#874035 linux-image-4.9.0-3-amd64: kernel panic in nfconntrack

#874035#5
Date:
2017-09-02 09:52:40 UTC
From:
To:
Dear Maintainer,


This issue is fixed by 5f81b1f51b9cfcbfbe7a1abea09962c91bf485e7 in
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.46



   * What led up to the situation?

Nothing in particular. System is a router with LXC containers bridged
onto hardware interfaces. Each container has a number of iptables rules
to allow certain traffic to be forwarded through vlans.

No users were logged in when this occurred.

#874035#10
Date:
2017-09-04 07:38:51 UTC
From:
To:
Hi

Can you rebuild the kernel with the patch applied, following
https://kernel-handbook.alioth.debian.org/ch-common-tasks.html#s4.2.2
just on top of 4.9.30-2+deb9u3 and report if that solved your problem?

Regards,
Salvatore

#874035#15
Date:
2017-09-04 07:43:57 UTC
From:
To:
Hi there Salvatore,

I already did. :)

I verified it fixed the issue with the netfilter guys (Pablo) and he
pushed the patch to kernel stable series. Its in the vanilla 4.9 stable now.

#874035#20
Date:
2017-09-04 08:18:22 UTC
From:
To:
Hi!

Perfect, thanks a lot for confirming that.

Regards,
Salvatore

#874035#33
Date:
2017-09-06 13:36:59 UTC
From:
To:
Hi Salvatore,

It looks like the entire rhlist is on its way to being reverted...

https://bugzilla.kernel.org/show_bug.cgi?id=196821
https://marc.info/?l=netfilter-devel&m=150470157522061&w=2
http://patchwork.ozlabs.org/patch/810567/
http://patchwork.ozlabs.org/patch/810568/

I'll update with the patches when they're pushed to -stable.

#874035#38
Date:
2017-09-06 17:23:54 UTC
From:
To:
Hi Nigel,

Thanks.

Regards,
Salvatore

#874035#49
Date:
2017-09-24 21:50:05 UTC
From:
To:
This is fixed in the above version in stable-proposed-updates.

Ben.