]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a55d79a) | patch
flowtable: Make parsing a little more robust
authorPhil Sutter <phil@nwl.cc>
Mon, 19 Mar 2018 17:02:05 +0000 (18:02 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 20 Mar 2018 12:07:39 +0000 (13:07 +0100)
commit4be0a3f922a2944a941316fad76a717cd46691bd
treecceb7cad3d8ed92d580891b9d411d23fc8077b9dtree
parenta55d79aa68266c790f3767ba240c3bdee247d511commit | diff
flowtable: Make parsing a little more robust

It was surprisingly easy to crash nft with invalid syntax in 'add
flowtable' command. Catch at least three possible ways (illustrated in
provided test case) by making evaluation phase survive so that bison
gets a chance to complain.

Signed-off-by: Phil Sutter <phil@nwl.cc>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/evaluate.c diff | blob | blame | history
src/expression.c diff | blob | blame | history
tests/shell/testcases/flowtable/0006segfault_0 [new file with mode: 0755] blob
Mirror of git://git.netfilter.org/nftables