Update zonechecks system test

Change test configuration to make use of 'dnssec-policy' instead of
'auto-dnssec'.

bin/tests/system/zonechecks/clean.sh

@@ -15,7 +15,7 @@ rm -f *.out
 rm -f */named.memstats
 rm -f */named.conf
 rm -f */named.run
-rm -f */*.db */*.db.signed */K*.key */K*.private */*.jnl */dsset-*
+rm -f */*.db */*.db.signed */K*.key */K*.private */K*.state */*.jnl */dsset-*
 rm -f */signer.err
 rm -f rndc.out.*
 rm -f ns*/named.lock

bin/tests/system/zonechecks/ns1/named.conf.in

@@ -35,6 +35,13 @@ controls {
 	inet 10.53.0.1 port @CONTROLPORT@ allow { any; } keys { rndc_key; };
 };
 
+dnssec-policy "zonechecks" {
+	keys {
+		ksk key-directory lifetime unlimited algorithm @DEFAULT_ALGORITHM@;
+		zsk key-directory lifetime unlimited algorithm @DEFAULT_ALGORITHM@;
+	};
+};
+
 view unused {
 	match-clients { none; };
 
@@ -52,7 +59,7 @@ view primary {
 		file "primary.db";
 		allow-update { any; };
 		allow-transfer { any; };
-		auto-dnssec maintain;
+		dnssec-policy zonechecks;
 	};
 
 	zone "bigserial.example" {