From 4a2b9eba19ccd88a899d93bbcde88f612142821c Mon Sep 17 00:00:00 2001
From: "William A. Kennington III" <wak@google.com>
Date: Tue, 16 Feb 2021 14:38:36 -0800
Subject: meta-google: nftables-systemd: Fix for missing rules

We need nftables-systemd to execute correctly even if the machine has
no rules installed.

Change-Id: I20d58b721381a2829eaa2baedd5d79e8e0a10fd0
Signed-off-by: William A. Kennington III <wak@google.com>
---
 meta-google/recipes-google/nftables/files/nftables.service | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/meta-google/recipes-google/nftables/files/nftables.service b/meta-google/recipes-google/nftables/files/nftables.service
index 7130dea93..3830988eb 100644
--- a/meta-google/recipes-google/nftables/files/nftables.service
+++ b/meta-google/recipes-google/nftables/files/nftables.service
@@ -4,7 +4,7 @@ Before=network-pre.target
 [Service]
 Type=oneshot
 RemainAfterExit=yes
-ExecStart=/bin/bash -c 'echo /etc/nftables/*.rules | xargs -n 1 nft -f'
+ExecStart=/bin/bash -c 'shopt -s nullglob; echo /etc/nftables/*.rules | xargs -r -n 1 nft -f'
 ExecStop=/bin/bash -c 'nft flush ruleset'
 
 [Install]
-- 
cgit v1.2.3