???<!-- GIF89;a -->
123123123123
.....................................................................................................................................???<!-- GIF89;a -->
123123123123
.....................................................................................................................................3
½Pik  ã               @   s¢   d dl mZ d dlZd dlZd dlZd dlZd dlZd dlZd dlZd dl	Z	d dl
mZ dZd dlmZmZmZmZmZmZ dd„ Zddd	„Zd
d„ Zdd„ ZdS )é    )Úprint_functionN)Údefaultdictzdnssec-keymgr)ÚdnskeyÚkeydictÚ	keyseriesÚpolicyÚparsetabÚutilsc              O   s   t | |Ž tjdƒ d S )Né   )ÚprintÚsysÚexit)ÚargsÚkwargs© r   ú/usr/lib/python3.6/keymgr.pyÚfatal   s    
r   c             C   s†   |}| s(t jj|ƒ s(t j|t jƒ r‚t jd }|s>t jj}xB|jt jƒD ]2}|t j	 |  }t jj|ƒrzt j|t jƒrzP d}qLW |S )a2   find the location of a specified command. If a default is supplied,
    exists and it's an executable, we use it; otherwise we search PATH
    for an alternative.
    :param command: command to look for
    :param default: default value to use
    :return: PATH with the location of a suitable binary
    ÚPATHN)
ÚosÚpathÚisfileÚaccessÚX_OKÚenvironÚdefpathÚsplitÚpathsepÚsep)ZcommandÚdefaultZfpathr   Z	directoryr   r   r   Úset_path   s    $
r   c              C   sÊ  t dtjjtjdƒdƒƒ} t dtjjtjdƒdƒƒ}tjtd d}|j	dt
ddd;d |j	ddt
ddd |j	ddt
ddd |j	dd| t
ddd |j	ddt
dddd |j	dd|t
ddd |j	d d!d"d#d$d% |j	d&d'd"d#d(d% |j	d)d*d+d"d#d<d% |j	d.d/d0d"d#d1d% |j	d2d3d4tjd5 |jƒ }|jrJ|jrJtd6ƒ |jdkr^td7ƒ |jdkrrtd8ƒ |jdk	ržtjj|jƒsÆtd9|j ƒ n(tjjtjd:ƒ|_tjj|jƒsÆd|_|S )=zc Read command line arguments, returns 'args' object
    :return: args object properly prepared
    zdnssec-keygenZsbinzdnssec-settimezA: schedule DNSSEC key rollovers according to a pre-defined policy)ÚdescriptionÚzoneÚ*Nz.Zone(s) to which the policy should be applied z%(default: all zones in the directory))ÚtypeÚnargsr   Úhelpz-Kr   zDirectory containing keysÚdir)Údestr#   r%   Úmetavarz-cÚ
policyfilezPolicy definition fileÚfilez-gÚkeygenzPath to 'dnssec-keygen')r'   r   r#   r%   r(   z-rÚ	randomdevz@Path to a file containing random data to pass to 'dnssec-keygen')r'   r#   r   r%   r(   z-sÚsettimezPath to 'dnssec-settime'z-kÚno_zskÚ
store_trueFz,Only apply policy to key-signing keys (KSKs))r'   Úactionr   r%   z-zÚno_kskz-Only apply policy to zone-signing keys (ZSKs)z-fz--forceÚforcezForce updates to key events zeven if they are in the pastz-qz--quietÚquietzUpdate keys silentlyz-vz	--versionÚversion)r0   r4   z)ERROR: -z and -k cannot be used together.zERROR: dnssec-keygen not foundzERROR: dnssec-settime not foundz!ERROR: Policy file "%s" not foundzdnssec-policy.confzSZone(s) to which the policy should be applied (default: all zones in the directory)z8Force updates to key events even if they are in the past)r   r   r   Újoinr	   ÚprefixÚargparseÚArgumentParserÚprogÚadd_argumentÚstrr4   Ú
parse_argsr.   r1   r   r+   r-   r)   ÚexistsZ
sysconfdir)r+   r-   Úparserr   r   r   r   r<   6   sb     






r<   c           :   C   sH  t ƒ } | j| j| j| jdœ}ytj| jƒ}W n2 tk
r^ } zt	dt
|ƒ ƒ W Y d d }~X nX yt|| j| jd}W n2 tk
r¨ } zt	dt
|ƒ ƒ W Y d d }~X nX yt||d}W n2 tk
rì } zt	dt
|ƒ ƒ W Y d d }~X nX y |j|| j| j| j| jd W n4 tk
rB } zt	dt
|ƒ ƒ W Y d d }~X nX d S )	N)Zkeygen_pathZsettime_pathZ	keys_pathr,   zUnable to load DNSSEC policy: )r   Zzonesz Unable to build key dictionary: )ÚcontextzUnable to build key series: )ZkskZzskr2   r3   zUnable to apply policy: )r<   r+   r-   r   r,   r   Zdnssec_policyr)   Ú	Exceptionr   r;   r   r!   r   Zenforce_policyr.   r1   r2   r3   )r   r?   ZdpÚeZkdZksr   r   r   Úmain}   s,    
"""rB   )N)Z
__future__r   r   r   r7   ZglobÚreZtimeZcalendarÚpprintÚcollectionsr   r9   Ziscr   r   r   r   r   r	   r   r   r<   rB   r   r   r   r   Ú<module>   s   @ 
G