From: Jonatan Schlag <jonatan.schlag@ipfire.org>
Date: Wed, 16 Aug 2017 15:18:46 +0000 (+0200)
Subject: network reset: destroy all IPsec pools
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=ecac9e2bdea53213766d33ae6a1e2fbc34290fd8;p=people%2Fjschlag%2Fnetwork.git

network reset: destroy all IPsec pools

Fixes: #11432

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
---

diff --git a/src/functions/functions.ipsec-pool b/src/functions/functions.ipsec-pool
index 4eb0e4e..5decaa4 100644
--- a/src/functions/functions.ipsec-pool
+++ b/src/functions/functions.ipsec-pool
@@ -420,3 +420,12 @@ ipsec_pool_to_strongswan() {
 		fi
 	) > ${path}
 }
+
+# List all IPsec pools
+ipsec_list_pools() {
+	local pool
+	for pool in ${NETWORK_IPSEC_POOLS_DIR}/*; do
+		[ -d "${pool}" ] || continue
+		basename "${pool}"
+	done
+}
diff --git a/src/network b/src/network
index bc4210c..71b0cde 100644
--- a/src/network
+++ b/src/network
@@ -1154,6 +1154,11 @@ cli_reset() {
 		ipsec_connection_destroy "${connection}"
 	done
 
+	local pool
+	for pool in $(ipsec_list_pools); do
+		ipsec_pool_destroy "${pool}"
+	done
+
 	# Stop strongswan
 	ipsec_strongswan_autostart