projects / trust_router.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Clean up formatting, no functional changes.
[trust_router.git] / include / tr_filter.h
diff --git a/include/tr_filter.h b/include/tr_filter.h
index 8694469..bb71725 100644 (file)
--- a/include/tr_filter.h
+++ b/include/tr_filter.h
@@ -32,9 +32,83 @@
  *
  */
 
-#ifndef TR_CONFIG_H
-#define TR_CONFIG_H
+#ifndef TR_FILTER_H
+#define TR_FILTER_H
 
-int tr_prefix_wildcard_match (char *str, char *wc_str);
+#include <talloc.h>
+#include <jansson.h>
+
+#include <trust_router/tr_name.h>
+#include <trust_router/tr_constraint.h>
+
+#define TR_MAX_FILTERS  5
+#define TR_MAX_FILTER_LINES 8
+#define TR_MAX_FILTER_SPECS 8
+
+/* Filter actions */
+typedef enum {
+    TR_FILTER_ACTION_REJECT = 0,
+    TR_FILTER_ACTION_ACCEPT,
+    TR_FILTER_ACTION_UNKNOWN
+} TR_FILTER_ACTION;
+
+/* Match codes */
+#define TR_FILTER_MATCH 0
+#define TR_FILTER_NO_MATCH 1
+
+/* Filter types */
+typedef enum {
+    TR_FILTER_TYPE_TID_INCOMING = 0,
+    TR_FILTER_TYPE_UNKNOWN
+} TR_FILTER_TYPE;
+/* #define for backward compatibility, TODO: get rid of this -jlr */
+#define TR_FILTER_TYPE_RP_PERMITTED TR_FILTER_TYPE_TID_INCOMING
+
+
+typedef struct tr_fspec {
+    TR_NAME *field;
+    TR_NAME *match;
+} TR_FSPEC;
+
+typedef struct tr_fline {
+    TR_FILTER_ACTION action;
+    TR_FSPEC *specs[TR_MAX_FILTER_SPECS];
+    TR_CONSTRAINT *realm_cons;
+    TR_CONSTRAINT *domain_cons;
+} TR_FLINE;
+
+typedef struct tr_filter {
+    TR_FILTER_TYPE type;
+    TR_FLINE *lines[TR_MAX_FILTER_LINES];
+} TR_FILTER;
+
+TR_FILTER *tr_filter_new(TALLOC_CTX *mem_ctx);
+
+void tr_filter_free(TR_FILTER *filt);
+
+void tr_filter_set_type(TR_FILTER *filt, TR_FILTER_TYPE type);
+
+TR_FILTER_TYPE tr_filter_get_type(TR_FILTER *filt);
+
+TR_FLINE *tr_fline_new(TALLOC_CTX *mem_ctx);
+
+void tr_fline_free(TR_FLINE *fline);
+
+TR_FSPEC *tr_fspec_new(TALLOC_CTX *mem_ctx);
+
+void tr_fspec_free(TR_FSPEC *fspec);
+
+void tr_fspec_set_match(TR_FSPEC *fspec, TR_NAME *match);
+
+int tr_fspec_matches(TR_FSPEC *fspec, TR_NAME *name);
+
+
+/*In tr_constraint.c and exported, but not really a public symbol; needed by tr_filter.c and by tr_constraint.c*/
+int TR_EXPORT tr_prefix_wildcard_match(const char *str, const char *wc_str);
+
+int tr_filter_process_rp_permitted(TR_NAME *rp_realm, TR_FILTER *rpp_filter, TR_CONSTRAINT_SET *in_constraints,
+                                   TR_CONSTRAINT_SET **out_constraints, int *out_action);
+
+TR_CONSTRAINT_SET *tr_constraint_set_from_fline(TR_FLINE *fline);
 
 #endif
Moonshot Trust Router