e12261d40a
BB: firewall: fix heap corruption in fw3_bitlen2netmask() with IPv6 addresses
...
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42610
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42622 3c298f89-4303-0410-b956-a3cf2f4a3e73
2014-09-19 18:23:17 +00:00
a3f528c624
BB: firewall: fix invalid memory access when processing /128 IPv6 addresses from ubus, properly emit REDIRECT rules for local port forwards
...
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42604
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42621 3c298f89-4303-0410-b956-a3cf2f4a3e73
2014-09-19 18:23:15 +00:00
921a5bb956
firewall: fix potential NULL pointer access
...
Properly skip struct ifaddr entries with NULL ifa_addr, thanks Kostas Papadopoulos for reporting.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42138
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42354 3c298f89-4303-0410-b956-a3cf2f4a3e73
2014-09-01 13:21:09 +00:00
f76ea8c4ef
firewall: implement selective conntrack flushing ( #10225 )
...
Utilize the new selective conntrack flushing facility to clear
out active conntrack entries referring to old IP addresses after
a firewall reload.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42114
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42353 3c298f89-4303-0410-b956-a3cf2f4a3e73
2014-09-01 13:21:07 +00:00
e345c9a277
create branch for barrier breaker (from trunk r41863)
...
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41864 3c298f89-4303-0410-b956-a3cf2f4a3e73
2014-07-28 23:18:57 +00:00
jow
blogic
nbd