netfilter: xt_CT: optimize XT_CT_NOTRACK
authorEric Dumazet <edumazet@google.com>
Wed, 22 May 2013 11:10:57 +0000 (11:10 +0000)
committerPablo Neira Ayuso <pablo@netfilter.org>
Thu, 23 May 2013 09:09:29 +0000 (11:09 +0200)
commit27e7190efd5b2f728686a8293af6d9bd34c4e562
tree559dce93ca2ac2272ec6c2b41055dd8e5e9d73d9
parent8892475386e819aa50856947948c546ccc964d96
netfilter: xt_CT: optimize XT_CT_NOTRACK

The percpu untracked ct are not currently used for XT_CT_NOTRACK.

xt_ct_tg_check()/xt_ct_target() provides a single ct.

Thats not optimal as the ct->ct_general.use cache line will bounce among
cpus.

Use the intended [1] thing : xt_ct_target() should select the percpu
object.

[1] Refs :
commit 5bfddbd46a95c97 ("netfilter: nf_conntrack: IPS_UNTRACKED bit")
commit b3c5163fe0193a7 ("netfilter: nf_conntrack: per_cpu untracking")

Signed-off-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/xt_CT.c