PacketFence - BTS - PacketFence
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0001263PacketFencecorepublic2011-09-07 10:292011-10-24 20:24
Reporterobilodeau 
Assigned Toobilodeau 
PrioritynormalSeverityminorReproducibilityhave not tried
StatusclosedResolutionfixed 
PlatformLinuxOSDebianOS Version6
Product Versiondevel 
Target Version3.0.0Fixed in Version3.0.0 
fixed in git revision
fixed in mtn revision9fa98f91e0819f84babd0269f92ab129b45d5fa6
Summary0001263: iptables chains too long
Description> My iptables did not accept "prerouting-internal-inline-if" as a valid chain name (too
> long), so I changed it to prerouting-int-inline-if in conf/iptables.conf and iptables.pm.

> iptables 1.4.10 (CentOS 6 seems to ship 1.4.7)

worked fine in my testing with iptables v1.3.5
Steps To Reproduce
Additional Informationupstream bug id: http://bugzilla.netfilter.org/show_bug.cgi?id=641 [^]
TagsNo tags attached.
Relationships
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2011-09-07 10:29obilodeauNew Issue
2011-09-07 10:29obilodeauStatusnew => assigned
2011-09-07 10:29obilodeauAssigned To => obilodeau
2011-09-08 10:57obilodeauNote Added: 0002187
2011-09-08 11:02obilodeauTarget Versiontrunk => +1
2011-09-19 14:49dwuelfrathNote Added: 0002218
2011-09-19 15:31dwuelfrathNote Added: 0002221
2011-09-19 15:32dwuelfrathStatusassigned => resolved
2011-09-19 15:37obilodeauAdditional Information Updated
2011-09-19 15:40dwuelfrathmtn revision => 9fa98f91e0819f84babd0269f92ab129b45d5fa6
2011-09-19 15:40dwuelfrathFixed in Version => trunk
2011-09-20 09:34obilodeauResolutionopen => fixed
2011-09-21 22:07obilodeauFixed in Versiontrunk => 3.0.0
2011-09-21 22:15obilodeauNote Added: 0002236
2011-09-21 22:16obilodeauStatusresolved => closed
2011-10-24 20:24obilodeauTarget Version+1 => 3.0.0

