On Sun, Feb 23, 2020 at 11:34:24PM +0100, Florian Westphal wrote: > Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > > On Sun, Feb 23, 2020 at 10:14:11PM +0000, Jeremy Sowden wrote: > > > After giving this some thought, it occurred to me that this could be > > > fixed by extending bitwise boolean operations to support a variable > > > righthand operand (IIRC, before Christmas Florian suggested something > > > along these lines to me in another, related context), so I've gone down > > > that route. Patches to follow shortly. > > > > Would this require a new kernel extensions? What's the idea behind > > this? > > Something like this: > nft ... ct mark set ct mark & 0xffff0000 | meta mark & 0xffff I see, so this requires two source registers as input for nft_bitwise?
