oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
Files
2fd4a77e661fcb711c05339d0e611e0cfd3edb58
heimdal/lib/hx509/hxtool-commands.in
Love Hörnquist Åstrand 5a3e4a1865 add verify --allow-proxy-certificate 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17260 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-04-26 14:42:45 +00:00

363 lines
7.9 KiB
Plaintext
Raw Blame History

/*
* Copyright (c) 2005 Kungliga Tekniska Högskolan
* (Royal Institute of Technology, Stockholm, Sweden).
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
*
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
*
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* 3. Neither the name of the Institute nor the names of its contributors
* may be used to endorse or promote products derived from this software
* without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED. IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*/
/* $Id$ */
command = {
name = "cms-create-sd"
option = {
long = "certificate"
short = "c"
type = "strings"
argument = "certificate-store"
help = "certificate stores to pull certificates from"
}
option = {
long = "signer"
short = "s"
type = "string"
argument = "signer-friendly-name"
help = "certificate to sign with"
}
option = {
long = "anchors"
type = "strings"
argument = "certificate-store"
help = "trust anchors"
}
option = {
long = "pool"
type = "strings"
argument = "certificate-pool"
help = "certificate store to pull certificates from"
}
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "content-info"
type = "flag"
help = "wrapped out-data in a ContentInfo"
}
min_args="2"
max_args="2"
argument="in-file out-file"
help = "Wrap a file within a SignedData object"
}
command = {
name = "cms-verify-sd"
option = {
long = "anchors"
type = "strings"
argument = "certificate-store"
help = "trust anchors"
}
option = {
long = "certificate"
short = "c"
type = "strings"
argument = "certificate-store"
help = "certificate store to pull certificates from"
}
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "missing-revoke"
type = "flag"
help = "missing CRL/OCSP is ok"
}
option = {
long = "content-info"
type = "flag"
help = "unwrap in-data that's in a ContentInfo"
}
min_args="2"
max_args="2"
argument="in-file out-file"
help = "Verify a file within a SignedData object"
}
command = {
name = "cms-unenvelope"
option = {
long = "certificate"
short = "c"
type = "strings"
argument = "certificate-store"
help = "certificate used to decrypt the data"
}
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "content-info"
type = "flag"
help = "wrapped out-data in a ContentInfo"
}
min_args="2"
argument="in-file out-file"
help = "Unenvelope a file containing a EnvelopedData object"
}
command = {
name = "cms-envelope"
function = "cms_create_enveloped"
option = {
long = "certificate"
short = "c"
type = "strings"
argument = "certificate-store"
help = "certificates used to receive the data"
}
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "encryption-type"
type = "string"
argument = "enctype"
help = "enctype"
}
option = {
long = "content-info"
type = "flag"
help = "wrapped out-data in a ContentInfo"
}
min_args="2"
argument="in-file out-file"
help = "Envelope a file containing a EnvelopedData object"
}
command = {
name = "verify"
function = "pcert_verify"
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "allow-proxy-certificate"
type = "flag"
help = "allow proxy certificates"
}
option = {
long = "missing-revoke"
type = "flag"
help = "missing CRL/OCSP is ok"
}
option = {
long = "verbose"
short = "v"
type = "flag"
help = "verbose logging"
}
argument = "cert:foo chain:cert1 chain:cert2 anchor:anchor1 anchor:anchor2"
help = "Verify certificate chain"
}
command = {
name = "print"
function = "pcert_print"
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "content"
type = "flag"
help = "print the content of the certificates"
}
min_args="1"
argument="certificate ..."
help = "Print certificates"
}
command = {
name = "validate"
function = "pcert_validate"
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
min_args="1"
argument="certificate ..."
help = "Validate content of certificates"
}
command = {
name = "ocsp-fetch"
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
option = {
long = "sign"
type = "string"
argument = "certificate"
help = "certificate use to sign the request"
}
option = {
long = "url-path"
type = "string"
argument = "url"
help = "part after host in url to put in the request"
}
option = {
long = "nonce"
type = "-flag"
default = "1"
help = "don't include nonce in request"
}
option = {
long = "pool"
type = "strings"
argument = "certificate-store"
help = "pool to find parent certificate in"
}
min_args="2"
argument="outfile certs ..."
help = "Fetch OCSP responses for the following certs"
}
command = {
name = "ocsp-print"
option = {
long = "verbose"
type = "flag"
help = "verbose"
}
min_args="1"
argument="ocsp-response-file ..."
help = "Print the OCSP responses"
}
command = {
name = "request-create"
option = {
long = "subject"
type = "string"
help = "Subject DN"
}
option = {
long = "email"
type = "strings"
help = "Email address in SubjectAltName"
}
option = {
long = "dnsname"
type = "strings"
help = "Hostname or domainname in SubjectAltName"
}
option = {
long = "type"
type = "string"
help = "Type of request CRMF or PKCS10, defaults to PKCS10"
}
option = {
long = "key"
type = "string"
help = "Key-pair"
}
option = {
long = "verbose"
type = "flag"
help = "verbose status"
}
min_args="1"
max_args="1"
argument="output-file"
help = "Create a CRMF or PKCS10 request"
}
command = {
name = "pkcs10-print"
option = {
long = "verbose"
type = "flag"
help = "verbose printing"
}
min_args="1"
argument="requests ..."
help = "Print PKCS10 requests"
}
command = {
name = "query"
option = {
long = "exact"
type = "flag"
help = "exact match"
}
option = {
long = "private-key"
type = "flag"
help = "search for private key"
}
option = {
long = "friendlyname"
type = "string"
argument = "name"
help = "match on friendly name"
}
option = {
long = "pass"
type = "strings"
argument = "password"
help = "password, prompter, or environment"
}
min_args="1"
argument="certificates ..."
help = "Query the certificates for a match"
}
command = {
name = "info"
}
command = {
name = "help"
name = "?"
argument = "[command]"
min_args = "0"
max_args = "1"
help = "Help! I need somebody"
}
Reference in New Issue View Git Blame Copy Permalink