Fuzzing DNS Zone Parsers

This is a little disturbing; nsd is kind of a big deal, and afl on zone files is a pretty basic test to run. Kudos to the author for doing it, but why haven&#x27;t the authors of nsd done it already, and what else haven&#x27;t they done?<p>There is really no good reason for DNS servers to be written in C anymore.

Nobody knows how to parse zone files.<p>I fuzzed a few zone file parsers several years ago, but to find the differences between implementations rather than crashes.<p>The problem is the format is really poorly specified, has been refined over about 10 RFCs, and still riddled with ambiguities. Every implementation out there handles things slightly differently.<p>I&#x27;ll just dump some notes I wrote at the time, containing a list of RFCs and some findings, to gist:<p><a href="https:&#x2F;&#x2F;gist.github.com&#x2F;nlyan&#x2F;2a958fa476182e1b07955a945f0d7052" rel="nofollow">https:&#x2F;&#x2F;gist.github.com&#x2F;nlyan&#x2F;2a958fa476182e1b07955a945f0d70...</a>

Excellent! Would you be willing to do a second article on the process you used when wading through the findings?