Cisco VPN device drivers admin state not reported correctly

Fix proposed to branch: master
Review: https://review.openstack.org/82306

While critical for vendor this is not a blocker for RC1. When this merges we can backport to the milestone proposed branch.

Reviewed: https://review.openstack.org/82306
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=c1ccc585bda70925a4cffe617743ef6472fe60c4
Submitter: Jenkins
Branch: master

commit c1ccc585bda70925a4cffe617743ef6472fe60c4
Author: Paul Michali <email address hidden>
Date: Fri Mar 21 13:14:07 2014 +0000

    Cisco VPN driver correct reporting for admin state chg

    Depends on reference implementation change (81124 review) that will pass VPN
    service admin up/down changes to the service driver (for subsequent passing
    to the device driver).

    This change will save the runtime state of the IPSec connections that have
    been removed due to a VPN service down change, so that this can be reported
    to the plugin properly. Otherwise, without the change, there is no info
    on the downed connection and no change report so the plugin thinks the
    connection is still active.

    In addition, the status for the VPN service will reflect whether there are
    any IPSec connections ACTIVE. If one or more are acive, the service will
    be active, otherwise it will be DOWN.

    Updated UT to add tests for admin state and status reporting. Also changed
    some IPSec create UTs because they were not cleaning up correctly upon test
    failures (only seen with a live CSR).

    In the future, when the Cisco CSR REST API supports admin up/down support,
    the IPSec connections will not be deleted, but instead will be shut down, in
    response to an admin down event (and then brought up, for admin up). During
    the down time, the state will be reported correctly and no run-time state
    recording needed.

    Change-Id: I294bfb400c31ef36dfe5d9e85b34845e5aef8515
    Closes-Bug: 1291619

Fix proposed to branch: milestone-proposed
Review: https://review.openstack.org/85501

Reviewed: https://review.openstack.org/85501
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=2d74be370f8b76345bd9b1fc8c35297010629f7c
Submitter: Jenkins
Branch: milestone-proposed

commit 2d74be370f8b76345bd9b1fc8c35297010629f7c
Author: Paul Michali <email address hidden>
Date: Fri Mar 21 13:14:07 2014 +0000

    Cisco VPN driver correct reporting for admin state chg

    Depends on reference implementation change (81124 review) that will pass VPN
    service admin up/down changes to the service driver (for subsequent passing
    to the device driver).

    This change will save the runtime state of the IPSec connections that have
    been removed due to a VPN service down change, so that this can be reported
    to the plugin properly. Otherwise, without the change, there is no info
    on the downed connection and no change report so the plugin thinks the
    connection is still active.

    In addition, the status for the VPN service will reflect whether there are
    any IPSec connections ACTIVE. If one or more are acive, the service will
    be active, otherwise it will be DOWN.

    Updated UT to add tests for admin state and status reporting. Also changed
    some IPSec create UTs because they were not cleaning up correctly upon test
    failures (only seen with a live CSR).

    In the future, when the Cisco CSR REST API supports admin up/down support,
    the IPSec connections will not be deleted, but instead will be shut down, in
    response to an admin down event (and then brought up, for admin up). During
    the down time, the state will be reported correctly and no run-time state
    recording needed.

    Change-Id: I294bfb400c31ef36dfe5d9e85b34845e5aef8515
    Closes-Bug: 1291619
    (cherry picked from commit c1ccc585bda70925a4cffe617743ef6472fe60c4)