]> git.ipfire.org Git - thirdparty/kernel/stable.git/commit
projects / thirdparty / kernel / stable.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9d041a7) | patch
netfilter: flowtable: check for maximum number of encapsulations in bridge vlan
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 27 Nov 2025 23:26:22 +0000 (23:26 +0000)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Mon, 19 Jan 2026 12:09:35 +0000 (13:09 +0100)
commitaea811b4cf6ca1fe177155882d4ebfd6f477d16d
treec24bf552cf347fd4ce5a0200cbb492b9eb17e4c1tree | snapshot
parent9d041a7ba13f21adfac052eb3fda1df62f2166c1commit | diff
netfilter: flowtable: check for maximum number of encapsulations in bridge vlan

[ Upstream commit 634f3853cc98d73bdec8918010ee29b06981583e ]

Add a sanity check to skip path discovery if the maximum number of
encapsulation is reached. While at it, check for underflow too.

Fixes: 26267bf9bb57 ("netfilter: flowtable: bridge vlan hardware offload and switchdev")
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
net/netfilter/nft_flow_offload.c diff | blob | blame | history
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git