Diffusion FreeBSD src repository 3ebd2b1c7308

if_vxlan(4): Add checking for loops and nesting of tunnels
3ebd2b1c7308
Actions

Description

if_vxlan(4): Add checking for loops and nesting of tunnels

User misconfiguration, either tunnel loops, or a large number of
different nested tunnels, can overflow the kernel stack. Prevent that
by using if_tunnel_check_nesting().

PR: 278394
Diagnosed by: markj
Reviewed by: kp
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D45197

(cherry picked from commit 93fbfef0b50354b7a1620822454ef29cd415cb2d)

Details

Provenance

zlei	Authored on May 20 2024, 12:14 PM

Reviewer

Differential Revision

D45197: if_vxlan(4): Add checking for nesting of tunnels

Parents

rG5601feb7204b: fix (nuageinit): SSH keys are not handled in metadata but in userdata

Branches

Unknown

Tags

Unknown

Event Timeline

zlei committed rG3ebd2b1c7308: if_vxlan(4): Add checking for loops and nesting of tunnels (authored by zlei).May 22 2024, 1:58 PM

zlei added an edge: D45197: if_vxlan(4): Add checking for nesting of tunnels.

zlei mentioned this in rG9d653a52f899: if_vxlan(4): Add checking for loops and nesting of tunnels.May 22 2024, 2:03 PM

zlei mentioned this in rG34db75d21876: if_vxlan(4): Add checking for loops and nesting of tunnels.May 22 2024, 11:02 PM

Changes (1)

Path

Size

sys/

net/

if_vxlan.c

rG3ebd2b1c7308

View Options