Cache tracking has improved over time by incrementally adding/deleting
objects when evaluating commands that are going to be sent to the kernel.
nft_cache_is_complete() already checks that the cache contains objects
that are required to handle this batch of commands by comparing cache
flags.
Infer from the current generation ID if no other transaction has
invalidated the existing cache, this allows to skip unnecessary cache
flush then refill situations which slow down incremental updates.
Signed-off-by: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
---
src/cache.c | 18 +++++++++++++++---
1 file changed, 15 insertions(+), 3 deletions(-)
diff --git a/src/cache.c b/src/cache.c
index 7cc84d714b08..2cfc4af7280e 100644
--- a/src/cache.c
+++ b/src/cache.c
@@ -1182,9 +1182,21 @@ static bool nft_cache_needs_refresh(unsigned int flags)
return flags & NFT_CACHE_REFRESH;
}
-static bool nft_cache_is_updated(struct nft_cache *cache, uint16_t genid)
+static bool nft_cache_is_updated(struct nft_cache *cache, unsigned int flags,
+ uint16_t genid)
{
- return genid && genid == cache->genid;
+ if (!genid)
+ return false;
+
+ if (genid == cache->genid)
+ return true;
+
+ if (genid == cache->genid + 1) {
+ cache->genid++;
+ return true;
+ }
+
+ return false;
}
bool nft_cache_needs_update(struct nft_cache *cache)
@@ -1209,7 +1221,7 @@ replay:
genid = mnl_genid_get(&ctx);
if (!nft_cache_needs_refresh(flags) &&
nft_cache_is_complete(cache, flags) &&
- nft_cache_is_updated(cache, genid))
+ nft_cache_is_updated(cache, flags, genid))
return 0;
if (cache->genid)
--
2.30.2
