[pkg-netfilter-team] Bug#919325: iptables -nvL consumes 100% of CPU and hogs memory with kernel 5.0-rc2
Martin Steigerwald
martin at lichtvoll.de
Mon Jan 14 22:47:23 GMT 2019
Martin Steigerwald - 14.01.19, 23:38:
> Package: iptables
> Version: 1.8.2-3
> Severity: important
[…]
> I upgraded to self-compiled 5.0-rc2 today and found the machine to be
> slow after startup. I saw iptables consuming 100% CPU, it only
> responded to SIGKILL. It got restarted several times, probably by
> some systemd service.
>
> Then I started 'iptables -nvL' manually. And I got this:
[… strace output with what appears to be a loop on recvmsg …]
[… atop output showing iptables using 5 GiB + of resident memory …]
> I will attach kernel configuration.
>
> That is all I am willing to spend time on for now before going to
> sleep. I will however reboot with older 4.20 kernel to see whether it
> is kernel related.
It appears to be kernel related. I do not see this behavior with self-
compiled 4.20 kernel.
Attaching both configuration for both kernels.
[…]
--
Martin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: config-4.20.0-tp520.xz
Type: application/x-xz
Size: 27244 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-netfilter-team/attachments/20190114/ff769128/attachment-0002.xz>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: config-5.0.0-rc2-tp520.xz
Type: application/x-xz
Size: 27320 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-netfilter-team/attachments/20190114/ff769128/attachment-0003.xz>
More information about the pkg-netfilter-team
mailing list