#define NFT_NLMSG_MAXSIZE (UINT16_MAX + getpagesize())
static int
-nft_mnl_recv(struct mnl_socket *nf_sock, uint32_t seqnum, uint32_t portid,
+nft_mnl_recv(struct mnl_ctx *ctx, uint32_t portid,
int (*cb)(const struct nlmsghdr *nlh, void *data), void *cb_data)
{
char buf[NFT_NLMSG_MAXSIZE];
int ret;
- ret = mnl_socket_recvfrom(nf_sock, buf, sizeof(buf));
+ ret = mnl_socket_recvfrom(ctx->nf_sock, buf, sizeof(buf));
while (ret > 0) {
- ret = mnl_cb_run(buf, ret, seqnum, portid, cb, cb_data);
+ ret = mnl_cb_run(buf, ret, ctx->seqnum, portid, cb, cb_data);
if (ret <= 0)
goto out;
- ret = mnl_socket_recvfrom(nf_sock, buf, sizeof(buf));
+ ret = mnl_socket_recvfrom(ctx->nf_sock, buf, sizeof(buf));
}
out:
if (ret < 0 && errno == EAGAIN)
}
static int
-nft_mnl_talk(struct mnl_socket *nf_sock, const void *data,
- unsigned int len, uint32_t seqnum,
+nft_mnl_talk(struct mnl_ctx *ctx, const void *data, unsigned int len,
int (*cb)(const struct nlmsghdr *nlh, void *data), void *cb_data)
{
- uint32_t portid = mnl_socket_get_portid(nf_sock);
+ uint32_t portid = mnl_socket_get_portid(ctx->nf_sock);
if (debug_level & DEBUG_MNL)
mnl_nlmsg_fprintf(stdout, data, len, sizeof(struct nfgenmsg));
- if (mnl_socket_sendto(nf_sock, data, len) < 0)
+ if (mnl_socket_sendto(ctx->nf_sock, data, len) < 0)
return -1;
- return nft_mnl_recv(nf_sock, seqnum, portid, cb, cb_data);
+ return nft_mnl_recv(ctx, portid, cb, cb_data);
}
/*
void mnl_genid_get(struct mnl_socket *nf_sock, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_GETGEN, AF_UNSPEC, 0, seqnum);
/* Skip error checking, old kernels sets res_id field to zero. */
- nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, genid_cb, NULL);
+ nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, genid_cb, NULL);
}
static int check_genid(const struct nlmsghdr *nlh)
int family, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
- struct nlmsghdr *nlh;
struct nftnl_rule_list *nlr_list;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
+ struct nlmsghdr *nlh;
int ret;
nlr_list = nftnl_rule_list_alloc();
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_GETRULE, family,
NLM_F_DUMP, seqnum);
- ret = nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, rule_cb,
- nlr_list);
+ ret = nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, rule_cb, nlr_list);
if (ret < 0)
goto err;
{
char buf[MNL_SOCKET_BUFFER_SIZE];
struct nlmsghdr *nlh;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_NEWCHAIN,
nftnl_chain_get_u32(nlc, NFTNL_CHAIN_FAMILY),
NLM_F_CREATE | NLM_F_ACK | flags, seqnum);
nftnl_chain_nlmsg_build_payload(nlh, nlc);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, NULL, NULL);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
}
int mnl_nft_chain_batch_add(struct nftnl_chain *nlc, struct nftnl_batch *batch,
unsigned int flags, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_DELCHAIN,
NLM_F_ACK, seqnum);
nftnl_chain_nlmsg_build_payload(nlh, nlc);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, NULL, NULL);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
}
int mnl_nft_chain_batch_del(struct nftnl_chain *nlc, struct nftnl_batch *batch,
int family, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
- struct nlmsghdr *nlh;
struct nftnl_chain_list *nlc_list;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
+ struct nlmsghdr *nlh;
int ret;
nlc_list = nftnl_chain_list_alloc();
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_GETCHAIN, family,
NLM_F_DUMP, seqnum);
- ret = nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, chain_cb,
- nlc_list);
+ ret = nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, chain_cb, nlc_list);
if (ret < 0)
goto err;
unsigned int flags, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_NEWTABLE,
NLM_F_ACK | flags, seqnum);
nftnl_table_nlmsg_build_payload(nlh, nlt);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, NULL, NULL);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
}
int mnl_nft_table_batch_add(struct nftnl_table *nlt, struct nftnl_batch *batch,
