From 43e0adad8de0dd117666be24c35d254fe555bec8 Mon Sep 17 00:00:00 2001
From: "kfraser@localhost.localdomain" <kfraser@localhost.localdomain>
Date: Fri, 29 Sep 2006 09:29:20 +0100
Subject: [PATCH] [NET] back: Reset netfilter context in loopback receive path.
 The issue is described in bugzilla report #746. Signed-off-by: Keir Fraser
 <keir@xensource.com>

---
 linux-2.6-xen-sparse/drivers/xen/netback/loopback.c | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/linux-2.6-xen-sparse/drivers/xen/netback/loopback.c b/linux-2.6-xen-sparse/drivers/xen/netback/loopback.c
index e1f34fe5b7..53392a42a3 100644
--- a/linux-2.6-xen-sparse/drivers/xen/netback/loopback.c
+++ b/linux-2.6-xen-sparse/drivers/xen/netback/loopback.c
@@ -53,7 +53,8 @@
 #include <linux/skbuff.h>
 #include <linux/ethtool.h>
 #include <net/dst.h>
-#include <asm/hypervisor.h> /* is_initial_xendomain() */
+#include <net/xfrm.h>		/* secpath_reset() */
+#include <asm/hypervisor.h>	/* is_initial_xendomain() */
 
 static int nloopbacks = -1;
 module_param(nloopbacks, int, 0);
@@ -111,6 +112,11 @@ static int loopback_start_xmit(struct sk_buff *skb, struct net_device *dev)
 	skb->protocol = eth_type_trans(skb, dev);
 	skb->dev      = dev;
 	dev->last_rx  = jiffies;
+
+	/* Flush netfilter context: rx'ed skbuffs not expected to have any. */
+	nf_reset(skb);
+	secpath_reset(skb);
+
 	netif_rx(skb);
 
 	return 0;
-- 
2.30.2