On Thu, Aug 29, 2013 at 12:38:52PM +0200, Jesper Dangaard Brouer wrote: > On Thu, 29 Aug 2013 10:32:09 +0200 > Patrick McHardy <kaber@xxxxxxxxx> wrote: > > > With CONFIG_NETFILTER_DEBUG we get the following warning during SYNPROXY init: > > > > [ 80.558906] WARNING: CPU: 1 PID: 4833 at net/netfilter/nf_conntrack_extend.c:80 __nf_ct_ext_add_length+0x217/0x220 [nf_conntrack]() > > > > The reason is that the conntrack template is set to confirmed before adding > > the extension and it is invalid to add extensions to already confirmed > > conntracks. Fix by adding the extensions before setting the conntrack to > > confirmed. > > > > Reported-by: Jesper Dangaard Brouer <jesper.brouer@xxxxxxxxx> > > Signed-off-by: Patrick McHardy <kaber@xxxxxxxxx> > > Acked-by: Jesper Dangaard Brouer <brouer@xxxxxxxxxx> Applied, thanks. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
