Also reload /connected-ips on firewall change / domain spawn

There are scenarios where it turns out to be necessary, such as
enabling IPv6 on a machine causing it to acquire an IPv6 address.
This commit is contained in:
Pawel Marczewski 2020-01-09 16:23:43 +01:00
parent 40f372ee5f
commit 4d8fd0253b
No known key found for this signature in database
GPG Key ID: DE42EE9B14F96465

View File

@ -479,10 +479,11 @@ class NetVMMixin(qubes.events.Emitter):
def on_domain_qdb_create(self, event): def on_domain_qdb_create(self, event):
''' Fills the QubesDB with firewall entries. ''' ''' Fills the QubesDB with firewall entries. '''
# pylint: disable=unused-argument # pylint: disable=unused-argument
# Keep the following in sync with on_firewall_changed.
self.reload_connected_ips() self.reload_connected_ips()
for vm in self.connected_vms: for vm in self.connected_vms:
if vm.is_running(): if vm.is_running():
# keep in sync with on_firewall_changed
self.set_mapped_ip_info_for_vm(vm) self.set_mapped_ip_info_for_vm(vm)
self.reload_firewall_for_vm(vm) self.reload_firewall_for_vm(vm)
@ -491,6 +492,7 @@ class NetVMMixin(qubes.events.Emitter):
''' Reloads the firewall if vm is running and has a NetVM assigned ''' ''' Reloads the firewall if vm is running and has a NetVM assigned '''
# pylint: disable=unused-argument # pylint: disable=unused-argument
if self.is_running() and self.netvm: if self.is_running() and self.netvm:
self.netvm.reload_connected_ips()
self.netvm.set_mapped_ip_info_for_vm(self) self.netvm.set_mapped_ip_info_for_vm(self)
self.netvm.reload_firewall_for_vm(self) # pylint: disable=no-member self.netvm.reload_firewall_for_vm(self) # pylint: disable=no-member