]> git.ipfire.org Git - thirdparty/kernel/linux.git/commit
netfilter: nft_payload: reject offsets exceeding 65535 bytes
authorFlorian Westphal <fw@strlen.de>
Thu, 18 Jun 2026 04:58:24 +0000 (06:58 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Sat, 20 Jun 2026 22:18:26 +0000 (00:18 +0200)
commit213be32f46a29ca15a314df06c3424ecffd6c90a
treedbb1eab5079515d372f5e4866346783b72760129
parent4a597a87e2e2f608edb6be2c510dc826b4fdfb53
netfilter: nft_payload: reject offsets exceeding 65535 bytes

Large offsets were rejected based on netlink policy, but blamed commit
removed the policy without updating nft_payload_inner_init() to use the
truncation-check helper.

Silent truncation is not a problem, but not wanted either, so add a
check.

Fixes: 077dc4a27579 ("netfilter: nft_payload: extend offset to 65535 bytes")
Signed-off-by: Florian Westphal <fw@strlen.de>
Reviewed-by: Fernando Fernandez Mancera <fmancera@suse.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nft_payload.c