This patch series handles exit from a network name space. REVISION This is version 2 OVERVIEW Basically there was three faults in the netns implementation. - Kernel threads hold devices and preventing an exit. - dst cache holds references to devices. - Services was not always released. Patch 1 & 3 contains the functionality 4 renames funcctions 5 removes empty functions 6 Debuging. IMPLEMENTATION - Avoid to increment the usage counter for kernel threads. this is done in the first patch. - Patch 3 tries to restore the cleanup order. Add NETDEV_UNREGISTER notification for dst_reset >From Julian - "For __ip_vs_service_cleanup: it still has to use mutex. Or we can avoid it by introducing ip_vs_unlink_service_nolock: ip_vs_flush will look like your __ip_vs_service_cleanup and will call ip_vs_unlink_service_nolock. ip_vs_unlink_service_nolock will be called by ip_vs_flush and by ip_vs_unlink_service." I will give above another try later on see if I can get it to work. Right now ip_vs_service_net_cleanup() seems to work. An netns exit could look like this IPVS: Enter: __ip_vs_dev_cleanup, net/netfilter/ipvs/ip_vs_core.c IPVS: stopping master sync thread 1286 ... IPVS: stopping backup sync thread 1294 ... IPVS: Leave: __ip_vs_dev_cleanup, net/netfilter/ipvs/ip_vs_core.c IPVS: Enter: ip_vs_dst_event, net/netfilter/ipvs/ip_vs_ctl.c line IPVS: Leave: ip_vs_dst_event, net/netfilter/ipvs/ip_vs_ctl.c line ... IPVS: Enter: ip_vs_dst_event, net/netfilter/ipvs/ip_vs_ctl.c line IPVS: Leave: ip_vs_dst_event, net/netfilter/ipvs/ip_vs_ctl.c line IPVS: Enter: ip_vs_service_net_cleanup, net/netfilter/ipvs/ip_vs_ctl.c IPVS: __ip_vs_del_service: enter IPVS: Moving dest 192.168.1.6:0 into trash, dest->refcnt=43450 ... IPVS: Moving dest 192.168.1.3:0 into trash, dest->refcnt=43449 IPVS: __ip_vs_del_service: enter IPVS: Removing destination 0/[2003:0000:0000:0000:0000:0002:0000:0006]:80 ... IPVS: Removing destination 0/[2003:0000:0000:0000:0000:0002:0000:0003]:80 IPVS: Removing service 0/[2003:0000:0000:0000:0000:0002:0004:0100]:80 usecnt=0 IPVS: Leave: ip_vs_service_net_cleanup, net/netfilter/ipvs/ip_vs_ctl.c IPVS: Enter: ip_vs_control_net_cleanup, net/netfilter/ipvs/ip_vs_ctl.c IPVS: Removing service 80/0.0.0.0:0 usecnt=0 IPVS: Leave: ip_vs_control_net_cleanup, net/netfilter/ipvs/ip_vs_ctl.c IPVS: ipvs netns 8 released PATCH SET This patch set is based upon net-next-2.6 (2.6.39-rc2) SUMMARY include/net/ip_vs.h | 23 ++++-- net/netfilter/ipvs/ip_vs_app.c | 23 +----- net/netfilter/ipvs/ip_vs_conn.c | 14 +--- net/netfilter/ipvs/ip_vs_core.c | 118 +++++++++++++++++++-------- net/netfilter/ipvs/ip_vs_ctl.c | 168 +++++++++++++++++++++++++++++++------- net/netfilter/ipvs/ip_vs_est.c | 21 +---- net/netfilter/ipvs/ip_vs_proto.c | 11 +-- net/netfilter/ipvs/ip_vs_sync.c | 70 ++++++++-------- 8 files changed, 281 insertions(+), 167 deletions(-) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html