Re: [PATCH v10 26/27] ima: Limit number of policy rules in non-init_ima_ns
From: Mimi Zohar
Date: Wed Feb 23 2022 - 15:59:51 EST
On Wed, 2022-02-23 at 15:45 -0500, Stefan Berger wrote:
> avoid huge kernel memory consumption in the case that a cgroup limit for
> memory was not set up.
Ok, that is the motivation for the this patch.