| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 04 Aug 2010 17:12:29 -0700 From: ebiederm@...ssion.com (Eric W. Biederman) To: Michael Leun <lkml20100708@...ton.leun.net> Cc: Greg KH <greg@...ah.com>, netdev@...r.kernel.org, davem@...emloft.net, linux-kernel@...r.kernel.org Subject: Re: NET_NS: unregister_netdevice: waiting for lo to become free (after using openvpn) (was Re: sysfs bug when using tun with network namespaces) Michael Leun <lkml20100708@...ton.leun.net> writes: > Hi, > > On Wed, 4 Aug 2010 14:46:18 -0700 > Greg KH <greg@...ah.com> wrote: > >> Eric, here's a bug with the network namespace stuff, care to work on >> resolving it? > > Just in case I provide the complete scenario again below. > > If I can help somehow (provide further information, test something...) > of course I'll happily do so. > > In an network namespace I can use an tun/tap tunnel through ssh and > when closing that namespace then eveything is fine. > > But when using openvpn (also tunnel trough tun/tap) in an network > namespace and then closing that namespace I get: > > unregister_netdevice: waiting for lo to become free > [repeated] > > Please see the following two examples showing that difference: > > # > unshare -n /bin/bash > # > # how to setup veth device pair to get connectivity into namespace not shown here > # > tunctl -u ml -t tap1 > # > ssh -o Tunnel=Ethernet -w 1:1 somewhere > [ running some traffic over tap1 not shown here ] > ^d # logging out from somewhere > # > tunctl -d tap1 > # > exit # logging out from shell in network namespace > > Now the veth device pair used automagically vanishes and nothing > from that different network namespace remains - very well. > > but > > # > unshare -n /bin/bash > # > # how to setup veth device pair to get connectivity into namespace not shown here > # > openvpn --config some.config > [ running some traffic over vpn device not shown here ] > ^c # stopping openvpn > # > lsof -i > # > netstat -an > Active Internet connections (servers and established) > Proto Recv-Q Send-Q Local Address Foreign Address > State Active UNIX domain sockets (servers and established) > Proto RefCnt Flags Type State I-Node Path > # > ps ax|grep openvpn|grep -v grep > # > # cannot find anything that suggests there is anything left from that openvpn session > # > exit # logging out from shell in network namespace > > Now I get > > Jul 10 20:02:36 doris kernel: unregister_netdevice: waiting for lo to > become free. Usage count = 3 [repeated] How many times? > Now one might say it is fault of openvpn (used OpenVPN 2.1_rc20 > i586-suse-linux - the one in openSuSE 11.2 package - EDIT: meanwhile it > is 2.1.1, openSuSE 11.3 ), openvpn didn't close some ressource and ssh > does fine. > > But: should'nt kernel clean up after process when it exits? > And/or: Should'nt kernel clean up if last process in network namespace > exits - there is nothing left which might use that interface?! We do, and the only place you will see: unregister_netdevice: waiting for lo to become free. Usage count = 3 [repeated] is when the a network namespace is being cleaned up. However it looks like something is either taking a long time to get cleaned up, or there is a bug and something is failing to get cleaned up altogether thus resulting in an infinite stream of messages about waiting for lo to become free. I know of cases where a recent kernel can be slow to cleanup everything attached to lo. I don't know of any cases where it will actually fail to clean up lo. So I suspect all you are seeing is clean up process that is slow and annoying not wrong. Eric -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists