From: Martin Mares <mj@ucw.cz>
Date: Wed, 30 Jan 2019 14:05:40 +0000 (+0100)
Subject: genzone: A hook for hacks; do not forget to remove *.new
X-Git-Tag: v5.1~13
X-Git-Url: http://mj.ucw.cz/gitweb/?a=commitdiff_plain;ds=sidebyside;h=a6c138336902d80b2c29f5a8f889c2535aef8f20;p=nsc-5.git

genzone: A hook for hacks; do not forget to remove *.new
---

diff --git a/bin/genzone b/bin/genzone
index 4af0867..432ad43 100755
--- a/bin/genzone
+++ b/bin/genzone
@@ -33,7 +33,12 @@ else
 			echo >&2 "FATAL: Cannot establish zone origin for $Z"
 			exit 1
 		fi
-		if ! dnssec-signzone -a -d tmp -K keys/$Z $SIGNZONE_OPTIONS -f zone/$Z.signed -o $ORIGIN -S -3 - zone/$Z.new &>zone/$Z.tmp ; then
+		NSEC="-3 -"
+		if [ -f bin/dnssec-hacks ] ; then
+			# Undocumented hook for hacks
+			. bin/dnssec-hacks
+		fi
+		if ! dnssec-signzone -a -d tmp -K keys/$Z $SIGNZONE_OPTIONS -f zone/$Z.signed -o $ORIGIN -S $NSEC zone/$Z.new &>zone/$Z.tmp ; then
 			cat zone/$Z.tmp
 			echo >&2 "FATAL: Cannot sign $Z"
 			exit 1
@@ -41,6 +46,7 @@ else
 		rm -f zone/$Z.tmp
 		rm -f tmp/dsset-*
 		mv zone/$Z.signed zone/$Z
+		rm -f zone/$Z.new
 		SIGNED=" (signed)"
 	else
 		mv zone/$Z.new zone/$Z