Skip to content

RDKB-62529: Able to access the blocked port HTTPS sites#283

Open
suriya-prem wants to merge 25 commits intodevelopfrom
feature/block_https_sites
Open

RDKB-62529: Able to access the blocked port HTTPS sites#283
suriya-prem wants to merge 25 commits intodevelopfrom
feature/block_https_sites

Conversation

@suriya-prem
Copy link
Copy Markdown
Contributor

RDKB-62529: Able to access the blocked port HTTPS sites

Reason for change: Blocked port HTTPS site is accessible.
Test Procedure: Add HTTPS port in managed services in parental control.
Risks: Low
Priority: P1
Signed-off-by: suriyanarayanan_mp@comcast.com

Copilot AI review requested due to automatic review settings April 3, 2026 11:09
@suriya-prem suriya-prem requested review from a team as code owners April 3, 2026 11:09
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates firewall rule generation to prevent HTTPS (port 443) access from bypassing Parental Control “Managed Services” port blocks by conditionally suppressing the existing blockssl ACCEPT/DROP rules when Managed Services includes port 443.

Changes:

  • Add detection of whether Managed Services config includes port 443 (ms_has_port_443).
  • Adjust the condition that emits blockssl (TCP/UDP 443) rules so it won’t override Managed Services port-443 blocking.
  • Apply the same logic for both IPv4 and IPv6 firewall rule generation paths.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 6 comments.

File Description
source/firewall/firewall.c Detects 443 in Managed Services blocks and gates blockssl rule emission accordingly (IPv4).
source/firewall/firewall_ipv6.c Mirrors the same 443 detection and blockssl gating logic for IPv6.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall_ipv6.c Outdated
Comment thread source/firewall/firewall_ipv6.c Outdated
Comment thread source/firewall/firewall_ipv6.c Outdated
Copilot AI review requested due to automatic review settings April 3, 2026 11:36
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall_ipv6.c Outdated
Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall_ipv6.c Outdated
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Copilot AI review requested due to automatic review settings April 6, 2026 06:15
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall_ipv6.c Outdated
Copilot AI review requested due to automatic review settings April 6, 2026 07:53
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall_ipv6.c Outdated
Copilot AI review requested due to automatic review settings April 6, 2026 09:49
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 3 out of 3 changed files in this pull request and generated 2 comments.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall.h Outdated
Comment thread source/firewall/firewall.h Outdated
Copilot AI review requested due to automatic review settings April 6, 2026 10:26
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 3 out of 3 changed files in this pull request and generated no new comments.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot AI review requested due to automatic review settings April 8, 2026 09:28
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 3 out of 3 changed files in this pull request and generated 1 comment.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall.c Outdated
Comment thread source/firewall/firewall_utils.c Outdated
Comment thread source/firewall/firewall_utils.c Outdated
Copilot AI review requested due to automatic review settings April 15, 2026 15:59
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated 3 comments.

Comments suppressed due to low confidence (1)

source/firewall/firewall.h:1278

  • This header now ends without closing the __FIREWALL_H__ include guard that starts near the top of the file. That will trigger an “unterminated #ifndef” preprocessor error and break the build. Add the final #endif at the end of the file (after these new declarations).
* @return None.
*
*/
void do_ssl_blocking_rules(FILE *fp, const char *chain_name);


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall_utils.c Outdated
Comment thread source/firewall/firewall_utils.c Outdated
Comment thread source/firewall/firewall_utils.c
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Copilot AI review requested due to automatic review settings April 16, 2026 06:29
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated 1 comment.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall_utils.c Outdated
aadhithan01 and others added 2 commits April 16, 2026 21:06
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Copilot AI review requested due to automatic review settings April 17, 2026 04:17
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated 1 comment.


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread source/firewall/firewall_utils.c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants