ꦫꦣꦺꦤ꧀ꦄꦤ꧀ꦠꦱꦺꦤ

PATH: usr / share / augeas / lenses / dist

(* OpenVPN module for Augeas
 Author: Raphael Pinson <raphink@gmail.com>

Reference: http://openvpn.net/index.php/documentation/howto.html
*)

module OpenVPN =
  autoload xfm

(************************************************************************
 *                           USEFUL PRIMITIVES
 *************************************************************************)

let eol    = Util.eol
let indent = Util.indent

(* Define separators *)
let sep    = Util.del_ws_spc

(* Define value regexps *)
let ip_re  = Rx.ipv4
let num_re = Rx.integer
let fn_re  = /[^#; \t\n][^#;\n]*[^#; \t\n]|[^#; \t\n]/
let an_re  = /[a-z][a-z0-9_-]*/

(* Define store aliases *)
let ip     = store ip_re
let num    = store num_re
let filename = store fn_re
let sto_to_dquote = store /[^"\n]+/   (* " Emacs, relax *)

(* define comments and empty lines *)
let comment = Util.comment_generic /[ \t]*[;#][ \t]*/ "# "
let comment_or_eol = eol | Util.comment_generic /[ \t]*[;#][ \t]*/ " # "

let empty   = Util.empty

(************************************************************************
 *                               SINGLE VALUES
 *
 *   - local => IP
 *   - port  => num
 *   - proto => tcp|udp
 *   - dev   => (tun|tap)\d*
 *   - dev-node => MyTap
 *   - ca    => filename
 *   - cert  => filename
 *   - key   => filename
 *   - dh    => filename
 *   - ifconfig-pool-persist => filename
 *   - learn-address => filename
 *   - cipher => [A-Z0-9-]+
 *   - max-clients => num
 *   - user  => alphanum
 *   - group => alphanum
 *   - status => filename
 *   - log   => filename
 *   - log-append => filename
 *   - client-config-dir => filename
 *   - verb => num
 *   - mute => num
 *   - fragment => num
 *   - mssfix   => num
 *   - ns-cert-type => "server"
 *   - resolv-retry => "infinite"
 *   - script-security => [0-3] (execve|system)?
 *************************************************************************)

let single_entry (kw:regexp) (re:regexp)
               = [ key kw . sep . store re . comment_or_eol ]

(************************************************************************
 *                               FLAGS
 *
 *   - client-to-client
 *   - duplicate-cn
 *   - comp-lzo
 *   - persist-key
 *   - persist-tun
 *   - client
 *   - remote-random
 *   - nobind
 *   - mute-replay-warnings
 *   - http-proxy-retry
 *   - daemon
 *
 *************************************************************************)

let flag_entry (kw:regexp)
               = [ key kw . comment_or_eol ]

let flag       = flag_entry flag_words

(************************************************************************
 *                               OTHER FIELDS
 *
 *   - server        => IP IP
 *   - server-bridge => IP IP IP IP
 *   - route	     => IP IP
 *   - push          => "string"
 *   - keepalive     => num num
 *   - tls-auth      => filename [01]
 *   - remote        => hostname/IP num
 *   - management    => IP num filename
 *
 *************************************************************************)

let server        = [ key "server" . sep
                    . [ label "address" . ip ] . sep
		    . [ label "netmask" . ip ] . comment_or_eol
		    ]

let server_bridge = [ key "server-bridge" . sep
                    . [ label "address" . ip ] . sep
		    . [ label "netmask" . ip ] . sep
		    . [ label "start"   . ip ] . sep
		    . [ label "end"     . ip ] . comment_or_eol
		    ]

let route         = [ key "route" . sep
                    . [ label "address" . ip ] . sep
                    . [ label "netmask" . ip ] . comment_or_eol
                    ]

let push          = [ key "push" . sep
                    . Quote.do_dquote sto_to_dquote
		    . comment_or_eol
                    ]

let keepalive     = [ key "keepalive" . sep
                    . [ label "ping"    . num ] . sep
		    . [ label "timeout" . num ] . comment_or_eol
                    ]

let tls_auth      = [ key "tls-auth" . sep
                    . [ label "key"       . filename     ] . sep
		    . [ label "is_client" . store /[01]/ ] . comment_or_eol
                    ]

let remote        = [ key "remote" . sep
                    . [ label "server" . filename ] . sep
		    . [ label "port"   . num      ] . comment_or_eol
		    ]

let http_proxy    = [ key "http-proxy" .
                    ( sep . [ label "server" . store /[A-Za-z0-9._-]+/ ] .
		    ( sep . [ label "port"   . num      ] )? )?
		    . comment_or_eol
		    ]

let management    = [ key "management" . sep
                    . [ label "server" . ip             ] . sep
                    . [ label "port"   . num            ] . sep
                    . [ label "pwfile" . filename       ] . comment_or_eol
                    ]

