diff options
| author | Christian Poessinger <christian@poessinger.com> | 2021-07-13 08:30:56 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-07-13 08:30:56 +0200 |
| commit | 68d14c69805972e1c76a98dd745360c3456d5c68 (patch) | |
| tree | 5d72e25c439e6a5f0cbd709597e352e527c2580a | |
| parent | 83721c1ce672b76d40c710f38b0ab05c370a2191 (diff) | |
| parent | c414479fdf1d5ad77170f977481fb9197c9559ae (diff) | |
| download | vyos-1x-68d14c69805972e1c76a98dd745360c3456d5c68.tar.gz vyos-1x-68d14c69805972e1c76a98dd745360c3456d5c68.zip | |
Merge pull request #917 from yunzheng/current
openvpn: T56: remove strict checks for tls cert-file and key-file
| -rwxr-xr-x | src/conf_mode/interfaces-openvpn.py | 7 |
1 files changed, 0 insertions, 7 deletions
diff --git a/src/conf_mode/interfaces-openvpn.py b/src/conf_mode/interfaces-openvpn.py index 0256ad62a..20d232bd0 100755 --- a/src/conf_mode/interfaces-openvpn.py +++ b/src/conf_mode/interfaces-openvpn.py @@ -332,13 +332,6 @@ def verify(openvpn): if 'ca_cert_file' not in openvpn['tls']: raise ConfigError('Must specify "tls ca-cert-file"') - if not (openvpn['mode'] == 'client' and 'auth_file' in openvpn['tls']): - if 'cert_file' not in openvpn['tls']: - raise ConfigError('Missing "tls cert-file"') - - if 'key_file' not in openvpn['tls']: - raise ConfigError('Missing "tls key-file"') - if {'auth_file', 'crypt_file'} <= set(openvpn['tls']): raise ConfigError('TLS auth and crypt are mutually exclusive') |