Re: [PATCH net] ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
From: patchwork-bot+netdevbpf
Date: Tue Oct 03 2023 - 04:00:33 EST
Hello:
This patch was applied to netdev/net.git (main)
by Paolo Abeni <pabeni@xxxxxxxxxx>:
On Fri, 22 Sep 2023 23:04:58 +0200 you wrote:
> Commit b0e214d21203 ("netfilter: keep conntrack reference until
> IPsecv6 policy checks are done") is a direct copy of the old
> commit b59c270104f0 ("[NETFILTER]: Keep conntrack reference until
> IPsec policy checks are done") but for IPv6. However, it also
> copies a bug that this old commit had. That is: when the third
> packet of 3WHS connection establishment contains payload, it is
> added into socket receive queue without the XFRM check and the
> drop of connection tracking context.
>
> [...]
Here is the summary with links:
- [net] ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
https://git.kernel.org/netdev/net/c/9593c7cb6cf6
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html