neutron

  1. Bug #1970948
  2. Comment #1

Comment 1 for bug 1970948

Revision history for this message
Rodolfo Alonso (rodolfo-alonso-hernandez) wrote :

Hello Justin:

Thanks for reporting this bug and welcome.

The solution you are providing could be valid as a quick fix for this specific problem. However, my suggestion is try to refactor first the "neutron-vpn-netns-wrapper" script. This is just, if I'm not wrong, a namespace wrapper. We have methods to execute commands inside namespaces and libraries to execute long term scripts that could run inside namespaces.

If I'm not wrong, the "ipsec" commands return immediately (ipsec start, ipsec reload, rereadsecrets, etc.). You can implement those commands using "privsep".

But please, take this as a recommendation, nothing else.

Regards.