Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > This is a proof-of-concept. > > The idea behind this patch is to store the typeof definition > so it can be restored when listing it back. > > Better way to do this would be to store the typeof expression > definition in a way that the set->key expression can be rebuilt. Maybe we can store the raw netlink data that makes up the expression in the tlv area? That would probably allow more code reuse to get back the "proper" type. One problem with my patch is that while you can add a map that returns "osf name", I could not find a way to easily re-lookup a suitable expression. Storing a string would work of course, but I don't like it because we have no way to revalidate this. If we can reuse libnftnl/libmnl to have the basic netlink validation run on the blob we can at least be sure that its not complete garbage before we attempt to interpret the blob.
