/* apps/ciphers.c */
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 * 
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 * 
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from 
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 * 
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 * 
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */

#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#ifdef OPENSSL_NO_STDIO
#define APPS_WIN16
#endif
#include "apps.h"
#include <openssl/err.h>
#include <openssl/ssl.h>

#undef PROG
#define PROG	ciphers_main

static const char *ciphers_usage[]={
"usage: ciphers args\n",
" -v          - verbose mode, a textual listing of the ciphers in SSLeay\n",
" -ssl2       - SSL2 mode\n",
" -ssl3       - SSL3 mode\n",
" -tls1       - TLS1 mode\n",
NULL
};

int MAIN(int, char **);

int MAIN(int argc, char **argv)
	{
	int ret=1,i;
	int verbose=0;
	const char **pp;
	const char *p;
	int badops=0;
	SSL_CTX *ctx=NULL;
	SSL *ssl=NULL;
	char *ciphers=NULL;
	SSL_METHOD *meth=NULL;
	STACK_OF(SSL_CIPHER) *sk;
	char buf[512];
	BIO *STDout=NULL;

#if !defined(OPENSSL_NO_SSL2) && !defined(OPENSSL_NO_SSL3)
	meth=SSLv23_server_method();
#elif !defined(OPENSSL_NO_SSL3)
	meth=SSLv3_server_method();
#elif !defined(OPENSSL_NO_SSL2)
	meth=SSLv2_server_method();
#endif

	apps_startup();

	if (bio_err == NULL)
		bio_err=BIO_new_fp(stderr,BIO_NOCLOSE);
	STDout=BIO_new_fp(stdout,BIO_NOCLOSE);
#ifdef OPENSSL_SYS_VMS
	{
	BIO *tmpbio = BIO_new(BIO_f_linebuffer());
	STDout = BIO_push(tmpbio, STDout);
	}
#endif

	argc--;
	argv++;
	while (argc >= 1)
		{
		if (strcmp(*argv,"-v") == 0)
			verbose=1;
#ifndef OPENSSL_NO_SSL2
		else if (strcmp(*argv,"-ssl2") == 0)
			meth=SSLv2_client_method();
#endif
#ifndef OPENSSL_NO_SSL3
		else if (strcmp(*argv,"-ssl3") == 0)
			meth=SSLv3_client_method();
#endif
#ifndef OPENSSL_NO_TLS1
		else if (strcmp(*argv,"-tls1") == 0)
			meth=TLSv1_client_method();
#endif
		else if ((strncmp(*argv,"-h",2) == 0) ||
			 (strcmp(*argv,"-?") == 0))
			{
			badops=1;
			break;
			}
		else
			{
			ciphers= *argv;
			}
		argc--;
		argv++;
		}

	if (badops)
		{
		for (pp=ciphers_usage; (*pp != NULL); pp++)
			BIO_printf(bio_err,"%s",*pp);
		goto end;
		}

	OpenSSL_add_ssl_algorithms();

	ctx=SSL_CTX_new(meth);
	if (ctx == NULL) goto err;
	if (ciphers != NULL) {
		if(!SSL_CTX_set_cipher_list(ctx,ciphers)) {
			BIO_printf(bio_err, "Error in cipher list\n");
			goto err;
		}
	}
	ssl=SSL_new(ctx);
	if (ssl == NULL) goto err;


	if (!verbose)
		{
		for (i=0; ; i++)
			{
			p=SSL_get_cipher_list(ssl,i);
			if (p == NULL) break;
			if (i != 0) BIO_printf(STDout,":");
			BIO_printf(STDout,"%s",p);
			}
		BIO_printf(STDout,"\n");
		}
	else
		{
		sk=SSL_get_ciphers(ssl);

		for (i=0; i<sk_SSL_CIPHER_num(sk); i++)
			{
			BIO_puts(STDout,SSL_CIPHER_description(
				sk_SSL_CIPHER_value(sk,i),
				buf,sizeof buf));
			}
		}

	ret=0;
	if (0)
		{
err:
		SSL_load_error_strings();
		ERR_print_errors(bio_err);
		}
end:
	if (ctx != NULL) SSL_CTX_free(ctx);
	if (ssl != NULL) SSL_free(ssl);
	if (STDout != NULL) BIO_free_all(STDout);
	apps_shutdown();
	OPENSSL_EXIT(ret);
	}

