-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathFilter.h
176 lines (141 loc) · 4.77 KB
/
Filter.h
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
/*
Copyright (C) <2010-2011> Karl Hiramoto <[email protected]>
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in
all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
THE SOFTWARE.
*/
#ifndef FILTER_OBJECT_H
#define FILTER_OBJECT_H
#ifdef HAVE_CONFIG_H
#include "nfq-web-filter-config.h"
#endif
#include <libxml/tree.h>
#include "nfq_wf_private.h"
#include "Object.h" // generic object
/**
* Common FilterObject Header
* This macro must be included as first member in every object,
* that inherits this FilterObject
*/
#define FILTER_OBJECT_COMMON \
OBJECT_COMMON; \
unsigned int filter_id; \
struct Filter_ops *fo_ops; \
/**
* @ingroup Object
* @defgroup FilterObject Filter Object
* @{
*/
/**
* @struct Filter
* @brief A generic filter object that other more specialized filter objects will inherit.
* @brief This will give us a kind of polymorphism.
*/
struct Filter
{
FILTER_OBJECT_COMMON;
};
struct rule;
struct HttpReq;
/**
* @struct Filter_ops
* @brief FilterObject operations, defines various callbacks on filter objcets.
*/
struct Filter_ops
{
/* parents ops */
struct Object_ops *ops;
/**
* Optional callback(virtual method) to init/allocate any private data
*/
int (*foo_constructor)(struct Filter *);
/**
* Optional callback(virtual method) to free any private data
*/
int (*foo_destructor)(struct Filter *);
/*optional callback to clone private data */
int (*foo_clone)(struct Filter *dst, struct Filter *src);
/*optional callback to compare two filters */
int (*foo_compare)(struct Filter *dst, struct Filter *src);
/** OPTIONAL Used to preload or start any async operation
This is called when request comes from the client
NOTE the filter object will be responsible for maintaining its own request table
*/
int (*foo_request_start)(struct Filter *obj, struct HttpReq *);
/** @brief Check if filter object matches request
This is called when the 1st packet of the request comes back from server.
@param obj This filter object
@param HttpReq Http Request we are going to filter
@returns 1 on match, 0 no match, or -errno
*/
int (*foo_matches_req)(struct Filter *obj, struct HttpReq *);
// filter for AV or other kind of filter on data stream
int (*foo_stream_filter)(struct Filter *obj, struct HttpReq *,
const unsigned char *data_stream, unsigned int length);
/**
* @brief file filer for Anti-virus or other file contents filter
* @param obj Filter object
* @param HttpReq Http Request we are going to filter
* @returns -1 on error, or enum Action see @link Action
*/
int (*foo_file_filter)(struct Filter *obj, struct HttpReq *);
/**
* @brief Load filter object from XML config
* @param obj Filter object
* @param xml Node that is the root of this, filter object,
* may have attributes and/or children.
*/
int (*foo_load_from_xml)(struct Filter *obj, xmlNode *node);
/*for debug */
int (*foo_print)(struct Filter *);
};
/**
* @name Reference Management
* @{
*/
struct Filter *Filter_alloc(struct Filter_ops *ops);
void Filter_free(struct Filter **obj);
void Filter_get(struct Filter *obj);
void Filter_put(struct Filter **obj);
static inline void Filter_setFilterId(struct Filter *obj, unsigned int id) {
obj->filter_id = id;
}
static inline unsigned int Filter_getFilterId(struct Filter *obj) {
return obj->filter_id;
}
/** get Lower inherited object ID, NOTE should be read only */
static inline int Filter_getObjId(struct Filter *obj) {
return obj->id;
}
/**
* Check whether this object is used by multiple users
* @param obj object to check
* @return true or false
*/
bool Filter_shared(struct Filter *obj);
/** @}
end of refrence management
*/
/**
* Load filter object from XML config
* @param obj Filter object
* @param xml Node that is the root of this, filter object,
* may have attributes and/or children.
*/
int Filter_fromXml(struct Filter *obj, xmlNode *node);
/** @}
end of Object file
*/
#endif /* FILTER_OBJECT_H */