On Thu, Feb 16, 2017 at 08:01:41PM +0100, Pablo Neira Ayuso wrote:
> Hi Greg,
>
> if you pick this one, then you take this one as well:
>
> commit 92e55f412cffd016cc245a74278cb4d7b89bb3bc
> Author: Pablo Neira <pablo@xxxxxxxxxxxxx>
> Date: Thu Jan 26 22:56:21 2017 +0100
>
> tcp: don't annotate mark on control socket from tcp_v6_send_response()
>
> Since the IPv6 chunk is broken.
Ugh, that doesn't apply at all to 4.4-stable. Should I just drop this
patch from the 4.4-stable tree, or do you want to backport this for me?
also, I think there are a number of netfilter patches I should be
applying to the stable releases, specifically stuff like e5072053b096
("netfilter: conntrack: refine gc worker heuristics, redux")
Any ideas of things I should be applying? Or should I just not worry
about this? :)
thanks,
greg k-h