#n99'>99</a>
<a id='n100' href='#n100'>100</a>
<a id='n101' href='#n101'>101</a>
<a id='n102' href='#n102'>102</a>
<a id='n103' href='#n103'>103</a>
<a id='n104' href='#n104'>104</a>
<a id='n105' href='#n105'>105</a>
<a id='n106' href='#n106'>106</a>
<a id='n107' href='#n107'>107</a>
<a id='n108' href='#n108'>108</a>
<a id='n109' href='#n109'>109</a>
<a id='n110' href='#n110'>110</a>
<a id='n111' href='#n111'>111</a>
<a id='n112' href='#n112'>112</a>
<a id='n113' href='#n113'>113</a>
<a id='n114' href='#n114'>114</a>
<a id='n115' href='#n115'>115</a>
<a id='n116' href='#n116'>116</a>
<a id='n117' href='#n117'>117</a>
<a id='n118' href='#n118'>118</a>
<a id='n119' href='#n119'>119</a>
<a id='n120' href='#n120'>120</a>
<a id='n121' href='#n121'>121</a>
<a id='n122' href='#n122'>122</a>
<a id='n123' href='#n123'>123</a>
<a id='n124' href='#n124'>124</a>
<a id='n125' href='#n125'>125</a>
<a id='n126' href='#n126'>126</a>
<a id='n127' href='#n127'>127</a>
<a id='n128' href='#n128'>128</a>
<a id='n129' href='#n129'>129</a>
<a id='n130' href='#n130'>130</a>
<a id='n131' href='#n131'>131</a>
<a id='n132' href='#n132'>132</a>
<a id='n133' href='#n133'>133</a>
<a id='n134' href='#n134'>134</a>
<a id='n135' href='#n135'>135</a>
<a id='n136' href='#n136'>136</a>
<a id='n137' href='#n137'>137</a>
<a id='n138' href='#n138'>138</a>
<a id='n139' href='#n139'>139</a>
<a id='n140' href='#n140'>140</a>
<a id='n141' href='#n141'>141</a>
<a id='n142' href='#n142'>142</a>
<a id='n143' href='#n143'>143</a>
<a id='n144' href='#n144'>144</a>
<a id='n145' href='#n145'>145</a>
<a id='n146' href='#n146'>146</a>
<a id='n147' href='#n147'>147</a>
<a id='n148' href='#n148'>148</a>
<a id='n149' href='#n149'>149</a>
<a id='n150' href='#n150'>150</a>
<a id='n151' href='#n151'>151</a>
<a id='n152' href='#n152'>152</a>
<a id='n153' href='#n153'>153</a>
<a id='n154' href='#n154'>154</a>
<a id='n155' href='#n155'>155</a>
<a id='n156' href='#n156'>156</a>
<a id='n157' href='#n157'>157</a>
<a id='n158' href='#n158'>158</a>
<a id='n159' href='#n159'>159</a>
<a id='n160' href='#n160'>160</a>
<a id='n161' href='#n161'>161</a>
<a id='n162' href='#n162'>162</a>
<a id='n163' href='#n163'>163</a>
<a id='n164' href='#n164'>164</a>
<a id='n165' href='#n165'>165</a>
<a id='n166' href='#n166'>166</a>
<a id='n167' href='#n167'>167</a>
<a id='n168' href='#n168'>168</a>
<a id='n169' href='#n169'>169</a>
<a id='n170' href='#n170'>170</a>
<a id='n171' href='#n171'>171</a>
<a id='n172' href='#n172'>172</a>
<a id='n173' href='#n173'>173</a>
<a id='n174' href='#n174'>174</a>
<a id='n175' href='#n175'>175</a>
<a id='n176' href='#n176'>176</a>
<a id='n177' href='#n177'>177</a>
<a id='n178' href='#n178'>178</a>
<a id='n179' href='#n179'>179</a>
<a id='n180' href='#n180'>180</a>
<a id='n181' href='#n181'>181</a>
<a id='n182' href='#n182'>182</a>
<a id='n183' href='#n183'>183</a>
<a id='n184' href='#n184'>184</a>
<a id='n185' href='#n185'>185</a>
<a id='n186' href='#n186'>186</a>
<a id='n187' href='#n187'>187</a>
<a id='n188' href='#n188'>188</a>
<a id='n189' href='#n189'>189</a>
<a id='n190' href='#n190'>190</a>
<a id='n191' href='#n191'>191</a>
<a id='n192' href='#n192'>192</a>
<a id='n193' href='#n193'>193</a>
<a id='n194' href='#n194'>194</a>
<a id='n195' href='#n195'>195</a>
<a id='n196' href='#n196'>196</a>
<a id='n197' href='#n197'>197</a>
<a id='n198' href='#n198'>198</a>
<a id='n199' href='#n199'>199</a>
<a id='n200' href='#n200'>200</a>
<a id='n201' href='#n201'>201</a>
<a id='n202' href='#n202'>202</a>
<a id='n203' href='#n203'>203</a>
<a id='n204' href='#n204'>204</a>
<a id='n205' href='#n205'>205</a>
<a id='n206' href='#n206'>206</a>
<a id='n207' href='#n207'>207</a>
<a id='n208' href='#n208'>208</a>
<a id='n209' href='#n209'>209</a>
<a id='n210' href='#n210'>210</a>
<a id='n211' href='#n211'>211</a>
<a id='n212' href='#n212'>212</a>
<a id='n213' href='#n213'>213</a>
<a id='n214' href='#n214'>214</a>
<a id='n215' href='#n215'>215</a>
<a id='n216' href='#n216'>216</a>
<a id='n217' href='#n217'>217</a>
<a id='n218' href='#n218'>218</a>
<a id='n219' href='#n219'>219</a>
<a id='n220' href='#n220'>220</a>
<a id='n221' href='#n221'>221</a>
<a id='n222' href='#n222'>222</a>
<a id='n223' href='#n223'>223</a>
<a id='n224' href='#n224'>224</a>
<a id='n225' href='#n225'>225</a>
<a id='n226' href='#n226'>226</a>
<a id='n227' href='#n227'>227</a>
<a id='n228' href='#n228'>228</a>
<a id='n229' href='#n229'>229</a>
<a id='n230' href='#n230'>230</a>
<a id='n231' href='#n231'>231</a>
<a id='n232' href='#n232'>232</a>
<a id='n233' href='#n233'>233</a>
<a id='n234' href='#n234'>234</a>
<a id='n235' href='#n235'>235</a>
<a id='n236' href='#n236'>236</a>
<a id='n237' href='#n237'>237</a>
<a id='n238' href='#n238'>238</a>
<a id='n239' href='#n239'>239</a>
<a id='n240' href='#n240'>240</a>
<a id='n241' href='#n241'>241</a>
<a id='n242' href='#n242'>242</a>
<a id='n243' href='#n243'>243</a>
<a id='n244' href='#n244'>244</a>
<a id='n245' href='#n245'>245</a>
<a id='n246' href='#n246'>246</a>
<a id='n247' href='#n247'>247</a>
<a id='n248' href='#n248'>248</a>
<a id='n249' href='#n249'>249</a>
<a id='n250' href='#n250'>250</a>
<a id='n251' href='#n251'>251</a>
<a id='n252' href='#n252'>252</a>
<a id='n253' href='#n253'>253</a>
<a id='n254' href='#n254'>254</a>
<a id='n255' href='#n255'>255</a>
<a id='n256' href='#n256'>256</a>
