Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > On Fri, Jul 27, 2018 at 12:53:22PM +0200, Phil Sutter wrote: > > Hi, > > > > On Fri, Jul 27, 2018 at 11:45:16AM +0200, Pablo Neira Ayuso wrote: > > > On Fri, Jul 27, 2018 at 12:22:33AM +0200, Phil Sutter wrote: > > > > This should happen in ebtables-restore only: If a previous rule > > > > contained a standard target, the standard target object is inserted into > > > > xtables_targets. Though since that doesn't have a 'parse' callback, the > > > > code segfaults. Therefore make the code ignore that special object > > > > (which is not an issue since standard targets don't support parameters). > > > > > > Hm, I see. > > > > > > How can this the standard target get into this list? > > > > IIRC, the code flow is like this: > > > > -> do_commandeb() encounters '-j' parameter > > -> command_jump() > > -> xtables_find_target() > > -> xtables_fully_register_pending_target() > > I see, but what is the rule that loads the standard target or it is > already there? > > Asking this because we don't seem to need this in the > iptables/xtables.c parser. Irrespective of that, target->parse == NULL is legal, not just for standard targets. There are two parsing APIs in xtables, one the old ->parse() hook, the other the newer guided option parser that uses ->xt6_parse. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
