From a6c138336902d80b2c29f5a8f889c2535aef8f20 Mon Sep 17 00:00:00 2001
From: Martin Mares <mj@ucw.cz>
Date: Wed, 30 Jan 2019 15:05:40 +0100
Subject: [PATCH] genzone: A hook for hacks; do not forget to remove *.new

---
 bin/genzone | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/bin/genzone b/bin/genzone
index 4af0867..432ad43 100755
--- a/bin/genzone
+++ b/bin/genzone
@@ -33,7 +33,12 @@ else
 			echo >&2 "FATAL: Cannot establish zone origin for $Z"
 			exit 1
 		fi
-		if ! dnssec-signzone -a -d tmp -K keys/$Z $SIGNZONE_OPTIONS -f zone/$Z.signed -o $ORIGIN -S -3 - zone/$Z.new &>zone/$Z.tmp ; then
+		NSEC="-3 -"
+		if [ -f bin/dnssec-hacks ] ; then
+			# Undocumented hook for hacks
+			. bin/dnssec-hacks
+		fi
+		if ! dnssec-signzone -a -d tmp -K keys/$Z $SIGNZONE_OPTIONS -f zone/$Z.signed -o $ORIGIN -S $NSEC zone/$Z.new &>zone/$Z.tmp ; then
 			cat zone/$Z.tmp
 			echo >&2 "FATAL: Cannot sign $Z"
 			exit 1
@@ -41,6 +46,7 @@ else
 		rm -f zone/$Z.tmp
 		rm -f tmp/dsset-*
 		mv zone/$Z.signed zone/$Z
+		rm -f zone/$Z.new
 		SIGNED=" (signed)"
 	else
 		mv zone/$Z.new zone/$Z
-- 
2.39.2