<a id='n257' href='#n257'>257</a>
<a id='n258' href='#n258'>258</a>
<a id='n259' href='#n259'>259</a>
</pre></td>
<td class='lines'><pre><code><style>pre { line-height: 125%; }
td.linenos .normal { color: inherit; background-color: transparent; padding-left: 5px; padding-right: 5px; }
span.linenos { color: inherit; background-color: transparent; padding-left: 5px; padding-right: 5px; }
td.linenos .special { color: #000000; background-color: #ffffc0; padding-left: 5px; padding-right: 5px; }
span.linenos.special { color: #000000; background-color: #ffffc0; padding-left: 5px; padding-right: 5px; }
.highlight .hll { background-color: #ffffcc }
.highlight .c { color: #888 } /* Comment */
.highlight .err { color: #A61717; background-color: #E3D2D2 } /* Error */
.highlight .k { color: #080; font-weight: bold } /* Keyword */
.highlight .ch { color: #888 } /* Comment.Hashbang */
.highlight .cm { color: #888 } /* Comment.Multiline */
.highlight .cp { color: #C00; font-weight: bold } /* Comment.Preproc */
.highlight .cpf { color: #888 } /* Comment.PreprocFile */
.highlight .c1 { color: #888 } /* Comment.Single */
.highlight .cs { color: #C00; font-weight: bold; background-color: #FFF0F0 } /* Comment.Special */
.highlight .gd { color: #000; background-color: #FDD } /* Generic.Deleted */
.highlight .ge { font-style: italic } /* Generic.Emph */
.highlight .ges { font-weight: bold; font-style: italic } /* Generic.EmphStrong */
.highlight .gr { color: #A00 } /* Generic.Error */
.highlight .gh { color: #333 } /* Generic.Heading */
.highlight .gi { color: #000; background-color: #DFD } /* Generic.Inserted */
.highlight .go { color: #888 } /* Generic.Output */
.highlight .gp { color: #555 } /* Generic.Prompt */
.highlight .gs { font-weight: bold } /* Generic.Strong */
.highlight .gu { color: #666 } /* Generic.Subheading */
.highlight .gt { color: #A00 } /* Generic.Traceback */
.highlight .kc { color: #080; font-weight: bold } /* Keyword.Constant */
.highlight .kd { color: #080; font-weight: bold } /* Keyword.Declaration */
.highlight .kn { color: #080; font-weight: bold } /* Keyword.Namespace */
.highlight .kp { color: #080 } /* Keyword.Pseudo */
.highlight .kr { color: #080; font-weight: bold } /* Keyword.Reserved */
.highlight .kt { color: #888; font-weight: bold } /* Keyword.Type */
.highlight .m { color: #00D; font-weight: bold } /* Literal.Number */
.highlight .s { color: #D20; background-color: #FFF0F0 } /* Literal.String */
.highlight .na { color: #369 } /* Name.Attribute */
.highlight .nb { color: #038 } /* Name.Builtin */
.highlight .nc { color: #B06; font-weight: bold } /* Name.Class */
.highlight .no { color: #036; font-weight: bold } /* Name.Constant */
.highlight .nd { color: #555 } /* Name.Decorator */
.highlight .ne { color: #B06; font-weight: bold } /* Name.Exception */
.highlight .nf { color: #06B; font-weight: bold } /* Name.Function */
.highlight .nl { color: #369; font-style: italic } /* Name.Label */
.highlight .nn { color: #B06; font-weight: bold } /* Name.Namespace */
.highlight .py { color: #369; font-weight: bold } /* Name.Property */
.highlight .nt { color: #B06; font-weight: bold } /* Name.Tag */
.highlight .nv { color: #369 } /* Name.Variable */
.highlight .ow { color: #080 } /* Operator.Word */
.highlight .w { color: #BBB } /* Text.Whitespace */
.highlight .mb { color: #00D; font-weight: bold } /* Literal.Number.Bin */
.highlight .mf { color: #00D; font-weight: bold } /* Literal.Number.Float */
.highlight .mh { color: #00D; font-weight: bold } /* Literal.Number.Hex */
.highlight .mi { color: #00D; font-weight: bold } /* Literal.Number.Integer */
.highlight .mo { color: #00D; font-weight: bold } /* Literal.Number.Oct */
.highlight .sa { color: #D20; background-color: #FFF0F0 } /* Literal.String.Affix */
.highlight .sb { color: #D20; background-color: #FFF0F0 } /* Literal.String.Backtick */
.highlight .sc { color: #D20; background-color: #FFF0F0 } /* Literal.String.Char */
.highlight .dl { color: #D20; background-color: #FFF0F0 } /* Literal.String.Delimiter */
.highlight .sd { color: #D20; background-color: #FFF0F0 } /* Literal.String.Doc */
.highlight .s2 { color: #D20; background-color: #FFF0F0 } /* Literal.String.Double */
.highlight .se { color: #04D; background-color: #FFF0F0 } /* Literal.String.Escape */
.highlight .sh { color: #D20; background-color: #FFF0F0 } /* Literal.String.Heredoc */
.highlight .si { color: #33B; background-color: #FFF0F0 } /* Literal.String.Interpol */
.highlight .sx { color: #2B2; background-color: #F0FFF0 } /* Literal.String.Other */
.highlight .sr { color: #080; background-color: #FFF0FF } /* Literal.String.Regex */
.highlight .s1 { color: #D20; background-color: #FFF0F0 } /* Literal.String.Single */
.highlight .ss { color: #A60; background-color: #FFF0F0 } /* Literal.String.Symbol */
.highlight .bp { color: #038 } /* Name.Builtin.Pseudo */
.highlight .fm { color: #06B; font-weight: bold } /* Name.Function.Magic */
.highlight .vc { color: #369 } /* Name.Variable.Class */
.highlight .vg { color: #D70 } /* Name.Variable.Global */
.highlight .vi { color: #33B } /* Name.Variable.Instance */
.highlight .vm { color: #369 } /* Name.Variable.Magic */
.highlight .il { color: #00D; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span><span class="sd">&quot;&quot;&quot;</span>
<span class="sd">IR database daemon.</span>

