Re: [syzbot] [netfilter?] WARNING in nf_conntrack_cleanup_net_list

Next message: Rostislav Krasny: "[PATCH 0/1] kconfig: move XPM icons to separate files"
Previous message: asmadeus: "Re: [PATCH] 9p/virtio: restrict page pinning to user_backed_iter() iovec"
In reply to: Florian Westphal: "Re: [syzbot] [netfilter?] WARNING in nf_conntrack_cleanup_net_list"
Next in thread: Florian Westphal: "Re: [syzbot] [netfilter?] WARNING in nf_conntrack_cleanup_net_list"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Eric Dumazet

Date: Sat Dec 13 2025 - 08:30:43 EST

On Sat, Dec 13, 2025 at 2:27 PM Florian Westphal <fw@xxxxxxxxx> wrote:
>
> Jakub Kicinski <kuba@xxxxxxxxxx> wrote:
> > On Thu, 11 Dec 2025 10:38:31 -0800 syzbot wrote:
> > > ------------[ cut here ]------------
> > > conntrack cleanup blocked for 60s
> > > WARNING: net/netfilter/nf_conntrack_core.c:2512 at
> >
> > Yes, I was about to comment on the patch which added the warning..
> >
> > There is still a leak somewhere. Running ip_defrag.sh and then load /
> > unload ipvlan repros this (modprobe ipvlan is a quick check if the
> > cleanup thread is wedged, if it is modprobe will hang, if it isn't
> > run ip_defrag.sh, again etc).
> >
> > I looked around last night but couldn't find an skb stuck anywhere.
> > The nf_conntrack_net->count was == 1
>
> Its caused skb skb fraglist skbs that still hold nf_conn references
> on the softnet data defer lists.
>
> setting net.core.skb_defer_max=0 makes the hang disappear for me.

What kind of packets ? TCP ones ?