netfilter: nf_tables: increase maximum devices number per flowtable

Rise the maximum limit of devices per flowtable up to 256. Rename NFT_FLOWTABLE_DEVICE_MAX to NFT_NETDEVICE_MAX in preparation to reuse the netdev hook parser for ingress basechain. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Pablo Neira Ayuso <pablo@netfilter.org> 2019-10-16 15:29:47 +0300
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2019-10-23 14:01:26 +0300
commit: cb662ac6711f7135618526221498ebfae155531a (patch)
tree: 64acd0234c5e2a6e9ea2f9f3c33ca098f7a69cfa
parent: b75a3e8371bce7985d3d149ad3442bf2a036065c (diff)
download: linux-cb662ac6711f7135618526221498ebfae155531a.tar.xz
2 files changed, 2 insertions, 2 deletions
diff --git a/include/net/netfilter/nf_tables.h b/include/net/netfilter/nf_tables.h
index 7a2ac82ee0ad..3d71070e747a 100644
--- a/include/net/netfilter/nf_tables.h
+++ b/include/net/netfilter/nf_tables.h
@@ -1152,7 +1152,7 @@ struct nft_object_ops {
 int nft_register_obj(struct nft_object_type *obj_type);
 void nft_unregister_obj(struct nft_object_type *obj_type);
 
-#define NFT_FLOWTABLE_DEVICE_MAX	8
+#define NFT_NETDEVICE_MAX	256
 
 /**
  *	struct nft_flowtable - nf_tables flow table
diff --git a/net/netfilter/nf_tables_api.c b/net/netfilter/nf_tables_api.c
index 2664bc388db4..98169af56c0f 100644
--- a/net/netfilter/nf_tables_api.c
+++ b/net/netfilter/nf_tables_api.c
@@ -1577,7 +1577,7 @@ static int nf_tables_parse_netdev_hooks(struct net *net,
 		list_add_tail(&hook->list, hook_list);
 		n++;
 
-		if (n == NFT_FLOWTABLE_DEVICE_MAX) {
+		if (n == NFT_NETDEVICE_MAX) {
 			err = -EFBIG;
 			goto err_hook;
 		}
author	Pablo Neira Ayuso <pablo@netfilter.org>	2019-10-16 15:29:47 +0300
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2019-10-23 14:01:26 +0300
commit	cb662ac6711f7135618526221498ebfae155531a (patch)
tree	64acd0234c5e2a6e9ea2f9f3c33ca098f7a69cfa
parent	b75a3e8371bce7985d3d149ad3442bf2a036065c (diff)
download	linux-cb662ac6711f7135618526221498ebfae155531a.tar.xz