DNSSEC: Complete support for key delegations to sub-domains

[nsc-5.git] / m4 / dnslib.m4

diff --git a/m4/dnslib.m4 b/m4/dnslib.m4
index 6cdb921c95b2c355eb4207b3fa7b541fe9563128..5c43bc6cdb54bc5011f31bd155b0aefe862a976e 100644 (file)
--- a/m4/dnslib.m4
+++ b/m4/dnslib.m4
@@ -70,6 +70,11 @@ define(nsc_iterate, `define(`nsc_iter', defn(`$1'))nsc_itera(shift($@))')
 
 define(REV, `nsc_if_v6($1,`nsc_revblock6($1).ip6.arpa',`nsc_revaddr($1).in-addr.arpa')')
 
+# DNSSEC wrapper
+
+define(`USE_DNSSEC')
+define(`DNSSEC', `define(`USE_DNSSEC',1)$1define(`USE_DNSSEC')')
+
 # A for loop macro from m4 doc
 
 define(`nsc_forloop',
@@ -85,14 +90,10 @@ define(`nsc_fatal_error', `errprint(`NSC error: $1
 
 # Default values of parameters
 
-define(`NAMED_RESTART_CMD', `ndc reload')
+define(`NAMED_RESTART_CMD', `rndc reload')
 
-define(`ROOT', `/etc/named')
 define(`CFDIR', `cf')
-define(`ZONEDIR', `zone')
-define(`BAKDIR', `bak')
 define(`VERSDIR', `ver')
-define(`HASHDIR', `hash')
 define(`ROOTCACHE', `root.cache')
 
 define(`REFRESH', HOURS(8))
@@ -103,6 +104,10 @@ define(`NSNAME', translit(esyscmd(`hostname -f'),`
 ',`'))
 define(`MAINTNAME', `root'.`nsc_corr_dot(NSNAME)')
 
+define(`KEYGEN_OPTIONS', `-a RSASHA256 -b 1024')
+define(`SIGNZONE_OPTIONS', `-e +'DAYS(365))
+define(`DSFROMKEY_OPTIONS', `')
+
 # And finally we change comments to semicolons to be compatible with the zone files
 
 changecom(;)