Unsafe grains call in iptables formula fix state iptables.rules may fail if grains_yaml is None Change-Id: Ibd59c33345f1af97267a7632d3e5b64d885c41e8

commit: c01bfc9661f5c681bfa6f93bb0d7c14cc5f6940a [log] [tgz]
author: Dzmitry Stremkouski <dstremkouski@mirantis.com> Tue Mar 06 23:44:24 2018 +0100
committer: Dzmitry Stremkouski <dstremkouski@mirantis.com> Wed Mar 07 09:53:46 2018 +0100
tree: 1cbcbb7b929a6e2431451c49b0c734afd7855565
parent: 33df4d643a6f209e13d690356c8580c7fc2bc0b8 [diff]
diff --git a/iptables/rules.sls b/iptables/rules.sls
index 54fbbc4..ec39e15 100644
--- a/iptables/rules.sls
+++ b/iptables/rules.sls

@@ -55,10 +55,14 @@
 {%- macro load_grains_file() %}{% include grains_fragment_file %}{% endmacro %}
 {%- set grains_yaml = load_grains_file()|load_yaml %}
 
-{%- for rule in grains_yaml.iptables.rules %}
-{%- set rule_name = service_name+'_'+loop.index|string %}
+{%- if grains_yaml is iterable %}
+{%-   if grains_yaml.get('iptables',{}).rules is defined %}
+{%-     for rule in grains_yaml.iptables.rules %}
+{%-       set rule_name = service_name+'_'+loop.index|string %}
 {% include "iptables/_rule.sls" %}
-{%- endfor %}
+{%-     endfor %}
+{%-   endif %}
+{%- endif %}
 
 {%- endif %}
 {%- endif %}
commit	c01bfc9661f5c681bfa6f93bb0d7c14cc5f6940a	[log] [tgz]
author	Dzmitry Stremkouski <dstremkouski@mirantis.com>	Tue Mar 06 23:44:24 2018 +0100
committer	Dzmitry Stremkouski <dstremkouski@mirantis.com>	Wed Mar 07 09:53:46 2018 +0100
tree	1cbcbb7b929a6e2431451c49b0c734afd7855565
parent	33df4d643a6f209e13d690356c8580c7fc2bc0b8 [diff]