = if let Ok(start_hash) = base32::decode(start_hash_base32) {
513 if start_hash.len() != 20 || nsec3.next_name_hash.len() != 20 { continue; }
515 let hash_matches = &start_hash[..] == name_hash.as_ref();
517 &start_hash[..] <= name_hash.as_ref() && &nsec3.next_name_hash[..] > name_hash.as_ref();
518 if (hash_matches && !nsec3.types.contains_type(ty)) || hash_contained {
519 rrs_needing_non_existence_proofs
520 .retain(|(n, _, t)| *n != name || (hash_matches && nsec3.types.contains_type(*t)));
521 continue 'proof_search_loop;
524 return Err(ValidationError::Invalid);
527 res.retain(|rr| rr.ty() != NSec::TYPE && rr.ty() != NSec3::TYPE);
529 Ok(VerifiedRRStream {
530 verified_rrs: res, valid_from: latest_inception, expires: earliest_expiry,
531 max_cache_ttl: min_ttl,
535 impl<'a> VerifiedRRStream<'a> {
536 /// Given a name, resolve any [`CName`] records and return any verified records which were
537 /// pointed to by the original name.
539 /// Note that because of [`CName`]s, the [`RR::name`] in the returned records may or may not be
542 /// You MUST still check that the current UNIX time is between
543 /// [`VerifiedRRStream::valid_from`] and [`VerifiedRRStream::expires`] before
544 /// using any records returned here.
545 pub fn resolve_name<'b>(&self, name_param: &'b Name) -> Vec<&'a RR> where 'a: 'b {
547 let mut name = name_param;
549 let mut cname_search = self.verified_rrs.iter()
550 .filter(|rr| rr.name() == name)
551 .filter_map(|rr| if let RR::CName(cn) = rr { Some(cn) } else { None });
552 if let Some(cname) = cname_search.next() {
553 name = &cname.canonical_name;
557 let mut dname_search = self.verified_rrs.iter()
558 .filter(|rr| name.ends_with(&**rr.name()))
559 .filter_map(|rr| if let RR::DName(dn) = rr { Some(dn) } else { None });
560 if let Some(dname) = dname_search.next() {
561 let prefix = name.strip_suffix(&*dname.name).expect("We just filtered for this");
562 let resolved_name = prefix.to_owned() + &dname.delegation_name;
563 dname_name = if let Ok(name) = resolved_name.try_into() {
566 // This should only happen if the combined name ended up being too long
573 return self.verified_rrs.iter().filter(|rr| rr.name() == name).map(|rr| *rr).collect();
580 #![allow(deprecated)]
584 use alloc::borrow::ToOwned;
586 use crate::ser::{parse_rr_stream, write_rr};
588 use hex_conservative::FromHex;
589 use rand::seq::SliceRandom;
591 fn root_dnskey() -> (Vec<DnsKey>, Vec<RR>) {
592 let dnskeys = vec![DnsKey {
593 name: ".".try_into().unwrap(), flags: 256, protocol: 3, alg: 8,
594 pubkey: base64::decode("AwEAAentCcIEndLh2QSK+pHFq/PkKCwioxt75d7qNOUuTPMo0Fcte/NbwDPbocvbZ/eNb5RV/xQdapaJASQ/oDLsqzD0H1+JkHNuuKc2JLtpMxg4glSE4CnRXT2CnFTW5IwOREL+zeqZHy68OXy5ngW5KALbevRYRg/q2qFezRtCSQ0knmyPwgFsghVYLKwi116oxwEU5yZ6W7npWMxt5Z+Qs8diPNWrS5aXLgJtrWUGIIuFfuZwXYziGRP/z3o1EfMo9zZU19KLopkoLXX7Ls/diCXdSEdJXTtFA8w0/OKQviuJebfKscoElCTswukVZ1VX5gbaFEo2xWhHJ9Uo63wYaTk=").unwrap(),
596 name: ".".try_into().unwrap(), flags: 257, protocol: 3, alg: 8,
597 pubkey: base64::decode("AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlExOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgCmr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnXGXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU=").unwrap(),
599 let dnskey_rrsig = RRSig {
600 name: ".".try_into().unwrap(), ty: DnsKey::TYPE, alg: 8, labels: 0, orig_ttl: 172800,
601 expiration: 1710201600, inception: 1708387200, key_tag: 20326, key_name: ".".try_into().unwrap(),
602 signature: base64::decode("GIgwndRLXgt7GX/JNEqSvpYw5ij6EgeQivdC/hmNNuOd2MCQRSxZx2DdLZUoK0tmn2XmOd0vYP06DgkIMUpIXcBstw/Um55WQhvBkBTPIhuB3UvKYJstmq+8hFHWVJwKHTg9xu38JA43VgCV2AbzurbzNOLSgq+rDPelRXzpLr5aYE3y+EuvL+I5gusm4MMajnp5S+ioWOL+yWOnQE6XKoDmlrfcTrYfRSxRtJewPmGeCbNdwEUBOoLUVdkCjQG4uFykcKL40cY8EOhVmM3kXAyuPuNe2Xz1QrIcVad/U4FDns+hd8+W+sWnr8QAtIUFT5pBjXooGS02m6eMdSeU6g==").unwrap(),
604 let root_hints = root_hints();
605 verify_dnskeys([&dnskey_rrsig], &root_hints, dnskeys.iter().collect()).unwrap();
606 let rrs = vec![dnskeys[0].clone().into(), dnskeys[1].clone().into(), dnskey_rrsig.into()];
610 fn com_dnskey() -> (Vec<DnsKey>, Vec<RR>) {
611 let root_dnskeys = root_dnskey().0;
612 let mut com_ds = vec![DS {
613 name: "com.".try_into().unwrap(), key_tag: 19718, alg: 13, digest_type: 2,
