Bug#872907: Backporting "netfilter: xt_hashlimit: Fix integer divide round to zero." to stable kernels

To: netdev@vger.kernel.org
Cc: 872907@bugs.debian.org, 884983@bugs.debian.org
Subject: Bug#872907: Backporting "netfilter: xt_hashlimit: Fix integer divide round to zero." to stable kernels
From: Cyril Brulebois <cyril@debamax.com>
Date: Fri, 12 Jan 2018 01:11:38 +0100
Message-id: <[🔎] 20180112001138.zqajpmuaebmqm2vb@debamax.com>
Reply-to: Cyril Brulebois <cyril@debamax.com>, 872907@bugs.debian.org
References: <150339771756.9797.18251200318578922571.reportbug@devel>

Hi,

A customer of mine has been hitting hashlimits issues in netfilter by
switching from Debian 8 (3.16.y) to Debian 9 (4.9.y), making iptables
hashlimits unusable for production.

This issue has been fixed in mainline with this commit:
| commit ad5b55761956427f61ed9c96961bf9c5cd4f92dc
| Author: Alban Browaeys <alban.browaeys@gmail.com>
| Date:   Mon Feb 6 23:50:33 2017 +0100
| 
|     netfilter: xt_hashlimit: Fix integer divide round to zero.

Backporting this commit to Debian 9's 4.9.y kernel series has been
confirmed to fix the bug there. It might be worth considering it for
other stable kernels though.

Downstream bug reports:
  https://bugs.debian.org/872907
  https://bugs.debian.org/884983

Thanks for considering.


Cheers,
-- 
Cyril Brulebois -- Debian Consultant @ DEBAMAX -- https://debamax.com/

Attachment: signature.asc
Description: PGP signature

Reply to:

Prev by Date: Bug#886913: marked as done (linux-image-4.14.0-2-amd64: lsusb doesn't show vendor details but usb-devices does show but needs root access)
Next by Date: Debian config changes required as a result of mainline kernel patches
Previous by thread: Bug#886506: linux-image-4.14.0-3-686-pae: Kernel panic during reboot - since 4.14.0-2 - 4.14.0-1 works normal and boots
Next by thread: Debian config changes required as a result of mainline kernel patches
Index(es):
- Date
- Thread