Comment 5 for bug 1486944

Reviewed: https://review.fuel-infra.org/13887
Submitter: Pkgs Jenkins <email address hidden>
Branch: openstack-ci/fuel-8.0/liberty

Commit: ef7ff49332c05b1dfad1f5e08e89f3874324ed3d
Author: Elena Ezhova <email address hidden>
Date: Thu Nov 12 14:15:08 2015

Set IPSec site connection Down if peer doesn't respond

If OpenSwan or LibreSwan driver is used then when one of the peer
connections goes down by any reason the second connection remains
in 'Active' state, though it is incorrect. StrongSwan driver
doesn't have such problem.

This change modifies ipsec site connection status check for
OpenSwan and LibreSwan drivers in the following way:
If a status check shows that a given pluto process is still running,
scan output related to all its connections and mark 'Down' those,
for which there is no established IPSec SA.

Refactored UT so that connection status tests are executed for all
*Swan drivers, which involved changing base class of OpenSwanProcess
tests to IPSecDeviceLegacy.

Conflicts:
 neutron_vpnaas/tests/unit/services/vpn/device_drivers/test_ipsec.py

Cherry-picked from: https://review.openstack.org/#/c/238108
Closes-Bug: #1486944
Change-Id: I699c71a92ec33dd8ccfc31098299d019b11dfe9a