614 digest: Vec::from_hex("8ACBB0CD28F41250A80A491389424D341522D946B0DA0C0291F2D3D771D7805A").unwrap(),
616 let ds_rrsig = RRSig {
617 name: "com.".try_into().unwrap(), ty: DS::TYPE, alg: 8, labels: 1, orig_ttl: 86400,
618 expiration: 1710133200, inception: 1709006400, key_tag: 30903, key_name: ".".try_into().unwrap(),
619 signature: base64::decode("WEf7UPqoulxab83nVy/518TpZcC3og0paZ7Lag5iOqGdmGvZnB0yQ42s25iqB/mL6ZU+sSUwYoclcW36Tv/yHgS813T2wOgQ4Jh01aCsjkjvpgpbtnDTxg8bL30LV1obhQhOBFu5SqD4FOMeaV9Fqcff7Z72vC1UdVy0us2Kbhti3uQYrKQlGYcDMlgQAyOE0WEaLT74YfKFTpZvIK0UfUfdUAAiM0Z6PUi7BoyToIN+eKKPvny/+4BP9iVvAOmPMgr+kq/qIWOdsvUaq/S+k7VEPTJEi+i2gODgbMC+3EZZpZie9kv1EEAwGwBtGjE7bLlA1QUbuVeTgczIzrYriQ==").unwrap(),
621 verify_rrsig(&ds_rrsig, &root_dnskeys, com_ds.iter().collect()).unwrap();
622 let dnskeys = vec![DnsKey {
623 name: "com.".try_into().unwrap(), flags: 256, protocol: 3, alg: 13,
624 pubkey: base64::decode("5i9qjJgyH+9MBz7VO269/srLQB/xRRllyUoVq8oLBZshPe4CGzDSFGnXAM3L/QPzB9ULpJuuy7jcxmBZ5Ebo7A==").unwrap(),
626 name: "com.".try_into().unwrap(), flags: 257, protocol: 3, alg: 13,
627 pubkey: base64::decode("tx8EZRAd2+K/DJRV0S+hbBzaRPS/G6JVNBitHzqpsGlz8huE61Ms9ANe6NSDLKJtiTBqfTJWDAywEp1FCsEINQ==").unwrap(),
629 let dnskey_rrsig = RRSig {
630 name: "com.".try_into().unwrap(), ty: DnsKey::TYPE, alg: 13, labels: 1, orig_ttl: 86400,
631 expiration: 1710342155, inception: 1709045855, key_tag: 19718, key_name: "com.".try_into().unwrap(),
632 signature: base64::decode("lF2B9nXZn0CgytrHH6xB0NTva4G/aWvg/ypnSxJ8+ZXlvR0C4974yB+nd2ZWzWMICs/oPYMKoQHqxVjnGyu8nA==").unwrap(),
634 verify_dnskeys([&dnskey_rrsig], &com_ds, dnskeys.iter().collect()).unwrap();
635 let rrs = vec![com_ds.pop().unwrap().into(), ds_rrsig.into(),
636 dnskeys[0].clone().into(), dnskeys[1].clone().into(), dnskey_rrsig.into()];
640 fn ninja_dnskey() -> (Vec<DnsKey>, Vec<RR>) {
641 let root_dnskeys = root_dnskey().0;
642 let mut ninja_ds = vec![DS {
643 name: "ninja.".try_into().unwrap(), key_tag: 46082, alg: 8, digest_type: 2,
644 digest: Vec::from_hex("C8F816A7A575BDB2F997F682AAB2653BA2CB5EDDB69B036A30742A33BEFAF141").unwrap(),
646 let ds_rrsig = RRSig {
647 name: "ninja.".try_into().unwrap(), ty: DS::TYPE, alg: 8, labels: 1, orig_ttl: 86400,
648 expiration: 1710133200, inception: 1709006400, key_tag: 30903, key_name: ".".try_into().unwrap(),
649 signature: base64::decode("4fLiekxJy1tHW3sMzmPA/i4Mn6TYoCHDKbcvk3t3N6IXMkACSgU+6P5NxSMxo5Xa7YL5UuE1ICDKxel5o5WzyvjaRQA//hZomjwnCzqyG2XoS6Va8cULSOA5jOU153NSCvos39iHeJnuPINzbMAfsKcg6Ib/IDmNnpouQF53hQzVy+5MGLlGPUZjSO6b4GIslyKpLG0tBLKXM5rZXREPJClEY+LWKOtAS1iARqdsWmSnKxZCpgnEjmkqJBtjCus+s6AtMteBHIFyebwA7oUDNtJ3Im1dO5b6sUoGP8gUgnqdFELSLEeEhKYKpO+jSruI8g/gjNIb5C9vDwAtcSoAew==").unwrap(),
651 verify_rrsig(&ds_rrsig, &root_dnskeys, ninja_ds.iter().collect()).unwrap();
652 let dnskeys = vec![DnsKey {
653 name: "ninja.".try_into().unwrap(), flags: 256, protocol: 3, alg: 8,
654 pubkey: base64::decode("AwEAAb6FWe0O0qxUkA+LghF71OPWt0WNqBaCi34HCV6Agjz70RN/j7yGi3xCExM8MkzyrbXd5yYFP4X7TCGEzI5ofLNq7GVIj9laZO0WYS8DNdCMN7qkVVaYeR2UeeGsdvIJqRWzlynABAKnCzX+y5np77FBsle4cAIGxJE/0F5kn61F").unwrap(),
656 name: "ninja.".try_into().unwrap(), flags: 256, protocol: 3, alg: 8,
657 pubkey: base64::decode("AwEAAZlkeshgX2Q9i/X4zZMc2ciKO2a3+mOiOCuYHYbwt/43XXdcHdjtOUrWFFJkGBBWsHQZ/Bg0CeUGqvUGywd3ndY5IAX+e7PnuIUlhKDcNmntcQbxhrH+cpmOoB3Xo/96JoVjurPxTuJE23I1oA+0aESc581f4pKEbTp4WI7m5xNn").unwrap(),
659 name: "ninja.".try_into().unwrap(), flags: 257, protocol: 3, alg: 8,
660 pubkey: base64::decode("AwEAAcceTJ3Ekkmiez70L8uNVrTDrHZxXHrQHEHQ1DJZDRXDxizuSy0prDXy1yybMqcKAkPL0IruvJ9vHg5j2eHN/hM8RVqCQ1wHgLdQASyUL37VtmLuyNmuiFpYmT+njXVh/tzRHZ4cFxrLAtACWDe6YaPApnVkJ0FEcMnKCQaymBaLX02WQOYuG3XdBr5mQQTtMs/kR/oh83QBcSxyCg3KS7G8IPP6MQPK0za94gsW9zlI5rgN2gpSjbU2qViGjDhw7N3PsC37PLTSLirUmkufeMkP9sfhDjAbP7Nv6FmpTDAIRmBmV0HBT/YNBTUBP89DmEDsrYL8knjkrOaLqV5wgkk=").unwrap(),
662 let dnskey_rrsig = RRSig {
663 name: "ninja.".try_into().unwrap(), ty: DnsKey::TYPE, alg: 8, labels: 1, orig_ttl: 3600,
664 expiration: 1710689605, inception: 1708871605, key_tag: 46082, key_name: "ninja.".try_into().unwrap(),
