git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Pablo Neira Ayuso <pablo@netfilter.org>
	Tue, 4 Sep 2018 10:07:55 +0000 (12:07 +0200)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sat, 20 Apr 2019 07:15:04 +0000 (09:15 +0200)
commit	edbcdafac3e44346b8f8321a03b5434c26cddb80
tree	ac1c056b6f5a89de1b171b51cff37ee85fa094da	tree \| snapshot
parent	40e8d128f5ed918bc9f19708e1320efea1c0c24a	commit \| diff

netfilter: xt_cgroup: shrink size of v2 path

[ Upstream commit 0d704967f4a49cc2212350b3e4a8231f8b4283ed ]

cgroup v2 path field is PATH_MAX which is too large, this is placing too
much pressure on memory allocation for people with many rules doing
cgroup v1 classid matching, side effects of this are bug reports like:

https://bugzilla.kernel.org/show_bug.cgi?id=200639

This patch registers a new revision that shrinks the cgroup path to 512
bytes, which is the same approach we follow in similar extensions that
have a path field.

Cc: Tejun Heo <tj@kernel.org>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Acked-by: Tejun Heo <tj@kernel.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>

include/uapi/linux/netfilter/xt_cgroup.h		diff \| blob \| blame \| history
net/netfilter/xt_cgroup.c		diff \| blob \| blame \| history