ufw: check values for direction depending on situation (#50402)
* Check values of 'direction'.
* Add changelog.
* Update lib/ansible/modules/system/ufw.py
Co-Authored-By: felixfontein <felix@fontein.de>
* Update lib/ansible/modules/system/ufw.py
(cherry picked from commit 4d3d8dd60f
)
This commit is contained in:
parent
821f43eb9a
commit
6438ab2c46
2 changed files with 6 additions and 0 deletions
2
changelogs/fragments/50402-ufw-check-direction.yml
Normal file
2
changelogs/fragments/50402-ufw-check-direction.yml
Normal file
|
@ -0,0 +1,2 @@
|
||||||
|
bugfixes:
|
||||||
|
- "ufw: make sure that only valid values for ``direction`` are passed on."
|
|
@ -311,9 +311,13 @@ def main():
|
||||||
execute(cmd + [[command], [value]])
|
execute(cmd + [[command], [value]])
|
||||||
|
|
||||||
elif command == 'default':
|
elif command == 'default':
|
||||||
|
if params['direction'] not in ['outgoing', 'incoming', 'routed']:
|
||||||
|
module.fail_json(msg='For default, direction must be one of "outgoing", "incoming" and "routed".')
|
||||||
execute(cmd + [[command], [value], [params['direction']]])
|
execute(cmd + [[command], [value], [params['direction']]])
|
||||||
|
|
||||||
elif command == 'rule':
|
elif command == 'rule':
|
||||||
|
if params['direction'] not in ['in', 'out', None]:
|
||||||
|
module.fail_json(msg='For rules, direction must be one of "in" and "out".')
|
||||||
# Rules are constructed according to the long format
|
# Rules are constructed according to the long format
|
||||||
#
|
#
|
||||||
# ufw [--dry-run] [route] [delete] [insert NUM] allow|deny|reject|limit [in|out on INTERFACE] [log|log-all] \
|
# ufw [--dry-run] [route] [delete] [insert NUM] allow|deny|reject|limit [in|out on INTERFACE] [log|log-all] \
|
||||||
|
|
Loading…
Add table
Reference in a new issue