1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
|
# $Id$
"""
Start at the RPKI daemon. This isn't real yet. So far it's just a
framework onto which I'm bolting various parts for testing.
"""
import rpki.https, tlslite.api, rpki.config, rpki.resource_set, MySQLdb, rpki.cms
def left_right_handler(query, path):
try:
q_xml = rpki.cms.decode(query, cms_ta)
print q_xml
q_elt = lxml.etree.fromstring(q_xml)
rng.assertValid(q_elt)
saxer = rpki.left_right.sax_handler()
lxml.sax.saxify(q_elt, saxer)
q_msg = saxer.result
assert instanceof(q_msg, rpki.left_right.msg)
r_msg = rpki.left_right.msg()
for q_pdu in q_msg:
# Do something useful here
raise NotImplementedError
r_msg.append(r_pdu)
r_elt = r_msg.toXML()
rng.assertValid(r_elt)
r_xml = lxml.etree.tostring(r_elt, pretty_print=True, encoding="us-ascii", xml_declaration=True)
r_cms = rpki.cms.encode(r_xml, cfg.get(section, "cms-key"), cfg.multiget(section, "cms-cert"))
return 200, r_cms
except Exception, data:
return 500, "Unhandled exception %s" % data
def up_down_handler(query, path):
raise NotImplementedError
def cronjob_handler(query, path):
raise NotImplementedError
cfg = rpki.config.parser("re.conf")
section = "rpki"
db = MySQLdb.connect(user = cfg.get(section, "sql-username"),
db = cfg.get(section, "sql-database"),
passwd = cfg.get(section, "sql-password"))
cur = db.cursor()
cms_ta = cfg.get(section, "cms-ta")
privateKey = rpki.x509.RSA_Keypair(PEM_file = cfg.get(section, "https-key"))
certChain = rpki.x509.X509_chain()
certChain.load_from_PEM(cfg.multiget(section, "https-cert"))
rpki.https.server(privateKey=privateKey,
certChain=certChain,
handlers={"/left-right" : left_right_handler,
"/up-down" : up_down_handler,
"/cronjob" : cronjob_handler })
|
