bgpd: Fixed crash upon bgp network import-check command by Manpreet-k0 · Pull Request #18387 · FRRouting/frr

Manpreet-k0 · 2025-03-14T08:02:41Z

BT:

3  <signal handler called>
4  0x00005616837546fc in bgp_static_update (bgp=bgp@entry=0x5616865eac50, p=0x561686639e40,
    bgp_static=0x561686639f50, afi=afi@entry=AFI_IP6, safi=safi@entry=SAFI_UNICAST) at ../bgpd/bgp_route.c:7232
5  0x0000561683754ad0 in bgp_static_add (bgp=0x5616865eac50) at ../bgpd/bgp_table.h:413
6  0x0000561683785e2e in no_bgp_network_import_check (self=<optimized out>, vty=0x5616865e04c0,
    argc=<optimized out>, argv=<optimized out>) at ../bgpd/bgp_vty.c:4609
7  0x00007fdbcc294820 in cmd_execute_command_real (vline=vline@entry=0x561686663000,

The program encountered a SEG FAULT when attempting to access pi->extra->vrfleak->bgp_orig because pi->extra->vrfleak was NULL.

(gdb) p pi->extra->vrfleak
$1 = (struct bgp_path_info_extra_vrfleak *) 0x0
(gdb) p pi->extra->vrfleak->bgp_orig
Cannot access memory at address 0x8

Added NOT NULL check on pi->extra->vrfleak before accessing pi->extra->vrfleak->bgp_orig to prevent the segmentation fault.

ton31337 · 2025-03-14T08:42:24Z

In what case is this happening?

Manpreet-k0 · 2025-03-14T09:27:09Z

we are seeing this issue (inconsistently) on executing “no bgp network import-check” command. BGP is redistributing both IPv4 and IPv6 networks

BT: ``` 3 <signal handler called> 4 0x00005616837546fc in bgp_static_update (bgp=bgp@entry=0x5616865eac50, p=0x561686639e40, bgp_static=0x561686639f50, afi=afi@entry=AFI_IP6, safi=safi@entry=SAFI_UNICAST) at ../bgpd/bgp_route.c:7232 5 0x0000561683754ad0 in bgp_static_add (bgp=0x5616865eac50) at ../bgpd/bgp_table.h:413 6 0x0000561683785e2e in no_bgp_network_import_check (self=<optimized out>, vty=0x5616865e04c0, argc=<optimized out>, argv=<optimized out>) at ../bgpd/bgp_vty.c:4609 7 0x00007fdbcc294820 in cmd_execute_command_real (vline=vline@entry=0x561686663000, ``` The program encountered a SEG FAULT when attempting to access pi->extra->vrfleak->bgp_orig because pi->extra->vrfleak was NULL. ``` (gdb) p pi->extra->vrfleak $1 = (struct bgp_path_info_extra_vrfleak *) 0x0 (gdb) p pi->extra->vrfleak->bgp_orig Cannot access memory at address 0x8 ``` Added NOT NULL check on pi->extra->vrfleak before accessing pi->extra->vrfleak->bgp_orig to prevent the segmentation fault. Signed-off-by: Manpreet Kaur <manpreetk@nvidia.com>

louis-6wind · 2025-03-14T13:21:25Z

Commit looks OK.

Have you checked all the bgp_orig pointer accesses to make sure that the issue is not present somewhere else ?

louis-6wind · 2025-03-14T13:23:32Z

And that nothing is accessed in vrfleak pointer without checking its validity ?

Manpreet-k0 · 2025-03-14T13:39:20Z

I checked and found no issues. The bgp_orig is accessed only after confirming that vrfleak is not null at other places.

louis-6wind · 2025-03-14T13:47:41Z

I checked and found no issues. The bgp_orig is accessed only after confirming that vrfleak is not null at other places.

And about other stuff like vrfleak->parent ?

Manpreet-k0 · 2025-03-14T14:02:38Z

I checked and found no issues. The bgp_orig is accessed only after confirming that vrfleak is not null at other places.

And about other stuff like vrfleak->parent ?

Found no issue in accessing any of the member of vrfleak

louis-6wind

LGTM

ton31337 · 2025-03-15T17:34:49Z

@Mergifyio backport stable/10.3 stable/10.2 stable/10.1 stable/10.0

mergify · 2025-03-15T17:34:52Z

backport stable/10.3 stable/10.2 stable/10.1 stable/10.0

✅ Backports have been created

Details

#18402 bgpd: Fixed crash upon bgp network import-check command (backport #18387) has been created for branch stable/10.3
#18404 bgpd: Fixed crash upon bgp network import-check command (backport #18387) has been created for branch stable/10.2
#18403 bgpd: Fixed crash upon bgp network import-check command (backport #18387) has been created for branch stable/10.1
#18405 bgpd: Fixed crash upon bgp network import-check command (backport #18387) has been created for branch stable/10.0

bgpd: Fixed crash upon bgp network import-check command (backport #18387)

frrbot bot added the bgp label Mar 14, 2025

github-actions bot added master size/XS labels Mar 14, 2025

Manpreet-k0 force-pushed the redo_import_check_crash branch 2 times, most recently from a7196eb to 74acf17 Compare March 14, 2025 08:23

Manpreet-k0 force-pushed the redo_import_check_crash branch from 74acf17 to bc1008b Compare March 14, 2025 12:40

louis-6wind self-requested a review March 14, 2025 13:19

louis-6wind approved these changes Mar 14, 2025

View reviewed changes

github-actions bot added the backport label Mar 15, 2025

ton31337 merged commit f5a74fc into FRRouting:master Mar 15, 2025
13 checks passed

donaldsharp added a commit that referenced this pull request Mar 17, 2025

Merge pull request #18405 from FRRouting/mergify/bp/stable/10.0/pr-18387

79e8d2e

bgpd: Fixed crash upon bgp network import-check command (backport #18387)

donaldsharp added a commit that referenced this pull request Mar 17, 2025

Merge pull request #18404 from FRRouting/mergify/bp/stable/10.2/pr-18387

7c791c0

bgpd: Fixed crash upon bgp network import-check command (backport #18387)

donaldsharp added a commit that referenced this pull request Mar 17, 2025

Merge pull request #18403 from FRRouting/mergify/bp/stable/10.1/pr-18387

72ce90a

bgpd: Fixed crash upon bgp network import-check command (backport #18387)

donaldsharp added a commit that referenced this pull request Mar 17, 2025

Merge pull request #18402 from FRRouting/mergify/bp/stable/10.3/pr-18387

8eb8944

bgpd: Fixed crash upon bgp network import-check command (backport #18387)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bgpd: Fixed crash upon bgp network import-check command#18387

bgpd: Fixed crash upon bgp network import-check command#18387
ton31337 merged 1 commit intoFRRouting:masterfrom
Manpreet-k0:redo_import_check_crash

Manpreet-k0 commented Mar 14, 2025

Uh oh!

ton31337 commented Mar 14, 2025

Uh oh!

Manpreet-k0 commented Mar 14, 2025 •

edited

Loading

Uh oh!

louis-6wind commented Mar 14, 2025

Uh oh!

louis-6wind commented Mar 14, 2025

Uh oh!

Manpreet-k0 commented Mar 14, 2025 •

edited

Loading

Uh oh!

louis-6wind commented Mar 14, 2025

Uh oh!

Manpreet-k0 commented Mar 14, 2025

Uh oh!

louis-6wind left a comment

Uh oh!

ton31337 commented Mar 15, 2025

Uh oh!

mergify bot commented Mar 15, 2025 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

Manpreet-k0 commented Mar 14, 2025

Uh oh!

ton31337 commented Mar 14, 2025

Uh oh!

Manpreet-k0 commented Mar 14, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

louis-6wind commented Mar 14, 2025

Uh oh!

louis-6wind commented Mar 14, 2025

Uh oh!

Manpreet-k0 commented Mar 14, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

louis-6wind commented Mar 14, 2025

Uh oh!

Manpreet-k0 commented Mar 14, 2025

Uh oh!

louis-6wind left a comment

Choose a reason for hiding this comment

Uh oh!

ton31337 commented Mar 15, 2025

Uh oh!

mergify bot commented Mar 15, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

✅ Backports have been created

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Manpreet-k0 commented Mar 14, 2025 •

edited

Loading

Manpreet-k0 commented Mar 14, 2025 •

edited

Loading

mergify bot commented Mar 15, 2025 •

edited

Loading