Hi,
The following patchset contains Netfilter fixes for net:
1) Fix imbalance between flowtable BIND and UNBIND calls to configure
hardware offload, this fixes a possible kmemleak.
2) Clamp maximum conntrack hashtable size to INT_MAX to fix a possible
WARN_ON_ONCE splat coming from kvmalloc_array(), only possible from
init_netns.
Please, pull these changes from:
git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf.git nf-25-01-09
Thanks.
----------------------------------------------------------------
The following changes since commit 4f619d518db9cd1a933c3a095a5f95d0c1584ae8:
net: wwan: t7xx: Fix FSM command timeout issue (2024-12-30 18:00:32 -0800)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf.git nf-25-01-09
for you to fetch changes up to b541ba7d1f5a5b7b3e2e22dc9e40e18a7d6dbc13:
netfilter: conntrack: clamp maximum hashtable size to INT_MAX (2025-01-09 13:29:45 +0100)
----------------------------------------------------------------
netfilter pull request 25-01-09
----------------------------------------------------------------
Pablo Neira Ayuso (2):
netfilter: nf_tables: imbalance in flowtable binding
netfilter: conntrack: clamp maximum hashtable size to INT_MAX
net/netfilter/nf_conntrack_core.c | 5 ++++-
net/netfilter/nf_tables_api.c | 15 +++++++++++----
2 files changed, 15 insertions(+), 5 deletions(-)
