[Bug 859] New: bitmap:port appears to be using 8 bytes of kernel memory per port, rather than 1 bit.

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Fri Oct 18 02:16:57 CEST 2013


https://bugzilla.netfilter.org/show_bug.cgi?id=859

           Summary: bitmap:port appears to be using 8 bytes of kernel
                    memory per port, rather than 1 bit.
           Product: ipset
           Version: unspecified
          Platform: x86_64
        OS/Version: All
            Status: NEW
          Severity: critical
          Priority: P5
         Component: default
        AssignedTo: netfilter-buglog at lists.netfilter.org
        ReportedBy: quentin at armitage.org.uk
   Estimated Hours: 0.0


Using ipset version 6.19 on kernel version 3.6.11, a bitmap:ip range 1-65535 is
reported to be using 8304 bytes of memory. With a kernel version 3.11.3, the
same size bitmap:ip is reported to be using 524424 bytes of memory.

# uname -r
3.6.11-4.fc16.x86_64
# ipset create fred bitmap:port range 1-65535
# ipset list fred
Name: fred
Type: bitmap:port
Revision: 0
Header: range 1-65535
Size in memory: 8304
References: 0
Members:

# uname -r
3.11.3-201.fc19.x86_64
# ipset create fred bitmap:port range 1-65535
# ipset list fred
Name: fred
Type: bitmap:port
Revision: 1
Header: range 1-65535
Size in memory: 524424
References: 0
Members:

A 3.7.5 kernel reports memory utilisation of 8260, so slightly lower than
3.6.11. Unfortunately I don't have any kernels between 3.7.5 and 3.11.3
running.

Further checks show that for every additional port in the bitmap, kernel 3.11.3
reports adding 8 bytes to the size of the bitmap.

A bitmap:ip does NOT have the same problem.

I assume it is a problem in the kernel, since I am using ipset version 6.19 on
both systems (I have also tried ipset v6.20 on the 3.11.3 system, but it shows
the same problem).

Is the 3.11.3 kernel using an excessive amount of memory for bitmap:port, or is
it incorrectly reporting the amount of memory used?

I've marked this as critical in case the kernel is using the excessive amount
of memory. If it is just the amount of memory being used, then I'm happy for
the severity to be lowered.

-- 
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.



More information about the netfilter-buglog mailing list