Move all of the testbed-related scripts to the scripts/ directory

svn path=/myrpki/apnic-to-csv.py; revision=3192

1 files changed, 65 insertions, 0 deletions

diff --git a/scripts/testbed-rootcert.py b/scripts/testbed-rootcert.py
new file mode 100644
index 00000000..54d1480c
--- /dev/null
+++ b/scripts/testbed-rootcert.py
@@ -0,0 +1,65 @@
+"""
+Generate config for a test RPKI root certificate for resources
+specified in asns.csv and prefixes.csv.
+
+This script is separate from arin-to-csv.py so that we can convert on
+the fly rather than having to pull the entire database into memory.
+
+$Id$
+
+Copyright (C) 2009-2010  Internet Systems Consortium ("ISC")
+
+Permission to use, copy, modify, and distribute this software for any
+purpose with or without fee is hereby granted, provided that the above
+copyright notice and this permission notice appear in all copies.
+
+THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
+REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
+AND FITNESS.  IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
+INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
+LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
+OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
+PERFORMANCE OF THIS SOFTWARE.
+"""
+
+import csv, myrpki, sys
+
+if len(sys.argv) != 2:
+  raise RuntimeError, "Usage: %s [holder]" % sys.argv[0]
+
+print '''\
+[req]
+default_bits                    = 2048
+default_md                      = sha256
+distinguished_name              = req_dn
+prompt                          = no
+encrypt_key                     = no
+
+[req_dn]
+CN                              = Pseudo-%(HOLDER)s testbed root RPKI certificate
+
+[x509v3_extensions]
+basicConstraints                = critical,CA:true
+subjectKeyIdentifier            = hash
+keyUsage                        = critical,keyCertSign,cRLSign
+subjectInfoAccess               = 1.3.6.1.5.5.7.48.5;URI:rsync://%(holder)s.rpki.net/rpki/%(holder)s/,1.3.6.1.5.5.7.48.10;URI:rsync://%(holder)s.rpki.net/rpki/%(holder)s/root.mnf
+certificatePolicies             = critical,1.3.6.1.5.5.7.14.2
+sbgp-autonomousSysNum           = critical,@rfc3779_asns
+sbgp-ipAddrBlock                = critical,@rfc3997_addrs
+
+[rfc3779_asns]
+''' % { "holder" : sys.argv[1].lower(),
+        "HOLDER" : sys.argv[1].upper() }
+
+for i, asn in enumerate(asn for handle, asn in myrpki.csv_reader("asns.csv", columns = 2)):
+  print "AS.%d = %s" % (i, asn)
+
+print '''\
+
+[rfc3997_addrs]
+
+'''
+
+for i, prefix in enumerate(prefix for handle, prefix in myrpki.csv_reader("prefixes.csv", columns = 2)):
+  v = 6 if ":" in prefix else 4
+  print "IPv%d.%d = %s" % (v, i, prefix)