OpenDNSSEC-signer  1.4.5
acl.h
Go to the documentation of this file.
1 /*
2  * Copyright (c) 2011 NLNet Labs. All rights reserved.
3  *
4  * Redistribution and use in source and binary forms, with or without
5  * modification, are permitted provided that the following conditions
6  * are met:
7  * 1. Redistributions of source code must retain the above copyright
8  * notice, this list of conditions and the following disclaimer.
9  * 2. Redistributions in binary form must reproduce the above copyright
10  * notice, this list of conditions and the following disclaimer in the
11  * documentation and/or other materials provided with the distribution.
12  *
13  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
14  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
15  * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
16  * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
17  * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
18  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
19  * GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
20  * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
21  * IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
22  * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
23  * IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
24  *
25  */
26 
32 #ifndef WIRE_ACL_H
33 #define WIRE_ACL_H
34 
35 #include "config.h"
36 #include "shared/allocator.h"
37 #include "wire/listener.h"
38 #include "wire/tsig.h"
39 
40 
46  ACL_RANGE_SINGLE = 0, /* single adress */
47  ACL_RANGE_MASK = 1, /* 10.20.30.40&255.255.255.0 */
48  ACL_RANGE_SUBNET = 2, /* 10.20.30.40/28 */
49  ACL_RANGE_MINMAX = 3 /* 10.20.30.40-10.20.30.60 (mask=max) */
50 };
52 
57 typedef struct acl_struct acl_type;
58 struct acl_struct {
60  /* address */
61  char* address;
62  unsigned int port;
63  int family;
67  /* tsig */
68  const char* tsig_name;
70  /* cache */
71  time_t ixfr_disabled;
72 };
73 
84 acl_type* acl_create(allocator_type* allocator, char* address,
85  char* port, char* tsig_name, tsig_type* tsig);
86 
95 acl_type* acl_find(acl_type* acl, struct sockaddr_storage* addr,
96  tsig_rr_type* tsig);
97 
104 int acl_parse_family(const char* a);
105 
114 int addr2ip(struct sockaddr_storage addr, char* ip, size_t len);
115 
122 void acl_cleanup(acl_type* acl, allocator_type* allocator);
123 
124 #endif /* WIRE_ACL_H */