Notes
(0002187)
obilodeau   
2011-09-08 10:57   
Unable to reproduce on CentOS 6.
(0002218)
dwuelfrath   
2011-09-19 14:49   
iptables|start
*** buffer overflow detected ***: /sbin/iptables-restore terminated
======= Backtrace: =========
/lib64/libc.so.6(__fortify_fail+0x37)[0x7f968049e677]
/lib64/libc.so.6(+0xf9570)[0x7f968049c570]
/sbin/iptables-restore(do_command+0x1a4e)[0x40824e]
/sbin/iptables-restore(iptables_restore_main+0x56b)[0x40326b]
/lib64/libc.so.6(__libc_start_main+0xfd)[0x7f96803c1c5d]
/sbin/iptables-restore[0x4025f9]
======= Memory map: ========
00400000-0040d000 r-xp 00000000 fd:00 290 /sbin/iptables-multi
0060c000-0060d000 rw-p 0000c000 fd:00 290 /sbin/iptables-multi
0060d000-00673000 rw-p 00000000 00:00 0
021ba000-021db000 rw-p 00000000 00:00 0 [heap]
7f967ef6e000-7f967ef84000 r-xp 00000000 fd:00 129806 /lib64/libgcc_s-4.4.4-20100726.so.1
7f967ef84000-7f967f183000 ---p 00016000 fd:00 129806 /lib64/libgcc_s-4.4.4-20100726.so.1
7f967f183000-7f967f184000 rw-p 00015000 fd:00 129806 /lib64/libgcc_s-4.4.4-20100726.so.1
7f967f184000-7f967f186000 r-xp 00000000 fd:00 133612 /lib64/xtables/libxt_MARK.so
7f967f186000-7f967f385000 ---p 00002000 fd:00 133612 /lib64/xtables/libxt_MARK.so
7f967f385000-7f967f386000 rw-p 00001000 fd:00 133612 /lib64/xtables/libxt_MARK.so
7f967f386000-7f967f388000 r-xp 00000000 fd:00 133638 /lib64/xtables/libxt_mark.so
7f967f388000-7f967f587000 ---p 00002000 fd:00 133638 /lib64/xtables/libxt_mark.so
7f967f587000-7f967f588000 rw-p 00001000 fd:00 133638 /lib64/xtables/libxt_mark.so
7f967f588000-7f967f58a000 r-xp 00000000 fd:00 133659 /lib64/xtables/libxt_udp.so
7f967f58a000-7f967f789000 ---p 00002000 fd:00 133659 /lib64/xtables/libxt_udp.so
7f967f789000-7f967f78a000 rw-p 00001000 fd:00 133659 /lib64/xtables/libxt_udp.so
7f967f78a000-7f967f78c000 r-xp 00000000 fd:00 133654 /lib64/xtables/libxt_tcp.so
7f967f78c000-7f967f98c000 ---p 00002000 fd:00 133654 /lib64/xtables/libxt_tcp.so
7f967f98c000-7f967f98d000 rw-p 00002000 fd:00 133654 /lib64/xtables/libxt_tcp.so
7f967f98d000-7f967f98f000 r-xp 00000000 fd:00 133602 /lib64/xtables/libipt_icmp.so
7f967f98f000-7f967fb8e000 ---p 00002000 fd:00 133602 /lib64/xtables/libipt_icmp.so
7f967fb8e000-7f967fb8f000 rw-p 00001000 fd:00 133602 /lib64/xtables/libipt_icmp.so
7f967fb8f000-7f967fb9b000 r-xp 00000000 fd:00 132618 /lib64/libnss_files-2.12.so
7f967fb9b000-7f967fd9a000 ---p 0000c000 fd:00 132618 /lib64/libnss_files-2.12.so
7f967fd9a000-7f967fd9b000 r--p 0000b000 fd:00 132618 /lib64/libnss_files-2.12.so
7f967fd9b000-7f967fd9c000 rw-p 0000c000 fd:00 132618 /lib64/libnss_files-2.12.so
7f967fd9c000-7f967fd9d000 r-xp 00000000 fd:00 133651 /lib64/xtables/libxt_state.so
7f967fd9d000-7f967ff9d000 ---p 00001000 fd:00 133651 /lib64/xtables/libxt_state.so
7f967ff9d000-7f967ff9e000 rw-p 00001000 fd:00 133651 /lib64/xtables/libxt_state.so
7f967ff9e000-7f967ff9f000 r-xp 00000000 fd:00 133650 /lib64/xtables/libxt_standard.so
7f967ff9f000-7f968019e000 ---p 00001000 fd:00 133650 /lib64/xtables/libxt_standard.so
7f968019e000-7f968019f000 rw-p 00000000 fd:00 133650 /lib64/xtables/libxt_standard.so
7f968019f000-7f96801a1000 r-xp 00000000 fd:00 132608 /lib64/libdl-2.12.so
7f96801a1000-7f96803a1000 ---p 00002000 fd:00 132608 /lib64/libdl-2.12.so
7f96803a1000-7f96803a2000 r--p 00002000 fd:00 132608 /lib64/libdl-2.12.so
7f96803a2000-7f96803a3000 rw-p 00003000 fd:00 132608 /lib64/libdl-2.12.so
7f96803a3000-7f9680518000 r-xp 00000000 fd:00 132602 /lib64/libc-2.12.so
7f9680518000-7f9680718000 ---p 00175000 fd:00 132602 /lib64/libc-2.12.so
7f9680718000-7f968071c000 r--p 00175000 fd:00 132602 /lib64/libc-2.12.so
7f968071c000-7f968071d000 rw-p 00179000 fd:00 132602 /lib64/libc-2.12.so
7f968071d000-7f9680722000 rw-p 00000000 00:00 0
7f9680722000-7f96807a5000 r-xp 00000000 fd:00 132610 /lib64/libm-2.12.so
7f96807a5000-7f96809a4000 ---p 00083000 fd:00 132610 /lib64/libm-2.12.so
7f96809a4000-7f96809a5000 r--p 00082000 fd:00 132610 /lib64/libm-2.12.so
7f96809a5000-7f96809a6000 rw-p 00083000 fd:00 132610 /lib64/libm-2.12.so
7f96809a6000-7f96809ad000 r-xp 00000000 fd:00 133583 /lib64/libxtables.so.4.0.0
7f96809ad000-7f9680bad000 ---p 00007000 fd:00 133583 /lib64/libxtables.so.4.0.0
7f9680bad000-7f9680bae000 rw-p 00007000 fd:00 133583 /lib64/libxtables.so.4.0.0
7f9680bae000-7f9680bb4000 r-xp 00000000 fd:00 133575 /lib64/libip4tc.so.0.0.0
7f9680bb4000-7f9680db3000 ---p 00006000 fd:00 133575 /lib64/libip4tc.so.0.0.0
7f9680db3000-7f9680db4000 rw-p 00005000 fd:00 133575 /lib64/libip4tc.so.0.0.0
7f9680db4000-7f9680dd2000 r-xp 00000000 fd:00 132590 /lib64/ld-2.12.so
7f9680fc8000-7f9680fcc000 rw-p 00000000 00:00 0
7f9680fd0000-7f9680fd2000 rw-p 00000000 00:00 0
7f9680fd2000-7f9680fd3000 r--p 0001e000 fd:00 132590 /lib64/ld-2.12.so
7f9680fd3000-7f9680fd4000 rw-p 0001f000 fd:00 132590 /lib64/ld-2.12.so
7f9680fd4000-7f9680fd5000 rw-p 00000000 00:00 0
7fff20264000-7fff20279000 rw-p 00000000 00:00 0 [stack]
7fff203e3000-7fff203e4000 r-xp 00000000 00:00 0 [vdso]
ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]
sh: line 1: 1780 Aborted /sbin/iptables-restore < /usr/local/pf/var/conf/iptables.conf
named|start
(0002221)
dwuelfrath   
2011-09-19 15:31   
Renamed prerouting-internal-inline-if -> prerouting-int-inline-if and postrouting-internal-inline-if -> postrouting-int-inline-if in pf/conf/iptables.pm and pf/lib/pf/iptables.pm
(0002236)
obilodeau   
2011-09-21 22:15   
fix released in 3.0