netfilter: get rid of useless debugging from core
This patch remove compile time code to catch inconventional verdicts. We have better ways to handle this case these days, eg. pr_debug() but even though I don't think this is useful at all, so let's remove this. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
This commit is contained in:
parent
17197236d6
commit
b250a7fc3b
|
@ -323,15 +323,6 @@ unsigned int nf_iterate(struct sk_buff *skb,
|
||||||
repeat:
|
repeat:
|
||||||
verdict = (*entryp)->ops.hook((*entryp)->ops.priv, skb, state);
|
verdict = (*entryp)->ops.hook((*entryp)->ops.priv, skb, state);
|
||||||
if (verdict != NF_ACCEPT) {
|
if (verdict != NF_ACCEPT) {
|
||||||
#ifdef CONFIG_NETFILTER_DEBUG
|
|
||||||
if (unlikely((verdict & NF_VERDICT_MASK)
|
|
||||||
> NF_MAX_VERDICT)) {
|
|
||||||
NFDEBUG("Evil return from %p(%u).\n",
|
|
||||||
(*entryp)->ops.hook, state->hook);
|
|
||||||
*entryp = rcu_dereference((*entryp)->next);
|
|
||||||
continue;
|
|
||||||
}
|
|
||||||
#endif
|
|
||||||
if (verdict != NF_REPEAT)
|
if (verdict != NF_REPEAT)
|
||||||
return verdict;
|
return verdict;
|
||||||
goto repeat;
|
goto repeat;
|
||||||
|
|
Loading…
Reference in a new issue