<span class="sd">Usage: python irdbd.py [ { -c | --config } configfile ] [ { -h | --help } ]</span>

<span class="sd">This is the old (pre-Django) version of irdbd, still used by smoketest</span>
<span class="sd">and perhaps still useful as a minimal example.</span>

<span class="sd">$Id$</span>

<span class="sd">Copyright (C) 2009--2012  Internet Systems Consortium (&quot;ISC&quot;)</span>

<span class="sd">Permission to use, copy, modify, and distribute this software for any</span>
<span class="sd">purpose with or without fee is hereby granted, provided that the above</span>
<span class="sd">copyright notice and this permission notice appear in all copies.</span>

<span class="sd">THE SOFTWARE IS PROVIDED &quot;AS IS&quot; AND ISC DISCLAIMS ALL WARRANTIES WITH</span>
<span class="sd">REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY</span>
<span class="sd">AND FITNESS.  IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,</span>
<span class="sd">INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM</span>
<span class="sd">LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE</span>
<span class="sd">OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR</span>
<span class="sd">PERFORMANCE OF THIS SOFTWARE.</span>

<span class="sd">Portions copyright (C) 2007--2008  American Registry for Internet Numbers (&quot;ARIN&quot;)</span>

<span class="sd">Permission to use, copy, modify, and distribute this software for any</span>
<span class="sd">purpose with or without fee is hereby granted, provided that the above</span>
<span class="sd">copyright notice and this permission notice appear in all copies.</span>

<span class="sd">THE SOFTWARE IS PROVIDED &quot;AS IS&quot; AND ARIN DISCLAIMS ALL WARRANTIES WITH</span>
<span class="sd">REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY</span>
<span class="sd">AND FITNESS.  IN NO EVENT SHALL ARIN BE LIABLE FOR ANY SPECIAL, DIRECT,</span>
<span class="sd">INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM</span>
<span class="sd">LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE</span>
<span class="sd">OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR</span>
<span class="sd">PERFORMANCE OF THIS SOFTWARE.</span>
<span class="sd">&quot;&quot;&quot;</span>

<span class="kn">import</span><span class="w"> </span><span class="nn">sys</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">os</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">time</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">getopt</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">urlparse</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.http</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.config</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.resource_set</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.relaxng</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.exceptions</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.left_right</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.log</span>
<span class="kn">import</span><span class="w"> </span><span class="nn">rpki.x509</span>

<span class="kn">from</span><span class="w"> </span><span class="nn">rpki.mysql_import</span><span class="w"> </span><span class="kn">import</span> <span class="n">MySQLdb</span>

<span class="k">class</span><span class="w"> </span><span class="nc">main</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>


  <span class="k">def</span><span class="w"> </span><span class="nf">handle_list_resources</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">q_pdu</span><span class="p">,</span> <span class="n">r_msg</span><span class="p">):</span>

    <span class="n">r_pdu</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">list_resources_elt</span><span class="p">()</span>
    <span class="n">r_pdu</span><span class="o">.</span><span class="n">tag</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">tag</span>
    <span class="n">r_pdu</span><span class="o">.</span><span class="n">self_handle</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span>
    <span class="n">r_pdu</span><span class="o">.</span><span class="n">child_handle</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">child_handle</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">execute</span><span class="p">(</span>
      <span class="s2">&quot;SELECT registrant_id, valid_until FROM registrant WHERE registry_handle = </span><span class="si">%s</span><span class="s2"> AND registrant_handle = </span><span class="si">%s</span><span class="s2">&quot;</span><span class="p">,</span>
      <span class="p">(</span><span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span><span class="p">,</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">child_handle</span><span class="p">))</span>

    <span class="k">if</span> <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">rowcount</span> <span class="o">!=</span> <span class="mi">1</span><span class="p">:</span>
      <span class="k">raise</span> <span class="n">rpki</span><span class="o">.</span><span class="n">exceptions</span><span class="o">.</span><span class="n">NotInDatabase</span><span class="p">,</span> \
            <span class="s2">&quot;This query should have produced a single exact match, something&#39;s messed up (rowcount = </span><span class="si">%d</span><span class="s2">, self_handle = </span><span class="si">%s</span><span class="s2">, child_handle = </span><span class="si">%s</span><span class="s2">)&quot;</span> \
            <span class="o">%</span> <span class="p">(</span><span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">rowcount</span><span class="p">,</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span><span class="p">,</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">child_handle</span><span class="p">)</span>

