[Bug 260958] pfctl: expand_rule: strlcpy

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 260958] pfctl: expand_rule: strlcpy"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 05 Jan 2022 21:18:45 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=260958

Kristof Provost <kp@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |kp@freebsd.org

--- Comment #1 from Kristof Provost <kp@freebsd.org> ---
I can reproduce the error, but my current thinking is that this is a
misconfiguration rather than a bug in pf. (Although arguably the error message
could be better).

Note that reply-to expects to be followed by a routehost ('     routehost     
= "(" interface-name [ address [ "/" mask-bits ] ] ")"', which is supposed to
be an interface-name and optionally an address.

The pfctl parser code puts the string it finds after route-to in an ifname
field, which is IFNAMSIZ bytes long, so the IPv6 address you provide doesn't
fit and that's what produces the error message.

-- 
You are receiving this mail because:
You are the assignee for the bug.