diff options
author | Christian Breunig <christian@breunig.cc> | 2023-02-15 19:03:27 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-02-15 19:03:27 +0100 |
commit | 63dfe01db5fb60031cf5b4b017a2f172166fe4b7 (patch) | |
tree | c358249d37f06dca5733547b096e4ab557dc3463 /src/migration-scripts/ipsec/11-to-12 | |
parent | c4d26a3aaca68d0014ce65d97184f7ce6258d6df (diff) | |
parent | 45b16864b11ea49087ce4a279e2c0e741a97c0ee (diff) | |
download | vyos-1x-63dfe01db5fb60031cf5b4b017a2f172166fe4b7.tar.gz vyos-1x-63dfe01db5fb60031cf5b4b017a2f172166fe4b7.zip |
Merge pull request #1821 from sarthurdev/ipsec
ipsec: T4593: Migrate and remove legacy `include-ipsec` nodes
Diffstat (limited to 'src/migration-scripts/ipsec/11-to-12')
-rwxr-xr-x | src/migration-scripts/ipsec/11-to-12 | 53 |
1 files changed, 53 insertions, 0 deletions
diff --git a/src/migration-scripts/ipsec/11-to-12 b/src/migration-scripts/ipsec/11-to-12 new file mode 100755 index 000000000..8bbde5efa --- /dev/null +++ b/src/migration-scripts/ipsec/11-to-12 @@ -0,0 +1,53 @@ +#!/usr/bin/env python3 +# +# Copyright (C) 2023 VyOS maintainers and contributors +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 or later as +# published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program. If not, see <http://www.gnu.org/licenses/>. + +# Remove legacy ipsec.conf and ipsec.secrets - Not supported with swanctl + +import re + +from sys import argv +from sys import exit + +from vyos.configtree import ConfigTree + +if (len(argv) < 1): + print("Must specify file name!") + exit(1) + +file_name = argv[1] + +with open(file_name, 'r') as f: + config_file = f.read() + +base = ['vpn', 'ipsec'] +config = ConfigTree(config_file) + +if not config.exists(base): + # Nothing to do + exit(0) + +if config.exists(base + ['include-ipsec-conf']): + config.delete(base + ['include-ipsec-conf']) + +if config.exists(base + ['include-ipsec-secrets']): + config.delete(base + ['include-ipsec-secrets']) + +try: + with open(file_name, 'w') as f: + f.write(config.to_string()) +except OSError as e: + print(f'Failed to save the modified config: {e}') + exit(1) |