Diffusion FreeBSD src repository 64f493e664cc

bridge: do not allow a bridge SVI in a bridge
64f493e664cc
Actions

Description

bridge: do not allow a bridge SVI in a bridge

Disallow this:

ifconfig bridge0 create
ifconfig bridge0.1 create
ifconfig bridge0 addm bridge0.1

Also disallow this:

ifconfig vlan1 create
ifconfig bridge0 create
ifconfig bridge0 addm vlan1
ifconfig vlan1 vlan 1 vlandev bridge0

Firstly, this panics due to trying to take BRIDGE_LOCK recursively.
Secondly, even if it worked, it could cause packet forwarding loops.

Reviewed by: des
Differential Revision: https://reviews.freebsd.org/D51310

Details

Provenance

ivy	Authored on Jul 28 2025, 5:38 PM

Reviewer

des

Differential Revision

D51310: bridge: do not allow a bridge SVI in a bridge

Parents

rG4d281507f5f1: bridge: be consistent about PVID terminology

Branches

Unknown

Tags

Unknown

Event Timeline

ivy committed rG64f493e664cc: bridge: do not allow a bridge SVI in a bridge (authored by ivy).Jul 28 2025, 5:38 PM

ivy added an edge: D51310: bridge: do not allow a bridge SVI in a bridge.

Changes (4)

Path

Size

sys/

net/

if_bridge.c

if_vlan.c

tests/

sys/

net/

if_bridge_test.sh

if_vlan.sh

rG64f493e664cc

View Options

sys/net/if_bridge.c

View Options

sys/net/if_vlan.c

View Options

tests/sys/net/if_bridge_test.sh

View Options

bridge: do not allow a bridge SVI in a bridge64f493e664ccActions

Description

Details

Event Timeline

Changes (4)

rG64f493e664cc

sys/net/if_bridge.c

sys/net/if_vlan.c

tests/sys/net/if_bridge_test.sh

tests/sys/net/if_vlan.sh

bridge: do not allow a bridge SVI in a bridge
64f493e664cc
Actions