Michal Hocko <mhocko@xxxxxxxxxx> wrote: > On Tue 07-08-18 13:19:26, Florian Westphal wrote: > > Michal Hocko <mhocko@xxxxxxxxxx> wrote: > > > > I can't reproduce it anymore. > > > > If i understand correctly this way memory allocated will be > > > > accounted to kmem of this cgroup (if inside cgroup). > > > > > > s@this@caller's@ > > > > > > Florian, is this patch acceptable > > > > I am no mm expert. Should all longlived GFP_KERNEL allocations set ACCOUNT? > > No. We should focus only on those that are under direct userspace > control and it can be triggered by an untrusted user. In that case patch is fine and we will need similar patches for nf_tables_api.c . -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
