This is the counterpart of kernel series: nftables: Set implementation for arbitrary concatenation of ranges Patch 1/4 updates the nf_tables.h UAPI header from the kernel, as it includes changes needed in the subsequent patches. Patch 2/4 adds support for the NFTA_SET_DESC_CONCAT netlink attributes: they specify the length of fields within concatenations, and they are needed by set implementations in the kernel to figure out where single fields start and stop. Patch 3/4 introduces new key data semantics needed to represent arbitrary concatenation of ranges, as well as required changes in lexer and expression evaluation. Closing element of concatenated ranges is now expressed by a separate key, as proposed by Pablo. Patch 4/4 adds test cases for operations on the new set type. v4: Patch 1/4 added, no further changes v3: Changes listed in messages for all patches v2: Changes listed in messages for 2/3 and 3/3 Stefano Brivio (4): include: resync nf_tables.h cache copy src: Add support for NFTNL_SET_DESC_CONCAT src: Add support for concatenated set ranges tests: Introduce test for set with concatenated ranges include/expression.h | 3 + include/linux/netfilter/nf_tables.h | 17 ++ include/rule.h | 11 +- src/evaluate.c | 19 +- src/mnl.c | 7 + src/netlink.c | 120 ++++++++++--- src/parser_bison.y | 17 +- src/rule.c | 15 +- src/segtree.c | 117 +++++++++++++ .../testcases/sets/0042concatenated_ranges_0 | 162 ++++++++++++++++++ 10 files changed, 445 insertions(+), 43 deletions(-) create mode 100755 tests/shell/testcases/sets/0042concatenated_ranges_0 -- 2.24.1
