Commit: ef7ff49332c05b1dfad1f5e08e89f3874324ed3d
Author: Elena Ezhova <email address hidden>
Date: Thu Nov 12 14:15:08 2015
Set IPSec site connection Down if peer doesn't respond
If OpenSwan or LibreSwan driver is used then when one of the peer
connections goes down by any reason the second connection remains
in 'Active' state, though it is incorrect. StrongSwan driver
doesn't have such problem.
This change modifies ipsec site connection status check for
OpenSwan and LibreSwan drivers in the following way:
If a status check shows that a given pluto process is still running,
scan output related to all its connections and mark 'Down' those,
for which there is no established IPSec SA.
Refactored UT so that connection status tests are executed for all
*Swan drivers, which involved changing base class of OpenSwanProcess
tests to IPSecDeviceLegacy.
Reviewed: https:/ /review. fuel-infra. org/13887 ci/fuel- 8.0/liberty
Submitter: Pkgs Jenkins <email address hidden>
Branch: openstack-
Commit: ef7ff49332c05b1 dfad1f5e08e89f3 874324ed3d
Author: Elena Ezhova <email address hidden>
Date: Thu Nov 12 14:15:08 2015
Set IPSec site connection Down if peer doesn't respond
If OpenSwan or LibreSwan driver is used then when one of the peer
connections goes down by any reason the second connection remains
in 'Active' state, though it is incorrect. StrongSwan driver
doesn't have such problem.
This change modifies ipsec site connection status check for
OpenSwan and LibreSwan drivers in the following way:
If a status check shows that a given pluto process is still running,
scan output related to all its connections and mark 'Down' those,
for which there is no established IPSec SA.
Refactored UT so that connection status tests are executed for all
*Swan drivers, which involved changing base class of OpenSwanProcess
tests to IPSecDeviceLegacy.
Conflicts: vpnaas/ tests/unit/ services/ vpn/device_ drivers/ test_ipsec. py
neutron_
Cherry-picked from: https:/ /review. openstack. org/#/c/ 238108 d8ccfc31098299d 019b11dfe9a
Closes-Bug: #1486944
Change-Id: I699c71a92ec33d