If the firewall rules file does not exist, assume ALLOW (#188)

So that newly created appvms have net access.
2011-04-04 17:07:46 +02:00 · 2011-04-04 17:07:46 +02:00 · 02514b1347
commit 02514b1347
parent 936ce590ac
1 changed files with 5 additions and 2 deletions
--- a/dom0/qvm-core/qubes.py
+++ b/dom0/qvm-core/qubes.py
@ -1390,13 +1390,16 @@ class QubesProxyVm(QubesNetVm):
        qvm_collection.load()
        qvm_collection.unlock_db()

-        vms = [vm for vm in qvm_collection.values() if vm.has_firewall()]
+        vms = [vm for vm in qvm_collection.values()]
        for vm in vms:
            # Process only VMs connected to this ProxyVM
            if not vm.netvm_vm or vm.netvm_vm.qid != self.qid:
                continue

+            if vm.has_firewall():
                conf = vm.get_firewall_conf()
+            else:
+                conf = { "rules": list(), "allow": True, "allowDns": True, "allowIcmp": True }

            xid = vm.get_xid()
            if xid < 0: # VM not active ATM