src/helper/helper-iptables.h

   1 /*
   2  * Copyright (c) 2016 Samsung Electronics Co., Ltd.
   3  *
   4  * Licensed under the Apache License, Version 2.0 (the "License");
   5  * you may not use this file except in compliance with the License.
   6  * You may obtain a copy of the License at
   7  *
   8  * http://www.apache.org/licenses/LICENSE-2.0
   9  *
  10  * Unless required by applicable law or agreed to in writing, software
  11  * distributed under the License is distributed on an "AS IS" BASIS,
  12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  13  * See the License for the specific language governing permissions and
  14  * limitations under the License.
  15  */
  16
  17 #ifndef __STC_HELPER_IPTABLES_H__
  18 #define __STC_HELPER_IPTABLES_H__
  19
  20 #include <arpa/inet.h>
  21 #include "stc-manager.h"
  22 #include "stc-error.h"
  23
  24 #define STC_IN_CHAIN      "STC_IN"
  25 #define STC_OUT_CHAIN     "STC_OUT"
  26 #define STC_FRWD_CHAIN    "STC_FRWD"
  27 #define STC_TETHER_CHAIN  "STC_TETHER"
  28
  29 #define STC_IN_DROP_CHAIN     "STC_IN_DROP"
  30 #define STC_IN_FG_CHAIN       "STC_IN_FG"
  31 #define STC_IN_ACCEPT_CHAIN   "STC_IN_ACCEPT"
  32 #define STC_IN_BG_DROP_CHAIN  "STC_IN_BG_DROP"
  33 #define STC_IN_BG_CHAIN       "STC_IN_BG"
  34
  35 #define STC_OUT_DROP_CHAIN    "STC_OUT_DROP"
  36 #define STC_OUT_FG_CHAIN      "STC_OUT_FG"
  37 #define STC_OUT_ACCEPT_CHAIN  "STC_OUT_ACCEPT"
  38 #define STC_OUT_BG_DROP_CHAIN "STC_OUT_BG_DROP"
  39 #define STC_OUT_BG_CHAIN      "STC_OUT_BG"
  40
  41 typedef enum {
  42         IPTABLES_DIRECTION_NONE,
  43         IPTABLES_DIRECTION_IN,
  44         IPTABLES_DIRECTION_OUT
  45 } iptables_rule_direction_e;
  46
  47 typedef enum {
  48         IP_TYPE_UNKNOWN,
  49         IP_TYPE_IPV4,
  50         IP_TYPE_IPV6,
  51         IP_TYPE_IPV4_IPV6,
  52         IP_TYPE_LAST_ELEM
  53 } iptables_ip_type_e;
  54
  55 typedef enum {
  56         IPTABLES_IP_NONE,
  57         IPTABLES_IP_SINGLE,
  58         IPTABLES_IP_MASK,
  59         IPTABLES_IP_RANGE
  60 } iptables_iprange_type_e;
  61
  62 typedef struct {
  63         char *chain;
  64         char *ifname;
  65         char *nfacct_name;
  66         char *target;
  67         iptables_iprange_type_e s_iprange_type;
  68         iptables_iprange_type_e d_iprange_type;
  69         struct in_addr s_ip1;
  70         struct in_addr s_ip2;
  71         struct in_addr d_ip1;
  72         struct in_addr d_ip2;
  73         iptables_rule_direction_e direction;
  74         uint32_t classid;
  75 } iptables_rule_s;
  76
  77 stc_error_e iptables_add(iptables_rule_s *rule, iptables_ip_type_e iptype);
  78 stc_error_e iptables_remove(iptables_rule_s *rule, iptables_ip_type_e iptype);
  79 stc_error_e iptables_flush_chains(void);
  80 stc_error_e iptables_init(void);
  81 stc_error_e iptables_deinit(void);
  82
  83 #endif  /*__STC_HELPER_IPTABLES_H__*/