rpms / firewalld

Clone
Source Code
GIT

Blame SOURCES/0023-fix-ipset-flush-the-set-if-IndividiualCalls-yes.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-sig-altarch-fasttrack c8 c8-beta c8s c9 c9-beta
  1.   1ae9b31504cb950385191833b12e24600944d0e4
  2.   SOURCES
  3.   0023-fix-ipset-flush-the-set-if-IndividiualCalls-yes.patch
Blob History Raw
1ae9b3 
From 4a94fcfa0450b653c579118678da409b0f449259 Mon Sep 17 00:00:00 2001
1ae9b3 
From: Eric Garver <eric@garver.life>
1ae9b3 
Date: Tue, 12 May 2020 09:34:12 -0400
1ae9b3 
Subject: [PATCH 23/45] fix(ipset): flush the set if IndividiualCalls=yes
1ae9b3
1ae9b3 
Make sure we flush the set when creating. Otherwise a pre-existing set
1ae9b3 
may have stale entries.
1ae9b3
1ae9b3 
Fixes: 81d784f8c856 ("test: ipset: verify clean up on exit/reload")
1ae9b3 
(cherry picked from commit fab381045990f1c994d60c3f7c5813c576e60af1)
1ae9b3 
(cherry picked from commit a512e55190210ecba57f0ccfda88d39ac3151d13)
1ae9b3 
---
1ae9b3 
 src/firewall/core/fw_ipset.py | 5 +++++
1ae9b3 
 1 file changed, 5 insertions(+)
1ae9b3
1ae9b3 
diff --git a/src/firewall/core/fw_ipset.py b/src/firewall/core/fw_ipset.py
1ae9b3 
index 68f016ba2222..90b24c6264c0 100644
1ae9b3 
--- a/src/firewall/core/fw_ipset.py
1ae9b3 
+++ b/src/firewall/core/fw_ipset.py
1ae9b3 
@@ -117,6 +117,11 @@ class FirewallIPSet(object):
1ae9b3 
                         # no entries visible for ipsets with timeout
1ae9b3 
                         continue
1ae9b3
1ae9b3 
+                try:
1ae9b3 
+                    backend.set_flush(obj.name)
1ae9b3 
+                except Exception as msg:
1ae9b3 
+                    raise FirewallError(errors.COMMAND_FAILED, msg)
1ae9b3 
+
1ae9b3 
                 for entry in obj.entries:
1ae9b3 
                     try:
1ae9b3 
                         backend.set_add(obj.name, entry)
1ae9b3 
--
1ae9b3 
2.27.0
1ae9b3

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation