From b4f0c0122729e332fe4d190be06ddbd0e40281fa Mon Sep 17 00:00:00 2001 From: David Howells Date: Tue, 29 Apr 2014 22:18:25 +0100 Subject: [PATCH] Implement "bos removekey" Signed-off-by: David Howells --- suite/commands/bos/removekey.py | 63 +++++++++++++++++++++++++++++++++ 1 file changed, 63 insertions(+) create mode 100644 suite/commands/bos/removekey.py diff --git a/suite/commands/bos/removekey.py b/suite/commands/bos/removekey.py new file mode 100644 index 0000000..bea0622 --- /dev/null +++ b/suite/commands/bos/removekey.py @@ -0,0 +1,63 @@ +# +# AFS Server management toolkit: Remove server keys +# -*- coding: utf-8 -*- +# + +__copyright__ = """ +Copyright (C) 2014 Red Hat, Inc. All Rights Reserved. +Written by David Howells (dhowells@redhat.com) + +This program is free software; you can redistribute it and/or modify +it under the terms of the GNU General Public Licence version 2 as +published by the Free Software Foundation. + +This program is distributed in the hope that it will be useful, +but WITHOUT ANY WARRANTY; without even the implied warranty of +MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +GNU General Public Licence for more details. + +You should have received a copy of the GNU General Public Licence +along with this program; if not, write to the Free Software +Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA +""" + +from afs.exception import AFSException +from afs.argparse import * +from afs.lib.output import * +from afs.lib.time import * +import kafs + +help = "Remove server encryption keys from the KeyFile file" + +command_arguments = [ + [ "server", get_bosserver, "rs", "" ], + [ "kvno", get_string, "rm" "+" ], + [ "cell", get_cell, "os", "" ], + [ "noauth", get_auth, "fn" ], + [ "localauth", get_auth, "fn" ], + [ "verbose", get_verbose, "fn" ], + [ "encrypt", get_dummy, "fn" ], +] + +cant_combine_arguments = [ + ( "cell", "localauth" ), + ( "noauth", "localauth" ), +] + +description = r""" +Remove server encryption keys from the KeyFile file +""" + +def main(params): + cell = params["cell"] + bos_conn = cell.open_bos_server(params["server"], params) + + trying = "?" + try: + for i in params["kvno"]: + trying = i + ret = kafs.BOZO_DeleteKey(bos_conn, int(i)) + except kafs.RemoteAbort as e: + if str(e) != "Aborted 70354689": + raise + errorf("failed to delete key {:s} (could not find entry)\n", trying) -- 2.49.0