richard
/
shadowsocks-libev
mirror of https://github.com/shadowsocks/shadowsocks-libev.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
497 Commits
8 Branches
85 Tags
14 MiB
Tree: d9eadc5c09
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd9eadc5c09'
${ noResults }
shadowsocks-libev/libipset/include/ipset/ipset.h

265 lines
6.4 KiB
Raw Normal View History

add libipset
10 years ago
  1. /* -*- coding: utf-8 -*-
  2. * ----------------------------------------------------------------------
  3. * Copyright © 2009-2012, RedJack, LLC.
  4. * All rights reserved.
  5. *
  6. * Please see the LICENSE.txt file in this distribution for license
  7. * details.
  8. * ----------------------------------------------------------------------
  9. */
  11. #ifndef IPSET_IPSET_H
  12. #define IPSET_IPSET_H
  14. #include <stdio.h>
  16. #include <libcork/core.h>
  17. #include <libcork/ds.h>
  19. #include <ipset/bdd/nodes.h>
  22. struct ip_set {
  23. struct ipset_node_cache *cache;
  24. ipset_node_id set_bdd;
  25. };
  28. struct ip_map {
  29. struct ipset_node_cache *cache;
  30. ipset_node_id map_bdd;
  31. ipset_node_id default_bdd;
  32. };
  35. /*---------------------------------------------------------------------
  36. * General functions
  37. */
  39. int
  40. ipset_init_library(void);
  43. /*---------------------------------------------------------------------
  44. * IP set functions
  45. */
  47. void
  48. ipset_init(struct ip_set *set);
  50. void
  51. ipset_done(struct ip_set *set);
  53. struct ip_set *
  54. ipset_new(void);
  56. void
  57. ipset_free(struct ip_set *set);
  59. bool
  60. ipset_is_empty(const struct ip_set *set);
  62. bool
  63. ipset_is_equal(const struct ip_set *set1, const struct ip_set *set2);
  65. size_t
  66. ipset_memory_size(const struct ip_set *set);
  68. int
  69. ipset_save(FILE *stream, const struct ip_set *set);
  71. int
  72. ipset_save_to_stream(struct cork_stream_consumer *stream,
  73. const struct ip_set *set);
  75. int
  76. ipset_save_dot(FILE *stream, const struct ip_set *set);
  78. struct ip_set *
  79. ipset_load(FILE *stream);
  81. bool
  82. ipset_ipv4_add(struct ip_set *set, struct cork_ipv4 *elem);
  84. bool
  85. ipset_ipv4_add_network(struct ip_set *set, struct cork_ipv4 *elem,
  86. unsigned int cidr_prefix);
  88. bool
  89. ipset_ipv4_remove(struct ip_set *set, struct cork_ipv4 *elem);
  91. bool
  92. ipset_ipv4_remove_network(struct ip_set *set, struct cork_ipv4 *elem,
  93. unsigned int cidr_prefix);
  95. bool
  96. ipset_contains_ipv4(const struct ip_set *set, struct cork_ipv4 *elem);
  98. bool
  99. ipset_ipv6_add(struct ip_set *set, struct cork_ipv6 *elem);
  101. bool
  102. ipset_ipv6_add_network(struct ip_set *set, struct cork_ipv6 *elem,
  103. unsigned int cidr_prefix);
  105. bool
  106. ipset_ipv6_remove(struct ip_set *set, struct cork_ipv6 *elem);
  108. bool
  109. ipset_ipv6_remove_network(struct ip_set *set, struct cork_ipv6 *elem,
  110. unsigned int cidr_prefix);
  112. bool
  113. ipset_contains_ipv6(const struct ip_set *set, struct cork_ipv6 *elem);
  115. bool
  116. ipset_ip_add(struct ip_set *set, struct cork_ip *addr);
  118. bool
  119. ipset_ip_add_network(struct ip_set *set, struct cork_ip *addr,
  120. unsigned int cidr_prefix);
  122. bool
  123. ipset_ip_remove(struct ip_set *set, struct cork_ip *addr);
  125. bool
  126. ipset_ip_remove_network(struct ip_set *set, struct cork_ip *addr,
  127. unsigned int cidr_prefix);
  129. bool
  130. ipset_contains_ip(const struct ip_set *set, struct cork_ip *elem);
  133. /* An internal state type used by the ipset_iterator_multiple_expansion_state
  134. * field. */
  135. enum ipset_iterator_state {
  136. IPSET_ITERATOR_NORMAL = 0,
  137. IPSET_ITERATOR_MULTIPLE_IPV4,
  138. IPSET_ITERATOR_MULTIPLE_IPV6
  139. };
  142. /* An iterator that returns all of the IP addresses that have a given value in
  143. * an IP set or map. */
  144. struct ipset_iterator {
  145. /* The address of the current IP network in the iterator. */
  146. struct cork_ip addr;
  148. /* The netmask of the current IP network in the iterator, given as a
  149. * CIDR prefix. For a single IP address, this will be 32 or 128. */
  150. unsigned int cidr_prefix;
  152. /* Whether the current assignment needs to be expanded a second
  153. * time.
