Add ipsec.secrets reload function to strongSwan driver
Currently, strongSwan driver only triggers "ipsec reload" command
when a new IPsec Site Connection configuration is received. If that
configuration uses a different PSK, it will not be picked up upon
reload called by restart() function. This change introduces a separate
reload_secrets() function which will call "ipsec rereadsecrets" before
"ipsec reload".
Closes-Bug: #1921514
Change-Id: Ia5458bbbb38b1d645547baf56ce3bb5ee2a97781
(cherry picked from commit 2297098875f24289259f12012ab5f077d6051383)
Reviewed: https:/ /review. opendev. org/c/openstack /neutron- vpnaas/ +/795884 /opendev. org/openstack/ neutron- vpnaas/ commit/ 21c38f07c2dd467 2e431fddd81e317 84af15a88b
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/wallaby
commit 21c38f07c2dd467 2e431fddd81e317 84af15a88b
Author: Patryk Jakuszew <email address hidden>
Date: Fri Mar 26 07:43:08 2021 +0100
Add ipsec.secrets reload function to strongSwan driver
Currently, strongSwan driver only triggers "ipsec reload" command secrets( ) function which will call "ipsec rereadsecrets" before
when a new IPsec Site Connection configuration is received. If that
configuration uses a different PSK, it will not be picked up upon
reload called by restart() function. This change introduces a separate
reload_
"ipsec reload".
Closes-Bug: #1921514 645547baf56ce3b b5ee2a97781 9259f12012ab5f0 77d6051383)
Change-Id: Ia5458bbbb38b1d
(cherry picked from commit 2297098875f2428