diff options
| author | Christian Poessinger <christian@poessinger.com> | 2018-10-12 20:17:29 +0200 |
|---|---|---|
| committer | Christian Poessinger <christian@poessinger.com> | 2018-10-12 20:18:47 +0200 |
| commit | b2476e3bd0ab019b2237ca430d8a7beb296658a6 (patch) | |
| tree | ebe11cd41771d7b903e9e617d684960828ba5307 | |
| parent | 172c65f07503634a40b5da81616ab140ef13d1e3 (diff) | |
| download | vyos-build-b2476e3bd0ab019b2237ca430d8a7beb296658a6.tar.gz vyos-build-b2476e3bd0ab019b2237ca430d8a7beb296658a6.zip | |
T852: globally disable StrongSWAN FARP plugin
(cherry picked from commit 5335d2c8b5e04b66b494c9e0584fb23a61d662cd)
| -rwxr-xr-x | data/live-build-config/hooks/30-strongswan-configs.chroot | 17 |
1 files changed, 13 insertions, 4 deletions
diff --git a/data/live-build-config/hooks/30-strongswan-configs.chroot b/data/live-build-config/hooks/30-strongswan-configs.chroot index 798b0d6d..25562a65 100755 --- a/data/live-build-config/hooks/30-strongswan-configs.chroot +++ b/data/live-build-config/hooks/30-strongswan-configs.chroot @@ -8,22 +8,31 @@ import re -# Disable the cisco_unity option in charon.conf +# Disable the 'cisco_unity' option in charon.conf with open('/etc/strongswan.d/charon.conf', 'r') as f: charon_conf = f.read() - charon_conf = re.sub(r'# (cisco_unity = no)', r"\1", charon_conf) with open('/etc/strongswan.d/charon.conf', 'w') as f: f.write(charon_conf) -# Prevent the unity plugin from loading +# Prevent the 'cisco_unity' plugin from loading with open('/etc/strongswan.d/charon/unity.conf', 'r') as f: unity_conf = f.read() - unity_conf = re.sub(r'load = yes', r'load = no', unity_conf) with open('/etc/strongswan.d/charon/unity.conf', 'w') as f: f.write(unity_conf) + + + +# Prevent the 'farp' plugin from loading +with open('/etc/strongswan.d/charon/farp.conf', 'r') as f: + farp_conf = f.read() + + farp_conf = re.sub(r'load = yes', r'load = no', farp_conf) + +with open('/etc/strongswan.d/charon/farp.conf', 'w') as f: + f.write(farp_conf) |