(************************************************************************
 *                              LENS & FILTER
 *************************************************************************)

let lns    = ( comment | empty | single | flag | other )*

let filter = (incl "/etc/openvpn/client.conf")
           . (incl "/etc/openvpn/server.conf")

let xfm = transform lns filter

[+] ..
[-] mailscanner.aug [edit]
[-] access.aug [edit]
[-] gshadow.aug [edit]
[-] activemq_conf.aug [edit]
[-] gtkbookmarks.aug [edit]
[-] activemq_xml.aug [edit]
[-] hostname.aug [edit]
[-] afs_cellalias.aug [edit]
[-] mcollective.aug [edit]
[-] aliases.aug [edit]
[-] mdadm_conf.aug [edit]
[-] anacron.aug [edit]
[-] memcached.aug [edit]
[-] approx.aug [edit]
[-] group.aug [edit]
[-] phpvars.aug [edit]
[-] apt_update_manager.aug [edit]
[-] grub.aug [edit]
[-] puppet.aug [edit]
[-] aptcacherngsecurity.aug [edit]
[-] mongodbserver.aug [edit]
[-] aptconf.aug [edit]
[-] host_conf.aug [edit]
[-] aptpreferences.aug [edit]
[-] hosts.aug [edit]
[-] aptsources.aug [edit]
[-] hosts_access.aug [edit]
[-] authorized_keys.aug [edit]
[-] htpasswd.aug [edit]
[-] automaster.aug [edit]
[-] jettyrealm.aug [edit]
[-] automounter.aug [edit]
[-] mke2fs.aug [edit]
[-] avahi.aug [edit]
[-] jaas.aug [edit]
[-] backuppchosts.aug [edit]
[-] modprobe.aug [edit]
[-] bbhosts.aug [edit]
[-] jmxaccess.aug [edit]
[-] bootconf.aug [edit]
[-] modules.aug [edit]
[-] build.aug [edit]
[-] jmxpassword.aug [edit]
[-] cachefilesd.aug [edit]
[-] modules_conf.aug [edit]
[-] carbon.aug [edit]
[-] json.aug [edit]
[-] cgconfig.aug [edit]
[-] nagiosobjects.aug [edit]
[-] cgrules.aug [edit]
[-] kdump.aug [edit]
[-] channels.aug [edit]
[-] monit.aug [edit]
[-] chrony.aug [edit]
[-] multipath.aug [edit]
[-] clamav.aug [edit]
[-] keepalived.aug [edit]
[-] cobblermodules.aug [edit]
[-] known_hosts.aug [edit]
[-] cobblersettings.aug [edit]
[-] koji.aug [edit]
[-] collectd.aug [edit]
[-] mysql.aug [edit]
[-] cpanel.aug [edit]
[-] nagioscfg.aug [edit]
[-] cron.aug [edit]
[-] krb5.aug [edit]
[-] crypttab.aug [edit]
[-] netmasks.aug [edit]
[-] cups.aug [edit]
[-] ldif.aug [edit]
[-] cyrus_imapd.aug [edit]
[-] networkmanager.aug [edit]
[-] darkice.aug [edit]
[-] networks.aug [edit]
[-] debctrl.aug [edit]
[-] nrpe.aug [edit]
[-] desktop.aug [edit]
[-] ldso.aug [edit]
[-] device_map.aug [edit]
[-] lightdm.aug [edit]
[-] dhclient.aug [edit]
[-] nginx.aug [edit]
[-] dhcpd.aug [edit]
[-] limits.aug [edit]
[-] dhcpd_140.aug [edit]
[-] login_defs.aug [edit]
[-] dns_zone.aug [edit]
[-] ntpd.aug [edit]
[-] dnsmasq.aug [edit]
[-] nsswitch.aug [edit]
[-] dovecot.aug [edit]
[-] ntp.aug [edit]
[-] dpkg.aug [edit]
