On 05.06.2017 21:05, Stanislav Kinsburskiy wrote:
> https://jira.sw.ru/browse/PSBM-43609
>
> Signed-off-by: Stanislav Kinsburskiy
Acked-by: Kirill Tkhai
> ---
> net/netfilter/xt_owner.c |2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
> diff --git a/net/netfilter/xt_owner.c b/net
It's good enough for us. It won't work properly in case of setting rules by
joining container network namespace without VE cgroup, but it's acceptable,
because proper fix needs a lot of backporting.
https://jira.sw.ru/browse/PSBM-43609
Signed-off-by: Stanislav Kinsburskiy
---
net/netfilter/xt_o
On Tue, Jun 06, 2017 at 02:00:32PM +0400, Stanislav Kinsburskiy wrote:
> It's good enough for us. It won't work properly in case of setting rules by
> joining container network namespace without VE cgroup, but it's acceptable,
> because proper fix needs a lot of backporting.
>
> https://jira.sw.ru
On Tue, Jun 06, 2017 at 01:23:55PM +0300, Cyrill Gorcunov wrote:
> On Tue, Jun 06, 2017 at 02:00:32PM +0400, Stanislav Kinsburskiy wrote:
> > It's good enough for us. It won't work properly in case of setting rules by
> > joining container network namespace without VE cgroup, but it's acceptable,
>
06.06.2017 12:27, Cyrill Gorcunov пишет:
On Tue, Jun 06, 2017 at 01:23:55PM +0300, Cyrill Gorcunov wrote:
On Tue, Jun 06, 2017 at 02:00:32PM +0400, Stanislav Kinsburskiy wrote:
It's good enough for us. It won't work properly in case of setting rules by
joining container network namespace with
From: Li RongQing
commit cbedbac3e66121ddbac363776c23119f8eaeefda upstream.
mem_cgroup_margin() might return (memory.limit - memory_count) when the
memsw.limit is in excess. This doesn't happen usually because we do not
allow excess on hard limits and (memory.limit <= memsw.limit), but
__GFP_NO
