libvirt/src/nwfilter/nwfilter_tech_driver.h

/*
 * nwfilter_tech_driver.h: network filter technology driver interface
 *
 * Copyright (C) 2006-2014 Red Hat, Inc.
 * Copyright (C) 2006-2008 Daniel P. Berrange
 *
 * Copyright (C) 2010 IBM Corporation
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2.1 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library.  If not, see
 * <http://www.gnu.org/licenses/>.
 */

#pragma once

#include "virnwfilterobj.h"

typedef struct _virNWFilterTechDriver virNWFilterTechDriver;


typedef struct _virNWFilterRuleInst virNWFilterRuleInst;
struct _virNWFilterRuleInst {
    const char *chainSuffix;
    virNWFilterChainPriority chainPriority;
    virNWFilterRuleDef *def;
    virNWFilterRulePriority priority;
    GHashTable *vars;
};


typedef int (*virNWFilterTechDrvInit)(bool privileged);
typedef void (*virNWFilterTechDrvShutdown)(void);

typedef int (*virNWFilterRuleApplyNewRules)(const char *ifname,
                                            virNWFilterRuleInst **rules,
                                            size_t nrules);

typedef int (*virNWFilterRuleTeardownNewRules)(const char *ifname);

typedef int (*virNWFilterRuleTeardownOldRules)(const char *ifname);

typedef int (*virNWFilterRuleAllTeardown)(const char *ifname);

typedef int (*virNWFilterCanApplyBasicRules)(void);

typedef int (*virNWFilterApplyBasicRules)(const char *ifname,
                                          const virMacAddr *macaddr);

typedef int (*virNWFilterApplyDHCPOnlyRules)(const char *ifname,
                                             const virMacAddr *macaddr,
                                             virNWFilterVarValue *dhcpsrvs,
                                             bool leaveTemporary);

typedef int (*virNWFilterRemoveBasicRules)(const char *ifname);

typedef int (*virNWFilterDropAllRules)(const char *ifname);

enum techDrvFlags {
    TECHDRV_FLAG_INITIALIZED = (1 << 0),
};

struct _virNWFilterTechDriver {
    const char *name;
    enum techDrvFlags flags;

    virNWFilterTechDrvInit init;
    virNWFilterTechDrvShutdown shutdown;

    virNWFilterRuleApplyNewRules applyNewRules;
    virNWFilterRuleTeardownNewRules tearNewRules;
    virNWFilterRuleTeardownOldRules tearOldRules;
    virNWFilterRuleAllTeardown allTeardown;

    virNWFilterCanApplyBasicRules canApplyBasicRules;
    virNWFilterApplyBasicRules applyBasicRules;
    virNWFilterApplyDHCPOnlyRules applyDHCPOnlyRules;
    virNWFilterDropAllRules applyDropAllRules;
    virNWFilterRemoveBasicRules removeBasicRules;
};
Move virNWFilterTechDriver struct out of nwfilter_conf.h The virNWFilterTechDriver struct is nothing to do with the nwfilter XML configuration. It stores data specific to the driver implementation so should be in a header in the driver directory instead. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-24 12:32:37 +00:00			`/*`
			`* nwfilter_tech_driver.h: network filter technology driver interface`
			`*`
			`* Copyright (C) 2006-2014 Red Hat, Inc.`
			`* Copyright (C) 2006-2008 Daniel P. Berrange`
			`*`
			`* Copyright (C) 2010 IBM Corporation`
			`*`
			`* This library is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU Lesser General Public`
			`* License as published by the Free Software Foundation; either`
			`* version 2.1 of the License, or (at your option) any later version.`
			`*`
			`* This library is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU`
			`* Lesser General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Lesser General Public`
			`* License along with this library. If not, see`
			`* <http://www.gnu.org/licenses/>.`
			`*/`

src/nwfilter: use #pragma once in headers Signed-off-by: Jonathon Jongsma <jjongsma@redhat.com> Reviewed-by: Ján Tomko <jtomko@redhat.com> Signed-off-by: Ján Tomko <jtomko@redhat.com> 2019-06-18 16:12:34 +00:00			`#pragma once`
Move virNWFilterTechDriver struct out of nwfilter_conf.h The virNWFilterTechDriver struct is nothing to do with the nwfilter XML configuration. It stores data specific to the driver implementation so should be in a header in the driver directory instead. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-24 12:32:37 +00:00
src/nwfilter: use #pragma once in headers Signed-off-by: Jonathon Jongsma <jjongsma@redhat.com> Reviewed-by: Ján Tomko <jtomko@redhat.com> Signed-off-by: Ján Tomko <jtomko@redhat.com> 2019-06-18 16:12:34 +00:00			`#include "virnwfilterobj.h"`
Move virNWFilterTechDriver struct out of nwfilter_conf.h The virNWFilterTechDriver struct is nothing to do with the nwfilter XML configuration. It stores data specific to the driver implementation so should be in a header in the driver directory instead. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-24 12:32:37 +00:00
			`typedef struct _virNWFilterTechDriver virNWFilterTechDriver;`


			`typedef struct _virNWFilterRuleInst virNWFilterRuleInst;`
			`struct _virNWFilterRuleInst {`
Merge nwfilter createRuleInstance driver into applyNewRules The current nwfilter tech driver API has a 'createRuleInstance' method which populates virNWFilterRuleInstPtr with a command line string containing variable placeholders. The 'applyNewRules' method then expands the variables and executes the commands. This split of responsibility won't work when switching to the virFirewallPtr APIs, since we can't just build up command line strings. This patch this merges the functionality of 'createRuleInstance' into the applyNewRules method. The virNWFilterRuleInstPtr struct is changed from holding an array of opaque pointers, into holding generic metadata about the rules to be processed. In essence this is the result of taking a linked set of virNWFilterDefPtr's and flattening the tree to get a list of virNWFilterRuleDefPtr's. At the same time we must keep track of any nested virNWFilterObjPtr instances, so that the locks are held for the duration of the 'applyNewRules' method. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-25 13:44:50 +00:00			`const char *chainSuffix;`
			`virNWFilterChainPriority chainPriority;`
lib: Drop internal virXXXPtr typedefs Historically, we declared pointer type to our types: typedef struct _virXXX virXXX; typedef virXXX virXXXPtr; But usefulness of such declaration is questionable, at best. Unfortunately, we can't drop every such declaration - we have to carry some over, because they are part of public API (e.g. virDomainPtr). But for internal types - we can do drop them and use what every other C project uses 'virXXX '. This change was generated by a very ugly shell script that generated sed script which was then called over each file in the repository. For the shell script refer to the cover letter: https://listman.redhat.com/archives/libvir-list/2021-March/msg00537.html Signed-off-by: Michal Privoznik <mprivozn@redhat.com> Reviewed-by: Peter Krempa <pkrempa@redhat.com> 2021-03-11 07:16:13 +00:00			`virNWFilterRuleDef *def;`
Merge nwfilter createRuleInstance driver into applyNewRules The current nwfilter tech driver API has a 'createRuleInstance' method which populates virNWFilterRuleInstPtr with a command line string containing variable placeholders. The 'applyNewRules' method then expands the variables and executes the commands. This split of responsibility won't work when switching to the virFirewallPtr APIs, since we can't just build up command line strings. This patch this merges the functionality of 'createRuleInstance' into the applyNewRules method. The virNWFilterRuleInstPtr struct is changed from holding an array of opaque pointers, into holding generic metadata about the rules to be processed. In essence this is the result of taking a linked set of virNWFilterDefPtr's and flattening the tree to get a list of virNWFilterRuleDefPtr's. At the same time we must keep track of any nested virNWFilterObjPtr instances, so that the locks are held for the duration of the 'applyNewRules' method. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-25 13:44:50 +00:00			`virNWFilterRulePriority priority;`
util: hash: Retire 'virHashTable' in favor of 'GHashTable' Don't hide our use of GHashTable behind our typedef. This will also promote the use of glibs hash function directly. Signed-off-by: Peter Krempa <pkrempa@redhat.com> Reviewed-by: Daniel Henrique Barboza <danielhb413@gmail.com> Reviewed-by: Matt Coleman <matt@datto.com> 2020-10-22 17:04:18 +00:00			`GHashTable *vars;`
Move virNWFilterTechDriver struct out of nwfilter_conf.h The virNWFilterTechDriver struct is nothing to do with the nwfilter XML configuration. It stores data specific to the driver implementation so should be in a header in the driver directory instead. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-24 12:32:37 +00:00			`};`


			`typedef int (*virNWFilterTechDrvInit)(bool privileged);`
			`typedef void (*virNWFilterTechDrvShutdown)(void);`