[-] odbc.aug [edit]
[-] dput.aug [edit]
[-] openshift_http.aug [edit]
[-] erlang.aug [edit]
[-] openshift_config.aug [edit]
[-] ethers.aug [edit]
[-] pamconf.aug [edit]
[-] exports.aug [edit]
[-] logrotate.aug [edit]
[-] fai_diskconfig.aug [edit]
[-] openvpn.aug [edit]
[-] fonts.aug [edit]
[-] pagekite.aug [edit]
[-] fstab.aug [edit]
[-] pam.aug [edit]
[-] fuse.aug [edit]
[-] passwd.aug [edit]
[-] gdm.aug [edit]
[-] httpd.aug [edit]
[-] postfix_access.aug [edit]
[-] inetd.aug [edit]
[-] pbuilder.aug [edit]
[-] inifile.aug [edit]
[-] pg_hba.aug [edit]
[-] inittab.aug [edit]
[-] pgbouncer.aug [edit]
[-] inputrc.aug [edit]
[-] logwatch.aug [edit]
[-] interfaces.aug [edit]
[-] lokkit.aug [edit]
[-] iproute2.aug [edit]
[-] mailscanner_rules.aug [edit]
[-] iptables.aug [edit]
[-] php.aug [edit]
[-] iscsid.aug [edit]
[-] lvm.aug [edit]
[-] util.aug [edit]
[-] openshift_quickstarts.aug [edit]
[-] xinetd.aug [edit]
[-] postfix_main.aug [edit]
[-] xendconfsxp.aug [edit]
[-] postfix_master.aug [edit]
[-] vfstab.aug [edit]
[-] postfix_sasl_smtpd.aug [edit]
[-] vmware_config.aug [edit]
[-] postfix_transport.aug [edit]
[-] xml.aug [edit]
[-] postfix_virtual.aug [edit]
[-] xorg.aug [edit]
[-] postgresql.aug [edit]
[-] xymon.aug [edit]
[-] properties.aug [edit]
[-] xymon_alerting.aug [edit]
[-] protocols.aug [edit]
[-] yum.aug [edit]
[-] puppet_auth.aug [edit]
[-] puppetfile.aug [edit]
[-] vsftpd.aug [edit]
[-] puppetfileserver.aug [edit]
[-] anaconda.aug [edit]
[-] pylonspaste.aug [edit]
[-] pythonpaste.aug [edit]
[-] qpid.aug [edit]
[-] quote.aug [edit]
[-] rabbitmq.aug [edit]
[-] redis.aug [edit]
[-] webmin.aug [edit]
[-] reprepro_uploaders.aug [edit]
[-] resolv.aug [edit]
[-] rhsm.aug [edit]
[-] rmt.aug [edit]
[-] rsyncd.aug [edit]
[-] rsyslog.aug [edit]
[-] rx.aug [edit]
[-] samba.aug [edit]
[-] schroot.aug [edit]
[-] securetty.aug [edit]
[-] sep.aug [edit]
[-] services.aug [edit]
[-] shadow.aug [edit]
[-] shells.aug [edit]
[-] shellvars.aug [edit]
[-] shellvars_list.aug [edit]
[-] simplelines.aug [edit]
[-] simplevars.aug [edit]
[-] sip_conf.aug [edit]
[-] slapd.aug [edit]
[-] slapd_140.aug [edit]
[-] smbusers.aug [edit]
[-] solaris_system.aug [edit]
[-] soma.aug [edit]
[-] spacevars.aug [edit]
[-] splunk.aug [edit]
[-] squid.aug [edit]
[-] ssh.aug [edit]
[-] sshd.aug [edit]
[-] sshd_140.aug [edit]
[-] sssd.aug [edit]
[-] stunnel.aug [edit]
[-] subversion.aug [edit]
[-] sudoers.aug [edit]
[-] sysconfig.aug [edit]
[-] sysconfig_route.aug [edit]
[-] sysctl.aug [edit]
[-] syslog.aug [edit]
[-] systemd.aug [edit]
[-] thttpd.aug [edit]
[-] tuned.aug [edit]
[-] up2date.aug [edit]
[-] updatedb.aug [edit]
[-] wine.aug [edit]