Accueil Explorer Aide
S'inscrire Connexion
scw
/
go-iptables
miroir de https://github.com/coreos/go-iptables
2
0
Fork 0
Fichiers Tickets 0 Wiki
Parcourir la source

fix iptables IsNotExist error comparison

The comparison done in the IsNotExist method is missing
the parenthesis aggregating the logical or statements,
thus the expression evaluation is not working as
expected.

Signed-off-by: Antonio Ojea <antonio.ojea.garcia@gmail.com>
Antonio Ojea il y a 5 ans
Parent
c0ec0e7d2f
commit
2a6666508f
1 fichiers modifiés avec 7 ajouts et 3 suppressions
Vue séparée Afficher les stats Diff
  1. 7 3
      iptables/iptables.go

+ 7 - 3
iptables/iptables.go
Voir le fichier 

@@ -48,9 +48,13 @@ func (e *Error) Error() string {
 
 
 // IsNotExist returns true if the error is due to the chain or rule not existing
 
 func (e *Error) IsNotExist() bool {
 
-	return e.ExitStatus() == 1 &&
 
-		strings.Contains(e.msg, fmt.Sprintf("%s: Bad rule (does a matching rule exist in that chain?).\n", getIptablesCommand(e.proto))) ||
 
-		strings.Contains(e.msg, fmt.Sprintf("%s: No chain/target/match by that name.\n", getIptablesCommand(e.proto)))
 
+	if e.ExitStatus() != 1 {
 
+		return false
 
+	}
 
+	cmdIptables := getIptablesCommand(e.proto)
 
+	msgNoRuleExist := fmt.Sprintf("%s: Bad rule (does a matching rule exist in that chain?).\n", cmdIptables)
 
+	msgNoChainExist := fmt.Sprintf("%s: No chain/target/match by that name.\n", cmdIptables)
 
+	return strings.Contains(e.msg, msgNoRuleExist) || strings.Contains(e.msg, msgNoChainExist)
 
 }
 
 
 // Protocol to differentiate between IPv4 and IPv6