sysmocom
/
openwrt
11
0
Fork 0
Code Pull Requests Releases Activity
378 Commits 3 Branches 0 Tags 13 MiB
Commit Graph

8 Commits

Author SHA1 Message Date
jow 58c6e574c3 BB: firewall: allow '*' as synonym for any / all in family and proto options 
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r42620

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42623 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-19 18:23:20 +00:00
jow e12261d40a BB: firewall: fix heap corruption in fw3_bitlen2netmask() with IPv6 addresses 
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r42610

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42622 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-19 18:23:17 +00:00
jow a3f528c624 BB: firewall: fix invalid memory access when processing /128 IPv6 addresses from ubus, properly emit REDIRECT rules for local port forwards 
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r42604

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42621 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-19 18:23:15 +00:00
blogic cb8f6fa0b4 package/*: remove useless explicit set of function returncode 
somebody started to set a function returncode in the validation
stuff and everybody copies it, e.g.

myfunction()
{
	fire_command

	return $?
}

a function automatically returns with the last returncode,
so we can safely remove the command 'return $?'. reference:

http://tldp.org/LDP/abs/html/exit-status.html
"The last command executed in the function or script determines the exit status."

Signed-off-by: Bastian Bittorf <bittorf@bluebottle.com>

Backport of r42278

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42379 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-01 13:21:54 +00:00
blogic e848b54b53 firewall: the firewall did not start properly on boot 
https://dev.openwrt.org/ticket/17593

Signed-off-by: John Crispin <blogic@openwrt.org>

Backport of r42233

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42374 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-01 13:21:46 +00:00
blogic 921a5bb956 firewall: fix potential NULL pointer access 
Properly skip struct ifaddr entries with NULL ifa_addr, thanks Kostas Papadopoulos for reporting.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r42138

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42354 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-01 13:21:09 +00:00
blogic f76ea8c4ef firewall: implement selective conntrack flushing (#10225) 
Utilize the new selective conntrack flushing facility to clear
out active conntrack entries referring to old IP addresses after
a firewall reload.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r42114

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42353 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-09-01 13:21:07 +00:00
nbd e345c9a277 create branch for barrier breaker (from trunk r41863) 
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41864 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-07-28 23:18:57 +00:00