connman: do not touch nat table before enabling tethering

2025-07-29 13:46:49 +00:00 · 2013-07-04 18:39:51 +03:00 · 2013-07-04 18:39:51 +03:00 · 695ec8a956
commit 695ec8a956
parent c8729199f1
1 changed files with 48 additions and 0 deletions
--- a/packages/network/connman/patches/connman-init-nat-after-tethering.patch
+++ b/packages/network/connman/patches/connman-init-nat-after-tethering.patch
@ -0,0 +1,48 @@
+commit 0f41818097e3ada58c21a3a84af86ec3762294ce
+Author: Stefan Saraev <stefan@saraev.ca>
+Date:   Thu Jul 4 18:42:29 2013 +0300
+
+    do not touch nat table before enabling tethering
+    
+    TODO: remove when upstream does a better fix
+
+diff --git a/src/connman.h b/src/connman.h
+index 96f8466..c94d854 100644
+--- a/src/connman.h
+++ b/src/connman.h
+@@ -910,6 +910,8 @@ int __connman_nat_enable(const char *name, const char *address,
+ 				unsigned char prefixlen);
+ void __connman_nat_disable(const char *name);
+ 
+static connman_bool_t nat_enabled = FALSE;
+
+ struct firewall_context;
+ 
+ struct firewall_context *__connman_firewall_create(void);
+diff --git a/src/firewall.c b/src/firewall.c
+index c235d86..1e7dfa9 100644
+--- a/src/firewall.c
+++ b/src/firewall.c
+@@ -421,7 +421,8 @@ static void flush_all_tables(void)
+ 
+ 	flush_table("filter");
+ 	flush_table("mangle");
+-	flush_table("nat");
+	if (nat_enabled)
+		flush_table("nat");
+ }
+ 
+ int __connman_firewall_init(void)
+diff --git a/src/nat.c b/src/nat.c
+index 5447eb7..d5ceffd 100644
+--- a/src/nat.c
+++ b/src/nat.c
+@@ -78,6 +78,8 @@ static int enable_nat(struct connman_nat *nat)
+ 	if (err < 0)
+ 		return err;
+ 
+	nat_enabled = TRUE;
+
+ 	return __connman_iptables_commit("nat");
+ }
+