This series reduces a few data structures by moving members around or switching to a smaller type. Also, this removes xt_action_param from nft_pktinfo, the former can be inited on-stack when needed in the nft_compat expression. Florian Westphal (6): netfilter: x_tables: reduce xt_action_param by 8 byte netfilter: reduce size of nf_hook_state on 32bit platforms netfilter: nf_tables: add and use nft_sk helper netfilter: nf_tables: add and use nft_thoff helper netfilter: nft_set_pktinfo_unspec: remove unused arg netfilter: nf_tables: remove xt_action_param from nft_pktinfo include/linux/netfilter.h | 4 +-- include/linux/netfilter/x_tables.h | 2 +- include/net/netfilter/nf_tables.h | 34 +++++++++++++-------- include/net/netfilter/nf_tables_ipv4.h | 40 +++++++++++------------- include/net/netfilter/nf_tables_ipv6.h | 42 ++++++++++++-------------- net/ipv4/netfilter/nft_reject_ipv4.c | 2 +- net/ipv6/netfilter/ip6_tables.c | 2 +- net/ipv6/netfilter/nft_reject_ipv6.c | 2 +- net/netfilter/nf_tables_core.c | 2 +- net/netfilter/nf_tables_trace.c | 6 ++-- net/netfilter/nft_chain_filter.c | 26 ++++++++-------- net/netfilter/nft_chain_nat.c | 4 +-- net/netfilter/nft_chain_route.c | 4 +-- net/netfilter/nft_compat.c | 28 +++++++++++------ net/netfilter/nft_exthdr.c | 8 ++--- net/netfilter/nft_flow_offload.c | 2 +- net/netfilter/nft_payload.c | 10 +++--- net/netfilter/nft_reject_inet.c | 4 +-- net/netfilter/nft_synproxy.c | 4 +-- net/netfilter/nft_tproxy.c | 4 +-- 20 files changed, 120 insertions(+), 110 deletions(-) -- 2.26.3
