forked from Qortal/Brooklyn
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
106 lines
3.1 KiB
106 lines
3.1 KiB
/* SPDX-License-Identifier: GPL-2.0-or-later */ |
|
/* |
|
* NetLabel Domain Hash Table |
|
* |
|
* This file manages the domain hash table that NetLabel uses to determine |
|
* which network labeling protocol to use for a given domain. The NetLabel |
|
* system manages static and dynamic label mappings for network protocols such |
|
* as CIPSO and RIPSO. |
|
* |
|
* Author: Paul Moore <[email protected]> |
|
*/ |
|
|
|
/* |
|
* (c) Copyright Hewlett-Packard Development Company, L.P., 2006, 2008 |
|
*/ |
|
|
|
#ifndef _NETLABEL_DOMAINHASH_H |
|
#define _NETLABEL_DOMAINHASH_H |
|
|
|
#include <linux/types.h> |
|
#include <linux/rcupdate.h> |
|
#include <linux/list.h> |
|
|
|
#include "netlabel_addrlist.h" |
|
|
|
/* Domain hash table size */ |
|
/* XXX - currently this number is an uneducated guess */ |
|
#define NETLBL_DOMHSH_BITSIZE 7 |
|
|
|
/* Domain mapping definition structures */ |
|
struct netlbl_domaddr_map { |
|
struct list_head list4; |
|
struct list_head list6; |
|
}; |
|
struct netlbl_dommap_def { |
|
u32 type; |
|
union { |
|
struct netlbl_domaddr_map *addrsel; |
|
struct cipso_v4_doi *cipso; |
|
struct calipso_doi *calipso; |
|
}; |
|
}; |
|
#define netlbl_domhsh_addr4_entry(iter) \ |
|
container_of(iter, struct netlbl_domaddr4_map, list) |
|
struct netlbl_domaddr4_map { |
|
struct netlbl_dommap_def def; |
|
|
|
struct netlbl_af4list list; |
|
}; |
|
#define netlbl_domhsh_addr6_entry(iter) \ |
|
container_of(iter, struct netlbl_domaddr6_map, list) |
|
struct netlbl_domaddr6_map { |
|
struct netlbl_dommap_def def; |
|
|
|
struct netlbl_af6list list; |
|
}; |
|
|
|
struct netlbl_dom_map { |
|
char *domain; |
|
u16 family; |
|
struct netlbl_dommap_def def; |
|
|
|
u32 valid; |
|
struct list_head list; |
|
struct rcu_head rcu; |
|
}; |
|
|
|
/* init function */ |
|
int netlbl_domhsh_init(u32 size); |
|
|
|
/* Manipulate the domain hash table */ |
|
int netlbl_domhsh_add(struct netlbl_dom_map *entry, |
|
struct netlbl_audit *audit_info); |
|
int netlbl_domhsh_add_default(struct netlbl_dom_map *entry, |
|
struct netlbl_audit *audit_info); |
|
int netlbl_domhsh_remove_entry(struct netlbl_dom_map *entry, |
|
struct netlbl_audit *audit_info); |
|
int netlbl_domhsh_remove_af4(const char *domain, |
|
const struct in_addr *addr, |
|
const struct in_addr *mask, |
|
struct netlbl_audit *audit_info); |
|
int netlbl_domhsh_remove_af6(const char *domain, |
|
const struct in6_addr *addr, |
|
const struct in6_addr *mask, |
|
struct netlbl_audit *audit_info); |
|
int netlbl_domhsh_remove(const char *domain, u16 family, |
|
struct netlbl_audit *audit_info); |
|
int netlbl_domhsh_remove_default(u16 family, struct netlbl_audit *audit_info); |
|
struct netlbl_dom_map *netlbl_domhsh_getentry(const char *domain, u16 family); |
|
struct netlbl_dommap_def *netlbl_domhsh_getentry_af4(const char *domain, |
|
__be32 addr); |
|
#if IS_ENABLED(CONFIG_IPV6) |
|
struct netlbl_dommap_def *netlbl_domhsh_getentry_af6(const char *domain, |
|
const struct in6_addr *addr); |
|
int netlbl_domhsh_remove_af6(const char *domain, |
|
const struct in6_addr *addr, |
|
const struct in6_addr *mask, |
|
struct netlbl_audit *audit_info); |
|
#endif /* IPv6 */ |
|
|
|
int netlbl_domhsh_walk(u32 *skip_bkt, |
|
u32 *skip_chain, |
|
int (*callback) (struct netlbl_dom_map *entry, void *arg), |
|
void *cb_arg); |
|
|
|
#endif
|
|
|