[Fwd: SUMMARY: KVM+nf_conntrack_htable_size]
by Jon Masters
The disabling of netfilter on bridges is not really "solving" this
problem. The problem is that the hashing code needs fixing. Until that
changes, whenever libvirtd plays with namespaces (as it does), we run
the risk of falling over as we play with the size of the hashtables.
Jon.
13 years, 10 months
- 3
- 6
SELinux bugfix possibly for rawhide
by James Morris
This patch may be needed for rawhide:
"Only audit permissions specified in policy"
https://bugzilla.redhat.com/show_bug.cgi?id=558499#c28
--
James Morris
<jmorris(a)namei.org>
13 years, 10 months
- 1
- 0