665 signature: base64::decode("kYxV1z+9Ikxqbr13N+8HFWWnAUcvHkr/dmkdf21mliUhH4cxeYCXC6a95X+YzjYQEQi3fU+S346QBDJkbFYCca5q/TzUdE7ej1B/0uTzhgNrQznm0O6sg6DI3HuqDfZp2oaBQm2C/H4vjkcUW9zxgKP8ON0KKLrZUuYelGazeGSOscjDDlmuNMD7tHhFrmK9BiiX+8sp8Cl+IE5ArP+CPXsII+P+R2QTmTqw5ovJch2FLRMRqCliEzTR/IswBI3FfegZR8h9xJ0gfyD2rDqf6lwJhD1K0aS5wxia+bgzpRIKwiGfP87GDYzkygHr83QbmZS2YG1nxlnQ2rgkqTGgXA==").unwrap(),
667 verify_dnskeys([&dnskey_rrsig], &ninja_ds, dnskeys.iter().collect()).unwrap();
668 let rrs = vec![ninja_ds.pop().unwrap().into(), ds_rrsig.into(),
669 dnskeys[0].clone().into(), dnskeys[1].clone().into(), dnskeys[2].clone().into(),
670 dnskey_rrsig.into()];
674 fn mattcorallo_dnskey() -> (Vec<DnsKey>, Vec<RR>) {
675 let com_dnskeys = com_dnskey().0;
676 let mut mattcorallo_ds = vec![DS {
677 name: "mattcorallo.com.".try_into().unwrap(), key_tag: 25630, alg: 13, digest_type: 2,
678 digest: Vec::from_hex("DC608CA62BE89B3B9DB1593F9A59930D24FBA79D486E19C88A7792711EC00735").unwrap(),
680 let ds_rrsig = RRSig {
681 name: "mattcorallo.com.".try_into().unwrap(), ty: DS::TYPE, alg: 13, labels: 2, orig_ttl: 86400,
682 expiration: 1709359258, inception: 1708750258, key_tag: 4534, key_name: "com.".try_into().unwrap(),
683 signature: base64::decode("VqYztN78+g170QPeFOqWFkU1ZrKIsndUYj3Y+8x1ZR1v/YGJXLQe5qkcLWjrl/vMyCgknC3Q/dhcS2ag0a7W1w==").unwrap(),
685 verify_rrsig(&ds_rrsig, &com_dnskeys, mattcorallo_ds.iter().collect()).unwrap();
686 let dnskeys = vec![DnsKey {
687 name: "mattcorallo.com.".try_into().unwrap(), flags: 257, protocol: 3, alg: 13,
688 pubkey: base64::decode("8BP51Etiu4V6cHvGCYqwNqCip4pvHChjEgkgG4zpdDvO9YRcTGuV/p71hAUut2/qEdxqXfUOT/082BJ/Z089DA==").unwrap(),
690 name: "mattcorallo.com.".try_into().unwrap(), flags: 256, protocol: 3, alg: 13,
691 pubkey: base64::decode("AhUlQ8qk7413R0m4zKfTDHb/FQRlKag+ncGXxNxT+qTzSZTb9E5IGjo9VCEp6+IMqqpkd4GrXpN9AzDvlcU9Ig==").unwrap(),
693 name: "mattcorallo.com.".try_into().unwrap(), flags: 256, protocol: 3, alg: 13,
694 pubkey: base64::decode("s165ZpubX31FC2CVeIVVvnPpTnJUoOM8CGt3wk4AtxPftYadgI8uFM43F4QaD67v8B8Vshl63frxN50dc44VHQ==").unwrap(),
696 let dnskey_rrsig = RRSig {
697 name: "mattcorallo.com.".try_into().unwrap(), ty: DnsKey::TYPE, alg: 13, labels: 2, orig_ttl: 604800,
698 expiration:1710262250, inception: 1709047250, key_tag: 25630, key_name: "mattcorallo.com.".try_into().unwrap(),
699 signature: base64::decode("dMLDvNU96m+tfgpDIQPxMBJy7T0xyZDj3Wws4b4E6+g3nt5iULdWJ8Eqrj+86KLerOVt7KH4h/YcHP18hHdMGA==").unwrap(),
701 verify_dnskeys([&dnskey_rrsig], &mattcorallo_ds, dnskeys.iter().collect()).unwrap();
702 let rrs = vec![mattcorallo_ds.pop().unwrap().into(), ds_rrsig.into(),
703 dnskeys[0].clone().into(), dnskeys[1].clone().into(), dnskeys[2].clone().into(),
704 dnskey_rrsig.into()];
708 fn mattcorallo_txt_record() -> (Txt, RRSig) {
710 name: "matt.user._bitcoin-payment.mattcorallo.com.".try_into().unwrap(),
711 data: "bitcoin:?b12=lno1qsgqmqvgm96frzdg8m0gc6nzeqffvzsqzrxqy32afmr3jn9ggkwg3egfwch2hy0l6jut6vfd8vpsc3h89l6u3dm4q2d6nuamav3w27xvdmv3lpgklhg7l5teypqz9l53hj7zvuaenh34xqsz2sa967yzqkylfu9xtcd5ymcmfp32h083e805y7jfd236w9afhavqqvl8uyma7x77yun4ehe9pnhu2gekjguexmxpqjcr2j822xr7q34p078gzslf9wpwz5y57alxu99s0z2ql0kfqvwhzycqq45ehh58xnfpuek80hw6spvwrvttjrrq9pphh0dpydh06qqspp5uq4gpyt6n9mwexde44qv7lstzzq60nr40ff38u27un6y53aypmx0p4qruk2tf9mjwqlhxak4znvna5y".to_owned().into_bytes(),
713 let txt_rrsig = RRSig {
714 name: "matt.user._bitcoin-payment.mattcorallo.com.".try_into().unwrap(),
715 ty: Txt::TYPE, alg: 13, labels: 5, orig_ttl: 3600, expiration: 1710182540,
716 inception: 1708967540, key_tag: 47959, key_name: "mattcorallo.com.".try_into().unwrap(),
717 signature: base64::decode("vwI89CkCzWI2Iwgl3UeiSo4GKSaKCh7/E/7nE8Hbb1WQvdpwdKSB6jE4nwM1BN4wdPhi7kxd7hyS/uGiKZjxsg==").unwrap(),
719 (txt_resp, txt_rrsig)
722 fn bitcoin_ninja_dnskey() -> (Vec<DnsKey>, Vec<RR>) {
723 let ninja_dnskeys = ninja_dnskey().0;
724 let mut bitcoin_ninja_ds = vec![DS {
725 name: "bitcoin.ninja.".try_into().unwrap(), key_tag: 63175, alg: 13, digest_type: 2,
726 digest: Vec::from_hex("D554267D7F730B9602BF4436F46BB967EFE3C4202CA7F082F2D5DD24DF4EBDED").unwrap(),
728 let ds_rrsig = RRSig {
729 name: "bitcoin.ninja.".try_into().unwrap(), ty: DS::TYPE, alg: 8, labels: 2, orig_ttl: 3600,
730 expiration: 1710689605, inception: 1708871605, key_tag: 34164, key_name: "ninja.".try_into().unwrap(),