    <span class="n">registrant_id</span><span class="p">,</span> <span class="n">valid_until</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">fetchone</span><span class="p">()</span>

    <span class="n">r_pdu</span><span class="o">.</span><span class="n">valid_until</span> <span class="o">=</span> <span class="n">valid_until</span><span class="o">.</span><span class="n">strftime</span><span class="p">(</span><span class="s2">&quot;%Y-%m-</span><span class="si">%d</span><span class="s2">T%H:%M:%SZ&quot;</span><span class="p">)</span>

    <span class="n">r_pdu</span><span class="o">.</span><span class="n">asn</span>  <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">resource_set</span><span class="o">.</span><span class="n">resource_set_as</span><span class="o">.</span><span class="n">from_sql</span><span class="p">(</span>
      <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="p">,</span>
      <span class="s2">&quot;SELECT start_as, end_as FROM registrant_asn WHERE registrant_id = </span><span class="si">%s</span><span class="s2">&quot;</span><span class="p">,</span>
      <span class="p">(</span><span class="n">registrant_id</span><span class="p">,))</span>

    <span class="n">r_pdu</span><span class="o">.</span><span class="n">ipv4</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">resource_set</span><span class="o">.</span><span class="n">resource_set_ipv4</span><span class="o">.</span><span class="n">from_sql</span><span class="p">(</span>
      <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="p">,</span>
      <span class="s2">&quot;SELECT start_ip, end_ip FROM registrant_net WHERE registrant_id = </span><span class="si">%s</span><span class="s2"> AND version = 4&quot;</span><span class="p">,</span>
      <span class="p">(</span><span class="n">registrant_id</span><span class="p">,))</span>

    <span class="n">r_pdu</span><span class="o">.</span><span class="n">ipv6</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">resource_set</span><span class="o">.</span><span class="n">resource_set_ipv6</span><span class="o">.</span><span class="n">from_sql</span><span class="p">(</span>
      <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="p">,</span>
      <span class="s2">&quot;SELECT start_ip, end_ip FROM registrant_net WHERE registrant_id = </span><span class="si">%s</span><span class="s2"> AND version = 6&quot;</span><span class="p">,</span>
      <span class="p">(</span><span class="n">registrant_id</span><span class="p">,))</span>

    <span class="n">r_msg</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">r_pdu</span><span class="p">)</span>


  <span class="k">def</span><span class="w"> </span><span class="nf">handle_list_roa_requests</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">q_pdu</span><span class="p">,</span> <span class="n">r_msg</span><span class="p">):</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">execute</span><span class="p">(</span>
      <span class="s2">&quot;SELECT roa_request_id, asn FROM roa_request WHERE roa_request_handle = </span><span class="si">%s</span><span class="s2">&quot;</span><span class="p">,</span>
      <span class="p">(</span><span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span><span class="p">,))</span>

    <span class="k">for</span> <span class="n">roa_request_id</span><span class="p">,</span> <span class="n">asn</span> <span class="ow">in</span> <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">fetchall</span><span class="p">():</span>

      <span class="n">r_pdu</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">list_roa_requests_elt</span><span class="p">()</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">tag</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">tag</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">self_handle</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">asn</span> <span class="o">=</span> <span class="n">asn</span>

      <span class="n">r_pdu</span><span class="o">.</span><span class="n">ipv4</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">resource_set</span><span class="o">.</span><span class="n">roa_prefix_set_ipv4</span><span class="o">.</span><span class="n">from_sql</span><span class="p">(</span>
        <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="p">,</span>
        <span class="s2">&quot;SELECT prefix, prefixlen, max_prefixlen FROM roa_request_prefix WHERE roa_request_id = </span><span class="si">%s</span><span class="s2"> AND version = 4&quot;</span><span class="p">,</span>
        <span class="p">(</span><span class="n">roa_request_id</span><span class="p">,))</span>

      <span class="n">r_pdu</span><span class="o">.</span><span class="n">ipv6</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">resource_set</span><span class="o">.</span><span class="n">roa_prefix_set_ipv6</span><span class="o">.</span><span class="n">from_sql</span><span class="p">(</span>
        <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="p">,</span>
        <span class="s2">&quot;SELECT prefix, prefixlen, max_prefixlen FROM roa_request_prefix WHERE roa_request_id = </span><span class="si">%s</span><span class="s2"> AND version = 6&quot;</span><span class="p">,</span>
        <span class="p">(</span><span class="n">roa_request_id</span><span class="p">,))</span>

      <span class="n">r_msg</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">r_pdu</span><span class="p">)</span>


  <span class="k">def</span><span class="w"> </span><span class="nf">handle_list_ghostbuster_requests</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">q_pdu</span><span class="p">,</span> <span class="n">r_msg</span><span class="p">):</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">execute</span><span class="p">(</span>
      <span class="s2">&quot;SELECT vcard  FROM ghostbuster_request WHERE self_handle = </span><span class="si">%s</span><span class="s2"> AND parent_handle = </span><span class="si">%s</span><span class="s2">&quot;</span><span class="p">,</span>
      <span class="p">(</span><span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span><span class="p">,</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">parent_handle</span><span class="p">))</span>

    <span class="n">vcards</span> <span class="o">=</span> <span class="p">[</span><span class="n">result</span><span class="p">[</span><span class="mi">0</span><span class="p">]</span> <span class="k">for</span> <span class="n">result</span> <span class="ow">in</span> <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">fetchall</span><span class="p">()]</span>

