wallenstein/algo
1
0
Fork 0
mirror of https://github.com/trailofbits/algo.git synced 2025-06-07 07:33:52 +02:00
Code Issues Projects Releases Wiki Activity

relax CA constraints for client (the client equivalent of PR #1675) (#1768)

Browse source 
* relax CA constraints for client (the client equivalent of PR #1675)

* fixing incorrectly hard-coded output file path
This commit is contained in:
aleks 2020-04-18 15:03:29 +01:00 committed by GitHub
parent c231cd42d6
commit 4f1b9270be
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
roles/client/files/libstrongswan-relax-constraints.conf Normal file
View file

@ -0,0 +1,5 @@
libstrongswan {
x509 {
enforce_critical = no
}
}

8
roles/client/tasks/main.yml
View file

@ -53,6 +53,14 @@
notify: notify:
- restart strongswan - restart strongswan
- name: Configure libstrongswan to relax CA constraints
copy:
src: libstrongswan-relax-constraints.conf
dest: "{{ configs_prefix }}/strongswan.d/relax-ca-constraints.conf"
owner: root
group: root
mode: 0644
- name: Setup the certificates and keys - name: Setup the certificates and keys
template: template:
src: "{{ item.src }}" src: "{{ item.src }}"