From 28576d3a846446a3d261e12b637dee615ab92a60 Mon Sep 17 00:00:00 2001
From: FlyingWithJerome <jxm959@case.edu>
Date: Sun, 16 Aug 2020 10:45:00 -0400
Subject: [PATCH] add edns-cookie testcase

---
 .../output                                       |   4 ++++
 testing/btest/Traces/dns-edns-cookie.pcap        | Bin 0 -> 1998 bytes
 .../base/protocols/dns/dns-edns-cookie.zeek      |   8 ++++++++
 3 files changed, 12 insertions(+)
 create mode 100644 testing/btest/Baseline/scripts.base.protocols.dns.dns-edns-cookie/output
 create mode 100644 testing/btest/Traces/dns-edns-cookie.pcap
 create mode 100644 testing/btest/scripts/base/protocols/dns/dns-edns-cookie.zeek

diff --git a/testing/btest/Baseline/scripts.base.protocols.dns.dns-edns-cookie/output b/testing/btest/Baseline/scripts.base.protocols.dns.dns-edns-cookie/output
new file mode 100644
index 0000000000..647a9fa22a
--- /dev/null
+++ b/testing/btest/Baseline/scripts.base.protocols.dns.dns-edns-cookie/output
@@ -0,0 +1,4 @@
+[client_cookie=\xc8\x14\x98Z\x92\x8acB, server_cookie=]
+[client_cookie=\xc8\x14\x98Z\x92\x8acB, server_cookie==\xcd>O{\xa9$z]
+[client_cookie=1;Pl\x0b\xdd\x04s, server_cookie=]
+[client_cookie=1;Pl\x0b\xdd\x04s, server_cookie=\xb0\xb1.E\xbahYl]
\ No newline at end of file
diff --git a/testing/btest/Traces/dns-edns-cookie.pcap b/testing/btest/Traces/dns-edns-cookie.pcap
new file mode 100644
index 0000000000000000000000000000000000000000..07b5ab158146985abc74dddcb0dd1c7bffd953b3
GIT binary patch
literal 1998
zcmbu8QAks96vofJ-sZjAvUy7}>A?pl7#JkeAT7i;p&;8pDFw+~S|cf0q?DC|D8Ytd
zMXd6{uu}8IWKr15$QKD$5kd)WXc0aHAwsQ(#Ll^QyLawRa5eUaZFl_s-}jyK%}kCz
zVu1to#Q}p~2AB36Uo101HGZb!-<i=|dgbx8#q5hL4>o`bdROQ&rUJtte6T<G5$=VO
z(#noZ{4<QPtE*xFfaNy%nY1(=!|?j52J<I+#<4QJWylDJ@H-uuE8ii}%ZYB$<xUfs
zZh(?-uiNRpfj5W);>ehAU!wPOEUz!pS#J>?ZxTqiAIX(SrK8bpiRzw7&@Cdp+hgLh
zX5Rxu^)3^chzEv^;6WN44bdGX-b+f%;j`YE*Ak)J)6V2cG2;WF!*#~h)_l@+BJG^}
z6#hUD3Qc$uzC_RiKef$Qf4j$72?k(6PkN^Qs17yRS%T@5-QmRSx-mPu#{{(tWwIW0
z_XKlWCZcQA2tK@!j)vG1<R#*TglWjc9H<?{X;5ZJd`d*9@w8u$T1o0KV3d8b$AClV
zJUWi<U@kf~#T@So?myBwl7ESuGj7uP5p||KTRYA+gtOf`i`yyBwjiCf5^;&!{IA4J
zByLfNe2kdgq7pS(T7rU<<=ccTLpU9WClhMt$CWGtRSg9^Y3z?9YW8ovjdq~xFuDFb
zr)bPWje$`lc6j+zy4?pQUdQ}2E{D`@%ge-WTSa<C-6lFG2&r|uuh19C#~Xsw?eAyf
zyWJG3YOspbZ6a4AIfePlx`RkJQ@39a#FDTU7wMWpM0|n7tEiohCfl}Xw|z>t<B8bq
zyVkWt*xT5}<ZY<iChGR?GJC5b#GS_tmy#Pgs`}IJ&dMC^&W=dj?oe`OuVX==W=|qT
z?qSm}Os$ywjUsXVX0L=K;y_X&Hv7(Yg%}|s)HHVePqSlw$DZ%9O`NW4m77gEf5$o3
z%t5>3(i|29bl*ukKJitVgAFGeA>zY&HOmx<*zAcfTH?16m6&8YVJXX>30ZdHboA8h
iH#cKhIt`emjWiy7rV=--QID=KORirj8taR6PQzbN4lHs2

literal 0
HcmV?d00001

diff --git a/testing/btest/scripts/base/protocols/dns/dns-edns-cookie.zeek b/testing/btest/scripts/base/protocols/dns/dns-edns-cookie.zeek
new file mode 100644
index 0000000000..6875099ec9
--- /dev/null
+++ b/testing/btest/scripts/base/protocols/dns/dns-edns-cookie.zeek
@@ -0,0 +1,8 @@
+# @TEST-EXEC: zeek -C -r $TRACES/dns-edns-cookie.pcap %INPUT > output
+# @TEST-EXEC: btest-diff output
+@load policy/protocols/dns/auth-addl
+
+event dns_EDNS_cookie(c: connection, msg: dns_msg, opt: dns_edns_cookie)
+    {
+        print opt;
+    } 
\ No newline at end of file