On Thu, Apr 28, 2022 at 1:00 PM <patchwork-bot+netdevbpf@xxxxxxxxxx> wrote: > > Hello: > > This series was applied to netdev/net.git (master) > by Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>: > > On Thu, 28 Apr 2022 16:21:07 +0200 you wrote: > > From: Florian Westphal <fw@xxxxxxxxx> > > > > Jaco Kroon reported tcp problems that Eric Dumazet and Neal Cardwell > > pinpointed to nf_conntrack tcp_in_window() bug. > > > > tcp trace shows following sequence: > > > > [...] > > Here is the summary with links: > - [net,1/3] netfilter: nf_conntrack_tcp: re-init for syn packets only > https://git.kernel.org/netdev/net/c/c7aab4f17021 > - [net,2/3] netfilter: conntrack: fix udp offload timeout sysctl > https://git.kernel.org/netdev/net/c/626873c446f7 > - [net,3/3] netfilter: nft_socket: only do sk lookups when indev is available > https://git.kernel.org/netdev/net/c/743b83f15d40 > > You are awesome, thank you! > -- > Deet-doot-dot, I am a bot. > https://korg.docs.kernel.org/patchwork/pwbot.html This first commit is an important bug fix for a serious bug that causes TCP connection hangs for users of TCP fast open and nf_conntrack: c7aab4f17021b netfilter: nf_conntrack_tcp: re-init for syn packets only We are continuing to get reports about the bug that this commit fixes. It seems this fix was only backported to v5.17 stable release, and not further, due to a cherry-pick conflict, because this fix implicitly depends on a slightly earlier v5.17 fix in the same spot: 82b72cb94666 netfilter: conntrack: re-init state for retransmitted syn-ack I manually verified that the fix c7aab4f17021b can be cleanly cherry-picked into the oldest (v4.9.325) and newest (v5.15.60) longterm release kernels as long as we first cherry-pick that related fix that it implicitly depends on: 82b72cb94666b3dbd7152bb9f441b068af7a921b netfilter: conntrack: re-init state for retransmitted syn-ack c7aab4f17021b636a0ee75bcf28e06fb7c94ab48 netfilter: nf_conntrack_tcp: re-init for syn packets only So would it be possible to backport both of those fixes with the following cherry-picks, to all LTS stable releases? git cherry-pick 82b72cb94666b3dbd7152bb9f441b068af7a921b git cherry-pick c7aab4f17021b636a0ee75bcf28e06fb7c94ab48 Thanks! Best Regards, neal
