bugzilla-daemon at netfilter.org
2020-Dec-01 19:30 UTC
[Bug 1485] New: Buggy parsing of malformed rule within implicit chain causes assertion and core dump
https://bugzilla.netfilter.org/show_bug.cgi?id=1485
Bug ID: 1485
Summary: Buggy parsing of malformed rule within implicit chain
causes assertion and core dump
Product: nftables
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: kfm at plushkava.net
For example:-
# nft add table ip t
# nft add chain ip t c
# nft add rule ip t c tcp dport 80 jump { ip saddr 127.0.0.1 daddr 127.0.0.1 }
nft: parser_bison.y:75: close_scope: Assertion `state->scope > 0'
failed.
Aborted (core dumped)
Eschewing the use of the implicit chain results in a proper error message:-
# nft add rule ip t c tcp dport 80 ip saddr 127.0.0.1 daddr 127.0.0.1
Error: syntax error, unexpected daddr, expecting end of file or newline or
semicolon
add rule ip t c tcp dport 80 ip saddr 127.0.0.1 daddr 127.0.0.1
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20201201/82a51287/attachment.html>
bugzilla-daemon at netfilter.org
2020-Dec-01 20:26 UTC
[Bug 1485] Buggy parsing of malformed rule within implicit chain causes assertion and core dump
https://bugzilla.netfilter.org/show_bug.cgi?id=1485
kfm at plushkava.net changed:
What |Removed |Added
----------------------------------------------------------------------------
See Also| |https://bugzilla.netfilter.
| |org/show_bug.cgi?id=1434
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20201201/030a22e6/attachment.html>
bugzilla-daemon at netfilter.org
2020-Dec-08 17:10 UTC
[Bug 1485] Buggy parsing of malformed rule within implicit chain causes assertion and core dump
https://bugzilla.netfilter.org/show_bug.cgi?id=1485
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
--- Comment #1 from Pablo Neira Ayuso <pablo at netfilter.org> ---
https://patchwork.ozlabs.org/project/netfilter-devel/patch/20201208170811.30139-1-pablo
at netfilter.org/
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20201208/3baea663/attachment.html>
bugzilla-daemon at netfilter.org
2020-Dec-09 09:40 UTC
[Bug 1485] Buggy parsing of malformed rule within implicit chain causes assertion and core dump
https://bugzilla.netfilter.org/show_bug.cgi?id=1485
Pablo Neira Ayuso <pablo at netfilter.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |FIXED
Status|ASSIGNED |RESOLVED
--- Comment #2 from Pablo Neira Ayuso <pablo at netfilter.org> ---
http://git.netfilter.org/nftables/commit/?id=8eca0308c44127f3b4335c50b96ce8c4d2e041bd
Thanks for reporting.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20201209/7982f3a6/attachment-0001.html>