- local subdomain=$1
- local domain=$2
- local prefix=_${DANE_PORT:-443}._tcp
- [[ $subdomain = "@" ]] || prefix=$prefix.$subdomain
- print "$subdomain CAA 0 issue \"ca.cypherpunks.ru\""
- print "$subdomain CAA 0 issue \"cagost.cypherpunks.ru\""
- pushd ~/secure/ca
- local hsh=$(~/work/zeasypki/zeasypki dane ee/ecdsa/ca.cypherpunks.ru/$domain)
- print "$prefix TLSA 3 1 1 $hsh"
- [[ -e ee/gost/cagost.cypherpunks.ru/$domain ]] && {
- hsh=$(~/work/zeasypki/zeasypki dane ee/gost/cagost.cypherpunks.ru/$domain)
- print "$prefix TLSA 3 1 1 $hsh"
+ local domain=`fqdn $1`
+ local dirname=${domain%%.}
+ pushd tls
+ for ca (ca/*/*(on)) {
+ ca=(${(s#/#)ca})
+ ca=${(j:/:)ca[2,-1]}
+ [[ -d ee/$ca/$dirname ]] || continue
+ print "`shortened $domain` CAA 0 issue \"${ca:t}\""
+ print "`shortened _${DANE_PORT:-443}._tcp.$domain` TLSA 3 1 1 `zeasypki dane ee/$ca/$dirname`"