run: limit the number of iterations over the event handling

Currently, the event handling can starve other event file descriptors. This patch limits the number of event handling iterations. The parameter is tunable via configuration file. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2009-01-15 23:19:35 +0100
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2009-01-15 23:19:35 +0100
commit: b28224b0326636ff5832b38817b7720f48070ee7 (patch)
tree: e1b6856b8c852d9c672af2559e17ecab78355246 /include/conntrackd.h
parent: 4556b3fb39dd80e958ff70f3496d06ec04f3839d (diff)
download: conntrack-tools-b28224b0326636ff5832b38817b7720f48070ee7.tar.gz
conntrack-tools-b28224b0326636ff5832b38817b7720f48070ee7.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/include/conntrackd.h b/include/conntrackd.h
index df36ec4..67397b8 100644
--- a/include/conntrackd.h
+++ b/include/conntrackd.h
@@ -84,6 +84,7 @@ struct ct_conf {
 	unsigned int window_size;
 	int cache_write_through;
 	int filter_from_kernelspace;
+	int event_iterations_limit;
 	struct {
 		char logfile[FILENAME_MAXLEN];
 		int syslog_facility;
@@ -103,6 +104,7 @@ struct ct_general_state {
 
 	struct nfct_handle		*event;         /* event handler */
 	struct nfct_filter		*filter;	/* event filter */
+	int				event_iterations_limit;
 
 	struct nfct_handle		*dump;		/* dump handler */
 	struct nfct_handle		*request;	/* request handler */
author	Pablo Neira Ayuso <pablo@netfilter.org>	2009-01-15 23:19:35 +0100
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2009-01-15 23:19:35 +0100
commit	b28224b0326636ff5832b38817b7720f48070ee7 (patch)
tree	e1b6856b8c852d9c672af2559e17ecab78355246 /include/conntrackd.h
parent	4556b3fb39dd80e958ff70f3496d06ec04f3839d (diff)
download	conntrack-tools-b28224b0326636ff5832b38817b7720f48070ee7.tar.gz conntrack-tools-b28224b0326636ff5832b38817b7720f48070ee7.zip