Le jeudi 17 mars 2011 Ã 12:45 +0100, Eric Dumazet a Ãcrit : > Le jeudi 17 mars 2011 Ã 12:36 +0100, Jesper Dangaard Brouer a Ãcrit : > > Hi Eric, > > > > How critial is this bug fix? > > > > Should I apply this on my stable production kernels? > > (I'm preparing a 2.6.38 kernel for prod usage, eventhougt its just been > > released, because I want your SFQ fixes...) > > I would say the race is there, but probability must be very small, and > might need malicious iptables rules (with RETURN targets) > > Especially in routers, where OUTPUT path is taken from softirq handler > anyway ;) > > So dont worry at all, consider this as a cleanup :) > Almost forgot to mention your kernels probably have : CONFIG_PREEMPT_NONE=y # CONFIG_PREEMPT is not set So you can take it easy ;) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
