From 5f35a9d1ad9b6ddc88df68cf4e53bbe9a7c22f4b Mon Sep 17 00:00:00 2001 From: amantri Date: Thu, 18 Apr 2024 12:34:14 -0400 Subject: [PATCH] Add Ipsec certificate to show-certs.sh check for /etc/swanctl/x509/system-ipsec-certificate-.crt exist and show in the output of show-certs.sh script. Test Cases: PASS: Enable ipsec on controller-0, verify that ipsec certificate shows in the output of show-certs.sh script. PASS: Enable ipsec on controller-1, verify that ipsec certificate shows in the output of show-certs.sh script. PASS: Enable ipsec on compute node, verify that ipsec certificate shows in the output of show-certs.sh script. PASS: verify that ipsec certificate not shown in the output of show-certs.sh script if /etc/swanctl/x509/system-ipsec- certificate-.crt doesn't exit Story: 2010940 Task: 49891 Change-Id: I4341d6d5243fd2c635eb441cf32516a0d9b9987e Signed-off-by: amantri --- utilities/platform-util/scripts/show-certs.sh | 2 ++ 1 file changed, 2 insertions(+) diff --git a/utilities/platform-util/scripts/show-certs.sh b/utilities/platform-util/scripts/show-certs.sh index 4112c5a1..845f2ad4 100755 --- a/utilities/platform-util/scripts/show-certs.sh +++ b/utilities/platform-util/scripts/show-certs.sh @@ -394,6 +394,8 @@ for FILE in /opt/platform/config/${sw_version}/ssl_ca/*; do PrintCertInfo-fromFile "$FILE" "$FILE" "${RED}Manual${RESET}" done +PrintCertInfo-fromFile "IPsec" "/etc/swanctl/x509/system-ipsec-certificate-$(cat /etc/hostname).crt" "${GREEN}Automatic${RESET}" + # DC AdminEp Certificates PrintCertInfo-fromFile "DC-AdminEp-RootCA" "/etc/pki/ca-trust/source/anchors/dc-adminep-root-ca.crt" "${GREEN}$AUTO_LABEL${RESET}"