[PATCH] net: don't unnecessarily load kernel modules in dev_ioctl()
David Miller
davem at davemloft.net
Thu Mar 8 18:11:15 UTC 2018
From: Eric Dumazet <eric.dumazet at gmail.com>
Date: Thu, 8 Mar 2018 10:05:12 -0800
> Another problematic legacy behavior is the automatic creation of
> fallback tunnels, which hurts netns creation/deletion.
>
> Some environments want to create a netns for every job/task, and they
> do not care if the init netns has these tunnels or not.
>
> We have a local patch adding yet another knob to control this, since
> it saves a lot of cpu cycles (about 10ms per netns create/delete pair
> here)
Yeah, understood. At small scale the current behavior maybe made
sense, but these days it really doesn't.
No objections to the knob if you want to submit it.
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list