  154. *
  155. * We have to expand IPv4 and IPv6 assignments separately, since the
  156. * set of variables to turn into address bits is different.
  157. * Unfortunately, a BDD assignment can contain both IPv4 and IPv6
  158. * addresses, if variable 0 is EITHER. (This is trivially true for
  159. * the empty set, for instance.) In this case, we have to
  160. * explicitly set variable 0 to TRUE, expand it as IPv4, and then
  161. * set it to FALSE, and expand it as IPv6. This variable tells us
  162. * whether we're in an assignment that needs to be expanded twice,
  163. * and if so, which expansion we're currently in.
  164. */
  165. enum ipset_iterator_state multiple_expansion_state;
  167. /* An iterator for retrieving each assignment in the set's BDD. */
  168. struct ipset_bdd_iterator *bdd_iterator;
  170. /* An iterator for expanding each assignment into individual IP
  171. * addresses. */
  172. struct ipset_expanded_assignment *assignment_iterator;
  174. /* Whether there are any more IP addresses in this iterator. */
  175. bool finished;
  177. /* The desired value for each IP address. */
  178. bool desired_value;
  180. /* Whether to summarize the contents of the IP set as networks,
  181. * where possible. */
  182. bool summarize;
  183. };
  186. struct ipset_iterator *
  187. ipset_iterate(struct ip_set *set, bool desired_value);
  189. struct ipset_iterator *
  190. ipset_iterate_networks(struct ip_set *set, bool desired_value);
  192. void
  193. ipset_iterator_free(struct ipset_iterator *iterator);
  195. void
  196. ipset_iterator_advance(struct ipset_iterator *iterator);
  199. /*---------------------------------------------------------------------
  200. * IP map functions
  201. */
  203. void
  204. ipmap_init(struct ip_map *map, int default_value);
  206. void
  207. ipmap_done(struct ip_map *map);
  209. struct ip_map *
  210. ipmap_new(int default_value);
  212. void
  213. ipmap_free(struct ip_map *map);
  215. bool
  216. ipmap_is_empty(const struct ip_map *map);
  218. bool
  219. ipmap_is_equal(const struct ip_map *map1, const struct ip_map *map2);
  221. size_t
  222. ipmap_memory_size(const struct ip_map *map);
  224. int
  225. ipmap_save(FILE *stream, const struct ip_map *map);
  227. int
  228. ipmap_save_to_stream(struct cork_stream_consumer *stream,
  229. const struct ip_map *map);
  231. struct ip_map *
  232. ipmap_load(FILE *stream);
  234. void
  235. ipmap_ipv4_set(struct ip_map *map, struct cork_ipv4 *elem, int value);
  237. void
  238. ipmap_ipv4_set_network(struct ip_map *map, struct cork_ipv4 *elem,
  239. unsigned int cidr_prefix, int value);
  241. int
  242. ipmap_ipv4_get(struct ip_map *map, struct cork_ipv4 *elem);
  244. void
  245. ipmap_ipv6_set(struct ip_map *map, struct cork_ipv6 *elem, int value);
  247. void
  248. ipmap_ipv6_set_network(struct ip_map *map, struct cork_ipv6 *elem,
  249. unsigned int cidr_prefix, int value);
  251. int
  252. ipmap_ipv6_get(struct ip_map *map, struct cork_ipv6 *elem);
  254. void
  255. ipmap_ip_set(struct ip_map *map, struct cork_ip *addr, int value);
  257. void
  258. ipmap_ip_set_network(struct ip_map *map, struct cork_ip *addr,
  259. unsigned int cidr_prefix, int value);
  261. int
  262. ipmap_ip_get(struct ip_map *map, struct cork_ip *addr);
  265. #endif /* IPSET_IPSET_H */