Appologies for the delay, I once again had a mail outage :| Joerg Marx wrote: > Subject: [PATCH] Fix a race in __nf_conntrack_confirm against nf_ct_get_next_corpse() > > This race was triggered by a 'conntrack -F' command running in parallel > to the insertion of a hash for a new connection. > Losing this race led to a dead conntrack entry effectively blocking > traffic for a particular connection until timeout or flushing the conntrack > hashes again. > Now the check for an already dying connection is done inside the lock. Applied, thanks. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
