vanja/gluetun
1
0
Fork 0
mirror of https://github.com/qdm12/gluetun.git synced 2026-05-06 20:10:11 +02:00
Code Issues Packages Projects Releases Wiki Activity

fix(openvpn): bundle provider CA certificates in one block (#3258)

Browse Source
This commit is contained in:
Michael Bisbjerg
2026-03-26 22:32:43 +01:00
committed by GitHub
parent 086e3740f3
commit 5b88c76a14
2 changed files with 53 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
internal/provider/utils/openvpn.go
+12 -5
View File
@@ -175,8 +175,8 @@ func OpenVPNConfig(provider OpenVPNProviderSettings,
lines.add("setenv", envKey, envValue) lines.add("setenv", envKey, envValue)
} }
for _, ca := range provider.CAs { if len(provider.CAs) > 0 {
lines.addLines(WrapOpenvpnCA(ca)) lines.addLines(WrapOpenvpnCAs(provider.CAs))
} }
if provider.CRLVerify != "" { if provider.CRLVerify != "" {
lines.addLines(WrapOpenvpnCRLVerify(provider.CRLVerify)) lines.addLines(WrapOpenvpnCRLVerify(provider.CRLVerify))
@@ -268,13 +268,20 @@ func defaultStringSlice(value, defaultValue []string) (
} }
func WrapOpenvpnCA(certificate string) (lines []string) { func WrapOpenvpnCA(certificate string) (lines []string) {
return []string{ return WrapOpenvpnCAs([]string{certificate})
"<ca>", }
func WrapOpenvpnCAs(certificates []string) (lines []string) {
lines = append(lines, "<ca>")
for _, certificate := range certificates {
lines = append(lines,
"-----BEGIN CERTIFICATE-----", "-----BEGIN CERTIFICATE-----",
certificate, certificate,
"-----END CERTIFICATE-----", "-----END CERTIFICATE-----",
"</ca>", )
} }
lines = append(lines, "</ca>")
return lines
} }
func WrapOpenvpnCert(clientCertificate string) (lines []string) { func WrapOpenvpnCert(clientCertificate string) (lines []string) {
internal/provider/utils/openvpn_test.go
+38
View File
@@ -0,0 +1,38 @@
package utils
import (
"testing"
"github.com/stretchr/testify/assert"
)
func TestWrapOpenvpnCAs(t *testing.T) {
t.Parallel()
lines := WrapOpenvpnCAs([]string{"cert1", "cert2"})
assert.Equal(t, []string{
"<ca>",
"-----BEGIN CERTIFICATE-----",
"cert1",
"-----END CERTIFICATE-----",
"-----BEGIN CERTIFICATE-----",
"cert2",
"-----END CERTIFICATE-----",
"</ca>",
}, lines)
}
func TestWrapOpenvpnCA(t *testing.T) {
t.Parallel()
lines := WrapOpenvpnCA("cert1")
assert.Equal(t, []string{
"<ca>",
"-----BEGIN CERTIFICATE-----",
"cert1",
"-----END CERTIFICATE-----",
"</ca>",
}, lines)
}