    <span class="k">if</span> <span class="ow">not</span> <span class="n">vcards</span><span class="p">:</span>

      <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">execute</span><span class="p">(</span>
        <span class="s2">&quot;SELECT vcard  FROM ghostbuster_request WHERE self_handle = </span><span class="si">%s</span><span class="s2"> AND parent_handle IS NULL&quot;</span><span class="p">,</span>
        <span class="p">(</span><span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span><span class="p">,))</span>

      <span class="n">vcards</span> <span class="o">=</span> <span class="p">[</span><span class="n">result</span><span class="p">[</span><span class="mi">0</span><span class="p">]</span> <span class="k">for</span> <span class="n">result</span> <span class="ow">in</span> <span class="bp">self</span><span class="o">.</span><span class="n">cur</span><span class="o">.</span><span class="n">fetchall</span><span class="p">()]</span>

    <span class="k">for</span> <span class="n">vcard</span> <span class="ow">in</span> <span class="n">vcards</span><span class="p">:</span>
      <span class="n">r_pdu</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">list_ghostbuster_requests_elt</span><span class="p">()</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">tag</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">tag</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">self_handle</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">parent_handle</span> <span class="o">=</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">parent_handle</span>
      <span class="n">r_pdu</span><span class="o">.</span><span class="n">vcard</span> <span class="o">=</span> <span class="n">vcard</span>
      <span class="n">r_msg</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">r_pdu</span><span class="p">)</span>


  <span class="n">handle_dispatch</span> <span class="o">=</span> <span class="p">{</span>
    <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">list_resources_elt</span>            <span class="p">:</span> <span class="n">handle_list_resources</span><span class="p">,</span>
    <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">list_roa_requests_elt</span>         <span class="p">:</span> <span class="n">handle_list_roa_requests</span><span class="p">,</span>
    <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">list_ghostbuster_requests_elt</span> <span class="p">:</span> <span class="n">handle_list_ghostbuster_requests</span><span class="p">}</span>


  <span class="k">def</span><span class="w"> </span><span class="nf">handler</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">query</span><span class="p">,</span> <span class="n">path</span><span class="p">,</span> <span class="n">cb</span><span class="p">):</span>
    <span class="k">try</span><span class="p">:</span>

      <span class="bp">self</span><span class="o">.</span><span class="n">db</span><span class="o">.</span><span class="n">ping</span><span class="p">(</span><span class="kc">True</span><span class="p">)</span>

      <span class="n">r_msg</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">msg</span><span class="o">.</span><span class="n">reply</span><span class="p">()</span>

      <span class="k">try</span><span class="p">:</span>

        <span class="n">q_msg</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">cms_msg</span><span class="p">(</span><span class="n">DER</span> <span class="o">=</span> <span class="n">query</span><span class="p">)</span><span class="o">.</span><span class="n">unwrap</span><span class="p">((</span><span class="bp">self</span><span class="o">.</span><span class="n">bpki_ta</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rpkid_cert</span><span class="p">))</span>

        <span class="k">if</span> <span class="ow">not</span> <span class="nb">isinstance</span><span class="p">(</span><span class="n">q_msg</span><span class="p">,</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">msg</span><span class="p">)</span> <span class="ow">or</span> <span class="ow">not</span> <span class="n">q_msg</span><span class="o">.</span><span class="n">is_query</span><span class="p">():</span>
          <span class="k">raise</span> <span class="n">rpki</span><span class="o">.</span><span class="n">exceptions</span><span class="o">.</span><span class="n">BadQuery</span><span class="p">,</span> <span class="s2">&quot;Unexpected </span><span class="si">%r</span><span class="s2"> PDU&quot;</span> <span class="o">%</span> <span class="n">q_msg</span>

        <span class="k">for</span> <span class="n">q_pdu</span> <span class="ow">in</span> <span class="n">q_msg</span><span class="p">:</span>

          <span class="k">try</span><span class="p">:</span>

            <span class="k">try</span><span class="p">:</span>
              <span class="n">h</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">handle_dispatch</span><span class="p">[</span><span class="nb">type</span><span class="p">(</span><span class="n">q_pdu</span><span class="p">)]</span>
            <span class="k">except</span> <span class="ne">KeyError</span><span class="p">:</span>
              <span class="k">raise</span> <span class="n">rpki</span><span class="o">.</span><span class="n">exceptions</span><span class="o">.</span><span class="n">BadQuery</span><span class="p">,</span> <span class="s2">&quot;Unexpected </span><span class="si">%r</span><span class="s2"> PDU&quot;</span> <span class="o">%</span> <span class="n">q_pdu</span>
            <span class="k">else</span><span class="p">:</span>
              <span class="n">h</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">q_pdu</span><span class="p">,</span> <span class="n">r_msg</span><span class="p">)</span>

          <span class="k">except</span> <span class="p">(</span><span class="n">rpki</span><span class="o">.</span><span class="k">async</span><span class="o">.</span><span class="n">ExitNow</span><span class="p">,</span> <span class="ne">SystemExit</span><span class="p">):</span>
            <span class="k">raise</span>

          <span class="k">except</span> <span class="ne">Exception</span><span class="p">,</span> <span class="n">e</span><span class="p">:</span>
            <span class="n">rpki</span><span class="o">.</span><span class="n">log</span><span class="o">.</span><span class="n">traceback</span><span class="p">()</span>
            <span class="n">r_msg</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">report_error_elt</span><span class="o">.</span><span class="n">from_exception</span><span class="p">(</span><span class="n">e</span><span class="p">,</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">self_handle</span><span class="p">,</span> <span class="n">q_pdu</span><span class="o">.</span><span class="n">tag</span><span class="p">))</span>

