Add ipsec_enable and ipsec_file options to run IPSEC's setkey program

with the specified configuration file at the appropriate time.
svn path=/head/; revision=60628
2024-12-30 15:38:06 +01:00 · 2000-05-16 06:52:11 +00:00 · 2000-05-16 06:52:11 +00:00 · ba3ed2268c · 2020-12-20 02:59:44 +00:00
commit ba3ed2268c
parent 6d2718d964
8 changed files with 79 additions and 0 deletions
--- a/etc/defaults/rc.conf
+++ b/etc/defaults/rc.conf
@ -156,6 +156,8 @@ nis_yppasswdd_flags=""		# Flags to rpc.yppasswdd (if enabled).
 defaultrouter="NO"		# Set to default gateway (or NO).
 static_routes=""		# Set to static route list (or leave empty).
 gateway_enable="NO"		# Set to YES if this host will be a gateway.
+ipsec_enable="NO"		# Set to YES to run setkey on ipsec_file
+ipsec_file="/etc/ipsec.conf"	# Name of config file for setkey
 router_enable="NO"		# Set to YES to enable a routing daemon.
 router="routed"			# Name of routing daemon to use if enabled.
 router_flags="-q"		# Flags for routing daemon.
--- a/etc/network.subr
+++ b/etc/network.subr
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])
--- a/etc/rc.d/netoptions
+++ b/etc/rc.d/netoptions
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])
--- a/etc/rc.d/network1
+++ b/etc/rc.d/network1
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])
--- a/etc/rc.d/network2
+++ b/etc/rc.d/network2
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])
--- a/etc/rc.d/network3
+++ b/etc/rc.d/network3
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])
--- a/etc/rc.d/routing
+++ b/etc/rc.d/routing
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])
--- a/etc/rc.network
+++ b/etc/rc.network
@ -352,6 +352,17 @@ network_pass1() {
 	esac
 	echo '.'

+	case ${ipsec_enable} in
+	[Yy][Ee][Ss])
+		if [ -f ${ipsec_file} ]; then
+		    echo ' ipsec: enabled'
+		    setkey -f ${ipsec_file}
+		else
+		    echo ' ipsec: file not found'
+		fi
+		;;
+	esac
+
 	echo -n 'routing daemons:'
 	case ${router_enable} in
 	[Yy][Ee][Ss])