git.ipfire.org Git - thirdparty/kernel/stable.git/commit

]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit

projects / thirdparty / kernel / stable.git / commit

author	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 27 Nov 2025 23:26:22 +0000 (23:26 +0000)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 18 Dec 2025 13:03:26 +0000 (14:03 +0100)
commit	87a453f31c636de84420fcce68659abd37d269fd
tree	77609fd4d70e21aab5dd19b888a094196572a257	tree \| snapshot
parent	3c0493f81dfac8138f5a9a8c23a97671526b78ce	commit \| diff

netfilter: flowtable: check for maximum number of encapsulations in bridge vlan

[ Upstream commit 634f3853cc98d73bdec8918010ee29b06981583e ]

Add a sanity check to skip path discovery if the maximum number of
encapsulation is reached. While at it, check for underflow too.

Fixes: 26267bf9bb57 ("netfilter: flowtable: bridge vlan hardware offload and switchdev")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>

net/netfilter/nft_flow_offload.c

diff | blob | blame | history

Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

RSS Atom