git.ipfire.org Git - thirdparty/kernel/stable.git/commit

]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit

projects / thirdparty / kernel / stable.git / commit

author	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 27 Nov 2025 23:26:22 +0000 (23:26 +0000)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 18 Dec 2025 12:55:12 +0000 (13:55 +0100)
commit	9f953b045886c9e9add6b0e89aae555517782fa7
tree	2e301ed2231abbc89744b1cb8aaf64612cc89e6f	tree
parent	c80fa09cba1f5c33f3fcca8218f70577a0416a36	commit \| diff

netfilter: flowtable: check for maximum number of encapsulations in bridge vlan

[ Upstream commit 634f3853cc98d73bdec8918010ee29b06981583e ]

Add a sanity check to skip path discovery if the maximum number of
encapsulation is reached. While at it, check for underflow too.

Fixes: 26267bf9bb57 ("netfilter: flowtable: bridge vlan hardware offload and switchdev")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>

net/netfilter/nft_flow_offload.c

diff | blob | blame | history

Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

RSS Atom