MODIFYING NFTABLES FOR EXTENDED PAYLOAD INSPECTION

I'm seeking assistance with modifying nftables to inspect traffic payloads up to bytes.
Currently, Linux limits inspection to 255 bytes, which is inadequate for my needs.
Error messages I've encountered suggest I need to amend nft_payload.
and possibly other files.
I would like this on Debian Key Areas of Assistance Needed.
- Code Modification.
Expertise in refactoring code for extended inspection capabilities.
- Identifying Relevant Files.
Knowledge of the Linux kernel structure and ability to pinpoint necessary files for modification.
The primary goal of these changes is to increase the payload inspection limit beyond the current 255 bytes.
Ideal skills for this job include deep understanding of nftables and Linux kernel coding, with experience in network packet inspection.
Please see notes below; I am trying to use nftables to inspect payloads within the inner header (@ih), I would like to inspect the whole of a payload (up to bytes), however it seems that Linux will only allow up to 255 bytes of the header; user@raspberrypi:~ $ sudo nft -f [login to view URL] [login to view URL]:.
Error.
Could not process rule.
Numerical result out of range        meta l4proto tcp tcp dport @th,x01 accept                                         ^^^^^^^^^^ note.
the depth of is in bits, not bytes.
I have been told that the limit is 255 bytes; [login to view URL] static const struct nla_policy nft_payload_policy[NFTA_PAYLOAD_MAX + 1] = {    [NFTA_PAYLOAD_SREG]       = {.
ype = NLA_U32 },    [NFTA_PAYLOAD_DREG]       = {.
ype = NLA_U32 },    [NFTA_PAYLOAD_BASE]       = {.
ype = NLA_U32 },    [NFTA_PAYLOAD_OFFSET]       = NLA_POLICY_MAX(NLA_BE),    [NFTA_PAYLOAD_LEN]       = NLA_POLICY_MAX(NLA_BE),    [NFTA_PAYLOAD_CSUM_TYPE]   = {.
ype = NLA_U32 },    [NFTA_PAYLOAD_CSUM_OFFSET]   = NLA_POLICY_MAX(NLA_BE),    [NFTA_PAYLOAD_CSUM_FLAGS]   = {.
ype = NLA_U32 }, }; I would like some assistence to be able to inspect traffic up to bytes within the payload.
I believe that this would require amending nft_payload.
and also other files.
I have amended nft_payload.
to;    [NFTA_PAYLOAD_OFFSET]       = NLA_POLICY_MAX(NLA_BE),    [NFTA_PAYLOAD_LEN]       = NLA_POLICY_MAX(NLA_BE),    [NFTA_PAYLOAD_CSUM_TYPE]   = {.
ype = NLA_U32 },    [NFTA_PAYLOAD_CSUM_OFFSET]   = NLA_POLICY_MAX(NLA_BE), recompiled and still experience the same error.
[login to view URL] contains; table netdev mytable { chain mychain { type filter hook ingress device eth0 priority 0; policy accept; # Ensure this rule matches only TCP packets meta l4proto tcp tcp dport @ih,x01 accept } } to apply this; user@raspberrypi:~ $ sudo nft -f [login to view URL] What I would like is the ability to then apply nftables using netdev, inspecting traffic upto bytes, so making this work and then how I can easily patch Debian so that if there's updates to Debian it doesn't break my nftables.
Please note that might be other files that are required to be amended, using chatGpt it seems to suggest other (userland) files.
thank you.
Linux Programação C++ Programação C Rede de Administração Arquitetura de software ID do Projeto.
# Sobre o projeto 20 propostas Aberto para ofertas Projeto remoto Ativo em 1 hora atrás