rpms / conntrack-tools

Clone
Source Code
GIT

Blame SOURCES/0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch

c7 c7-alt c7-beta c8 c8-beta c8s c9 c9-beta
  1.   c8s
  2.   SOURCES
  3.   0005-conntrackd-set-default-hashtable-buckets-and-max-ent.patch
Blob History Raw
adac5a 
From c63bdecd96375309d32239c7a83d985ac51704c5 Mon Sep 17 00:00:00 2001
adac5a 
From: Pablo Neira Ayuso <pablo@netfilter.org>
adac5a 
Date: Mon, 8 Mar 2021 16:29:25 +0100
adac5a 
Subject: [PATCH] conntrackd: set default hashtable buckets and max entries if
adac5a 
 not specified
adac5a
adac5a 
Fall back to 65536 buckets and 262144 entries.
adac5a
adac5a 
It would be probably good to add code to autoadjust by reading
adac5a 
/proc/sys/net/netfilter/nf_conntrack_buckets and
adac5a 
/proc/sys/net/nf_conntrack_max.
adac5a
adac5a 
Closes: https://bugzilla.netfilter.org/show_bug.cgi?id=1491
adac5a 
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
adac5a 
(cherry picked from commit 3276471d23d4d96d55e9a0fb7a10983d8097dc45)
adac5a 
---
adac5a 
 src/read_config_yy.y | 6 ++++++
adac5a 
 1 file changed, 6 insertions(+)
adac5a
adac5a 
diff --git a/src/read_config_yy.y b/src/read_config_yy.y
adac5a 
index cc0eb183bde34..7f6dae821e5a2 100644
adac5a 
--- a/src/read_config_yy.y
adac5a 
+++ b/src/read_config_yy.y
adac5a 
@@ -1924,5 +1924,11 @@ init_config(char *filename)
adac5a 
 					 NF_NETLINK_CONNTRACK_DESTROY;
adac5a 
 	}
adac5a
adac5a 
+	/* default hashtable buckets and maximum number of entries */
adac5a 
+	if (!CONFIG(hashsize))
adac5a 
+		CONFIG(hashsize) = 65536;
adac5a 
+	if (!CONFIG(limit))
adac5a 
+		CONFIG(limit) = 262144;
adac5a 
+
adac5a 
 	return 0;
adac5a 
 }
adac5a 
--
adac5a 
2.38.0
adac5a

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation