On Thu, Aug 07, 2025 at 12:37:08PM +0200, Florian Westphal wrote: > Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > > syzbot managed to reach this WARN_ON_ONCE with a giant cgroup tree, > > remove it. > > > > WARNING: CPU: 0 PID: 5853 at net/netfilter/nft_socket.c:220 nft_socket_init+0x2f4/0x3d0 net/netfilter/nft_socket.c:220 > > I looked at the repro and as far as i could see it just passes > a large NFTA_SOCKET_LEVEL attribute value. > > I'd propose: > > syzbot managed to reach this WARN_ON_ONCE by passing a huge level > value, remove it. I guess it is both, huge level value and giant cgroup tree. Anyway, I take this description. > Patch is correct though. > > Acked-by: Florian Westphal <fw@xxxxxxxxx>
