diff options
| author | Stig Thormodsrud <stig@io.vyatta.com> | 2009-02-06 12:09:26 -0800 |
|---|---|---|
| committer | Stig Thormodsrud <stig@io.vyatta.com> | 2009-02-06 12:09:26 -0800 |
| commit | f9cf46359e923ffab788663a8d644b06bfe0e9b5 (patch) | |
| tree | e4fc972391230d9e14103fe80750a264d79abfeb /scripts | |
| parent | c1f4b2919df3815785faf45c35f729b06662aeaf (diff) | |
| download | vyatta-cfg-firewall-f9cf46359e923ffab788663a8d644b06bfe0e9b5.tar.gz vyatta-cfg-firewall-f9cf46359e923ffab788663a8d644b06bfe0e9b5.zip | |
Add validation of group type.
Diffstat (limited to 'scripts')
| -rwxr-xr-x | scripts/firewall/vyatta-ipset.pl | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/scripts/firewall/vyatta-ipset.pl b/scripts/firewall/vyatta-ipset.pl index 0c0ee86..fe3a921 100755 --- a/scripts/firewall/vyatta-ipset.pl +++ b/scripts/firewall/vyatta-ipset.pl @@ -77,6 +77,22 @@ sub ipset_delete_member { return $group->delete_member($member); } +sub ipset_check_set_type { + my ($set_name, $set_type) = @_; + + die "Error: undefined set_name\n" if ! defined $set_name; + die "Error: undefined set_type\n" if ! defined $set_type; + + my $group = new Vyatta::IpTables::IpSet($set_name); + return "Group [$set_name] has not been defined\n" if ! $group->exists(); + my $type = $group->get_type(); + $type = 'undefined' if ! defined $type; + if ($type ne $set_type) { + return "Error: group [$set_name] is of type [$type] not [$set_type]"; + } + return; +} + # # main @@ -103,6 +119,8 @@ $rc = ipset_add_member($set_name, $member) if $action eq 'add-member'; $rc = ipset_delete_member($set_name, $member) if $action eq 'delete-member'; +$rc = ipset_check_set_type($set_name, $set_type) if $action eq 'check-set-type'; + if (defined $rc) { print $rc; exit 1; |