From d018dd31bfa66650daec4d49dc7b264a827e7834 Mon Sep 17 00:00:00 2001
From: Dmitry Vyukov <dvyukov@google.com>
Date: Tue, 14 Dec 2021 11:09:26 +0100
Subject: dashboard/config/linux: reduce tomoyo learning quota

High values of CONFIG_SECURITY_TOMOYO_MAX_ACCEPT_ENTRY cause
significant slowdown (see issue #2892). Reduce the value.

Fixes #2892
---
 dashboard/config/linux/upstream-usb-base.config | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'dashboard/config/linux/upstream-usb-base.config')

diff --git a/dashboard/config/linux/upstream-usb-base.config b/dashboard/config/linux/upstream-usb-base.config
index 677ce5e15..022e2dae6 100644
--- a/dashboard/config/linux/upstream-usb-base.config
+++ b/dashboard/config/linux/upstream-usb-base.config
@@ -4535,7 +4535,7 @@ CONFIG_FORTIFY_SOURCE=y
 # CONFIG_SECURITY_SELINUX is not set
 # CONFIG_SECURITY_SMACK is not set
 CONFIG_SECURITY_TOMOYO=y
-CONFIG_SECURITY_TOMOYO_MAX_ACCEPT_ENTRY=1024
+CONFIG_SECURITY_TOMOYO_MAX_ACCEPT_ENTRY=64
 CONFIG_SECURITY_TOMOYO_MAX_AUDIT_LOG=32
 CONFIG_SECURITY_TOMOYO_OMIT_USERSPACE_LOADER=y
 CONFIG_SECURITY_TOMOYO_INSECURE_BUILTIN_SETTING=y
-- 
cgit mrf-deployment