			`typedef int (virNWFilterRuleApplyNewRules)(const char ifname,`
lib: Drop internal virXXXPtr typedefs Historically, we declared pointer type to our types: typedef struct _virXXX virXXX; typedef virXXX virXXXPtr; But usefulness of such declaration is questionable, at best. Unfortunately, we can't drop every such declaration - we have to carry some over, because they are part of public API (e.g. virDomainPtr). But for internal types - we can do drop them and use what every other C project uses 'virXXX '. This change was generated by a very ugly shell script that generated sed script which was then called over each file in the repository. For the shell script refer to the cover letter: https://listman.redhat.com/archives/libvir-list/2021-March/msg00537.html Signed-off-by: Michal Privoznik <mprivozn@redhat.com> Reviewed-by: Peter Krempa <pkrempa@redhat.com> 2021-03-11 07:16:13 +00:00			`virNWFilterRuleInst **rules,`
Merge nwfilter createRuleInstance driver into applyNewRules The current nwfilter tech driver API has a 'createRuleInstance' method which populates virNWFilterRuleInstPtr with a command line string containing variable placeholders. The 'applyNewRules' method then expands the variables and executes the commands. This split of responsibility won't work when switching to the virFirewallPtr APIs, since we can't just build up command line strings. This patch this merges the functionality of 'createRuleInstance' into the applyNewRules method. The virNWFilterRuleInstPtr struct is changed from holding an array of opaque pointers, into holding generic metadata about the rules to be processed. In essence this is the result of taking a linked set of virNWFilterDefPtr's and flattening the tree to get a list of virNWFilterRuleDefPtr's. At the same time we must keep track of any nested virNWFilterObjPtr instances, so that the locks are held for the duration of the 'applyNewRules' method. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-25 13:44:50 +00:00			`size_t nrules);`
Move virNWFilterTechDriver struct out of nwfilter_conf.h The virNWFilterTechDriver struct is nothing to do with the nwfilter XML configuration. It stores data specific to the driver implementation so should be in a header in the driver directory instead. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-24 12:32:37 +00:00
			`typedef int (virNWFilterRuleTeardownNewRules)(const char ifname);`

			`typedef int (virNWFilterRuleTeardownOldRules)(const char ifname);`

			`typedef int (virNWFilterRuleAllTeardown)(const char ifname);`

			`typedef int (*virNWFilterCanApplyBasicRules)(void);`

			`typedef int (virNWFilterApplyBasicRules)(const char ifname,`
			`const virMacAddr *macaddr);`

			`typedef int (virNWFilterApplyDHCPOnlyRules)(const char ifname,`
			`const virMacAddr *macaddr,`
lib: Drop internal virXXXPtr typedefs Historically, we declared pointer type to our types: typedef struct _virXXX virXXX; typedef virXXX virXXXPtr; But usefulness of such declaration is questionable, at best. Unfortunately, we can't drop every such declaration - we have to carry some over, because they are part of public API (e.g. virDomainPtr). But for internal types - we can do drop them and use what every other C project uses 'virXXX '. This change was generated by a very ugly shell script that generated sed script which was then called over each file in the repository. For the shell script refer to the cover letter: https://listman.redhat.com/archives/libvir-list/2021-March/msg00537.html Signed-off-by: Michal Privoznik <mprivozn@redhat.com> Reviewed-by: Peter Krempa <pkrempa@redhat.com> 2021-03-11 07:16:13 +00:00			`virNWFilterVarValue *dhcpsrvs,`
Move virNWFilterTechDriver struct out of nwfilter_conf.h The virNWFilterTechDriver struct is nothing to do with the nwfilter XML configuration. It stores data specific to the driver implementation so should be in a header in the driver directory instead. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2014-03-24 12:32:37 +00:00			`bool leaveTemporary);`

			`typedef int (virNWFilterRemoveBasicRules)(const char ifname);`

			`typedef int (virNWFilterDropAllRules)(const char ifname);`

			`enum techDrvFlags {`
			`TECHDRV_FLAG_INITIALIZED = (1 << 0),`
			`};`

			`struct _virNWFilterTechDriver {`
			`const char *name;`
			`enum techDrvFlags flags;`

			`virNWFilterTechDrvInit init;`
			`virNWFilterTechDrvShutdown shutdown;`

			`virNWFilterRuleApplyNewRules applyNewRules;`
			`virNWFilterRuleTeardownNewRules tearNewRules;`
			`virNWFilterRuleTeardownOldRules tearOldRules;`
			`virNWFilterRuleAllTeardown allTeardown;`

			`virNWFilterCanApplyBasicRules canApplyBasicRules;`
			`virNWFilterApplyBasicRules applyBasicRules;`
			`virNWFilterApplyDHCPOnlyRules applyDHCPOnlyRules;`
			`virNWFilterDropAllRules applyDropAllRules;`
			`virNWFilterRemoveBasicRules removeBasicRules;`
			`};`