On 2017-11-12 11:39, Vasily Averin wrote:
> clusterip: exit_net cleanup check added
> nf_tables: exit_net cleanup check added
> nfnetlink_log: exit_net cleanup check added
> nfnetlink_gueue: exit_net cleanup check added
> x_tables: exit_net cleanup check added
netfilter-related patches w
OpenVz kernel team have a long history of fighting against namespace-related
bugs,
some of them could be excluded by using simple checks described below.
One of typical errors is related to live cycle of namespaces:
usually objects created for some namespace should not live longer than
namespace
