[openstack-dev] [neutron][vpnaas] Can we require kernel 3.8+ for use with StrongSwan IPSec VPN for Kilo?
ihrachys at redhat.com
Wed Jan 21 16:27:42 UTC 2015
On 01/20/2015 05:40 PM, Paul Michali wrote:
> Review https://review.openstack.org/#/c/146508/ is adding support for
> StrongSwan VPN, which needs mount bind to be able to specify different
> paths for config files.
> The code, which used some older patch, does a test for /proc/1/ns/net,
> instead of /proc/1/ns/mnt, because it stated that the latter is only
> supported in kernel 3.8+. That was a while ago, and I'm wondering if
> the condition is still true. If we know that for Kilo and on, we'll be
> dealing with 3.8+ kernels, we could use the more accurate test.
> Can we require 3.8+ kernel for this?
I think we can but it's better to check with distributions. Red Hat
wise, we ship a kernel that is newer than 3.8.
> If so, how and where do we ensure that is true?
Ideally, you would implement a sanity check for the feature you need
from the kernel. Though it opens a question of whether we want to ship
multiple sanity check tools for each of repos (neutron + 3 *aas repos).
> Also, if you can kindly review the code here:
> I'd really appreciate it, as I'm not versed in the Linux proc files at
> PCM (Paul Michali)
> IRC............ pc_m (irc.freenode.com <http://irc.freenode.com>)
> Twitter....... @pmichali
> OpenStack Development Mailing List (not for usage questions)
> Unsubscribe: OpenStack-dev-request at lists.openstack.org?subject:unsubscribe
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OpenStack-dev