only add ksk DNSKEY records to trustedkeys

author Kees Monshouwer <mind04@monshouwer.org>

Sat, 16 Nov 2013 22:04:18 +0000 (23:04 +0100)

committer mind04 <mind04@monshouwer.org>

Sat, 16 Nov 2013 22:04:18 +0000 (23:04 +0100)
author Kees Monshouwer <mind04@monshouwer.org>
Sat, 16 Nov 2013 22:04:18 +0000 (23:04 +0100)
committer mind04 <mind04@monshouwer.org>
Sat, 16 Nov 2013 22:04:18 +0000 (23:04 +0100)
diff --git a/regression-tests/00dnssec-grabkeys/command b/regression-tests/00dnssec-grabkeys/command

index 40808b5e9ddaa2651ca68857113e52e7faf5dbbb..a291ee1956c96c634b637b9a155d3ecfb6e789d1 100755 (executable)
--- a/regression-tests/00dnssec-grabkeys/command
+++ b/regression-tests/00dnssec-grabkeys/command
@@ -6,7 +6,7 @@ for zone in $(grep zone named.conf  | cut -f2 -d\")
  do
         if [ "${zone: 0:16}" != "secure-delegated" ]
         then
-               drill -p $port -o rd -D dnskey $zone @$nameserver | grep DNSKEY | grep -v '^;' | grep -v AwEAAarTiHhPgvD28WCN8UBXcEcf8f >> trustedkeys
+               drill -p $port -o rd -D dnskey $zone @$nameserver | grep DNSKEY | grep 257 | grep -v 'RRSIG' | grep -v '^;' | grep -v AwEAAarTiHhPgvD28WCN8UBXcEcf8f >> trustedkeys
         fi
         echo "stub-zone:" >> unbound-host.conf
         echo "  name: $zone" >> unbound-host.conf
author	Kees Monshouwer <mind04@monshouwer.org>
	Sat, 16 Nov 2013 22:04:18 +0000 (23:04 +0100)
committer	mind04 <mind04@monshouwer.org>
	Sat, 16 Nov 2013 22:04:18 +0000 (23:04 +0100)