backup.pl: Fixes Bug#13137 - Existing n2n client connection created with openssl-1.1.1x fails to start with openssl-3.x

- This code adds the "providers legacy default" line into OpenVPN N2N Client config files when restoring them in case it is missing from a backup earlier than CU175. Only adds the line if it is not already present. - Tested out on my vm testbed system Fixes: Bug#13137 Tested-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
2026-04-09 18:45:54 +02:00 · 2023-06-05 13:55:29 +02:00
parent 2054306c63
commit 9eb2086e0f
1 changed files with 15 additions and 0 deletions
--- a/config/backup/backup.pl
+++ b/config/backup/backup.pl
@@ -189,6 +189,21 @@ restore_backup() {

 	# Update OpenVPN CRL
 	/etc/fcron.daily/openvpn-crl-updater
+	
+	# Update OpenVPN N2N Client Configs
+	## Add providers legacy default line to n2n client config files
+	# Check if ovpnconfig exists and is not empty
+	if [ -s /var/ipfire/ovpn/ovpnconfig ]; then
+	       # Identify all n2n connections
+	       for y in $(awk -F',' '/net/ { print $3 }' /var/ipfire/ovpn/ovpnconfig); do
+	           # Add the legacy option to all N2N client conf files if it does not already exist
+			if [ $(grep -c "Open VPN Client Config" /var/ipfire/ovpn/n2nconf/${y}/${y}.conf) -eq 1 ] ; then
+				if [ $(grep -c "providers legacy default" /var/ipfire/ovpn/n2nconf/${y}/${y}.conf) -eq 0 ] ; then
+					echo "providers legacy default" >> /var/ipfire/ovpn/n2nconf/${y}/${y}.conf
+				fi
+			fi
+	       done
+	fi

 	return 0
 }