[strongSwan] rereadsecrets race condition.

Guru Shetty gurushettylists at gmail.com
Thu Nov 1 01:19:36 CET 2012

Hello All,
 I have multiple host-host connections.
Whenever a new connection is added in ipsec.conf, the ipsec.secrets is
updated with the entry for the new connection and I issue a "ipsec
If at the time of running of "ipsec rereadsecrets", if a different
connection is being negotiated, it can fail because it cannot find the
private key(as rereadsecrets flushes the secrets before reading them

Is there a way to avoid this? Is it not possible to read secrets
without flushing them?


More information about the Users mailing list