From owner-freebsd-ports-bugs@FreeBSD.ORG  Thu Feb 27 06:30:02 2014
Return-Path: <owner-freebsd-ports-bugs@FreeBSD.ORG>
Delivered-To: freebsd-ports-bugs@smarthost.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 7022C962
 for <freebsd-ports-bugs@smarthost.ysv.freebsd.org>;
 Thu, 27 Feb 2014 06:30:02 +0000 (UTC)
Received: from freefall.freebsd.org (freefall.freebsd.org
 [IPv6:2001:1900:2254:206c::16:87])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 49EE81C06
 for <freebsd-ports-bugs@smarthost.ysv.freebsd.org>;
 Thu, 27 Feb 2014 06:30:02 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
 by freefall.freebsd.org (8.14.7/8.14.7) with ESMTP id s1R6U2YZ089788
 for <freebsd-ports-bugs@freefall.freebsd.org>; Thu, 27 Feb 2014 06:30:02 GMT
 (envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
 by freefall.freebsd.org (8.14.8/8.14.8/Submit) id s1R6U29D089787;
 Thu, 27 Feb 2014 06:30:02 GMT (envelope-from gnats)
Resent-Date: Thu, 27 Feb 2014 06:30:02 GMT
Resent-Message-Id: <201402270630.s1R6U29D089787@freefall.freebsd.org>
Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer)
Resent-To: freebsd-ports-bugs@FreeBSD.org
Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org,
 HASHI Hiroaki <hashiz@meridiani.jp>
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 4F6AC6D4
 for <FreeBSD-gnats-submit@freebsd.org>; Thu, 27 Feb 2014 06:22:23 +0000 (UTC)
Received: from tomba.meridiani.jp (7c2944dd.i-revonet.jp [124.41.68.221])
 by mx1.freebsd.org (Postfix) with ESMTP id D90361BA8
 for <FreeBSD-gnats-submit@freebsd.org>; Thu, 27 Feb 2014 06:22:21 +0000 (UTC)
Received: from stenmark.meridiani.jp (stenmark.meridiani.jp
 [IPv6:240b:11:8f80:10::2])
 by tomba.meridiani.jp (Postfix) with ESMTP id 7E2DC1DE8D1
 for <FreeBSD-gnats-submit@freebsd.org>; Thu, 27 Feb 2014 15:15:22 +0900 (JST)
Received: by stenmark.meridiani.jp (Postfix, from userid 1001)
 id 64F214ABE1B; Thu, 27 Feb 2014 15:15:22 +0900 (JST)
Message-Id: <20140227061522.64F214ABE1B@stenmark.meridiani.jp>
Date: Thu, 27 Feb 2014 15:15:22 +0900 (JST)
From: HASHI Hiroaki <hashiz@meridiani.jp>
To: FreeBSD-gnats-submit@freebsd.org
X-Send-Pr-Version: 3.114
Subject: ports/187105: [PATCH] net/miniupnpd fix incrrect redirect filter
X-BeenThere: freebsd-ports-bugs@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: HASHI Hiroaki <hashiz@meridiani.jp>
List-Id: Ports bug reports <freebsd-ports-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports-bugs/>
List-Post: <mailto:freebsd-ports-bugs@freebsd.org>
List-Help: <mailto:freebsd-ports-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports-bugs>, 
 <mailto:freebsd-ports-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Feb 2014 06:30:02 -0000


>Number:         187105
>Category:       ports
>Synopsis:       [PATCH] net/miniupnpd fix incrrect redirect filter
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Feb 27 06:30:00 UTC 2014
>Closed-Date:
>Last-Modified:
>Originator:     HASHI Hiroaki
>Release:        FreeBSD 10.0-STABLE amd64
>Organization:
person
>Environment:
System: FreeBSD stenmark.meridiani.jp 10.0-STABLE FreeBSD 10.0-STABLE #1 r262429M: Mon Feb 24 15:31:28 JST 2014 hashiz@stenmark.meridiani.jp:/usr/obj/usr/src/sys/STENMARK amd64


>Description:
	net/miniupnpd add incorrect filter rule at AddPortMapping request.
>How-To-Repeat:
	Invite remote assistance from windows client on internal network.
	show 'pfctl -a miniupnpd -s rules; pfctl -a miniupnpd -s nat'
        rdr rule is correct, but filter rule port number is incorrect (external port number).
>Fix:

	filter rule's port number must be 'internal' port number.

