2 ## THIS FILE IS UNDER PUPPET CONTROL. DON'T EDIT IT HERE.
9 config = YAML.load(@ipsec_config)
11 unless config.keys.include?(@fqdn) then
12 fail("Host #{@fqdn} not found in ipsec config.")
15 config.keys.each do |host|
20 connname = pair.join('-')
21 key = scope.function_hkdf(['/etc/puppet/secret', "puppet-key-ipsec:PSK:tor:#{connname}"])
23 lines << "#{config[pair[0]]['address']} #{config[pair[1]]['address']} : PSK \"#{key}\""