netfilter: xtables: generate initial table on-demand

The static initial tables are pretty large, and after the net namespace has been instantiated, they just hang around for nothing. This commit removes them and creates tables on-demand at runtime when needed. Size shrinks by 7735 bytes (x86_64). Signed-off-by: Jan Engelhardt <jengelh@medozas.de>
author: Jan Engelhardt <jengelh@medozas.de> 2009-06-17 22:14:54 +0200
committer: Jan Engelhardt <jengelh@medozas.de> 2010-02-10 17:50:47 +0100
commit: e3eaa9910b380530cfd2c0670fcd3f627674da8a (patch)
tree: 309e522e78f78149ec3cb99ffc386d1b72415a96 /include/linux/netfilter_arp
parent: 2b95efe7f6bb750256a702cc32d33b0cb2cd8223 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/include/linux/netfilter_arp/arp_tables.h b/include/linux/netfilter_arp/arp_tables.h
index f2336523a9df..0b33980611b2 100644
--- a/include/linux/netfilter_arp/arp_tables.h
+++ b/include/linux/netfilter_arp/arp_tables.h
@@ -258,6 +258,7 @@ struct arpt_error {
 	.target.errorname = "ERROR",					       \
 }
 
+extern void *arpt_alloc_initial_table(const struct xt_table *);
 extern struct xt_table *arpt_register_table(struct net *net,
 					    const struct xt_table *table,
 					    const struct arpt_replace *repl);
author	Jan Engelhardt <jengelh@medozas.de>	2009-06-17 22:14:54 +0200
committer	Jan Engelhardt <jengelh@medozas.de>	2010-02-10 17:50:47 +0100
commit	e3eaa9910b380530cfd2c0670fcd3f627674da8a (patch)
tree	309e522e78f78149ec3cb99ffc386d1b72415a96 /include/linux/netfilter_arp
parent	2b95efe7f6bb750256a702cc32d33b0cb2cd8223 (diff)