[NETFILTER]: init_conntrack() optimization

This patch optimizes the code path during init_conntrack() Signed-off-by: Pablo Neira <pablo@eurodev.net> Signed-off-by: Harald Welte <laforge@netfilter.org> Signed-off-by: David S. Miller <davem@redhat.com>

[NETFILTER]: init_conntrack() optimization
This patch optimizes the code path during init_conntrack() Signed-off-by: Pablo Neira <pablo@eurodev.net> Signed-off-by: Harald Welte <laforge@netfilter.org> Signed-off-by: David S. Miller <davem@redhat.com>
9e8605db · Harald Welte · David S. Miller · 32d6a4f9 · 9e8605db
Commit 9e8605db authored Jul 24, 2004 by Harald Welte Committed by David S. Miller Jul 24, 2004
Show whitespace changes
Inline Side-by-side

Showing with 29 additions and 22 deletions

net/ipv4/netfilter/ip_conntrack_core.c net/ipv4/netfilter/ip_conntrack_core.c +29 -22

No files found.
--- a/net/ipv4/netfilter/ip_conntrack_core.c
+++ b/net/ipv4/netfilter/ip_conntrack_core.c
@@ -694,41 +694,48 @@ init_conntrack(const struct ip_conntrack_tuple *tuple,
 			     struct ip_conntrack_expect *, tuple);
 	READ_UNLOCK(&ip_conntrack_expect_tuple_lock);
+	if (expected) {
 		/* If master is not in hash table yet (ie. packet hasn't left
 		   this machine yet), how can other end know about expected?
 		   Hence these are not the droids you are looking for (if
 		   master ct never got confirmed, we'd hold a reference to it
 		   and weird things would happen to future packets). */
-	if (expected && !is_confirmed(expected->expectant))
+		if (!is_confirmed(expected->expectant)) {
-		expected = NULL;
-	/* Look up the conntrack helper for master connections only */
-	if (!expected)
 			conntrack->helper = ip_ct_find_helper(&repl_tuple);
+			goto end;
+		}
-	/* If the expectation is dying, then this is a loser. */
+		/* Expectation is dying... */
-	if (expected
+		if (expected->expectant->helper->timeout
-	    && expected->expectant->helper->timeout
+		    && !del_timer(&expected->timeout))
-	    && ! del_timer(&expected->timeout))
+			goto end;	
-		expected = NULL;
-	if (expected) {
 		DEBUGP("conntrack: expectation arrives ct=%p exp=%p\n",
 			conntrack, expected);
 		/* Welcome, Mr. Bond.  We've been expecting you... */
+		IP_NF_ASSERT(master_ct(conntrack));
 		__set_bit(IPS_EXPECTED_BIT, &conntrack->status);
 		conntrack->master = expected;
 		expected->sibling = conntrack;
 		LIST_DELETE(&ip_conntrack_expect_list, expected);
 		expected->expectant->expecting--;
 		nf_conntrack_get(&master_ct(conntrack)->infos[0]);
-	}
+		/* this is a braindead... --pablo */
 		atomic_inc(&ip_conntrack_count);
 		WRITE_UNLOCK(&ip_conntrack_lock);
-	if (expected && expected->expectfn)
+		if (expected->expectfn)
 			expected->expectfn(conntrack);
-	return &conntrack->tuplehash[IP_CT_DIR_ORIGINAL];
+		goto ret;
+	} else 
+		conntrack->helper = ip_ct_find_helper(&repl_tuple);
+end:	atomic_inc(&ip_conntrack_count);
+	WRITE_UNLOCK(&ip_conntrack_lock);
+ret:	return &conntrack->tuplehash[IP_CT_DIR_ORIGINAL];
 }
 /* On success, returns conntrack ptr, sets skb->nfct and ctinfo */