diff options
author | Patrick McHardy <kaber@trash.net> | 2007-07-07 22:37:38 -0700 |
---|---|---|
committer | David S. Miller <davem@sunset.davemloft.net> | 2007-07-10 22:18:15 -0700 |
commit | 7ae7730fd6d98be1afe8ad9ea77813de607ec970 (patch) | |
tree | cb0cebe96de34a5d6116e4f76377e6ef4ca43547 /net/netfilter/nfnetlink_queue.c | |
parent | ec59a1110aee6846adada8979915cacae64042ce (diff) |
[NETFILTER]: nf_conntrack: early_drop improvement
When the maximum number of conntrack entries is reached and a new
one needs to be allocated, conntrack tries to drop an unassured
connection from the same hash bucket the new conntrack would hash
to. Since with a properly sized hash the average number of entries
per bucket is 1, the chances of actually finding one are not very
good. This patch makes it walk the hash until a minimum number of
8 entries are checked.
Based on patch by Vasily Averin <vvs@sw.ru>.
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'net/netfilter/nfnetlink_queue.c')
0 files changed, 0 insertions, 0 deletions