From: Phil Oester <kernel@xxxxxxxxxxxx> Date: Tue, 27 Aug 2013 16:41:40 -0700 > In commit 90ba9b19 (tcp: tcp_make_synack() can use alloc_skb()), Eric changed > the call to sock_wmalloc in tcp_make_synack to alloc_skb. In doing so, > the netfilter owner match lost its ability to block the SYNACK packet on > outbound listening sockets. Revert the change, restoring the owner match > functionality. > > This closes netfilter bugzilla #847. > > Signed-off-by: Phil Oester <kernel@xxxxxxxxxxxx> Applied and queued up for -stable, thanks. Eric, I guess if you really want to get rid of the wmem atomics you can just attach the socket and make a special destructor. Maybe it is not even worth it at that point however. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