--- miniupnpd.patch begins here ---
diff -ruN net/miniupnpd.orig/Makefile net/miniupnpd/Makefile
--- net/miniupnpd.orig/Makefile	2014-01-26 23:27:10.000000000 +0900
+++ net/miniupnpd/Makefile	2014-02-27 14:18:05.000000000 +0900
@@ -3,7 +3,7 @@
 
 PORTNAME=	miniupnpd
 PORTVERSION=	1.8
-PORTREVISION=	1
+PORTREVISION=	2
 PORTEPOCH=	1
 CATEGORIES=	net
 MASTER_SITES=	http://miniupnp.tuxfamily.org/files/ \
@@ -28,7 +28,8 @@
 
 .include <bsd.port.options.mk>
 .if ${PORT_OPTIONS:MPF_ENABLE_FILTER_RULES}
-EXTRA_PATCHES=	${PATCHDIR}/pf_enable_filter_rules.patch
+EXTRA_PATCHES=	${PATCHDIR}/pf_enable_filter_rules.patch \
+		${PATCHDIR}/fixredirect.patch
 .endif
 
 post-patch-script:
diff -ruN net/miniupnpd.orig/files/fixredirect.patch net/miniupnpd/files/fixredirect.patch
--- net/miniupnpd.orig/files/fixredirect.patch	1970-01-01 09:00:00.000000000 +0900
+++ net/miniupnpd/files/fixredirect.patch	2014-02-27 14:14:37.000000000 +0900
@@ -0,0 +1,68 @@
+--- pf/obsdrdr.c.orig	2014-02-27 13:38:57.000000000 +0900
++++ pf/obsdrdr.c	2014-02-27 13:41:27.000000000 +0900
+@@ -365,7 +365,7 @@
+ #endif
+ 
+ 		pcr.rule.dst.port_op = PF_OP_EQ;
+-		pcr.rule.dst.port[0] = htons(eport);
++		pcr.rule.dst.port[0] = htons(iport);
+ 		pcr.rule.direction = PF_IN;
+ 		pcr.rule.action = PF_PASS;
+ 		pcr.rule.af = AF_INET;
+@@ -399,7 +399,7 @@
+ 			pcr.rule.src.addr.v.a.mask.v4.s_addr = htonl(INADDR_NONE);
+ 		}
+ #ifndef PF_NEWSTYLE
+-		pcr.rule.rpool.proxy_port[0] = eport;
++		pcr.rule.rpool.proxy_port[0] = iport;
+ 		a = calloc(1, sizeof(struct pf_pooladdr));
+ 		inet_pton(AF_INET, iaddr, &a->addr.v.a.addr.v4.s_addr);
+ 		a->addr.v.a.mask.v4.s_addr = htonl(INADDR_NONE);
+@@ -617,10 +617,10 @@
+ }
+ 
+ int
+-delete_filter_rule(const char * ifname, unsigned short eport, int proto)
++delete_filter_rule(const char * ifname, unsigned short iport, int proto)
+ {
+ #ifndef PF_ENABLE_FILTER_RULES
+-	UNUSED(ifname); UNUSED(eport); UNUSED(proto);
++	UNUSED(ifname); UNUSED(iport); UNUSED(proto);
+ 	return 0;
+ #else
+ 	int i, n;
+@@ -646,7 +646,7 @@
+ 			syslog(LOG_ERR, "ioctl(dev, DIOCGETRULE): %m");
+ 			goto error;
+ 		}
+-		if( (eport == ntohs(pr.rule.dst.port[0]))
++		if( (iport == ntohs(pr.rule.dst.port[0]))
+ 		  && (pr.rule.proto == proto) )
+ 		{
+ 			pr.action = PF_CHANGE_GET_TICKET;
+--- upnpredirect.c.orig	2014-02-27 13:42:05.000000000 +0900
++++ upnpredirect.c	2014-02-27 14:00:06.000000000 +0900
+@@ -420,8 +420,22 @@
+ #if defined(__linux__)
+ 	r = delete_redirect_and_filter_rules(eport, proto);
+ #else
++	char iaddr[INET6_ADDRSTRLEN];
++	unsigned short iport;
++	char desc[64];
++	char rhost[64];
++	unsigned int timestamp;
++	u_int64_t packets;
++	u_int64_t bytes;
++	int r2 = get_redirect_rule(ext_if_name, eport, proto,
++				   &iaddr, sizeof(iaddr), &iport,
++				   &desc, sizeof(desc),
++				   &rhost, sizeof(rhost),
++				   &timestamp,
++				   &packets, &bytes);
+ 	r = delete_redirect_rule(ext_if_name, eport, proto);
+-	delete_filter_rule(ext_if_name, eport, proto);
++	if (r2==0)
++		delete_filter_rule(ext_if_name, iport, proto);
+ #endif
+ #ifdef ENABLE_LEASEFILE
+ 	lease_file_remove( eport, proto);
--- miniupnpd.patch ends here ---


>Release-Note:
>Audit-Trail:
>Unformatted: