Doesn't seem to be the solution -- I suspect that in my case it's a bad error message?... or something... Since any change that causes ipsec to run in a netns instead results in thousands of spawned pluto processes.. (and more error messages)
So it becomes a issue of knowing what error messages can be ignored...
So, doing something like: vpnaas/ services/ vpn/device_ drivers/ libreswan_ ipsec.py vpnaas/ services/ vpn/device_ drivers/ libreswan_ ipsec.py s(ipsec. OpenSwanProcess ): IPWrapper( namespace= self.namespace)
mount_ paths = {'/etc': '%s/etc' % self.config_dir,
mount_ paths_str = ','.join(
" %s:%s" % (source, target) items() )
--- a/neutron_
+++ b/neutron_
@@ -39,7 +39,8 @@ class LibreSwanProces
"""
ip_wrapper = ip_lib.
- '/var/run': '%s/var/run' % self.config_dir}
+ '/var/run': '%s/var/run' % self.config_dir,
+ '/run': '%s/run' % self.config_dir}
for source, target in mount_paths.
---
Doesn't seem to be the solution -- I suspect that in my case it's a bad error message?... or something... Since any change that causes ipsec to run in a netns instead results in thousands of spawned pluto processes.. (and more error messages)
So it becomes a issue of knowing what error messages can be ignored...