[PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns

Mimi Zohar zohar at linux.ibm.com
Wed Feb 23 20:59:25 UTC 2022

Previous message (by thread): [PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns
Next message (by thread): [PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 2022-02-23 at 15:45 -0500, Stefan Berger wrote:

> avoid huge kernel memory consumption in the case that a cgroup limit for 
> memory was not set up.

Ok, that is the motivation for the this patch.

Previous message (by thread): [PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns
Next message (by thread): [PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Linux-security-module-archive mailing list