diff options
| author | Pablo Neira Ayuso <pablo@netfilter.org> | 2025-04-01 09:57:59 +0200 |
|---|---|---|
| committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2025-04-01 21:06:17 +0200 |
| commit | cc7a7d025a60dced5f5e894aa1688014c9deef3d (patch) | |
| tree | a4125b91ea79e448487efc0d560cda4132c9f31e /src | |
| parent | 85b5b051f0e64f106cee078fc6d66d0872770e79 (diff) | |
parser_json: bail out on malformed statement in set
Propagate error to caller so it bails out on malformed set statements.
Fixes: 07958ec53830 ("json: add set statement list support")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src')
| -rw-r--r-- | src/parser_json.c | 39 |
1 files changed, 27 insertions, 12 deletions
diff --git a/src/parser_json.c b/src/parser_json.c index 4c9dc541..94d09212 100644 --- a/src/parser_json.c +++ b/src/parser_json.c @@ -2410,9 +2410,9 @@ static struct stmt *json_parse_reject_stmt(struct json_ctx *ctx, return stmt; } -static void json_parse_set_stmt_list(struct json_ctx *ctx, - struct list_head *stmt_list, - json_t *stmt_json) +static int json_parse_set_stmt_list(struct json_ctx *ctx, + struct list_head *stmt_list, + json_t *stmt_json) { struct list_head *head; struct stmt *stmt; @@ -2420,10 +2420,12 @@ static void json_parse_set_stmt_list(struct json_ctx *ctx, size_t index; if (!stmt_json) - return; + return 0; - if (!json_is_array(stmt_json)) + if (!json_is_array(stmt_json)) { json_error(ctx, "Unexpected object type in stmt"); + return -1; + } head = stmt_list; json_array_foreach(stmt_json, index, value) { @@ -2431,16 +2433,19 @@ static void json_parse_set_stmt_list(struct json_ctx *ctx, if (!stmt) { json_error(ctx, "Parsing set statements array at index %zd failed.", index); stmt_list_free(stmt_list); - return; + return -1; } if (!(stmt->flags & STMT_F_STATEFUL)) { stmt_free(stmt); json_error(ctx, "Unsupported set statements array at index %zd failed.", index); stmt_list_free(stmt_list); + return -1; } list_add(&stmt->list, head); head = &stmt->list; } + + return 0; } static struct stmt *json_parse_set_stmt(struct json_ctx *ctx, @@ -2485,8 +2490,11 @@ static struct stmt *json_parse_set_stmt(struct json_ctx *ctx, stmt->set.key = expr; stmt->set.set = expr2; - if (!json_unpack(value, "{s:o}", "stmt", &stmt_json)) - json_parse_set_stmt_list(ctx, &stmt->set.stmt_list, stmt_json); + if (!json_unpack(value, "{s:o}", "stmt", &stmt_json) && + json_parse_set_stmt_list(ctx, &stmt->set.stmt_list, stmt_json) < 0) { + stmt_free(stmt); + return NULL; + } return stmt; } @@ -2542,8 +2550,11 @@ static struct stmt *json_parse_map_stmt(struct json_ctx *ctx, stmt->map.data = expr_data; stmt->map.set = expr2; - if (!json_unpack(value, "{s:o}", "stmt", &stmt_json)) - json_parse_set_stmt_list(ctx, &stmt->set.stmt_list, stmt_json); + if (!json_unpack(value, "{s:o}", "stmt", &stmt_json) && + json_parse_set_stmt_list(ctx, &stmt->set.stmt_list, stmt_json) < 0) { + stmt_free(stmt); + return NULL; + } return stmt; } @@ -3490,8 +3501,12 @@ static struct cmd *json_parse_cmd_add_set(struct json_ctx *ctx, json_t *root, json_unpack(root, "{s:i}", "size", &set->desc.size); json_unpack(root, "{s:b}", "auto-merge", &set->automerge); - if (!json_unpack(root, "{s:o}", "stmt", &stmt_json)) - json_parse_set_stmt_list(ctx, &set->stmt_list, stmt_json); + if (!json_unpack(root, "{s:o}", "stmt", &stmt_json) && + json_parse_set_stmt_list(ctx, &set->stmt_list, stmt_json) < 0) { + set_free(set); + handle_free(&h); + return NULL; + } handle_merge(&set->handle, &h); |