Peter Marczis <peter.marczis@xxxxxxxxxxxxxxxxxxxx> wrote: > Hello developers, > I'm seeking some help to debug and solve one of my issues. > > We observed that if we create 30k connections, everything works as > expected, but when we start to disconnect them, > conntrack (well not confirmed yet fully) makes the kernel side busy, > and looks like no scheduling happens. What do you mean by 'disconnect'? conntrack -F ? My wild guss is you need to backport commit d93c6258ee4255749c10012c50a31c08f4e9fb16 netfilter: conntrack: resched in nf_ct_iterate_cleanup > The whole thing works as expected, the only problem it makes our > processes and well everything on user side hanging for a couple of > seconds 10-30s, > which of course triggers our HW Watchdog, and we end up in a reboot. You could try CONFIG_LOCKUP_DETECTOR=y CONFIG_HARDLOCKUP_DETECTOR=y -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
