ITQC/containernetworking-plugins
24
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 34 Wiki Activity

utils: iptables: Use go-iptables' ChainExists()

Browse Source 
Starting with v0.5.0, go-iptables exports a fast ChainExists() which
does not rely upon listing all chains and searching the results but
probes chain existence by listing its first rule. This should make a
significant difference in rulesets with thousands of chains.

Signed-off-by: Phil Sutter <psutter@redhat.com>
This commit is contained in:
Phil Sutter
2023-07-05 22:14:38 +02:00
parent bf79945c70
commit 719f60bb91
2 changed files with 3 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
plugins/meta/portmap/chain.go
View File

@ -103,7 +103,7 @@ func (c *chain) teardown(ipt *iptables.IPTables) error {
// check the chain.
func (c *chain) check(ipt *iptables.IPTables) error {
exists, err := utils.ChainExists(ipt, c.table, c.name)
exists, err := ipt.ChainExists(c.table, c.name)
if err != nil {
return err
}