netfilter buglog - Feb 2020 - [Bug 1406] New: nft dies with an assertion of consumed > 0

https://bugzilla.netfilter.org/show_bug.cgi?id=1406

            Bug ID: 1406
           Summary: nft dies with an assertion of consumed > 0
           Product: nftables
           Version: unspecified
          Hardware: x86_64
                OS: Gentoo
            Status: NEW
          Severity: major
          Priority: P5
         Component: nft
          Assignee: pablo at netfilter.org
          Reporter: kfm at plushkava.net

I'm using nftables-0.9.3 with libnftnl-1.1.5. I am able to trigger the
assertion mentioned in the summary. Here's how. Firstly, load the following
ruleset:

flush ruleset
table ip metrics  {
    set servers {
        type ipv4_addr
    }
    chain egress {
        type filter hook prerouting priority filter - 1; policy accept;
        iifname != "igb0" ct original daddr @servers
    }
}

Next, try to list a table by any given name - even the "metrics" table
itself:

# nft list table metrics
nft: netlink_delinearize.c:124: netlink_parse_concat_expr: Assertion
`consumed
> 0' failed.
Aborted

I have noticed that the assertion can be avoided by remove the "ct original
daddr @servers" condition from the rule.

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200205/d1631eed/attachment.html>

https://bugzilla.netfilter.org/show_bug.cgi?id=1406

Pablo Neira Ayuso <pablo at netfilter.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |ASSIGNED

--- Comment #1 from Pablo Neira Ayuso <pablo at netfilter.org> ---
I confirm I can reproduce this bug here.

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200415/ab1b153d/attachment.html>

https://bugzilla.netfilter.org/show_bug.cgi?id=1406

--- Comment #2 from Pablo Neira Ayuso <pablo at netfilter.org> ---
Patch to address this bug is available:

https://patchwork.ozlabs.org/project/netfilter-devel/patch/20200731182249.13781-1-pablo
at netfilter.org/

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20200731/c35cd1f5/attachment.html>

https://bugzilla.netfilter.org/show_bug.cgi?id=1406

kfm at plushkava.net changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |FIXED
             Status|ASSIGNED                    |RESOLVED

--- Comment #3 from kfm at plushkava.net ---
Closing, as it was resolved by the release of version 0.9.7. Thanks.

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20201203/fc0efe11/attachment.html>