Fix a key generation issue in the tests

The dnssec-keygen command for the ZSK generation for the zone multisigner-model2.kasp was wrong (no ZSK was generated in the setup script, but when 'named' is started, the missing ZSK was created anyway by 'dnssec-policy'. (cherry picked from commit b93cb2e80e)
2026-04-22 23:01:43 -04:00 · 2025-02-24 11:36:53 +01:00 · 2025-02-24 11:36:53 +01:00 · 4be38b606a
commit 4be38b606a
parent 3de8fa8709
1 changed files with 1 additions and 1 deletions
--- a/bin/tests/system/kasp/ns3/setup.sh
+++ b/bin/tests/system/kasp/ns3/setup.sh
@ -130,7 +130,7 @@ $KEYGEN -G -k rsasha256 -l policies/kasp.conf $zone >keygen.out.$zone.2 2>&1
 zone="multisigner-model2.kasp"
 echo_i "setting up zone: $zone"
 KSK=$($KEYGEN -a $DEFAULT_ALGORITHM -f KSK -L 3600 -M 32768:65535 $zone 2>keygen.out.$zone.1)
-ZSK=$($KEYGEN -a $DEFAULT_ALGORITHM -L 3600 $zone -M 32768:65535 2>keygen.out.$zone.2)
+ZSK=$($KEYGEN -a $DEFAULT_ALGORITHM -L 3600 -M 32768:65535 $zone 2>keygen.out.$zone.2)
 cat "${KSK}.key" | grep -v ";.*" >>"${zone}.db"
 cat "${ZSK}.key" | grep -v ";.*" >>"${zone}.db"
 # Import the ZSK sets of the other providers into their DNSKEY RRset.