731 signature: base64::decode("g/Xyv6cwrGlpEyhXDV1vdKpoy9ZH7HF6MK/41q0GyCrd9wL8BrzKQgwvLqOBhvfUWACJd66CJpEMZnSwH8ZDEcWYYsd8nY2giGX7In/zGz+PA35HlFqy2BgvQcWCaN5Ht/+BUTgZXHbJBEko1iWLZ1yhciD/wA+XTqS7ScQUu88=").unwrap(),
733 verify_rrsig(&ds_rrsig, &ninja_dnskeys, bitcoin_ninja_ds.iter().collect()).unwrap();
734 let dnskeys = vec![DnsKey {
735 name: "bitcoin.ninja.".try_into().unwrap(), flags: 257, protocol: 3, alg: 13,
736 pubkey: base64::decode("0lIZI5BH7kk75R/+1RMReQE0J2iQw0lY2aQ6eCM7F1E9ZMNcIGC1cDl5+FcAU1mP8F3Ws2FjgvCC0S2q8OBF2Q==").unwrap(),
738 name: "bitcoin.ninja.".try_into().unwrap(), flags: 256, protocol: 3, alg: 13,
739 pubkey: base64::decode("zbm2rKgzXDtRFV0wFmnlUMdOXWcNKEjGIHsZ7bAnTzbh7TJEzPctSttCaTvdaORxLL4AiOk+VG2iXnL2UuC/xQ==").unwrap(),
741 let dnskey_rrsig = RRSig {
742 name: "bitcoin.ninja.".try_into().unwrap(), ty: DnsKey::TYPE, alg: 13, labels: 2, orig_ttl: 604800,
743 expiration: 1709947337, inception: 1708732337, key_tag: 63175, key_name: "bitcoin.ninja.".try_into().unwrap(),
744 signature: base64::decode("Y3To5FZoZuBDUMtIBZXqzRtufyRqOlDqbHVcoZQitXxerCgNQ1CsVdmoFVMmZqRV5n4itINX2x+9G/31j410og==").unwrap(),
746 verify_dnskeys([&dnskey_rrsig], &bitcoin_ninja_ds, dnskeys.iter().collect()).unwrap();
747 let rrs = vec![bitcoin_ninja_ds.pop().unwrap().into(), ds_rrsig.into(),
748 dnskeys[0].clone().into(), dnskeys[1].clone().into(), dnskey_rrsig.into()];
752 fn bitcoin_ninja_txt_record() -> (Txt, RRSig) {
754 name: "txt_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
755 data: "dnssec_prover_test".to_owned().into_bytes(),
757 let txt_rrsig = RRSig {
758 name: "txt_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
759 ty: Txt::TYPE, alg: 13, labels: 4, orig_ttl: 30, expiration: 1709950937,
760 inception: 1708735937, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
761 signature: base64::decode("S5swe6BMTqwLBU6FH2D50j5A9i5hzli79Vlf5xB515s6YhmcqodbPZnFlN49RdBE43PKi9MJcXpHTiBxvTYBeQ==").unwrap(),
763 (txt_resp, txt_rrsig)
766 fn bitcoin_ninja_cname_record() -> (CName, RRSig) {
767 let cname_resp = CName {
768 name: "cname_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
769 canonical_name: "txt_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
771 let cname_rrsig = RRSig {
772 name: "cname_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
773 ty: CName::TYPE, alg: 13, labels: 4, orig_ttl: 30, expiration: 1709950937,
774 inception: 1708735937, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
775 signature: base64::decode("S8AYftjBADKutt4XKVzqfY7EpvbanpwOGhMDk0lEDFpvNRjl0fZ1k/FEW6AXSUyX2wOaX8hvwXUuZjpr5INuMw==").unwrap(),
777 (cname_resp, cname_rrsig)
780 fn bitcoin_ninja_txt_sort_edge_cases_records() -> (Vec<Txt>, RRSig) {
781 let txts = vec![Txt {
782 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
783 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaab".to_owned().into_bytes(),
785 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
786 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa".to_owned().into_bytes(),
788 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
789 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaabaa".to_owned().into_bytes(),
791 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
792 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaba".to_owned().into_bytes(),
794 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
795 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa".to_owned().into_bytes(),
797 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
798 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaab".to_owned().into_bytes(),
800 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
801 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa".to_owned().into_bytes(),
803 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
804 data: "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaba".to_owned().into_bytes(),
807 name: "txt_sort_order.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
808 ty: Txt::TYPE, alg: 13, labels: 4, orig_ttl: 30, expiration: 1709950937,
809 inception: 1708735937, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
810 signature: base64::decode("kUKbtoNYM6qnu95QJoyUwtzZoMTcRVfNfIIqSwROLdMYqqq70REjCu99ecjOW/Zm2XRsJ9KgGBB/SuiBdunLew==").unwrap(),
815 /// Note that the NSEC3 proofs here are for asdf., any other prefix may fail NSEC checks.