      <span class="k">except</span> <span class="p">(</span><span class="n">rpki</span><span class="o">.</span><span class="k">async</span><span class="o">.</span><span class="n">ExitNow</span><span class="p">,</span> <span class="ne">SystemExit</span><span class="p">):</span>
        <span class="k">raise</span>

      <span class="k">except</span> <span class="ne">Exception</span><span class="p">,</span> <span class="n">e</span><span class="p">:</span>
        <span class="n">rpki</span><span class="o">.</span><span class="n">log</span><span class="o">.</span><span class="n">traceback</span><span class="p">()</span>
        <span class="n">r_msg</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">report_error_elt</span><span class="o">.</span><span class="n">from_exception</span><span class="p">(</span><span class="n">e</span><span class="p">))</span>

      <span class="n">cb</span><span class="p">(</span><span class="mi">200</span><span class="p">,</span> <span class="n">body</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">left_right</span><span class="o">.</span><span class="n">cms_msg</span><span class="p">()</span><span class="o">.</span><span class="n">wrap</span><span class="p">(</span><span class="n">r_msg</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">irdbd_key</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">irdbd_cert</span><span class="p">))</span>

    <span class="k">except</span> <span class="p">(</span><span class="n">rpki</span><span class="o">.</span><span class="k">async</span><span class="o">.</span><span class="n">ExitNow</span><span class="p">,</span> <span class="ne">SystemExit</span><span class="p">):</span>
      <span class="k">raise</span>

    <span class="k">except</span> <span class="ne">Exception</span><span class="p">,</span> <span class="n">e</span><span class="p">:</span>
      <span class="n">rpki</span><span class="o">.</span><span class="n">log</span><span class="o">.</span><span class="n">traceback</span><span class="p">()</span>

      <span class="c1"># We only get here in cases where we couldn&#39;t or wouldn&#39;t generate</span>
      <span class="c1"># &lt;report_error/&gt;, so just return HTTP failure.</span>

      <span class="n">cb</span><span class="p">(</span><span class="mi">500</span><span class="p">,</span> <span class="n">reason</span> <span class="o">=</span> <span class="s2">&quot;Unhandled exception </span><span class="si">%s</span><span class="s2">: </span><span class="si">%s</span><span class="s2">&quot;</span> <span class="o">%</span> <span class="p">(</span><span class="n">e</span><span class="o">.</span><span class="vm">__class__</span><span class="o">.</span><span class="vm">__name__</span><span class="p">,</span> <span class="n">e</span><span class="p">))</span>


  <span class="k">def</span><span class="w"> </span><span class="fm">__init__</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>

    <span class="n">os</span><span class="o">.</span><span class="n">environ</span><span class="p">[</span><span class="s2">&quot;TZ&quot;</span><span class="p">]</span> <span class="o">=</span> <span class="s2">&quot;UTC&quot;</span>
    <span class="n">time</span><span class="o">.</span><span class="n">tzset</span><span class="p">()</span>

    <span class="n">cfg_file</span> <span class="o">=</span> <span class="kc">None</span>

    <span class="n">opts</span><span class="p">,</span> <span class="n">argv</span> <span class="o">=</span> <span class="n">getopt</span><span class="o">.</span><span class="n">getopt</span><span class="p">(</span><span class="n">sys</span><span class="o">.</span><span class="n">argv</span><span class="p">[</span><span class="mi">1</span><span class="p">:],</span> <span class="s2">&quot;c:dh?&quot;</span><span class="p">,</span> <span class="p">[</span><span class="s2">&quot;config=&quot;</span><span class="p">,</span> <span class="s2">&quot;debug&quot;</span><span class="p">,</span> <span class="s2">&quot;help&quot;</span><span class="p">])</span>
    <span class="k">for</span> <span class="n">o</span><span class="p">,</span> <span class="n">a</span> <span class="ow">in</span> <span class="n">opts</span><span class="p">:</span>
      <span class="k">if</span> <span class="n">o</span> <span class="ow">in</span> <span class="p">(</span><span class="s2">&quot;-h&quot;</span><span class="p">,</span> <span class="s2">&quot;--help&quot;</span><span class="p">,</span> <span class="s2">&quot;-?&quot;</span><span class="p">):</span>
        <span class="nb">print</span> <span class="vm">__doc__</span>
        <span class="n">sys</span><span class="o">.</span><span class="n">exit</span><span class="p">(</span><span class="mi">0</span><span class="p">)</span>
      <span class="k">if</span> <span class="n">o</span> <span class="ow">in</span> <span class="p">(</span><span class="s2">&quot;-c&quot;</span><span class="p">,</span> <span class="s2">&quot;--config&quot;</span><span class="p">):</span>
        <span class="n">cfg_file</span> <span class="o">=</span> <span class="n">a</span>
      <span class="k">elif</span> <span class="n">o</span> <span class="ow">in</span> <span class="p">(</span><span class="s2">&quot;-d&quot;</span><span class="p">,</span> <span class="s2">&quot;--debug&quot;</span><span class="p">):</span>
        <span class="n">rpki</span><span class="o">.</span><span class="n">log</span><span class="o">.</span><span class="n">use_syslog</span> <span class="o">=</span> <span class="kc">False</span>
    <span class="k">if</span> <span class="n">argv</span><span class="p">:</span>
      <span class="k">raise</span> <span class="n">rpki</span><span class="o">.</span><span class="n">exceptions</span><span class="o">.</span><span class="n">CommandParseFailure</span><span class="p">,</span> <span class="s2">&quot;Unexpected arguments </span><span class="si">%s</span><span class="s2">&quot;</span> <span class="o">%</span> <span class="n">argv</span>

