]> git.ipfire.org Git - people/ms/ipfire-2.x.git/commit
projects / people / ms / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 41c7cc3) | patch
include: Add the contents of the ipsec certs directory to the backup
authorAdolf Belka <adolf.belka@ipfire.org>
Tue, 1 Apr 2025 18:07:59 +0000 (20:07 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Wed, 2 Apr 2025 09:57:09 +0000 (09:57 +0000)
commit85c0d3c1c73dfd8f625c99256f0e1706979b895e
treead844e30c85ff8a16761bfd2f612afe7d0ad5e74tree
parent41c7cc325e1e2f922de803842d0625e564f6771ecommit | diff
include: Add the contents of the ipsec certs directory to the backup

- Previously only the .pem files were bacdked up from the /var/ipfire/certs/ directory.
   That was okay in the past as the serial and index files never changed after the
   root/host cert set waqs created.
- With the renew process then the serial and index files get updated and these are needed
   to match with the cert status that was backed up. Otherwise you could end up with one
   set of values in the serial and index files that did not match with the restored
   certs.
- This patch adds all the contents of the certs directory to the backup.
- Tested out on my vm testbed and successfully restored a backup and was able to connect
   with the same client settings.

Fixes: bug13737
Tested-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
config/backup/include diff | blob | blame | history
Michael's tree of IPFire 2.x.