rpms / conntrack-tools

Clone
Source Code
GIT

Blame SOURCES/0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch

c7 c7-alt c7-beta c8 c8-beta c8s c9 c9-beta
  1.   c8-beta
  2.   SOURCES
  3.   0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch
Blob History Raw
b1f256 
From c63bdecd96375309d32239c7a83d985ac51704c5 Mon Sep 17 00:00:00 2001
b1f256 
From: Pablo Neira Ayuso <pablo@netfilter.org>
b1f256 
Date: Mon, 8 Mar 2021 16:29:25 +0100
b1f256 
Subject: [PATCH] conntrackd: set default hashtable buckets and max entries if
b1f256 
 not specified
b1f256
b1f256 
Fall back to 65536 buckets and 262144 entries.
b1f256
b1f256 
It would be probably good to add code to autoadjust by reading
b1f256 
/proc/sys/net/netfilter/nf_conntrack_buckets and
b1f256 
/proc/sys/net/nf_conntrack_max.
b1f256
b1f256 
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1491
b1f256 
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
b1f256 
(cherry picked from commit 3276471d23d4d96d55e9a0fb7a10983d8097dc45)
b1f256 
---
b1f256 
 src/read_config_yy.y | 6 ++++++
b1f256 
 1 file changed, 6 insertions(+)
b1f256
b1f256 
diff --git a/src/read_config_yy.y b/src/read_config_yy.y
b1f256 
index cc0eb183bde34..7f6dae821e5a2 100644
b1f256 
--- a/src/read_config_yy.y
b1f256 
+++ b/src/read_config_yy.y
b1f256 
@@ -1924,5 +1924,11 @@ init_config(char *filename)
b1f256 
 					 NF_NETLINK_CONNTRACK_DESTROY;
b1f256 
 	}
b1f256
b1f256 
+	/* default hashtable buckets and maximum number of entries */
b1f256 
+	if (!CONFIG(hashsize))
b1f256 
+		CONFIG(hashsize) = 65536;
b1f256 
+	if (!CONFIG(limit))
b1f256 
+		CONFIG(limit) = 262144;
b1f256 
+
b1f256 
 	return 0;
b1f256 
 }
b1f256 
--
b1f256 
2.38.0
b1f256

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation