Hi, Here a second version of the previous patchset, now taking care of chain's name issue. The name is fixed, same size as in iptables. About an alternative, it could be possible to store a variable chain name in a separate allocated memory, kept in hash table: not the chain object itself, just the name. The key would be the chain's object pointer. At least, from execution point of view it would not affect anything since the name is necessary only for the user. The only issue is the memory occupied by such hash table. I was looking quickly at the linux helpers, could not find a hashtable/map api, is there any? If so, I could try this idea of names stored like that. Tomasz Bursztyka (4): nf_tables: Change chain's name to be fixed sized nf_tables: Add missing policy for NFTA_CHAIN_USE nf_tables: Add support for changing users chain's name nf_tables: Add support for replacing a rule by another one. include/linux/netfilter/nf_tables.h | 3 ++ include/net/netfilter/nf_tables.h | 2 +- net/netfilter/nf_tables_api.c | 87 +++++++++++++++++++++++++++++++------ 3 files changed, 77 insertions(+), 15 deletions(-) -- 1.7.12.4 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
