It'd be useful, I think, to implement an AST for the .nft syntax files (e.g. nftables scripts), and populating them as native types.
This would allow for rule evaluation and comparison against the current ruleset, identifying which file a rule is created in/included from, and even dumping representations to NFT snytax.
This would likely assist in tests and mocking as well.
It'd be useful, I think, to implement an AST for the
.nftsyntax files (e.g. nftables scripts), and populating them as native types.This would allow for rule evaluation and comparison against the current ruleset, identifying which file a rule is created in/included from, and even dumping representations to NFT snytax.
This would likely assist in tests and mocking as well.