]>
git.ipfire.org Git - people/teissler/ipfire-2.x.git/blob - config/ovpn/verify
2 ############################################################################
4 # This file is part of the IPFire Firewall. #
6 # IPFire is free software; you can redistribute it and/or modify #
7 # it under the terms of the GNU General Public License as published by #
8 # the Free Software Foundation; either version 2 of the License, or #
9 # (at your option) any later version. #
11 # IPFire is distributed in the hope that it will be useful, #
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
14 # GNU General Public License for more details. #
16 # You should have received a copy of the GNU General Public License #
17 # along with IPFire; if not, write to the Free Software #
18 # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA #
20 # Copyright (C) 2013 IPFire Team <info@ipfire.org>. #
22 ############################################################################
24 require '/var/ipfire/general-functions.pl';
29 # Exit immediately for every certificate depth other than 0.
30 exit 0 unless ($DEPTH eq "0");
32 # Strip the CN from the X509 identifier.
37 if (-f
"${General::swroot}/ovpn/ovpnconfig"){
38 &General
::readhasharray
("${General::swroot}/ovpn/ovpnconfig", \
%confighash);
39 foreach my $key (keys %confighash) {
40 my $cn = $confighash{$key}[2];
42 # Skip disabled connections.
43 next unless ($confighash{$key}[0] eq "on");
45 # Skip non-roadwarrior connections.
46 next unless ($confighash{$key}[3] eq "host");
48 # Search for a matching CN.
49 exit 0 if ($cn eq $CN);
51 # Compatibility code for incorrectly saved CNs.
53 exit 0 if ($cn eq $CN);
57 # Return an error if ovpnconfig could not be found.
projects / people / teissler / ipfire-2.x.git / blob