rpms / firewalld

Clone
Source Code
GIT

Blame SOURCES/0034-fix-on-reload-set-policy-before-cleanup.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-sig-altarch-fasttrack c8 c8-beta c8s c9 c9-beta
  1.   c8bceb8bf3db2fe79739fc14eb36252dbd2fa1e2
  2.   SOURCES
  3.   0034-fix-on-reload-set-policy-before-cleanup.patch
Blob History Raw
c8bceb 
From 3054c6390a485451c83580e4cfeab4d90c08d95d Mon Sep 17 00:00:00 2001
c8bceb 
From: Eric Garver <eric@garver.life>
c8bceb 
Date: Thu, 25 Apr 2019 15:08:28 -0400
c8bceb 
Subject: [PATCH 34/73] fix: on reload, set policy before cleanup
c8bceb
c8bceb 
Otherwise cleanup() will wipe out things that may be important when
c8bceb 
setting the policy, e.g. IndividualCalls.
c8bceb
c8bceb 
(cherry picked from commit fd2e86fb4a508e750ad4fabc3a5be83e56338e2d)
c8bceb 
(cherry picked from commit 99d0122d1a37b8744faeef619611bd7f9637e974)
c8bceb 
---
c8bceb 
 src/firewall/core/fw.py | 4 ++--
c8bceb 
 1 file changed, 2 insertions(+), 2 deletions(-)
c8bceb
c8bceb 
diff --git a/src/firewall/core/fw.py b/src/firewall/core/fw.py
c8bceb 
index abb25f0c3e72..876c43392b1b 100644
c8bceb 
--- a/src/firewall/core/fw.py
c8bceb 
+++ b/src/firewall/core/fw.py
c8bceb 
@@ -966,11 +966,11 @@ class Firewall(object):
c8bceb 
         _direct_config = self.direct.get_runtime_config()
c8bceb 
         _old_dz = self.get_default_zone()
c8bceb
c8bceb 
+        self.set_policy("DROP")
c8bceb 
+
c8bceb 
         # stop
c8bceb 
         self.cleanup()
c8bceb
c8bceb 
-        self.set_policy("DROP")
c8bceb 
-
c8bceb 
         start_exception = None
c8bceb 
         try:
c8bceb 
             self._start(reload=True, complete_reload=stop)
c8bceb 
--
c8bceb 
2.20.1
c8bceb

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation