Bug #4758: ValidatorPolicyConfig segfaults when loading policy without assigning Validator instance - ndn-cxx - NDN project issue tracking system

Actions

Copy link

Bug #4758

closed

ValidatorPolicyConfig segfaults when loading policy without assigning Validator instance

Added by Alex Afanasyev over 5 years ago. Updated about 3 years ago.

Status:

Closed

Priority:

High

Assignee:

Alex Afanasyev

Category:

Security

Target version:

v0.7

Start date:

10/17/2018

Due date:

% Done:

100%

Estimated time:

Tags:

ValidatorConfig

Description

ValidatorPolicyConfig cannot be used by itself and requires Validator instance to be assigned prior loading any policy. At least, the implementation should throw a proper error.

Actions

Copy link

Updated by Alex Afanasyev over 5 years ago

Status changed from In Progress to Code review
% Done changed from 0 to 100

https://gerrit.named-data.net/#/c/ndn-cxx/+/4989

Actions

Copy link

Updated by Alex Afanasyev over 5 years ago

FYI. The specific error that triggered segfault of NFD was a result of dereferencing nullptr m_validator in ValidatorPolicyConfig::processConfigTrustAnchor method, i.e., if security section includes real trust anchor(s) (as opposite to have "any" trust anchor). If by some magic it would not have segfaulted there, it would whenever config is being reloaded.

Actions

Copy link