[asterisk-bugs] [JIRA] (ASTERISK-28978) acl: named_acl rule misconfiguration results in segfault on reading rule from realtime

Andrew Yager (JIRA) noreply at issues.asterisk.org
Sat Jul 4 04:13:25 CDT 2020 

    [ https://issues.asterisk.org/jira/browse/ASTERISK-28978?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=251338#comment-251338 ] 

Andrew Yager commented on ASTERISK-28978:
-----------------------------------------

I have pulled the CoreDump from the issue, but I had optimize on in this build; but BT points to the issue pretty clearly:

{code}
#1  0x0000559ce34dadd9 in append_ha_core (sense=sense at entry=0x7f4bbc004096 "deny", stuff=stuff at entry=0x0, path=path at entry=0x0, error=error at entry=0x7f4bd46da1f4, port_flags=port_flags at entry=768) at acl.c:581
        __old = 0x0
        __len = <optimized out>
        __new = <optimized out>
        ha = <optimized out>
        prev = 0x0
        ret = <optimized out>
        tmp = 0x1e3751a20 <error: Cannot access memory at address 0x1e3751a20>
        list = 0x7f4bbc007270 "0>"
        address = <optimized out>
        mask = <optimized out>
        addr_is_v4 = <optimized out>
        allowing = <optimized out>
        __PRETTY_FUNCTION__ = "append_ha_core"
{code}


> acl: named_acl rule misconfiguration results in segfault on reading rule from realtime
> --------------------------------------------------------------------------------------
>
>                 Key: ASTERISK-28978
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-28978
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: Core/ACL
>    Affects Versions: 16.11.1
>            Reporter: Andrew Yager
>            Severity: Minor
>
> If an ACL is misconfigured in the realtime database (for instance, the "rule" is blank) and Asterisk attempts to read the ACL, asterisk will segfault during reading the rule and crash. For some reason it doesn't seem to produce a coredump, however I haven't verified that this isn't because my system is incorrectly configured.
> This can be worked around by ensuring the ACLs are not misconfigured, but ideally asterisk should gracefully fail and not crash.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

More information about the asterisk-bugs mailing list