> On 5 Feb 2019, at 18:27, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote:
>
> On Tue, Feb 05, 2019 at 05:22:01PM +0000, John Haxby wrote:
>>
>>
>>> On 5 Feb 2019, at 15:09, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote:
>>>
>>> On Mon, Jan 21, 2019 at 06:45:27PM +0800, Eli Cooper wrote:
>>>> Commit 508b09046c0f ("netfilter: ipv6: Preserve link scope traffic
>>>> original oif") made ip6_route_me_harder() keep the original oif for
>>>> link-local and multicast packets. However, it also affected packets
>>>> for the loopback address because it used rt6_need_strict().
>>>>
>>>> REDIRECT rules in the OUTPUT chain rewrite the destination to loopback
>>>> address; thus its oif should not be preserved. This commit fixes the bug
>>>> that redirected local packets are being dropped.
>>>
>>> Applied, thanks.
>>
>> Commit 508b09046c0f was also backported to the stable trees (4.19.y,
>> 4.14.y) as well as the original 4.20 which now has its own stable
>> tree. Was this fix cc'd to stable?
>
> We have to wait until this hits Linus tree. It takes a little bit of
> time to propagate.
OK. Thanks.
jch
Attachment:
signature.asc
Description: Message signed with OpenPGP
