On Thu, Nov 21, 2019 at 06:10:04PM +0100, Stefano Brivio wrote: > To support arbitrary range concatenations, the kernel needs to know > how long each field in the concatenation is. > > While evaluating concatenated expressions, export the datatype size, > in bits, into the new subkey_len array, and hand the data over via > libnftnl. > > Note that, while the subkey length is expressed in bits, and the > kernel attribute is 32-bit long to make UAPI more future-proof, we > just reserve 8 bits for it, at the moment, and still store this data > in bits. > > As we don't have subkeys exceeding 128 bits in length, this should be > fine, at least for a while, but it can be easily changed later on to > use the full 32 bits allowed by the netlink attribute. > > This change depends on the UAPI kernel patch with title: > netfilter: nf_tables: Support for subkeys, set with multiple ranged fields > > Signed-off-by: Stefano Brivio <sbrivio@xxxxxxxxxx> Acked-by: Phil Sutter <phil@xxxxxx>
