[PATCH] net: don't unnecessarily load kernel modules in dev_ioctl()

David Miller davem at davemloft.net
Thu Mar 8 18:11:15 UTC 2018

From: Eric Dumazet <eric.dumazet at gmail.com>
Date: Thu, 8 Mar 2018 10:05:12 -0800

> Another problematic legacy behavior is the automatic creation of
> fallback tunnels, which hurts netns creation/deletion.
> Some environments want to create a netns for every job/task, and they
> do not care if the init netns has these tunnels or not.
> We have a local patch adding yet another knob to control this, since
> it saves a lot of cpu cycles (about 10ms per netns create/delete pair
> here)

Yeah, understood.  At small scale the current behavior maybe made
sense, but these days it really doesn't.

No objections to the knob if you want to submit it.
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

More information about the Linux-security-module-archive mailing list