816 fn bitcoin_ninja_wildcard_record(pfx: &str) -> (Txt, RRSig, NSec3, RRSig) {
817 let name: Name = (pfx.to_owned() + ".wildcard_test.dnssec_proof_tests.bitcoin.ninja.").try_into().unwrap();
820 data: "wildcard_test".to_owned().into_bytes(),
822 let txt_rrsig = RRSig {
824 ty: Txt::TYPE, alg: 13, labels: 4, orig_ttl: 30, expiration: 1709950937,
825 inception: 1708735937, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
826 signature: base64::decode("Y+grWXzbZfrcoHRZC9kfRzWp002jZzBDmpSQx6qbUgN0x3aH9kZIOVy0CtQH2vwmLUxoJ+RlezgunNI6LciBzQ==").unwrap(),
829 name: "s5sn15c8lcpo7v7f1p0ms6vlbdejt0kd.bitcoin.ninja.".try_into().unwrap(),
830 hash_algo: 1, flags: 0, hash_iterations: 0, salt: Vec::from_hex("059855BD1077A2EB").unwrap(),
831 next_name_hash: crate::base32::decode("T8QO5GO6M76HBR5Q6T3G6BDR79KBMDSA").unwrap(),
832 types: NSecTypeMask::from_types(&[AAAA::TYPE, RRSig::TYPE]),
834 let nsec3_rrsig = RRSig {
835 name: "s5sn15c8lcpo7v7f1p0ms6vlbdejt0kd.bitcoin.ninja.".try_into().unwrap(),
836 ty: NSec3::TYPE, alg: 13, labels: 3, orig_ttl: 60, expiration: 1710267741,
837 inception: 1709052741, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
838 signature: base64::decode("Aiz6My3goWQuIIw/XNUo+kICsp9e4C5XUUs/0Ap+WIEFJsaN/MPGegiR/c5GUGdtHt1GdeP9CU3H1OGkN9MpWQ==").unwrap(),
840 (txt_resp, txt_rrsig, nsec3, nsec3_rrsig)
843 fn bitcoin_ninja_cname_wildcard_record() -> (CName, RRSig, Txt, RRSig, [(NSec3, RRSig); 3]) {
844 let cname_resp = CName {
845 name: "asdf.cname_wildcard_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
846 canonical_name: "cname.wildcard_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
848 let cname_rrsig = RRSig {
849 name: "asdf.cname_wildcard_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
850 ty: CName::TYPE, alg: 13, labels: 4, orig_ttl: 30, expiration: 1709950937,
851 inception: 1708735937, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
852 signature: base64::decode("qR/zy8JyihI4qCAMwn7jGU6FARW/Hl8/u+cajef9raKs5aOxnZpCrp19Tot9qPG6px9PzqaghAIP1EmxfgxtRQ==").unwrap(),
854 let nsec3_a = NSec3 {
855 name: "2tn37cu4ulmlqqke9a3dc9g8bt8b4f6s.bitcoin.ninja.".try_into().unwrap(),
856 hash_algo: 1, flags: 0, hash_iterations: 0,
857 salt: Vec::from_hex("059855BD1077A2EB").unwrap(),
858 next_name_hash: crate::base32::decode("4OKFHSHS41D00EDL0HNPMT7R6IKMJ48H").unwrap(),
859 types: NSecTypeMask::from_types(&[DName::TYPE, RRSig::TYPE]),
861 let nsec3_a_rrsig = RRSig {
862 name: "2tn37cu4ulmlqqke9a3dc9g8bt8b4f6s.bitcoin.ninja.".try_into().unwrap(),
863 ty: NSec3::TYPE, alg: 13, labels: 3, orig_ttl: 60, expiration: 1710266541,
864 inception: 1709051541, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
865 signature: base64::decode("tSsPsYIf1o5+piUZX9YwcWKSZgVQOB37TRdb+VL0PmcPaLpzFGJCwU0snn8tMN/BuILG+KZY+UPmAEZZFz4Fvg==").unwrap(),
867 let nsec3_b = NSec3 {
868 name: "cjqf7lfu6ev77k9m2o6iih56kbfnshin.bitcoin.ninja.".try_into().unwrap(),
869 hash_algo: 1, flags: 0, hash_iterations: 0,
870 salt: Vec::from_hex("059855BD1077A2EB").unwrap(),
871 next_name_hash: crate::base32::decode("DD3MT23L63OIHQPIMA5O2NULSVIGIJ3N").unwrap(),
872 types: NSecTypeMask::from_types(&[A::TYPE, AAAA::TYPE, RRSig::TYPE]),
874 let nsec3_b_rrsig = RRSig {
875 name: "cjqf7lfu6ev77k9m2o6iih56kbfnshin.bitcoin.ninja.".try_into().unwrap(),
876 ty: NSec3::TYPE, alg: 13, labels: 3, orig_ttl: 60, expiration: 1710238940,
877 inception: 1709023940, key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
878 signature: base64::decode("CtYriOUI6RzoIG3SigHbBYiTkrEvmSEvP+aOLo1wylqkbBT2iG7pK8VNucKETqMZCROLnmRBw8DHK/8rosKYsA==").unwrap(),
880 let (txt_resp, txt_rrsig, nsec3_c, nsec3_c_rrsig) = bitcoin_ninja_wildcard_record("asdf");
881 (cname_resp, cname_rrsig, txt_resp, txt_rrsig,
882 [(nsec3_a, nsec3_a_rrsig), (nsec3_b, nsec3_b_rrsig), (nsec3_c, nsec3_c_rrsig)])
885 fn bitcoin_ninja_nsec_dnskey() -> (Vec<DnsKey>, Vec<RR>) {
886 let bitcoin_ninja_dnskeys = bitcoin_ninja_dnskey().0;
887 let mut bitcoin_ninja_ds = vec![DS {
888 name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
889 key_tag: 8036, alg: 13, digest_type: 2,
890 digest: Vec::from_hex("8EC0DAE4501233979196EBED206212BCCC49E40E086EC2E56558EC1F6FB62715").unwrap(),
892 let ds_rrsig = RRSig {
893 name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
894 ty: DS::TYPE, alg: 13, labels: 4, orig_ttl: 30, expiration: 1710190967, inception: 1708975967,
895 key_tag: 37639, key_name: "bitcoin.ninja.".try_into().unwrap(),
896 signature: base64::decode("qUexI1yufru0lzkND4uY1r8bsXrXnMVNjPxTLbLauRo/+YW041w9wFu4sl2/cqq3psWvGcBVTltwIdjDJQUcZQ==").unwrap(),
898 verify_rrsig(&ds_rrsig, &bitcoin_ninja_dnskeys, bitcoin_ninja_ds.iter().collect()).unwrap();
899 let dnskeys = vec![DnsKey {
900 name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(), flags: 257, protocol: 3, alg: 13,
901 pubkey: base64::decode("MUnIhm31ySIr9WXIBVQc38wlSHHvYaKIOFR8WYl4O9MJBlywWeUdx16oGinCe2FjjMkUkKn9kV5zzWhGmrdIbQ==").unwrap(),
903 name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(), flags: 256, protocol: 3, alg: 13,
904 pubkey: base64::decode("GGZP8k44sro2iTzWKFoHOnbvrAhNiQv+Ng2hr0WNyb24aA5rLYLFac3N7B82xRU2odd60utYJkmU0yA//zyOzw==").unwrap(),
906 let dnskey_rrsig = RRSig {
907 name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
908 ty: DnsKey::TYPE, alg: 13, labels: 4, orig_ttl: 604800, expiration: 1710190613, inception: 1708975613,
909 key_tag: 8036, key_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
910 signature: base64::decode("nX+hkH14Kvjp26Z8x/pjYh5CQW3p9lZQQ+FVJcKHyfjAilEubpw6ihlPpb3Ddh9BbyxhCEFhXDMG2g4od9Y2ow==").unwrap(),
912 verify_dnskeys([&dnskey_rrsig], &bitcoin_ninja_ds, dnskeys.iter().collect()).unwrap();
913 let rrs = vec![bitcoin_ninja_ds.pop().unwrap().into(), ds_rrsig.into(),
914 dnskeys[0].clone().into(), dnskeys[1].clone().into(), dnskey_rrsig.into()];
918 fn bitcoin_ninja_nsec_record() -> (Txt, RRSig) {
920 name: "a.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
921 data: "txt_a".to_owned().into_bytes(),
923 let txt_rrsig = RRSig {
924 name: "a.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
925 ty: Txt::TYPE, alg: 13, labels: 5, orig_ttl: 30, expiration: 1710201091, inception: 1708986091,
926 key_tag: 42215, key_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
927 signature: base64::decode("rhDcZvSk4ngyDmMif3oBmoDMO1YoimRrvOp/ErlSaujN+OCMKocgWkssedQCx7hyLxwsFLvaaiNXCr/7ZaSe4Q==").unwrap(),
929 (txt_resp, txt_rrsig)
932 fn bitcoin_ninja_nsec_wildcard_record(pfx: &str) -> (Txt, RRSig, NSec, RRSig) {
933 let name: Name = (pfx.to_owned() + ".wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.").try_into().unwrap();
936 data: "wildcard_test".to_owned().into_bytes(),
938 let txt_rrsig = RRSig {
940 ty: Txt::TYPE, alg: 13, labels: 5, orig_ttl: 30, expiration: 1710190613, inception: 1708975613,
941 key_tag: 42215, key_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
942 signature: base64::decode("E3+tEe5TxI8OSNP+LVHsOagjQ/9heD6a4ICYBgS8mkfRuqgFeXhz22n4f2LzssdXe1xzwayt7nROdHdqdfHDYg==").unwrap(),
945 name: "*.wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
946 next_name: "override.wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
947 types: NSecTypeMask::from_types(&[Txt::TYPE, RRSig::TYPE, NSec::TYPE]),
949 let nsec_rrsig = RRSig {
950 name: "*.wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
951 ty: NSec::TYPE, alg: 13, labels: 5, orig_ttl: 60, expiration: 1710191561, inception: 1708976561,
952 key_tag: 42215, key_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
953 signature: base64::decode("ZjQMw1dt1a61d4ls3pMkCnBiWRaMyAwn6UapRaYNtdA8cTbbqbhzJZCvc6ZBhZ90CzxCYR0h/eavowlF1j53Gg==").unwrap(),
955 (txt_resp, txt_rrsig, nsec, nsec_rrsig)
958 fn bitcoin_ninja_nsec_post_override_wildcard_record(pfx: &str) -> (Txt, RRSig, NSec, RRSig) {
959 let name: Name = (pfx.to_owned() + ".wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.").try_into().unwrap();
962 data: "wildcard_test".to_owned().into_bytes(),
964 let txt_rrsig = RRSig {
966 ty: Txt::TYPE, alg: 13, labels: 5, orig_ttl: 30, expiration: 1710190613, inception: 1708975613,
967 key_tag: 42215, key_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
968 signature: base64::decode("E3+tEe5TxI8OSNP+LVHsOagjQ/9heD6a4ICYBgS8mkfRuqgFeXhz22n4f2LzssdXe1xzwayt7nROdHdqdfHDYg==").unwrap(),
971 name: "override.wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
972 next_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
973 types: NSecTypeMask::from_types(&[Txt::TYPE, RRSig::TYPE, NSec::TYPE]),
975 let nsec_rrsig = RRSig {
976 name: "override.wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
977 ty: NSec::TYPE, alg: 13, labels: 6, orig_ttl: 60, expiration: 1710201063, inception: 1708986063,
978 key_tag: 42215, key_name: "nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap(),
979 signature: base64::decode("pBNXnNPR0fiGEtkm/0PlnDW830JWv8KgnyhnOit6wLHtiWoLhMiS48utji3FbTfelCnePjbLh/t7SF941O2QTA==").unwrap(),
981 (txt_resp, txt_rrsig, nsec, nsec_rrsig)
985 fn check_txt_record_a() {
986 let dnskeys = mattcorallo_dnskey().0;
987 let (txt, txt_rrsig) = mattcorallo_txt_record();
988 let txt_resp = [txt];
989 verify_rrsig(&txt_rrsig, &dnskeys, txt_resp.iter().collect()).unwrap();
993 fn check_single_txt_proof() {
994 let mut rr_stream = Vec::new();
995 for rr in root_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
996 for rr in com_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
997 for rr in mattcorallo_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
998 let (txt, txt_rrsig) = mattcorallo_txt_record();
999 for rr in [RR::Txt(txt), RR::RRSig(txt_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1001 let mut rrs = parse_rr_stream(&rr_stream).unwrap();
1002 rrs.shuffle(&mut rand::rngs::OsRng);
1003 let verified_rrs = verify_rr_stream(&rrs).unwrap();
1004 assert_eq!(verified_rrs.verified_rrs.len(), 1);
1005 if let RR::Txt(txt) = &verified_rrs.verified_rrs[0] {
1006 assert_eq!(txt.name.as_str(), "matt.user._bitcoin-payment.mattcorallo.com.");
1007 assert_eq!(txt.data, b"bitcoin:?b12=lno1qsgqmqvgm96frzdg8m0gc6nzeqffvzsqzrxqy32afmr3jn9ggkwg3egfwch2hy0l6jut6vfd8vpsc3h89l6u3dm4q2d6nuamav3w27xvdmv3lpgklhg7l5teypqz9l53hj7zvuaenh34xqsz2sa967yzqkylfu9xtcd5ymcmfp32h083e805y7jfd236w9afhavqqvl8uyma7x77yun4ehe9pnhu2gekjguexmxpqjcr2j822xr7q34p078gzslf9wpwz5y57alxu99s0z2ql0kfqvwhzycqq45ehh58xnfpuek80hw6spvwrvttjrrq9pphh0dpydh06qqspp5uq4gpyt6n9mwexde44qv7lstzzq60nr40ff38u27un6y53aypmx0p4qruk2tf9mjwqlhxak4znvna5y");
1008 } else { panic!(); }
1009 assert_eq!(verified_rrs.valid_from, 1709047250); // The mattcorallo.com. DNSKEY RRSig was created last
1010 assert_eq!(verified_rrs.expires, 1709359258); // The mattcorallo.com. DS RRSig expires first
1011 assert_eq!(verified_rrs.max_cache_ttl, 3600); // The TXT record had the shortest TTL
1015 fn check_txt_record_b() {
1016 let dnskeys = bitcoin_ninja_dnskey().0;
1017 let (txt, txt_rrsig) = bitcoin_ninja_txt_record();
1018 let txt_resp = [txt];
1019 verify_rrsig(&txt_rrsig, &dnskeys, txt_resp.iter().collect()).unwrap();
1023 fn check_cname_record() {
1024 let dnskeys = bitcoin_ninja_dnskey().0;
1025 let (cname, cname_rrsig) = bitcoin_ninja_cname_record();
1026 let cname_resp = [cname];
1027 verify_rrsig(&cname_rrsig, &dnskeys, cname_resp.iter().collect()).unwrap();
1031 fn check_multi_zone_proof() {
1032 let mut rr_stream = Vec::new();
1033 for rr in root_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1034 for rr in com_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1035 for rr in ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1036 for rr in mattcorallo_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1037 let (txt, txt_rrsig) = mattcorallo_txt_record();
1038 for rr in [RR::Txt(txt), RR::RRSig(txt_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1039 for rr in bitcoin_ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1040 let (txt, txt_rrsig) = bitcoin_ninja_txt_record();
1041 for rr in [RR::Txt(txt), RR::RRSig(txt_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1042 let (cname, cname_rrsig) = bitcoin_ninja_cname_record();
1043 for rr in [RR::CName(cname), RR::RRSig(cname_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1045 let mut rrs = parse_rr_stream(&rr_stream).unwrap();
1046 rrs.shuffle(&mut rand::rngs::OsRng);
1047 let mut verified_rrs = verify_rr_stream(&rrs).unwrap();
1048 verified_rrs.verified_rrs.sort();
1049 assert_eq!(verified_rrs.verified_rrs.len(), 3);
1050 if let RR::Txt(txt) = &verified_rrs.verified_rrs[0] {
1051 assert_eq!(txt.name.as_str(), "matt.user._bitcoin-payment.mattcorallo.com.");
1052 assert_eq!(txt.data, b"bitcoin:?b12=lno1qsgqmqvgm96frzdg8m0gc6nzeqffvzsqzrxqy32afmr3jn9ggkwg3egfwch2hy0l6jut6vfd8vpsc3h89l6u3dm4q2d6nuamav3w27xvdmv3lpgklhg7l5teypqz9l53hj7zvuaenh34xqsz2sa967yzqkylfu9xtcd5ymcmfp32h083e805y7jfd236w9afhavqqvl8uyma7x77yun4ehe9pnhu2gekjguexmxpqjcr2j822xr7q34p078gzslf9wpwz5y57alxu99s0z2ql0kfqvwhzycqq45ehh58xnfpuek80hw6spvwrvttjrrq9pphh0dpydh06qqspp5uq4gpyt6n9mwexde44qv7lstzzq60nr40ff38u27un6y53aypmx0p4qruk2tf9mjwqlhxak4znvna5y");
1053 } else { panic!(); }
1054 if let RR::Txt(txt) = &verified_rrs.verified_rrs[1] {
1055 assert_eq!(txt.name.as_str(), "txt_test.dnssec_proof_tests.bitcoin.ninja.");
1056 assert_eq!(txt.data, b"dnssec_prover_test");
1057 } else { panic!(); }
1058 if let RR::CName(cname) = &verified_rrs.verified_rrs[2] {
1059 assert_eq!(cname.name.as_str(), "cname_test.dnssec_proof_tests.bitcoin.ninja.");
1060 assert_eq!(cname.canonical_name.as_str(), "txt_test.dnssec_proof_tests.bitcoin.ninja.");
1061 } else { panic!(); }
1064 verified_rrs.resolve_name(&"cname_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap());
1065 assert_eq!(filtered_rrs.len(), 1);
1066 if let RR::Txt(txt) = &filtered_rrs[0] {
1067 assert_eq!(txt.name.as_str(), "txt_test.dnssec_proof_tests.bitcoin.ninja.");
1068 assert_eq!(txt.data, b"dnssec_prover_test");
1069 } else { panic!(); }
1073 fn check_wildcard_record() {
1074 // Wildcard proof works for any name, even multiple names
1075 let dnskeys = bitcoin_ninja_dnskey().0;
1076 let (txt, txt_rrsig, _, _) = bitcoin_ninja_wildcard_record("name");
1077 let txt_resp = [txt];
1078 verify_rrsig(&txt_rrsig, &dnskeys, txt_resp.iter().collect()).unwrap();
1080 let (txt, txt_rrsig, _, _) = bitcoin_ninja_wildcard_record("anoter_name");
1081 let txt_resp = [txt];
1082 verify_rrsig(&txt_rrsig, &dnskeys, txt_resp.iter().collect()).unwrap();
1084 let (txt, txt_rrsig, _, _) = bitcoin_ninja_wildcard_record("multiple.names");
1085 let txt_resp = [txt];
1086 verify_rrsig(&txt_rrsig, &dnskeys, txt_resp.iter().collect()).unwrap();
1090 fn check_wildcard_proof() {
1091 let mut rr_stream = Vec::new();
1092 for rr in root_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1093 for rr in ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1094 for rr in bitcoin_ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1095 let (cname, cname_rrsig, txt, txt_rrsig, nsec3s) = bitcoin_ninja_cname_wildcard_record();
1096 for rr in [RR::CName(cname), RR::RRSig(cname_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1097 for rr in [RR::Txt(txt), RR::RRSig(txt_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1098 for (rra, rrb) in nsec3s { write_rr(&rra, 1, &mut rr_stream); write_rr(&rrb, 1, &mut rr_stream); }
1100 let mut rrs = parse_rr_stream(&rr_stream).unwrap();
1101 rrs.shuffle(&mut rand::rngs::OsRng);
1102 let mut verified_rrs = verify_rr_stream(&rrs).unwrap();
1103 verified_rrs.verified_rrs.sort();
1104 assert_eq!(verified_rrs.verified_rrs.len(), 2);
1105 if let RR::Txt(txt) = &verified_rrs.verified_rrs[0] {
1106 assert_eq!(txt.name.as_str(), "asdf.wildcard_test.dnssec_proof_tests.bitcoin.ninja.");
1107 assert_eq!(txt.data, b"wildcard_test");
1108 } else { panic!(); }
1109 if let RR::CName(cname) = &verified_rrs.verified_rrs[1] {
1110 assert_eq!(cname.name.as_str(), "asdf.cname_wildcard_test.dnssec_proof_tests.bitcoin.ninja.");
1111 assert_eq!(cname.canonical_name.as_str(), "cname.wildcard_test.dnssec_proof_tests.bitcoin.ninja.");
1112 } else { panic!(); }
1115 verified_rrs.resolve_name(&"asdf.wildcard_test.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap());
