From patchwork Mon Jun 13 07:06:57 2011
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Hans Schillstrom <hans.schillstrom@ericsson.com>
X-Patchwork-Id: 100134
X-Patchwork-Delegate: davem@davemloft.net
Return-Path: <netdev-owner@vger.kernel.org>
X-Original-To: patchwork-incoming@ozlabs.org
Delivered-To: patchwork-incoming@ozlabs.org
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by ozlabs.org (Postfix) with ESMTP id 0759CB6FC9
	for <patchwork-incoming@ozlabs.org>;
	Mon, 13 Jun 2011 17:07:21 +1000 (EST)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1753234Ab1FMHHB (ORCPT <rfc822;patchwork-incoming@ozlabs.org>);
	Mon, 13 Jun 2011 03:07:01 -0400
Received: from mailgw9.se.ericsson.net ([193.180.251.57]:57943 "EHLO
	mailgw9.se.ericsson.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1753081Ab1FMHHA (ORCPT
	<rfc822;netdev@vger.kernel.org>); Mon, 13 Jun 2011 03:07:00 -0400
X-AuditID: c1b4fb39-b7bfdae000005125-38-4df5b712fc26
Received: from esessmw0197.eemea.ericsson.se (Unknown_Domain
	[153.88.253.124])
	by mailgw9.se.ericsson.net (Symantec Mail Security) with SMTP id
	2B.21.20773.217B5FD4; Mon, 13 Jun 2011 09:06:58 +0200 (CEST)
Received: from seassled11.rnd.as.sw.ericsson.se (153.88.115.8) by
	esessmw0197.eemea.ericsson.se (153.88.115.88) with Microsoft SMTP
	Server id 8.3.137.0; Mon, 13 Jun 2011 09:06:57 +0200
Received: by seassled11.rnd.as.sw.ericsson.se (Postfix, from userid 88893)	id
	44BC3406397; Mon, 13 Jun 2011 09:06:57 +0200 (CEST)
From: Hans Schillstrom <hans.schillstrom@ericsson.com>
To: <horms@verge.net.au>, <ja@ssi.bg>, <wensong@linux-vs.org>,
	<lvs-devel@vger.kernel.org>, <netdev@vger.kernel.org>,
	<netfilter-devel@vger.kernel.org>
CC: <kaber@trash.net>, <hans@schillstrom.com>,
	Hans Schillstrom <hans.schillstrom@ericsson.com>
Subject: [PATCH 1/1] IPVS  netns exit causes crash in conntrack
Date: Mon, 13 Jun 2011 09:06:57 +0200
Message-ID: <1307948817-5367-1-git-send-email-hans.schillstrom@ericsson.com>
X-Mailer: git-send-email 1.6.0.2
MIME-Version: 1.0
X-Brightmail-Tracker: AAAAAA==
Sender: netdev-owner@vger.kernel.org
Precedence: bulk
List-ID: <netdev.vger.kernel.org>
X-Mailing-List: netdev@vger.kernel.org

Quote from Patric Mc Hardy
"This looks like nfnetlink.c excited and destroyed the nfnl socket, but
ip_vs was still holding a reference to a conntrack. When the conntrack
got destroyed it created a ctnetlink event, causing an oops in
netlink_has_listeners when trying to use the destroyed nfnetlink
socket."

If nf_conntrack_netlink is loaded before ip_vs this is not a problem.

This patch simply avoids calling ip_vs_conn_drop_conntrack()
when netns is dying as suggested by Julian.

Signed-off-by: Hans Schillstrom <hans.schillstrom@ericsson.com>
---
 net/netfilter/ipvs/ip_vs_conn.c |   10 +++++++++-
 net/netfilter/ipvs/ip_vs_core.c |    1 +
 2 files changed, 10 insertions(+), 1 deletions(-)

diff --git a/net/netfilter/ipvs/ip_vs_conn.c b/net/netfilter/ipvs/ip_vs_conn.c
index bf28ac2..d7dfccb 100644
--- a/net/netfilter/ipvs/ip_vs_conn.c
+++ b/net/netfilter/ipvs/ip_vs_conn.c
@@ -776,8 +776,16 @@ static void ip_vs_conn_expire(unsigned long data)
 		if (cp->control)
 			ip_vs_control_del(cp);
 
-		if (cp->flags & IP_VS_CONN_F_NFCT)
+		if (cp->flags & IP_VS_CONN_F_NFCT) {
 			ip_vs_conn_drop_conntrack(cp);
+		/* Do not access conntracks during subsys cleanup because
+		 * nf_conntrack_find_get can not be used after conntrack
+		 * cleanup for the net.
+		 */
+			smp_rmb();
+			if (ipvs->enable)
+				ip_vs_conn_drop_conntrack(cp);
+		}
 
 		ip_vs_pe_put(cp->pe);
 		kfree(cp->pe_data);
diff --git a/net/netfilter/ipvs/ip_vs_core.c b/net/netfilter/ipvs/ip_vs_core.c
index bfa808f..6f8c934 100644
--- a/net/netfilter/ipvs/ip_vs_core.c
+++ b/net/netfilter/ipvs/ip_vs_core.c
@@ -1945,6 +1945,7 @@ static void __net_exit __ip_vs_dev_cleanup(struct net *net)
 {
 	EnterFunction(2);
 	net_ipvs(net)->enable = 0;	/* Disable packet reception */
+	smp_wmb();
 	__ip_vs_sync_cleanup(net);
 	LeaveFunction(2);
 }