[PATCH net v2] tcp: drop secpath at the same time as we currently drop dst
patchwork-bot+netdevbpf at kernel.org
patchwork-bot+netdevbpf at kernel.org
Thu Feb 20 08:40:29 UTC 2025
Hello:
This patch was applied to netdev/net.git (main)
by Paolo Abeni <pabeni at redhat.com>:
On Mon, 17 Feb 2025 11:23:35 +0100 you wrote:
> Xiumei reported hitting the WARN in xfrm6_tunnel_net_exit while
> running tests that boil down to:
> - create a pair of netns
> - run a basic TCP test over ipcomp6
> - delete the pair of netns
>
> The xfrm_state found on spi_byaddr was not deleted at the time we
> delete the netns, because we still have a reference on it. This
> lingering reference comes from a secpath (which holds a ref on the
> xfrm_state), which is still attached to an skb. This skb is not
> leaked, it ends up on sk_receive_queue and then gets defer-free'd by
> skb_attempt_defer_free.
>
> [...]
Here is the summary with links:
- [net,v2] tcp: drop secpath at the same time as we currently drop dst
https://git.kernel.org/netdev/net/c/9b6412e6979f
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
More information about the Linux-security-module-archive
mailing list