Don't rate-limit packet_ins from flows that the controller set up.

author Ben Pfaff <blp@nicira.com>

Fri, 21 Nov 2008 18:48:00 +0000 (10:48 -0800)

committer Ben Pfaff <blp@nicira.com>

Fri, 21 Nov 2008 18:48:00 +0000 (10:48 -0800)
author Ben Pfaff <blp@nicira.com>
Fri, 21 Nov 2008 18:48:00 +0000 (10:48 -0800)
committer Ben Pfaff <blp@nicira.com>
Fri, 21 Nov 2008 18:48:00 +0000 (10:48 -0800)
diff --git a/secchan/ratelimit.c b/secchan/ratelimit.c

index 3736703..e44352c 100644 (file)
--- a/secchan/ratelimit.c
+++ b/secchan/ratelimit.c
@@ -160,6 +160,13 @@ rate_limit_local_packet_cb(struct relay *r, void *rl_)
          return false;
      }
  
+    if (opi->reason == OFPR_ACTION) {
+        /* Don't rate-limit 'ofp-packet_in's generated by flows that the
+         * controller set up.  XXX we should really just rate-limit them
+         * *separately* so that no one can flood the controller this way. */
+        return false;
+    }
+
      if (!rl->n_queued && get_token(rl)) {
          /* In the common case where we are not constrained by the rate limit,
           * let the packet take the normal path. */
author	Ben Pfaff <blp@nicira.com>
	Fri, 21 Nov 2008 18:48:00 +0000 (10:48 -0800)
committer	Ben Pfaff <blp@nicira.com>
	Fri, 21 Nov 2008 18:48:00 +0000 (10:48 -0800)