ius/dnstools: comparison dnssec-creatkey

equal deleted inserted replaced

-:c02caf4e0eb6
+:0342c09abf97
 $config{$cname} = $ccont;
 }
 close (CONFIG);
-my $master_dir= $config{master_dir};
+my $master_dir = $config{master_dir};
-my $key_counter_end=$config{key_counter_end};
+my $key_counter_end = $config{key_counter_end};
 my @change;
 my @manu;
 my @index;
 my $zone;
 my $keyname;
 # prueft ob eingaben in ARGV domains sind und gibt sie in die liste @manu
 for (@ARGV) {
 	chomp (my $zone = `idn --quiet "$_"`);
-	if (-e "$master_dir/$zone") {
+	if (-d "$master_dir/$zone") {
 		push (@manu, $zone);
-	} else {
+	}
-		print " $zone ist keine verwaltete zone \n ";
+	else {
+		print " $zone not exist\n ";
 	}
 }
 # gibt alle zonen mit abgelaufenen keycounter in die liste @change
-for (<$master_dir/*>) {
+while (<$master_dir/*>) {
 	chomp ($zone = $_);
 	my $key;
-	if (-e "$zone/.keycounter") {
+	unless (-f "$zone/.keycounter") {
+		next
-		open (KEY, "$zone/.keycounter");
+	}
-		$key = <KEY>;
-		close (KEY);
+	open (KEY, "$zone/.keycounter") or die "$zone/.keycounter: $!\n";
+	$key = <KEY>;
-		if ($key_counter_end < $key) {
+	close (KEY);
-			$zone =~ s#($master_dir/)(.*)#$2#;
-			push (@change, $zone);
+	if ($key_counter_end <= $key) {
-		}
+		$zone =~ s#($master_dir/)(.*)#$2#;
+		push (@change, $zone);
 	}
 }
 #erzeugt zsks
 for (@change, @manu) {
 	$zone = $_;
-	chdir "$master_dir/$zone" or die "chdir nach / nicht moeglich: $1";
+	chdir "$master_dir/$zone" or die "$master_dir/$zone: $!\n";
 	$keyname = `dnssec-keygen -a RSASHA1 -b 512 -n ZONE $zone`;
-	if (-e ".index.zsk") {
+	unless (-f ".index.zsk") {
-		open (INDEX, ".index.zsk");
+		@index = ();
+	}
+	else {
+		open (INDEX, ".index.zsk") or die "$master_dir/$zone/.index.zsk: $!\n";
 		@index = <INDEX>;
 		close (INDEX);
-	} else {
-		@index = ();
 	}
 	push @index, $keyname;
 	if (@index > 2){
 		shift (@index);
 	}
-	open (INDEX, ">.index.zsk");
+	open (INDEX, ">.index.zsk") or die "$master_dir/$zone/.index.zsk: $!\n";
 	print INDEX @index;
 	close (INDEX);
 	chomp ($keyname);
 	print "$keyname (ZSK) erzeugt fuer $zone \n";
-	open (KC, ">.keycounter");
+	open (KC, ">.keycounter") or die "$master_dir/$zone/keycounter: $!\n";
 	print KC "0";
 	close (KC);
 }
 #erzeugt ksks
 for (@manu) {
 	$zone = $_;
-	chdir "$master_dir/$zone" or die "chdir nach / nicht moeglich: $1";
+	chdir "$master_dir/$zone" or die "$master_dir/$zone: $!\n";
 	$keyname = `dnssec-keygen -a RSASHA1 -b 2048 -f KSK -n ZONE $zone`;
-	if (-e ".index.ksk") {
+	unless (-f ".index.ksk") {
-		open (INDEX, ".index.ksk");
+		@index = ();
+	} else {
+		open (INDEX, ".index.ksk") or die "$master_dir/$zone/.index.ksk: $!\n";
 		@index = <INDEX>;
 		close (INDEX);
-	} else {
-		@index = ();
 	}
 	push @index, $keyname;
 	if (@index > 2){
 		shift (@index);
 	}
-	open (INDEX, ">.index.ksk");
+	open (INDEX, ">.index.ksk") or die "$master_dir/$zone/.index.ksk: $!\n";
 	print INDEX @index;
 	close (INDEX);
 	chomp ($keyname);
 	print "$keyname (KSK) erzeugt fuer $zone \n";
 	my @old_zone_content = ();
 	my @new_zone_content = ();
 	my @keylist = ();
 	my $file = ();
-	open (INDEX, "$master_dir/$zone/.index.zsk");
+	open (INDEX, "<$master_dir/$zone/.index.zsk") or die "$master_dir/$zone/.index.zsk: $!\n";
 	@keylist = <INDEX>;
 	close (INDEX);
-	open (INDEX, "$master_dir/$zone/.index.ksk");
+	open (INDEX, "<$master_dir/$zone/.index.ksk") or die "$master_dir/$zone/.index.ksk: $!\n";
 	push @keylist, <INDEX>;
 	close (INDEX);
-	open (ZONE, "$master_dir/$zone/$zone");
+	open (ZONE, "<$master_dir/$zone/$zone") or die "$master_dir/$zone/$zone: $!\n";
 	@old_zone_content = <ZONE>;
 	close (ZONE);
 	# kuerzt die schluessel-bezeichnung aus der indexdatei auf die id um sie
 	# besser vergleichen zu koennen.
-	foreach (@keylist) {
+	for (@keylist) {
 		chomp;
 		s#K.*\+.*\+(.*)#$1#;
 	}
 	# filtert alle schluessel aus der zonedatei
 	# old_zone_content ==> new_zone_content
-	foreach (@old_zone_content) {
+	for (@old_zone_content) {
 		unless (/IN\sDNSKEY/) {
 			push @new_zone_content, $_;
 		}
 	}
 	# prueft alle schluesseldateien (ksk, zsk) ob sie in der jeweiligen
 	# indexdatei beschrieben sind. wenn nicht werden sie geloescht.
-	foreach (`ls $master_dir/$zone/K*[key,private]`){
+	for (`ls $master_dir/$zone/K*[key,private]`){
 		chomp;
 		$file = $_;
 		my $rm_count = 1;
-		foreach (@keylist) {
+		for (@keylist) {
 			if ($file =~ /$_/) {
 				$rm_count = 0;
 				# schluessel die in der indexdatei standen, werden an die
 				# zonedatei angehangen.
 				if ($file =~ /.*key/) {
-					open (KEYFILE, "$file");
+					open (KEYFILE, "<$file") or next "$file: $!\n";
 					push @new_zone_content, <KEYFILE>;
 					close (KEYFILE);
 					last;
 				}
 			}
 		}
 		#loescht alle unbenoetigten schluessel
 		if ($rm_count == 1) {
-			print `rm -f $file`;
+			unlink "$file";
 		}
 	}
-	open (ZONE, ">$master_dir/$zone/$zone");
+	open (ZONE, ">$master_dir/$zone/$zone") or die "$master_dir/$zone/$zone: $!\n";
 	print ZONE @new_zone_content;
 	close (ZONE);
 	print "$master_dir/$zone/$zone wurde neu erstellt \n";
 }

changeset 26	0342c09abf97
parent 25	c02caf4e0eb6
child 27	d5337081ed02