| Message ID | 48E9AA6E.3080608@suse.de |
|---|---|
| State | Not Applicable, archived |
| Delegated to: | David Miller |
| Headers | show |
Index: linux-2.6.26/net/netfilter/core.c =================================================================== --- linux-2.6.26.orig/net/netfilter/core.c +++ linux-2.6.26/net/netfilter/core.c @@ -184,9 +184,12 @@ next_hook: ret = 1; goto unlock; } else if (verdict == NF_DROP) { +drop: kfree_skb(skb); ret = -EPERM; } else if ((verdict & NF_VERDICT_MASK) == NF_QUEUE) { + if (skb_emergency(skb)) + goto drop; if (!nf_queue(skb, elem, pf, hook, indev, outdev, okfn, verdict >> NF_VERDICT_BITS)) goto next_hook;