1
0
mirror of https://github.com/moepman/acertmgr.git synced 2025-01-04 01:25:24 +01:00

dns.nsupdate: Simplify key_file key_name lookup

This commit is contained in:
Kishi85 2019-03-18 13:20:45 +01:00
parent 57e955d1f0
commit 1b95f512ed

View File

@ -34,24 +34,12 @@ DEFAULT_KEY_ALGORITHM = "HMAC-MD5.SIG-ALG.REG.INT"
class ChallengeHandler(DNSChallengeHandler): class ChallengeHandler(DNSChallengeHandler):
@staticmethod @staticmethod
def _find_first_key_name(tsig_key_file): def _read_tsigkey(tsig_key_file, key_name=None):
try:
with io.open(tsig_key_file) as key_file:
key_struct = key_file.read()
return re.search(r"key \"?([^\"{ ]+?)\"? {.*};", key_struct, re.DOTALL).group(1)
except IOError as exc:
print(exc)
raise Exception(
"A problem was encountered opening your keyfile, %s." % tsig_key_file)
except AttributeError as exc:
print(exc)
raise Exception("Failed to find first key name")
@staticmethod
def _read_tsigkey(tsig_key_file, key_name):
try: try:
with io.open(tsig_key_file) as key_file: with io.open(tsig_key_file) as key_file:
key_struct = key_file.read() key_struct = key_file.read()
if not key_name:
key_name = re.search(r"key \"?([^\"{ ]+?)\"? {.*};", key_struct, re.DOTALL).group(1)
key_data = re.search(r"key \"?%s\"? {(.*?)};" % key_name, key_struct, re.DOTALL).group(1) key_data = re.search(r"key \"?%s\"? {(.*?)};" % key_name, key_struct, re.DOTALL).group(1)
algorithm = re.search(r"algorithm ([a-zA-Z0-9_-]+?);", key_data, re.DOTALL).group(1) algorithm = re.search(r"algorithm ([a-zA-Z0-9_-]+?);", key_data, re.DOTALL).group(1)
tsig_secret = re.search(r"secret \"(.*?)\"", key_data, re.DOTALL).group(1) tsig_secret = re.search(r"secret \"(.*?)\"", key_data, re.DOTALL).group(1)
@ -128,11 +116,7 @@ class ChallengeHandler(DNSChallengeHandler):
def __init__(self, config): def __init__(self, config):
DNSChallengeHandler.__init__(self, config) DNSChallengeHandler.__init__(self, config)
if 'nsupdate_keyfile' in config: if 'nsupdate_keyfile' in config:
if 'nsupdate_keyname' in config: nsupdate_keyname = config.get("nsupdate_keyname", None)
nsupdate_keyname = config.get("nsupdate_keyname")
else:
nsupdate_keyname = self._find_first_key_name(config.get("nsupdate_keyfile"))
self.keyring, self.keyalgorithm = self._read_tsigkey(config.get("nsupdate_keyfile"), nsupdate_keyname) self.keyring, self.keyalgorithm = self._read_tsigkey(config.get("nsupdate_keyfile"), nsupdate_keyname)
else: else:
self.keyring = dns.tsigkeyring.from_text({ self.keyring = dns.tsigkeyring.from_text({