ius/dnstools: comparison dnssec-keytool.pl

equal deleted inserted replaced

-:3b469e9bda9e
+:291588cb5e84
 use strict;
 use FindBin;
 sub read_conf {
-# liest die Konfiguration ein
+# read configuration
 my @configs = ("$FindBin::Bin/dnstools.conf", "/etc/dnstools.conf");
 our %config;
 for (grep { -f } @configs) {
 open(CONFIG, $_) or die "Can't open $_: $!\n";
 }
 close(CONFIG);
 }
 sub read_argv {
+# evaluate argv or print the help
-# wertet argv aus oder gibt die hilfe aus
 my $arg = shift @ARGV;
 my $zone;
 our $do;
 our @zones;
 our $master_dir;
 if (!defined $arg) {
 print " usage: dnssec-keytool <option> zone\n";
-print "   -z  erstellt einen neuen ZSK\n";
+print "   -z  created a new ZSK\n";
-print "   -k  erstellt je einen neuen ZSK und KSK\n";
+print "   -k  created a new ZSK and KSK\n";
-print "   -rm loescht das Schluesselmaterial einer Zone\n";
+print "   -rm deletes the key-set of a zone\n";
-print "   -c  erstellt bei existierenden ksk konfigurationsdateien\n";
+print "   -c  created configuration files for the dnstools\n";
-print "       fuer die dnstools, sowie einen neuen zsk\n";
+print "       and a new ZSK for an existing KSK\n";
 print "\n";
 exit;
 }
 elsif ($arg eq "-k")  { $do = "ksk"; }
 elsif ($arg eq "-rm") { $do = "rm"; }
 elsif ($arg eq "-c")  { $do = "ck"; }
 elsif ($arg eq "-z")  { $do = "zsk"; }
 else {
-print "keine gueltige Option.\n";
+print "not a valid option.\n";
 exit;
 }
-# prueft die zonen in argv ob es verwaltete zonen sind
+# checks the zones in argv if there are managed zones
 for (@ARGV) {
 chomp($zone = `idn --quiet "$_"`);
 if (-e "$master_dir/$zone/$zone") {
 push @zones, $zone;
 }
 }
 }
 sub rm_keys {
+# deletes all the keys were handed over -rm in argv
 our @zones;
 our $master_dir;
 my $zone;
 my @new_zone_content;
 my @old_zone_content;
 }
 if (-e "$zpf/keyset-$zone.") {
 unlink "$zpf/keyset-$zone." and $ep = 1;
 }
-for (`ls $zpf/K$zone*`) {
+for (glob("$zpf/K$zone*")) {
 chomp($_);
-print "weg du scheissezwerg $_";
+unlink ("$_");
-unlink("$_");
 }
 if ($ep == 1) {
-print " * $zone: schluesselmaterial entfernt\n";
+print " * $zone: removed key-set\n";
 }
 open(ZONE, "$zpf/$zone")
 or die "$zpf/$zone: $!\n";
 @old_zone_content = <ZONE>;
 open(INDEX, ">.index.ksk") or die "$zpf/.index.ksk: $!\n";
 print INDEX @index;
 close(INDEX);
 chomp($keyname);
-print " * $zone: neuer KSK $keyname\n";
+print " * $zone: new KSK $keyname\n";
-print "!! DER KSK muss der Chain of Trust veroeffentlicht werden !! \n";
+print "!! THE KSK must be published !! \n";
 }
 }
 sub creat_zsk {
 open(INDEX, ">.index.zsk") or die "$zpf/.index.zsk: $!\n";
 print INDEX @index;
 close(INDEX);
 chomp($keyname);
-print " * $zone: neuer ZSK $keyname\n";
+print " * $zone: new ZSK $keyname\n";
 open(KC, ">.keycounter") or die "$zpf/keycounter: $!\n";
 print KC "0";
 close(KC);
 s#\.key##;
 print INDEX "$_\n";
 }
 close(INDEX);
-print " * $zone: neue .index.ksk erzeugt\n";
+print " * $zone: new .index.ksk created\n";
 if (-f "$zpf/.index.zsk") {
 unlink("$zpf/.index.zsk") or die "$zpf/.index.zsk: $!\n";
 }
 }
 }
 sub kill_useless_keys {
-# die funktion loescht alle schluessel die nicht in der index.zsk
+# the function deletes all keys that are not available in the zone
-# der uebergebenen zone stehen
+# of index.zsk
 our $master_dir;
 my $zone    = $_[0];
 my @keylist = ();
 my $zpf     = "$master_dir/$zone";
 @keylist = <INDEX>;
 close(INDEX);
 open(INDEX, "<$zpf/.index.ksk") or die "$zpf/.index.ksk: $!\n";
 push @keylist, <INDEX>;
-# kuerzt die schluessel-bezeichnung aus der indexdatei auf die id um sie
+# shortened the key name from the index file on the id in order to
-# besser vergleichen zu koennen.
+# be able to compare
 for (@keylist) {
 chomp;
 s#K.*\+.*\+(.*)#$1#;
 }
-# prueft alle schluesseldateien (ksk, zsk) ob sie in der jeweiligen
+# reviewed every key file (KSK, ZSK), whether they are described in
-# indexdatei beschrieben sind. wenn nicht werden sie geloescht.
+# the respective index file. if not they will be deleted.
-for (`ls $master_dir/$zone/K*[key,private]`) {
+for ( glob("$master_dir/$zone/K*") {
 chomp;
 my $file     = $_;
 my $rm_count = 1;
 my $keyname;
 for (@keylist) {
 }
 }
 sub key_to_zonefile {
-# die funktion fugt alle schluessel in eine zonedatei
+# the function added all keys to the indexfile
 our $master_dir;
 my $zone = $_[0];
 my $zpf  = "$master_dir/$zone";
 my @old_content;
 my @new_content = ();
 }
 &read_conf;
 our %config;
-our $do;       # arbeitsschritte aus argv
+our $do;       # statements from argv
-our @zones;    # liste der zonen in argv
+our @zones;    # list of zones from argv
 our $master_dir      = $config{master_dir};
 our $bind_dir        = $config{bind_dir};
 our $conf_dir        = $config{zone_conf_dir};
 our $sign_alert_time = $config{sign_alert_time};
 our $indexzone       = $config{indexzone};
 our $key_counter_end = $config{key_counter_end};
 our $ablauf_zeit     = $config{abl_zeit};
 &read_argv;
-unless (@zones) { exit; }    # beendet das programm, wurden keine
+# completed the program, if not a valid zones was handed over
-# gueltigen zonen uebergeben
+unless (@zones) { exit; }
 if ($do eq "rm") { &rm_keys; exit; }
 if ($do eq "ck") { &ck_zone; }
 if ($do eq "ksk") { &creat_ksk; }
 &creat_zsk;
 &post_creat;
+__END__
+=pod
+=head1 NAME
+dnssec-keytool
+=head1 SYNOPSIS
+dnssec-keytool <option> zone
+=head1 DESCRIPTION

branch	hs12
changeset 53	291588cb5e84
parent 49	ae211c0aece0
parent 51	d4e31a2d4b5c
child 54	bba32c45a832