[Bug 1754] __list_add SIGSEGV fault

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Tue Jun 11 07:56:45 CEST 2024 

https://bugzilla.netfilter.org/show_bug.cgi?id=1754

--- Comment #4 from Egbert S <s.egbert at sbcglobal.net> ---
In nft_cmd_collapse, using the same original all-same-'blackhole', '*cmd'
variable shows:

(gdb) p *cmd
$28 = {list = {next = 0x55555557f470, prev = 0x55555557e4d0}, location =
{indesc = 0x55555555cd70, {{token_offset = 0x2521, line_offset = 0x251a,
first_line = 0xce, last_line = 0xce, first_column = 0x1, last_column = 0x37},
{nle = 0x2521}}}, op = CMD_ADD, obj = CMD_OBJ_ELEMENTS, handle = {family = 0x2,
table = {location = {indesc = 0x55555555cd70, {{token_offset = 0x2528,
line_offset = 0x251a, first_line = 0xce, last_line = 0xce, first_column = 0x9,
last_column = 0xe}, {nle = 0x2528}}}, name = 0x55555557e410 "filter"}, chain =
{location = {indesc = 0x0, {{token_offset = 0x0, line_offset = 0x0, first_line
= 0x0, last_line = 0x0, first_column = 0x0, last_column = 0x0}, {nle = 0x0}}},
name = 0x0}, set = {location = {indesc = 0x55555555cd70, {{token_offset =
0x2532, line_offset = 0x251a, first_line = 0xce, last_line = 0xce, first_column
= 0x10, last_column = 0x18}, {nle = 0x2532}}}, name = 0x55555557e900
"blackhole"}, obj = {location = {indesc = 0x0, {{token_offset = 0x0,
line_offset = 0x0, first_line = 0x0, last_line = 0x0, first_column = 0x0,
last_column = 0x0}, {nle = 0x0}}}, name = 0x0}, flowtable = {location = {indesc
= 0x0, {{token_offset = 0x0, line_offset = 0x0, first_line = 0x0, last_line =
0x0, first_column = 0x0, last_column = 0x0}, {nle = 0x0}}}, name = 0x0}, handle
= {location = {indesc = 0x0, {{token_offset = 0x0, line_offset = 0x0,
first_line = 0x0, last_line = 0x0, first_column = 0x0, last_column = 0x0}, {nle
= 0x0}}}, id = 0x0}, position = {location = {indesc = 0x0, {{token_offset =
0x0, line_offset = 0x0, first_line = 0x0, last_line = 0x0, first_column = 0x0,
last_column = 0x0}, {nle = 0x0}}}, id = 0x0}, index = {location = {indesc =
0x0, {{token_offset = 0x0, line_offset = 0x0, first_line = 0x0, last_line =
0x0, first_column = 0x0, last_column = 0x0}, {nle = 0x0}}}, id = 0x0}, set_id =
0x0, chain_id = 0x0, rule_id = 0x0, position_id = 0x0}, seqnum = 0x0,
collapse_list = {next = 0x55555557ee80, prev = 0x55555557ee80}, {data =
0x55555557eaa0, expr = 0x55555557eaa0, set = 0x55555557eaa0, elem = {expr =
0x55555557eaa0, set = 0x0}, rule = 0x55555557eaa0, chain = 0x55555557eaa0,
table = 0x55555557eaa0, flowtable = 0x55555557eaa0, monitor = 0x55555557eaa0,
markup = 0x55555557eaa0, object = 0x55555557eaa0}, attr = 0x55555557eec0,
attr_array_len = 0x20, num_attrs = 0x0, arg = 0x0}

first_line points to:

    element filter blackhole { 192.168.0.1, 192.168.0.10 }


-------
Made a standalone 'blackhole.nft' file containing just that one offending line
and reran 'nft':

# nft -c -f blackhole.nft 
blackhole.nft:2:16-24: Error: No such file or directory
element filter blackhole { 192.168.0.1, 192.168.0.10 }
               ^^^^^^^^^


Mmmmmmmmm.

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20240611/1c9d727a/attachment.html>

More information about the netfilter-buglog mailing list