Merge pull request #80 from Intel-BMC/updateHEAD 1-0.91 intel

Update
author: dheerajpdsk <p.dheeraj.srujan.kumar@intel.com> 2022-05-06 02:48:05 +0300
committer: GitHub <noreply@github.com> 2022-05-06 02:48:05 +0300
commit: ca8d06bc610af08c2d3efc487aa9519989b743e6 (patch)
tree: c557da2136640a8ce48439f19fe5f7071faffeca /meta-google/recipes-google/nftables/files/nft-configure.sh
parent: 7cf0c1cd0ce835d1833509b7b911e8a97380278b (diff)
parent: 18f97faa411078b95d042d207f5fff32bc8ece1d (diff)
download: openbmc-intel.tar.xz
1 files changed, 9 insertions, 5 deletions
diff --git a/meta-google/recipes-google/nftables/files/nft-configure.sh b/meta-google/recipes-google/nftables/files/nft-configure.sh
index 05bb23d8b..8c8e058b7 100644
--- a/meta-google/recipes-google/nftables/files/nft-configure.sh
+++ b/meta-google/recipes-google/nftables/files/nft-configure.sh
@@ -8,10 +8,14 @@ for dir in /run/nftables /etc/nftables /usr/share/nftables; do
   done
   let i+=1
 done
-rc=0
-nft flush ruleset || rc=$?
+
+rules=""
+trap 'rm -f -- "$rules"' TERM INT EXIT ERR
+rules="$(mktemp)" || exit
+echo 'flush ruleset' >"$rules"
 for key in $(printf "%s\n" "${!basemap[@]}" | sort -r); do
-  echo "Executing ${basemap[$key]}" >&2
-  nft -f "${basemap[$key]}" || rc=$?
+  echo "Loading ${basemap[$key]}" >&2
+  echo '' >>"$rules"
+  cat "${basemap[$key]}" >>"$rules"
 done
-exit $rc
+nft -f "$rules" || exit
author	dheerajpdsk <p.dheeraj.srujan.kumar@intel.com>	2022-05-06 02:48:05 +0300
committer	GitHub <noreply@github.com>	2022-05-06 02:48:05 +0300
commit	ca8d06bc610af08c2d3efc487aa9519989b743e6 (patch)
tree	c557da2136640a8ce48439f19fe5f7071faffeca /meta-google/recipes-google/nftables/files/nft-configure.sh
parent	7cf0c1cd0ce835d1833509b7b911e8a97380278b (diff)
parent	18f97faa411078b95d042d207f5fff32bc8ece1d (diff)
download	openbmc-intel.tar.xz