rpms / conntrack-tools

Clone
Source Code
GIT

Blame SOURCES/0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch

c7 c7-alt c7-beta c8 c8-beta c8s c9 c9-beta
  1.   c8
  2.   SOURCES
  3.   0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch
Blob History Raw
bd9293 
From c63bdecd96375309d32239c7a83d985ac51704c5 Mon Sep 17 00:00:00 2001
bd9293 
From: Pablo Neira Ayuso <pablo@netfilter.org>
bd9293 
Date: Mon, 8 Mar 2021 16:29:25 +0100
bd9293 
Subject: [PATCH] conntrackd: set default hashtable buckets and max entries if
bd9293 
 not specified
bd9293
bd9293 
Fall back to 65536 buckets and 262144 entries.
bd9293
bd9293 
It would be probably good to add code to autoadjust by reading
bd9293 
/proc/sys/net/netfilter/nf_conntrack_buckets and
bd9293 
/proc/sys/net/nf_conntrack_max.
bd9293
bd9293 
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1491
bd9293 
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
bd9293 
(cherry picked from commit 3276471d23d4d96d55e9a0fb7a10983d8097dc45)
bd9293 
---
bd9293 
 src/read_config_yy.y | 6 ++++++
bd9293 
 1 file changed, 6 insertions(+)
bd9293
bd9293 
diff --git a/src/read_config_yy.y b/src/read_config_yy.y
bd9293 
index cc0eb183bde34..7f6dae821e5a2 100644
bd9293 
--- a/src/read_config_yy.y
bd9293 
+++ b/src/read_config_yy.y
bd9293 
@@ -1924,5 +1924,11 @@ init_config(char *filename)
bd9293 
 					 NF_NETLINK_CONNTRACK_DESTROY;
bd9293 
 	}
bd9293
bd9293 
+	/* default hashtable buckets and maximum number of entries */
bd9293 
+	if (!CONFIG(hashsize))
bd9293 
+		CONFIG(hashsize) = 65536;
bd9293 
+	if (!CONFIG(limit))
bd9293 
+		CONFIG(limit) = 262144;
bd9293 
+
bd9293 
 	return 0;
bd9293 
 }
bd9293 
--
bd9293 
2.38.0
bd9293

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation