From ecac9e2bdea53213766d33ae6a1e2fbc34290fd8 Mon Sep 17 00:00:00 2001
From: Jonatan Schlag <jonatan.schlag@ipfire.org>
Date: Wed, 16 Aug 2017 17:18:46 +0200
Subject: [PATCH] network reset: destroy all IPsec pools

Fixes: #11432

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---
 src/functions/functions.ipsec-pool | 9 +++++++++
 src/network                        | 5 +++++
 2 files changed, 14 insertions(+)

diff --git a/src/functions/functions.ipsec-pool b/src/functions/functions.ipsec-pool
index 4eb0e4e7..5decaa40 100644
--- a/src/functions/functions.ipsec-pool
+++ b/src/functions/functions.ipsec-pool
@@ -420,3 +420,12 @@ ipsec_pool_to_strongswan() {
 		fi
 	) > ${path}
 }
+
+# List all IPsec pools
+ipsec_list_pools() {
+	local pool
+	for pool in ${NETWORK_IPSEC_POOLS_DIR}/*; do
+		[ -d "${pool}" ] || continue
+		basename "${pool}"
+	done
+}
diff --git a/src/network b/src/network
index bc4210c0..71b0cdec 100644
--- a/src/network
+++ b/src/network
@@ -1154,6 +1154,11 @@ cli_reset() {
 		ipsec_connection_destroy "${connection}"
 	done
 
+	local pool
+	for pool in $(ipsec_list_pools); do
+		ipsec_pool_destroy "${pool}"
+	done
+
 	# Stop strongswan
 	ipsec_strongswan_autostart
 
-- 
2.47.3