Add bucketsize parameter to all hash types

The parameter defines the upper limit in any hash bucket at adding new entries from userspace - if the limit would be exceeded, ipset doubles the hash size and rehashes. It means the set may consume more memory but gives faster evaluation at matching in the set. Signed-off-by: Jozsef Kadlecsik <kadlec@netfilter.org>
author: Jozsef Kadlecsik <kadlec@netfilter.org> 2020-09-21 10:21:39 +0200
committer: Jozsef Kadlecsik <kadlec@netfilter.org> 2020-09-21 10:21:39 +0200
commit: de340a7f1a9cf21931d94ea8814545c4b2d172b0 (patch)
tree: 0a69eaed9d425a233d4213e3cb3e129d5d25796f /kernel/include/linux/netfilter
parent: dfdbad53f9c5a7bc3f357b53f11a840c8fda3635 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/kernel/include/linux/netfilter/ipset/ip_set.h b/kernel/include/linux/netfilter/ipset/ip_set.h
index ed9f82e..554f90f 100644
--- a/kernel/include/linux/netfilter/ipset/ip_set.h
+++ b/kernel/include/linux/netfilter/ipset/ip_set.h
@@ -199,6 +199,9 @@ struct ip_set_region {
 	u32 elements;		/* Number of elements vs timeout */
 };
 
+/* The max revision number supported by any set type + 1 */
+#define IPSET_REVISION_MAX	9
+
 /* The core set type structure */
 struct ip_set_type {
 	struct list_head list;
@@ -216,6 +219,8 @@ struct ip_set_type {
 	u8 family;
 	/* Type revisions */
 	u8 revision_min, revision_max;
+	/* Revision-specific supported (create) flags */
+	u8 create_flags[IPSET_REVISION_MAX+1];
 	/* Set features to control swapping */
 	u16 features;
author	Jozsef Kadlecsik <kadlec@netfilter.org>	2020-09-21 10:21:39 +0200
committer	Jozsef Kadlecsik <kadlec@netfilter.org>	2020-09-21 10:21:39 +0200
commit	de340a7f1a9cf21931d94ea8814545c4b2d172b0 (patch)
tree	0a69eaed9d425a233d4213e3cb3e129d5d25796f /kernel/include/linux/netfilter
parent	dfdbad53f9c5a7bc3f357b53f11a840c8fda3635 (diff)