1116 assert_eq!(filtered_rrs.len(), 1);
1117 if let RR::Txt(txt) = &filtered_rrs[0] {
1118 assert_eq!(txt.name.as_str(), "asdf.wildcard_test.dnssec_proof_tests.bitcoin.ninja.");
1119 assert_eq!(txt.data, b"wildcard_test");
1120 } else { panic!(); }
1124 fn check_simple_nsec_zone_proof() {
1125 let mut rr_stream = Vec::new();
1126 for rr in root_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1127 for rr in ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1128 for rr in bitcoin_ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1129 for rr in bitcoin_ninja_nsec_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1130 let (txt, txt_rrsig) = bitcoin_ninja_nsec_record();
1131 for rr in [RR::Txt(txt), RR::RRSig(txt_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1133 let mut rrs = parse_rr_stream(&rr_stream).unwrap();
1134 rrs.shuffle(&mut rand::rngs::OsRng);
1135 let verified_rrs = verify_rr_stream(&rrs).unwrap();
1137 verified_rrs.resolve_name(&"a.nsec_tests.dnssec_proof_tests.bitcoin.ninja.".try_into().unwrap());
1138 assert_eq!(filtered_rrs.len(), 1);
1139 if let RR::Txt(txt) = &filtered_rrs[0] {
1140 assert_eq!(txt.name.as_str(), "a.nsec_tests.dnssec_proof_tests.bitcoin.ninja.");
1141 assert_eq!(txt.data, b"txt_a");
1142 } else { panic!(); }
1146 fn check_nsec_wildcard_proof() {
1147 let check_proof = |pfx: &str, post_override: bool| -> Result<(), ()> {
1148 let mut rr_stream = Vec::new();
1149 for rr in root_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1150 for rr in ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1151 for rr in bitcoin_ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1152 for rr in bitcoin_ninja_nsec_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1153 let (txt, txt_rrsig, nsec, nsec_rrsig) = if post_override {
1154 bitcoin_ninja_nsec_post_override_wildcard_record(pfx)
1156 bitcoin_ninja_nsec_wildcard_record(pfx)
1158 for rr in [RR::Txt(txt), RR::RRSig(txt_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1159 for rr in [RR::NSec(nsec), RR::RRSig(nsec_rrsig)] { write_rr(&rr, 1, &mut rr_stream); }
1161 let mut rrs = parse_rr_stream(&rr_stream).unwrap();
1162 rrs.shuffle(&mut rand::rngs::OsRng);
1163 // If the post_override flag is wrong (or the pfx is override), this will fail. No
1164 // other calls in this lambda should fail.
1165 let verified_rrs = verify_rr_stream(&rrs).map_err(|_| ())?;
1167 (pfx.to_owned() + ".wildcard_test.nsec_tests.dnssec_proof_tests.bitcoin.ninja.").try_into().unwrap();
1168 let filtered_rrs = verified_rrs.resolve_name(&name);
1169 assert_eq!(filtered_rrs.len(), 1);
1170 if let RR::Txt(txt) = &filtered_rrs[0] {
1171 assert_eq!(txt.name, name);
1172 assert_eq!(txt.data, b"wildcard_test");
1173 } else { panic!(); }
1176 // Records up to override will only work with the pre-override NSEC, and afterwards with
1177 // the post-override NSEC. The literal override will always fail.
1178 check_proof("a", false).unwrap();
1179 check_proof("a", true).unwrap_err();
1180 check_proof("a.b", false).unwrap();
1181 check_proof("a.b", true).unwrap_err();
1182 check_proof("o", false).unwrap();
1183 check_proof("o", true).unwrap_err();
1184 check_proof("a.o", false).unwrap();
1185 check_proof("a.o", true).unwrap_err();
1186 check_proof("override", false).unwrap_err();
1187 check_proof("override", true).unwrap_err();
1188 // Subdomains of override are also overridden by the override TXT entry and cannot use the
1190 check_proof("b.override", false).unwrap_err();
1191 check_proof("b.override", true).unwrap_err();
1192 check_proof("z", false).unwrap_err();
1193 check_proof("z", true).unwrap_err();
1194 check_proof("a.z", false).unwrap_err();
1195 check_proof("a.z", true).unwrap_err();
1199 fn check_txt_sort_order() {
1200 let mut rr_stream = Vec::new();
1201 for rr in root_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1202 for rr in ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1203 for rr in bitcoin_ninja_dnskey().1 { write_rr(&rr, 1, &mut rr_stream); }
1204 let (mut txts, rrsig) = bitcoin_ninja_txt_sort_edge_cases_records();
1205 write_rr(&rrsig, 1, &mut rr_stream);
1206 for txt in txts.iter() { write_rr(txt, 1, &mut rr_stream); }
1208 let mut rrs = parse_rr_stream(&rr_stream).unwrap();
1209 rrs.shuffle(&mut rand::rngs::OsRng);
1210 let verified_rrs = verify_rr_stream(&rrs).unwrap();
1211 let mut verified_txts = verified_rrs.verified_rrs
1212 .iter().map(|rr| if let RR::Txt(txt) = rr { txt.clone() } else { panic!(); })
1213 .collect::<Vec<_>>();
1214 verified_txts.sort();
1216 assert_eq!(verified_txts, txts);
1220 fn rfc9102_parse_test() {
1221 // Note that this is the `AuthenticationChain` field only, and ignores the
1222 // `ExtSupportLifetime` field (stripping the top two 0 bytes from the front).
1223 let rfc9102_test_vector = Vec::from_hex("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").unwrap();
1225 let mut rrs = parse_rr_stream(&rfc9102_test_vector).unwrap();
1226 rrs.shuffle(&mut rand::rngs::OsRng);
1227 let verified_rrs = verify_rr_stream(&rrs).unwrap();
1228 assert_eq!(verified_rrs.verified_rrs.len(), 1);
1229 if let RR::TLSA(tlsa) = &verified_rrs.verified_rrs[0] {
1230 assert_eq!(tlsa.cert_usage, 3);
1231 assert_eq!(tlsa.selector, 1);
1232 assert_eq!(tlsa.data_ty, 1);
1233 assert_eq!(tlsa.data, Vec::from_hex("8bd1da95272f7fa4ffb24137fc0ed03aae67e5c4d8b3c50734e1050a7920b922").unwrap());
1234 } else { panic!(); }