unsigned int flags, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_DELTABLE,
NLM_F_ACK, seqnum);
nftnl_table_nlmsg_build_payload(nlh, nlt);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, NULL, NULL);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
}
int mnl_nft_table_batch_del(struct nftnl_table *nlt, struct nftnl_batch *batch,
int family, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
- struct nlmsghdr *nlh;
struct nftnl_table_list *nlt_list;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
+ struct nlmsghdr *nlh;
int ret;
nlt_list = nftnl_table_list_alloc();
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_GETTABLE, family,
NLM_F_DUMP, seqnum);
- ret = nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, table_cb,
- nlt_list);
+ ret = nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, table_cb, nlt_list);
if (ret < 0)
goto err;
unsigned int flags, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_NEWSET,
NLM_F_CREATE | NLM_F_ACK | flags, seqnum);
nftnl_set_nlmsg_build_payload(nlh, nls);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum,
- set_add_cb, nls);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, set_add_cb, nls);
}
int mnl_nft_set_delete(struct mnl_socket *nf_sock, struct nftnl_set *nls,
unsigned int flags, uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_DELSET,
flags | NLM_F_ACK, seqnum);
nftnl_set_nlmsg_build_payload(nlh, nls);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, NULL, NULL);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
}
int mnl_nft_set_batch_add(struct nftnl_set *nls, struct nftnl_batch *batch,
uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct nftnl_set_list *nls_list;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
struct nftnl_set *s;
- struct nftnl_set_list *nls_list;
int ret;
s = nftnl_set_alloc();
if (nls_list == NULL)
memory_allocation_error();
- ret = nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, set_cb,
- nls_list);
+ ret = nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, set_cb, nls_list);
if (ret < 0)
goto err;
uint16_t nl_flags = dump ? NLM_F_DUMP : 0;
struct nftnl_obj_list *nln_list;
char buf[MNL_SOCKET_BUFFER_SIZE];
- struct nftnl_obj *n;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
+ struct nftnl_obj *n;
int msg_type, ret;
if (reset)
if (nln_list == NULL)
memory_allocation_error();
- ret = nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, obj_cb,
- nln_list);
+ ret = nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, obj_cb, nln_list);
if (ret < 0)
goto err;
unsigned int flags, uint32_t seqnum)
{
char buf[NFT_NLMSG_MAXSIZE];
- struct nlmsghdr *nlh;
struct nftnl_set_elems_iter *iter;
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
+ struct nlmsghdr *nlh;
int ret, err = 0;
iter = nftnl_set_elems_iter_create(nls);
NLM_F_CREATE | NLM_F_ACK | flags,
seqnum);
ret = nftnl_set_elems_nlmsg_build_payload_iter(nlh, iter);
- err = nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum,
- NULL, NULL);
+ err = nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
if (ret <= 0 || err < 0)
break;
}
unsigned int flags, uint32_t seqnum)
{
char buf[NFT_NLMSG_MAXSIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_DELSETELEM,
NLM_F_ACK, seqnum);
nftnl_set_elems_nlmsg_build_payload(nlh, nls);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, NULL, NULL);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, NULL, NULL);
}
static int set_elem_cb(const struct nlmsghdr *nlh, void *data)
uint32_t seqnum)
{
char buf[MNL_SOCKET_BUFFER_SIZE];
+ struct mnl_ctx ctx = {
+ .nf_sock = nf_sock,
+ .seqnum = seqnum,
+ };
struct nlmsghdr *nlh;
nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_GETSETELEM,
NLM_F_DUMP|NLM_F_ACK, seqnum);
nftnl_set_nlmsg_build_payload(nlh, nls);
- return nft_mnl_talk(nf_sock, nlh, nlh->nlmsg_len, seqnum, set_elem_cb,
- nls);
+ return nft_mnl_talk(&ctx, nlh, nlh->nlmsg_len, set_elem_cb, nls);
}
/*
projects / thirdparty / nftables.git / commitdiff
