mirror of
https://gitlab.freedesktop.org/NetworkManager/NetworkManager.git
synced 2025-12-27 05:50:08 +01:00
firewall: fix ZONE_CONFLICT when adding firewall interface to zone
Firewalld call addInterface() fails with ZONE_CONFLICT if the interface is already part of another zone. This complicates the code in NM, because we would have to keep better track of the zone in which the interface currently is. Which might be quite difficult because the zone might be changed from an external program (so we would have to monitor the firewall configuration and work around potential races). A better and simpler fix is to simply always use the changeZone() call. This will do the right thing, regardless if the interface is already part of a zone or not. https://bugzilla.redhat.com/show_bug.cgi?id=1103782 Signed-off-by: Thomas Haller <thaller@redhat.com>
This commit is contained in:
Thomas Haller
parent
c598336de8
commit
c29388bf02
2 changed files with 4 additions and 4 deletions
|
|
@ -4010,7 +4010,7 @@ out:
|
|||
|
||||
|
||||
static void
|
||||
fw_add_to_zone_cb (GError *error, gpointer user_data)
|
||||
fw_change_zone_cb (GError *error, gpointer user_data)
|
||||
{
|
||||
NMDevice *self = NM_DEVICE (user_data);
|
||||
NMDevicePrivate *priv = NM_DEVICE_GET_PRIVATE (self);
|
||||
|
|
@ -4059,8 +4059,8 @@ nm_device_activate_schedule_stage3_ip_config_start (NMDevice *self)
|
|||
priv->fw_call = nm_firewall_manager_add_or_change_zone (priv->fw_manager,
|
||||
nm_device_get_ip_iface (self),
|
||||
zone,
|
||||
TRUE,
|
||||
fw_add_to_zone_cb,
|
||||
FALSE,
|
||||
fw_change_zone_cb,
|
||||
self);
|
||||
}
|
||||
|
||||
|
|
|
|||
|
|
@ -1886,7 +1886,7 @@ firewall_started (NMFirewallManager *manager,
|
|||
nm_firewall_manager_add_or_change_zone (priv->fw_manager,
|
||||
nm_device_get_ip_iface (dev),
|
||||
nm_setting_connection_get_zone (s_con),
|
||||
TRUE, /* add zone */
|
||||
FALSE, /* still change zone */
|
||||
add_or_change_zone_cb,
|
||||
g_object_ref (dev));
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue