I'm thinking about posting a PR to have qubes-firewall raise errors
whenever a firewall script from qubes-firewall-user-script or
qubes-firewall.d returns an error code.
The object is to provide a way to make the qubes-firewall service fail
when firewall scripts encounter an error. On failure, the result would
be that forwarding (or networking) is disabled and any units bound to
qubes-firewall would not run.
Default behavior would be little different than it is now, given that
shell scripts are fault-tolerant. But script authors will have the
option of using "set -e" or "exit 1" etc. so the service goes into a
failed state.
--
Chris Laprise, [email protected]
https://github.com/tasket
https://twitter.com/ttaskett
PGP: BEE2 20C5 356E 764A 73EB 4AB3 1DC4 D106 F07F 1886
--
You received this message because you are subscribed to the Google Groups
"qubes-devel" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-devel/16e8597e-e213-b7b0-7784-13a97a84622e%40posteo.net.
For more options, visit https://groups.google.com/d/optout.
