[Bug 855] New: Can create user chains with names unparsable by iptables-restore
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Thu Oct 3 04:11:15 CEST 2013
https://bugzilla.netfilter.org/show_bug.cgi?id=855
Summary: Can create user chains with names unparsable by
iptables-restore
Product: iptables
Version: 1.4.x
Platform: All
OS/Version: Debian GNU/Linux
Status: NEW
Severity: minor
Priority: P5
Component: iptables
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy: andrew at domaszek.com
Estimated Hours: 0.0
iptables allows the creation of user defined chains with whitespace or
unprintable characters which cannot be properly parsed by iptables-restore.
Steps to reproduce:
root at hephaestus:~# iptables -N $'bad\nchain.'
root at hephaestus:~# iptables-save
# Generated by iptables-save v1.4.14 on Wed Oct 2 21:57:39 2013
*filter
:INPUT ACCEPT [29:2180]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [15:1516]
:bad
chain. - [0:0]
COMMIT
# Completed on Wed Oct 2 21:57:39 2013
root at hephaestus:~# iptables-save > rulelist
root at hephaestus:~# iptables-restore < rulelist
iptables-restore v1.4.14: iptables-restore: line 6 policy invalid
Error occurred at line: 6
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Also tested with gentoo iptables v1.4.16.3, with the same result.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list