162306a36Sopenharmony_ci/* SPDX-License-Identifier: GPL-2.0-or-later */ 262306a36Sopenharmony_ci/* 362306a36Sopenharmony_ci * NetLabel Domain Hash Table 462306a36Sopenharmony_ci * 562306a36Sopenharmony_ci * This file manages the domain hash table that NetLabel uses to determine 662306a36Sopenharmony_ci * which network labeling protocol to use for a given domain. The NetLabel 762306a36Sopenharmony_ci * system manages static and dynamic label mappings for network protocols such 862306a36Sopenharmony_ci * as CIPSO and RIPSO. 962306a36Sopenharmony_ci * 1062306a36Sopenharmony_ci * Author: Paul Moore <paul@paul-moore.com> 1162306a36Sopenharmony_ci */ 1262306a36Sopenharmony_ci 1362306a36Sopenharmony_ci/* 1462306a36Sopenharmony_ci * (c) Copyright Hewlett-Packard Development Company, L.P., 2006, 2008 1562306a36Sopenharmony_ci */ 1662306a36Sopenharmony_ci 1762306a36Sopenharmony_ci#ifndef _NETLABEL_DOMAINHASH_H 1862306a36Sopenharmony_ci#define _NETLABEL_DOMAINHASH_H 1962306a36Sopenharmony_ci 2062306a36Sopenharmony_ci#include <linux/types.h> 2162306a36Sopenharmony_ci#include <linux/rcupdate.h> 2262306a36Sopenharmony_ci#include <linux/list.h> 2362306a36Sopenharmony_ci 2462306a36Sopenharmony_ci#include "netlabel_addrlist.h" 2562306a36Sopenharmony_ci 2662306a36Sopenharmony_ci/* Domain hash table size */ 2762306a36Sopenharmony_ci/* XXX - currently this number is an uneducated guess */ 2862306a36Sopenharmony_ci#define NETLBL_DOMHSH_BITSIZE 7 2962306a36Sopenharmony_ci 3062306a36Sopenharmony_ci/* Domain mapping definition structures */ 3162306a36Sopenharmony_cistruct netlbl_domaddr_map { 3262306a36Sopenharmony_ci struct list_head list4; 3362306a36Sopenharmony_ci struct list_head list6; 3462306a36Sopenharmony_ci}; 3562306a36Sopenharmony_cistruct netlbl_dommap_def { 3662306a36Sopenharmony_ci u32 type; 3762306a36Sopenharmony_ci union { 3862306a36Sopenharmony_ci struct netlbl_domaddr_map *addrsel; 3962306a36Sopenharmony_ci struct cipso_v4_doi *cipso; 4062306a36Sopenharmony_ci struct calipso_doi *calipso; 4162306a36Sopenharmony_ci }; 4262306a36Sopenharmony_ci}; 4362306a36Sopenharmony_ci#define netlbl_domhsh_addr4_entry(iter) \ 4462306a36Sopenharmony_ci container_of(iter, struct netlbl_domaddr4_map, list) 4562306a36Sopenharmony_cistruct netlbl_domaddr4_map { 4662306a36Sopenharmony_ci struct netlbl_dommap_def def; 4762306a36Sopenharmony_ci 4862306a36Sopenharmony_ci struct netlbl_af4list list; 4962306a36Sopenharmony_ci}; 5062306a36Sopenharmony_ci#define netlbl_domhsh_addr6_entry(iter) \ 5162306a36Sopenharmony_ci container_of(iter, struct netlbl_domaddr6_map, list) 5262306a36Sopenharmony_cistruct netlbl_domaddr6_map { 5362306a36Sopenharmony_ci struct netlbl_dommap_def def; 5462306a36Sopenharmony_ci 5562306a36Sopenharmony_ci struct netlbl_af6list list; 5662306a36Sopenharmony_ci}; 5762306a36Sopenharmony_ci 5862306a36Sopenharmony_cistruct netlbl_dom_map { 5962306a36Sopenharmony_ci char *domain; 6062306a36Sopenharmony_ci struct netlbl_dommap_def def; 6162306a36Sopenharmony_ci u16 family; 6262306a36Sopenharmony_ci 6362306a36Sopenharmony_ci u32 valid; 6462306a36Sopenharmony_ci struct list_head list; 6562306a36Sopenharmony_ci struct rcu_head rcu; 6662306a36Sopenharmony_ci}; 6762306a36Sopenharmony_ci 6862306a36Sopenharmony_ci/* init function */ 6962306a36Sopenharmony_ciint netlbl_domhsh_init(u32 size); 7062306a36Sopenharmony_ci 7162306a36Sopenharmony_ci/* Manipulate the domain hash table */ 7262306a36Sopenharmony_ciint netlbl_domhsh_add(struct netlbl_dom_map *entry, 7362306a36Sopenharmony_ci struct netlbl_audit *audit_info); 7462306a36Sopenharmony_ciint netlbl_domhsh_add_default(struct netlbl_dom_map *entry, 7562306a36Sopenharmony_ci struct netlbl_audit *audit_info); 7662306a36Sopenharmony_ciint netlbl_domhsh_remove_entry(struct netlbl_dom_map *entry, 7762306a36Sopenharmony_ci struct netlbl_audit *audit_info); 7862306a36Sopenharmony_ciint netlbl_domhsh_remove_af4(const char *domain, 7962306a36Sopenharmony_ci const struct in_addr *addr, 8062306a36Sopenharmony_ci const struct in_addr *mask, 8162306a36Sopenharmony_ci struct netlbl_audit *audit_info); 8262306a36Sopenharmony_ciint netlbl_domhsh_remove_af6(const char *domain, 8362306a36Sopenharmony_ci const struct in6_addr *addr, 8462306a36Sopenharmony_ci const struct in6_addr *mask, 8562306a36Sopenharmony_ci struct netlbl_audit *audit_info); 8662306a36Sopenharmony_ciint netlbl_domhsh_remove(const char *domain, u16 family, 8762306a36Sopenharmony_ci struct netlbl_audit *audit_info); 8862306a36Sopenharmony_ciint netlbl_domhsh_remove_default(u16 family, struct netlbl_audit *audit_info); 8962306a36Sopenharmony_cistruct netlbl_dom_map *netlbl_domhsh_getentry(const char *domain, u16 family); 9062306a36Sopenharmony_cistruct netlbl_dommap_def *netlbl_domhsh_getentry_af4(const char *domain, 9162306a36Sopenharmony_ci __be32 addr); 9262306a36Sopenharmony_ci#if IS_ENABLED(CONFIG_IPV6) 9362306a36Sopenharmony_cistruct netlbl_dommap_def *netlbl_domhsh_getentry_af6(const char *domain, 9462306a36Sopenharmony_ci const struct in6_addr *addr); 9562306a36Sopenharmony_ciint netlbl_domhsh_remove_af6(const char *domain, 9662306a36Sopenharmony_ci const struct in6_addr *addr, 9762306a36Sopenharmony_ci const struct in6_addr *mask, 9862306a36Sopenharmony_ci struct netlbl_audit *audit_info); 9962306a36Sopenharmony_ci#endif /* IPv6 */ 10062306a36Sopenharmony_ci 10162306a36Sopenharmony_ciint netlbl_domhsh_walk(u32 *skip_bkt, 10262306a36Sopenharmony_ci u32 *skip_chain, 10362306a36Sopenharmony_ci int (*callback) (struct netlbl_dom_map *entry, void *arg), 10462306a36Sopenharmony_ci void *cb_arg); 10562306a36Sopenharmony_ci 10662306a36Sopenharmony_ci#endif 107