Gecko [ sachasauda.akalacademy.ac.in ]

Name	Size	Permission
__init__.py	936 B	-rw-r--r--
__init__.pyc	617 B	-rw-r--r--
__init__.pyo	617 B	-rw-r--r--
checkds.py	6.49 KB	-rw-r--r--
checkds.pyc	5.29 KB	-rw-r--r--
checkds.pyo	5.29 KB	-rw-r--r--
coverage.py	9.61 KB	-rw-r--r--
coverage.pyc	7.37 KB	-rw-r--r--
coverage.pyo	7.37 KB	-rw-r--r--
dnskey.py	15.9 KB	-rw-r--r--
dnskey.pyc	16.59 KB	-rw-r--r--
dnskey.pyo	16.59 KB	-rw-r--r--
eventlist.py	5.71 KB	-rw-r--r--
eventlist.pyc	4.83 KB	-rw-r--r--
eventlist.pyo	4.83 KB	-rw-r--r--
keydict.py	2.67 KB	-rw-r--r--
keydict.pyc	3.21 KB	-rw-r--r--
keydict.pyo	3.21 KB	-rw-r--r--
keyevent.py	2.76 KB	-rw-r--r--
keyevent.pyc	2.32 KB	-rw-r--r--
keyevent.pyo	2.32 KB	-rw-r--r--
keymgr.py	6.35 KB	-rw-r--r--
keymgr.pyc	4.91 KB	-rw-r--r--
keymgr.pyo	4.91 KB	-rw-r--r--
keyseries.py	7.34 KB	-rw-r--r--
keyseries.pyc	5 KB	-rw-r--r--
keyseries.pyo	5 KB	-rw-r--r--
keyzone.py	1.86 KB	-rw-r--r--
keyzone.pyc	1.54 KB	-rw-r--r--
keyzone.pyo	1.54 KB	-rw-r--r--
parsetab.py	9.98 KB	-rw-r--r--
parsetab.pyc	10.36 KB	-rw-r--r--
parsetab.pyo	10.36 KB	-rw-r--r--
policy.py	25.8 KB	-rw-r--r--
policy.pyc	22.62 KB	-rw-r--r--
policy.pyo	22.62 KB	-rw-r--r--
rndc.py	6.54 KB	-rw-r--r--
rndc.pyc	6.34 KB	-rw-r--r--
rndc.pyo	6.34 KB	-rw-r--r--
utils.py	2.17 KB	-rw-r--r--
utils.pyc	1.59 KB	-rw-r--r--
utils.pyo	1.59 KB	-rw-r--r--

Code Editor : keymgr.py

############################################################################
# Copyright (C) Internet Systems Consortium, Inc. ("ISC")
#
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
#
# See the COPYRIGHT file distributed with this work for additional
# information regarding copyright ownership.
############################################################################

from __future__ import print_function
import os, sys, argparse, glob, re, time, calendar, pprint
from collections import defaultdict

prog='dnssec-keymgr'

from isc import dnskey, keydict, keyseries, policy, parsetab, utils

############################################################################
# print a fatal error and exit
############################################################################
def fatal(*args, **kwargs):
    print(*args, **kwargs)
    sys.exit(1)

############################################################################
# find the location of an external command
############################################################################
def set_path(command, default=None):
    """ find the location of a specified command. If a default is supplied,
    exists and it's an executable, we use it; otherwise we search PATH
    for an alternative.
    :param command: command to look for
    :param default: default value to use
    :return: PATH with the location of a suitable binary
    """
    fpath = default
    if not fpath or not os.path.isfile(fpath) or not os.access(fpath, os.X_OK):
        path = os.environ["PATH"]
        if not path:
            path = os.path.defpath
        for directory in path.split(os.pathsep):
            fpath = directory + os.sep + command
            if os.path.isfile(fpath) and os.access(fpath, os.X_OK):
                break
            fpath = None

return fpath

############################################################################
# parse arguments
############################################################################
def parse_args():
    """ Read command line arguments, returns 'args' object
    :return: args object properly prepared
    """

keygen = set_path('dnssec-keygen',
                      os.path.join(utils.prefix('sbin'), 'dnssec-keygen'))
    settime = set_path('dnssec-settime',
                       os.path.join(utils.prefix('sbin'), 'dnssec-settime'))

parser = argparse.ArgumentParser(description=prog + ': schedule '
                                     'DNSSEC key rollovers according to a '
                                     'pre-defined policy')

parser.add_argument('zone', type=str, nargs='*', default=None,
                        help='Zone(s) to which the policy should be applied ' +
                        '(default: all zones in the directory)')
    parser.add_argument('-K', dest='path', type=str,
                        help='Directory containing keys', metavar='dir')
    parser.add_argument('-c', dest='policyfile', type=str,
                        help='Policy definition file', metavar='file')
    parser.add_argument('-g', dest='keygen', default=keygen, type=str,
                        help='Path to \'dnssec-keygen\'',
                        metavar='path')
    parser.add_argument('-r', dest='randomdev', type=str, default=None,
                        help='Path to a file containing random data to pass to \'dnssec-keygen\'',
                        metavar='path')
    parser.add_argument('-s', dest='settime', default=settime, type=str,
                        help='Path to \'dnssec-settime\'',
                        metavar='path')
    parser.add_argument('-k', dest='no_zsk',
                        action='store_true', default=False,
                        help='Only apply policy to key-signing keys (KSKs)')
    parser.add_argument('-z', dest='no_ksk',
                        action='store_true', default=False,
                        help='Only apply policy to zone-signing keys (ZSKs)')
    parser.add_argument('-f', '--force', dest='force', action='store_true',
                        default=False, help='Force updates to key events '+
                        'even if they are in the past')
    parser.add_argument('-q', '--quiet', dest='quiet', action='store_true',
                        default=False, help='Update keys silently')
    parser.add_argument('-v', '--version', action='version',
                        version=utils.version)

args = parser.parse_args()

if args.no_zsk and args.no_ksk:
        fatal("ERROR: -z and -k cannot be used together.")

if args.keygen is None:
        fatal("ERROR: dnssec-keygen not found")

if args.settime is None:
        fatal("ERROR: dnssec-settime not found")

# if a policy file was specified, check that it exists.
    # if not, use the default file, unless it doesn't exist
    if args.policyfile is not None:
        if not os.path.exists(args.policyfile):
            fatal('ERROR: Policy file "%s" not found' % args.policyfile)
    else:
        args.policyfile = os.path.join(utils.sysconfdir,
                                       'dnssec-policy.conf')
        if not os.path.exists(args.policyfile):
            args.policyfile = None

return args

############################################################################
# main
############################################################################
def main():
    args = parse_args()

# As we may have specific locations for the binaries, we put that info
    # into a context object that can be passed around
    context = {'keygen_path': args.keygen,
               'settime_path': args.settime,
               'keys_path': args.path,
               'randomdev': args.randomdev}

try:
        dp = policy.dnssec_policy(args.policyfile)
    except Exception as e:
        fatal('Unable to load DNSSEC policy: ' + str(e))

try:
        kd = keydict(dp, path=args.path, zones=args.zone)
    except Exception as e:
        fatal('Unable to build key dictionary: ' + str(e))

try:
        ks = keyseries(kd, context=context)
    except Exception as e:
        fatal('Unable to build key series: ' + str(e))

try:
        ks.enforce_policy(dp, ksk=args.no_zsk, zsk=args.no_ksk,
                          force=args.force, quiet=args.quiet)
    except Exception as e:
        fatal('Unable to apply policy: ' + str(e))

${this.title}

Code Editor : keymgr.py