<html>

    <head>

      <base href="https://bugzilla.netfilter.org/" />

    </head>

    <body><table border="1" cellspacing="0" cellpadding="8">

        <tr>

          <th>Bug ID</th>

          <td><a class="bz_bug_link 

          bz_status_NEW "

   title="NEW - iptables-xml crashed on -D rules"

   href="https://bugzilla.netfilter.org/show_bug.cgi?id=1152">1152</a>

          </td>

        </tr>

        <tr>

          <th>Summary</th>

          <td>iptables-xml crashed on -D rules

          </td>

        </tr>

        <tr>

          <th>Product</th>

          <td>iptables

          </td>

        </tr>

        <tr>

          <th>Version</th>

          <td>1.4.x

          </td>

        </tr>

        <tr>

          <th>Hardware</th>

          <td>All

          </td>

        </tr>

        <tr>

          <th>OS</th>

          <td>All

          </td>

        </tr>

        <tr>

          <th>Status</th>

          <td>NEW

          </td>

        </tr>

        <tr>

          <th>Severity</th>

          <td>enhancement

          </td>

        </tr>

        <tr>

          <th>Priority</th>

          <td>P5

          </td>

        </tr>

        <tr>

          <th>Component</th>

          <td>unknown

          </td>

        </tr>

        <tr>

          <th>Assignee</th>

          <td>netfilter-buglog@lists.netfilter.org

          </td>

        </tr>

        <tr>

          <th>Reporter</th>

          <td>ivan.agarkov@gmail.com

          </td>

        </tr></table>

      <p>

        <div>

        <pre>[root@server ~]# cat /etc/iptables.post

*filter

:INPUT ACCEPT [0:0]

:FORWARD ACCEPT [0:0]

:OUTPUT ACCEPT [5103:1388026]

-D INPUT -p tcp --dport 2200 -j ACCEPT

[root@server ~]# gdb /usr/bin/iptables-xml 

GNU gdb (GDB) Red Hat Enterprise Linux 7.6.1-94.el7

Copyright (C) 2013 Free Software Foundation, Inc.

License GPLv3+: GNU GPL version 3 or later <<a href="http://gnu.org/licenses/gpl.html">http://gnu.org/licenses/gpl.html</a>>

This is free software: you are free to change and redistribute it.

There is NO WARRANTY, to the extent permitted by law.  Type "show copying"

and "show warranty" for details.

This GDB was configured as "x86_64-redhat-linux-gnu".

For bug reporting instructions, please see:

<<a href="http://www.gnu.org/software/gdb/bugs/">http://www.gnu.org/software/gdb/bugs/</a>>...

Reading symbols from /usr/sbin/xtables-multi...Reading symbols from

/usr/lib/debug/usr/sbin/xtables-multi.debug...done.

done.

(gdb) run < /etc/iptables.post

Starting program: /usr/bin/iptables-xml < /etc/iptables.post

<iptables-rules version="1.0">

<!-- # Managed by puppet -->

  <table name="filter" >

Program received signal SIGSEGV, Segmentation fault.

__strcmp_sse42 () at ../sysdeps/x86_64/multiarch/strcmp-sse42.S:165

165        movdqu    (%rsi), %xmm2

(gdb) bt

#0  __strcmp_sse42 () at ../sysdeps/x86_64/multiarch/strcmp-sse42.S:165

#1  0x00000000004041f8 in needChain (chain=0x0) at iptables-xml.c:276

#2  iptables_xml_main (argc=<optimized out>, argv=<optimized out>) at

iptables-xml.c:848

#3  0x00007ffff711eb35 in __libc_start_main (main=0x403200 <main>, argc=1,

ubp_av=0x7fffffffe2a8, init=<optimized out>, 

    fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fffffffe298)

at ../csu/libc-start.c:274

#4  0x0000000000403233 in _start ()</pre>

        </div>

      </p>

      <hr>

      <span>You are receiving this mail because:</span>

      <ul>

          <li>You are watching all bug changes.</li>

      </ul>

    </body>

</html>