    <span class="n">rpki</span><span class="o">.</span><span class="n">log</span><span class="o">.</span><span class="n">init</span><span class="p">(</span><span class="s2">&quot;irdbd&quot;</span><span class="p">)</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span> <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">config</span><span class="o">.</span><span class="n">parser</span><span class="p">(</span><span class="n">cfg_file</span><span class="p">,</span> <span class="s2">&quot;irdbd&quot;</span><span class="p">)</span>

    <span class="n">startup_msg</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;startup-message&quot;</span><span class="p">,</span> <span class="s2">&quot;&quot;</span><span class="p">)</span>
    <span class="k">if</span> <span class="n">startup_msg</span><span class="p">:</span>
      <span class="n">rpki</span><span class="o">.</span><span class="n">log</span><span class="o">.</span><span class="n">info</span><span class="p">(</span><span class="n">startup_msg</span><span class="p">)</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">set_global_flags</span><span class="p">()</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">db</span> <span class="o">=</span> <span class="n">MySQLdb</span><span class="o">.</span><span class="n">connect</span><span class="p">(</span><span class="n">user</span>   <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;sql-username&quot;</span><span class="p">),</span>
                              <span class="n">db</span>     <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;sql-database&quot;</span><span class="p">),</span>
                              <span class="n">passwd</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;sql-password&quot;</span><span class="p">))</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">cur</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">db</span><span class="o">.</span><span class="n">cursor</span><span class="p">()</span>
    <span class="bp">self</span><span class="o">.</span><span class="n">db</span><span class="o">.</span><span class="n">autocommit</span><span class="p">(</span><span class="kc">True</span><span class="p">)</span>

    <span class="bp">self</span><span class="o">.</span><span class="n">bpki_ta</span>         <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">x509</span><span class="o">.</span><span class="n">X509</span><span class="p">(</span><span class="n">Auto_update</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;bpki-ta&quot;</span><span class="p">))</span>
    <span class="bp">self</span><span class="o">.</span><span class="n">rpkid_cert</span>      <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">x509</span><span class="o">.</span><span class="n">X509</span><span class="p">(</span><span class="n">Auto_update</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;rpkid-cert&quot;</span><span class="p">))</span>
    <span class="bp">self</span><span class="o">.</span><span class="n">irdbd_cert</span>      <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">x509</span><span class="o">.</span><span class="n">X509</span><span class="p">(</span><span class="n">Auto_update</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;irdbd-cert&quot;</span><span class="p">))</span>
    <span class="bp">self</span><span class="o">.</span><span class="n">irdbd_key</span>       <span class="o">=</span> <span class="n">rpki</span><span class="o">.</span><span class="n">x509</span><span class="o">.</span><span class="n">RSA</span><span class="p">(</span> <span class="n">Auto_update</span> <span class="o">=</span> <span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;irdbd-key&quot;</span><span class="p">))</span>

    <span class="n">u</span> <span class="o">=</span> <span class="n">urlparse</span><span class="o">.</span><span class="n">urlparse</span><span class="p">(</span><span class="bp">self</span><span class="o">.</span><span class="n">cfg</span><span class="o">.</span><span class="n">get</span><span class="p">(</span><span class="s2">&quot;http-url&quot;</span><span class="p">))</span>

    <span class="k">assert</span> <span class="n">u</span><span class="o">.</span><span class="n">scheme</span> <span class="ow">in</span> <span class="p">(</span><span class="s2">&quot;&quot;</span><span class="p">,</span> <span class="s2">&quot;http&quot;</span><span class="p">)</span> <span class="ow">and</span> \
           <span class="n">u</span><span class="o">.</span><span class="n">username</span> <span class="ow">is</span> <span class="kc">None</span> <span class="ow">and</span> \
           <span class="n">u</span><span class="o">.</span><span class="n">password</span> <span class="ow">is</span> <span class="kc">None</span> <span class="ow">and</span> \
           <span class="n">u</span><span class="o">.</span><span class="n">params</span>   <span class="o">==</span> <span class="s2">&quot;&quot;</span> <span class="ow">and</span> \
           <span class="n">u</span><span class="o">.</span><span class="n">query</span>    <span class="o">==</span> <span class="s2">&quot;&quot;</span> <span class="ow">and</span> \
           <span class="n">u</span><span class="o">.</span><span class="n">fragment</span> <span class="o">==</span> <span class="s2">&quot;&quot;</span>

    <span class="n">rpki</span><span class="o">.</span><span class="n">http</span><span class="o">.</span><span class="n">server</span><span class="p">(</span><span class="n">host</span>         <span class="o">=</span> <span class="n">u</span><span class="o">.</span><span class="n">hostname</span> <span class="ow">or</span> <span class="s2">&quot;localhost&quot;</span><span class="p">,</span>
                     <span class="n">port</span>         <span class="o">=</span> <span class="n">u</span><span class="o">.</span><span class="n">port</span> <span class="ow">or</span> <span class="mi">443</span><span class="p">,</span>
                     <span class="n">handlers</span>     <span class="o">=</span> <span class="p">((</span><span class="n">u</span><span class="o">.</span><span class="n">path</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">handler</span><span class="p">),))</span>
</pre></div>