Fix error message on firewalld init
If firewalld is not installed (or I suppose not running), firewalld was producing an error in the daemon init logs, even though firewalld is not required for iptables stuff to function. The firewalld library code was also logging directly to logrus instead of returning errors. Moved logging code higher up in the stack and changed firewalld code to return errors where appropriate. Signed-off-by: Brian Goff <cpuguy83@gmail.com>
This commit is contained in:
Brian Goff
parent
eef8989683
commit
2d05f91e62
2 changed files with 13 additions and 13 deletions
|
|
@ -33,19 +33,18 @@ var (
|
||||||
onReloaded []*func() // callbacks when Firewalld has been reloaded
|
onReloaded []*func() // callbacks when Firewalld has been reloaded
|
||||||
)
|
)
|
||||||
|
|
||||||
func FirewalldInit() {
|
func FirewalldInit() error {
|
||||||
var err error
|
var err error
|
||||||
|
|
||||||
connection, err = newConnection()
|
if connection, err = newConnection(); err != nil {
|
||||||
|
return fmt.Errorf("Failed to connect to D-Bus system bus: %v", err)
|
||||||
if err != nil {
|
|
||||||
logrus.Errorf("Failed to connect to D-Bus system bus: %s", err)
|
|
||||||
}
|
}
|
||||||
if connection != nil {
|
if connection != nil {
|
||||||
go signalHandler()
|
go signalHandler()
|
||||||
}
|
}
|
||||||
|
|
||||||
firewalldRunning = checkRunning()
|
firewalldRunning = checkRunning()
|
||||||
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
// New() establishes a connection to the system bus.
|
// New() establishes a connection to the system bus.
|
||||||
|
|
@ -146,19 +145,15 @@ func checkRunning() bool {
|
||||||
logrus.Infof("Firewalld running: %t", err == nil)
|
logrus.Infof("Firewalld running: %t", err == nil)
|
||||||
return err == nil
|
return err == nil
|
||||||
}
|
}
|
||||||
logrus.Info("Firewalld not running")
|
|
||||||
return false
|
return false
|
||||||
}
|
}
|
||||||
|
|
||||||
// Firewalld's passthrough method simply passes args through to iptables/ip6tables
|
// Firewalld's passthrough method simply passes args through to iptables/ip6tables
|
||||||
func Passthrough(ipv IPV, args ...string) ([]byte, error) {
|
func Passthrough(ipv IPV, args ...string) ([]byte, error) {
|
||||||
var output string
|
var output string
|
||||||
|
|
||||||
logrus.Debugf("Firewalld passthrough: %s, %s", ipv, args)
|
logrus.Debugf("Firewalld passthrough: %s, %s", ipv, args)
|
||||||
err := connection.sysobj.Call(dbusInterface+".direct.passthrough", 0, ipv, args).Store(&output)
|
if err := connection.sysobj.Call(dbusInterface+".direct.passthrough", 0, ipv, args).Store(&output); err != nil {
|
||||||
if output != "" {
|
return nil, err
|
||||||
logrus.Debugf("passthrough output: %s", output)
|
|
||||||
}
|
}
|
||||||
|
return []byte(output), nil
|
||||||
return []byte(output), err
|
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -7,7 +7,12 @@ import (
|
||||||
)
|
)
|
||||||
|
|
||||||
func TestFirewalldInit(t *testing.T) {
|
func TestFirewalldInit(t *testing.T) {
|
||||||
FirewalldInit()
|
if !checkRunning() {
|
||||||
|
t.Skip("firewalld is not running")
|
||||||
|
}
|
||||||
|
if err := FirewalldInit(); err != nil {
|
||||||
|
t.Fatal(err)
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func TestReloaded(t *testing.T) {
|
func TestReloaded(t *testing.T) {
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue