From mboxrd@z Thu Jan  1 00:00:00 1970
From: Jonatan Schlag <jonatan.schlag@ipfire.org>
To: network@lists.ipfire.org
Subject: [PATCH 1/2] ipsec: reload connection when the config changes
Date: Fri, 04 Aug 2017 21:26:36 +0200
Message-ID: <1501874797-9731-1-git-send-email-jonatan.schlag@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============2589760550394505591=="
List-Id: <network.lists.ipfire.org>

--===============2589760550394505591==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit

Signed-off-by: Jonatan Schlag <jonatan.schlag(a)ipfire.org>
---
 src/functions/functions.ipsec | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/src/functions/functions.ipsec b/src/functions/functions.ipsec
index 70931ed..6dc4d5b 100644
--- a/src/functions/functions.ipsec
+++ b/src/functions/functions.ipsec
@@ -285,7 +285,17 @@ ipsec_connection_exists() {
 
 # Reloads the connection after config changes
 ipsec_reload() {
-	return ${EXIT_TRUE}
+	local connection=${1}
+
+	if ! ipsec_connection_to_strongswan ${connection}; then
+		log ERROR "Could not generate strongswan config for ${connnection}"
+		return ${EXIT_ERROR}
+	fi
+
+	if ! cmd swanctl --load-all; then
+		log ERROR "Could not reload strongswan config"
+		return ${EXIT_ERROR}
+	fi
 }
 
 # Handle the cli after authentification
-- 
2.6.3


--===============2589760550394505591==--