123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209 |
- /*
- * NetLabel Network Address Lists
- *
- * This file contains network address list functions used to manage ordered
- * lists of network addresses for use by the NetLabel subsystem. The NetLabel
- * system manages static and dynamic label mappings for network protocols such
- * as CIPSO and RIPSO.
- *
- * Author: Paul Moore <paul@paul-moore.com>
- *
- */
- /*
- * (c) Copyright Hewlett-Packard Development Company, L.P., 2008
- *
- * This program is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
- * the GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with this program; if not, see <http://www.gnu.org/licenses/>.
- *
- */
- #ifndef _NETLABEL_ADDRLIST_H
- #define _NETLABEL_ADDRLIST_H
- #include <linux/types.h>
- #include <linux/rcupdate.h>
- #include <linux/list.h>
- #include <linux/in6.h>
- #include <linux/audit.h>
- /**
- * struct netlbl_af4list - NetLabel IPv4 address list
- * @addr: IPv4 address
- * @mask: IPv4 address mask
- * @valid: valid flag
- * @list: list structure, used internally
- */
- struct netlbl_af4list {
- __be32 addr;
- __be32 mask;
- u32 valid;
- struct list_head list;
- };
- /**
- * struct netlbl_af6list - NetLabel IPv6 address list
- * @addr: IPv6 address
- * @mask: IPv6 address mask
- * @valid: valid flag
- * @list: list structure, used internally
- */
- struct netlbl_af6list {
- struct in6_addr addr;
- struct in6_addr mask;
- u32 valid;
- struct list_head list;
- };
- #define __af4list_entry(ptr) container_of(ptr, struct netlbl_af4list, list)
- static inline struct netlbl_af4list *__af4list_valid(struct list_head *s,
- struct list_head *h)
- {
- struct list_head *i = s;
- struct netlbl_af4list *n = __af4list_entry(s);
- while (i != h && !n->valid) {
- i = i->next;
- n = __af4list_entry(i);
- }
- return n;
- }
- static inline struct netlbl_af4list *__af4list_valid_rcu(struct list_head *s,
- struct list_head *h)
- {
- struct list_head *i = s;
- struct netlbl_af4list *n = __af4list_entry(s);
- while (i != h && !n->valid) {
- i = rcu_dereference(list_next_rcu(i));
- n = __af4list_entry(i);
- }
- return n;
- }
- #define netlbl_af4list_foreach(iter, head) \
- for (iter = __af4list_valid((head)->next, head); \
- &iter->list != (head); \
- iter = __af4list_valid(iter->list.next, head))
- #define netlbl_af4list_foreach_rcu(iter, head) \
- for (iter = __af4list_valid_rcu((head)->next, head); \
- &iter->list != (head); \
- iter = __af4list_valid_rcu(iter->list.next, head))
- #define netlbl_af4list_foreach_safe(iter, tmp, head) \
- for (iter = __af4list_valid((head)->next, head), \
- tmp = __af4list_valid(iter->list.next, head); \
- &iter->list != (head); \
- iter = tmp, tmp = __af4list_valid(iter->list.next, head))
- int netlbl_af4list_add(struct netlbl_af4list *entry,
- struct list_head *head);
- struct netlbl_af4list *netlbl_af4list_remove(__be32 addr, __be32 mask,
- struct list_head *head);
- void netlbl_af4list_remove_entry(struct netlbl_af4list *entry);
- struct netlbl_af4list *netlbl_af4list_search(__be32 addr,
- struct list_head *head);
- struct netlbl_af4list *netlbl_af4list_search_exact(__be32 addr,
- __be32 mask,
- struct list_head *head);
- #ifdef CONFIG_AUDIT
- void netlbl_af4list_audit_addr(struct audit_buffer *audit_buf,
- int src, const char *dev,
- __be32 addr, __be32 mask);
- #else
- static inline void netlbl_af4list_audit_addr(struct audit_buffer *audit_buf,
- int src, const char *dev,
- __be32 addr, __be32 mask)
- {
- }
- #endif
- #if IS_ENABLED(CONFIG_IPV6)
- #define __af6list_entry(ptr) container_of(ptr, struct netlbl_af6list, list)
- static inline struct netlbl_af6list *__af6list_valid(struct list_head *s,
- struct list_head *h)
- {
- struct list_head *i = s;
- struct netlbl_af6list *n = __af6list_entry(s);
- while (i != h && !n->valid) {
- i = i->next;
- n = __af6list_entry(i);
- }
- return n;
- }
- static inline struct netlbl_af6list *__af6list_valid_rcu(struct list_head *s,
- struct list_head *h)
- {
- struct list_head *i = s;
- struct netlbl_af6list *n = __af6list_entry(s);
- while (i != h && !n->valid) {
- i = rcu_dereference(list_next_rcu(i));
- n = __af6list_entry(i);
- }
- return n;
- }
- #define netlbl_af6list_foreach(iter, head) \
- for (iter = __af6list_valid((head)->next, head); \
- &iter->list != (head); \
- iter = __af6list_valid(iter->list.next, head))
- #define netlbl_af6list_foreach_rcu(iter, head) \
- for (iter = __af6list_valid_rcu((head)->next, head); \
- &iter->list != (head); \
- iter = __af6list_valid_rcu(iter->list.next, head))
- #define netlbl_af6list_foreach_safe(iter, tmp, head) \
- for (iter = __af6list_valid((head)->next, head), \
- tmp = __af6list_valid(iter->list.next, head); \
- &iter->list != (head); \
- iter = tmp, tmp = __af6list_valid(iter->list.next, head))
- int netlbl_af6list_add(struct netlbl_af6list *entry,
- struct list_head *head);
- struct netlbl_af6list *netlbl_af6list_remove(const struct in6_addr *addr,
- const struct in6_addr *mask,
- struct list_head *head);
- void netlbl_af6list_remove_entry(struct netlbl_af6list *entry);
- struct netlbl_af6list *netlbl_af6list_search(const struct in6_addr *addr,
- struct list_head *head);
- struct netlbl_af6list *netlbl_af6list_search_exact(const struct in6_addr *addr,
- const struct in6_addr *mask,
- struct list_head *head);
- #ifdef CONFIG_AUDIT
- void netlbl_af6list_audit_addr(struct audit_buffer *audit_buf,
- int src,
- const char *dev,
- const struct in6_addr *addr,
- const struct in6_addr *mask);
- #else
- static inline void netlbl_af6list_audit_addr(struct audit_buffer *audit_buf,
- int src,
- const char *dev,
- const struct in6_addr *addr,
- const struct in6_addr *mask)
- {
- }
- #endif
- #endif /* IPV6 */
- #endif
|