summaryrefslogtreecommitdiff
path: root/op-mode-definitions
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2021-07-23 19:35:20 +0200
committerGitHub <noreply@github.com>2021-07-23 19:35:20 +0200
commit7273a6a0a05a000680ee549b76dd40762b73c2d0 (patch)
treed359fb3ee4450c37aaf288b54292f119b973e049 /op-mode-definitions
parenta55585a833a23e64adb666558b3d358523f6cb39 (diff)
parent77a9473915b46879bae504dfa3c1c4d0d60fa2e9 (diff)
downloadvyos-1x-7273a6a0a05a000680ee549b76dd40762b73c2d0.tar.gz
vyos-1x-7273a6a0a05a000680ee549b76dd40762b73c2d0.zip
Merge pull request #939 from sarthurdev/pki_file
pki: T3642: Add ability to write generated certificates/keys to files
Diffstat (limited to 'op-mode-definitions')
-rw-r--r--op-mode-definitions/pki.xml.in116
1 files changed, 112 insertions, 4 deletions
diff --git a/op-mode-definitions/pki.xml.in b/op-mode-definitions/pki.xml.in
index 9c6b56a68..a11814c8a 100644
--- a/op-mode-definitions/pki.xml.in
+++ b/op-mode-definitions/pki.xml.in
@@ -20,9 +20,18 @@
</completionHelp>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated CA certificate into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "$7" --sign "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
- <help>Commands for installing generated certificate into running configuration</help>
+ <help>Commands for installing generated CA certificate into running configuration</help>
<completionHelp>
<list>&lt;certificate name&gt;</list>
</completionHelp>
@@ -32,9 +41,18 @@
</children>
<command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "noname" --sign "$5"</command>
</tagNode>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated CA certificate into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
- <help>Commands for installing generated certificate into running configuration</help>
+ <help>Commands for installing generated CA certificate into running configuration</help>
<completionHelp>
<list>&lt;CA name&gt;</list>
</completionHelp>
@@ -54,6 +72,15 @@
<help>Generate self-signed certificate</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated self-signed certificate into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$6" --self-sign --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated self-signed certificate into running configuration</help>
@@ -74,9 +101,18 @@
</completionHelp>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated signed certificate into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$7" --sign "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
- <help>Commands for installing generated certificate into running configuration</help>
+ <help>Commands for installing generated signed certificate into running configuration</help>
<completionHelp>
<list>&lt;certificate name&gt;</list>
</completionHelp>
@@ -86,6 +122,15 @@
</children>
<command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "noname" --sign "$5"</command>
</tagNode>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated certificate request and key into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated certificate private key into running configuration</help>
@@ -106,6 +151,15 @@
</completionHelp>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated CRL into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --crl "$4" --file</command>
+ </tagNode>
<leafNode name="install">
<properties>
<help>Commands for installing generated CRL into running configuration</help>
@@ -120,6 +174,15 @@
<help>Generate DH parameters</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated DH parameters into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --dh "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated DH parameters into running configuration</help>
@@ -137,6 +200,15 @@
<help>Generate a key pair</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated key pair into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --keypair "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated key pair into running configuration</help>
@@ -159,6 +231,15 @@
<help>Generate OpenVPN shared secret key</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated OpenVPN shared secret key into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --openvpn "$6" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated OpenVPN shared secret key into running configuration</help>
@@ -178,6 +259,15 @@
<help>Generate SSH key</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated SSH keys into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --ssh "$5" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated SSH key into running configuration</help>
@@ -200,6 +290,15 @@
<help>Generate Wireguard key pair for use with server or peer</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated Wireguard keys into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key "$6" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
<help>Commands for installing generated Wireguard key into running configuration</help>
@@ -217,9 +316,18 @@
<help>Generate pre-shared key for use with a Wireguard peer</help>
</properties>
<children>
+ <tagNode name="file">
+ <properties>
+ <help>Write generated Wireguard PSK into the specified filename</help>
+ <completionHelp>
+ <list>&lt;filename&gt;</list>
+ </completionHelp>
+ </properties>
+ <command>sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk "$6" --file</command>
+ </tagNode>
<tagNode name="install">
<properties>
- <help>Commands for installing generated Wireguard psk on specified peer into running configuration</help>
+ <help>Commands for installing generated Wireguard PSK on specified peer into running configuration</help>
<completionHelp>
<list>&lt;peer&gt;</list>
</completionHelp>