[deliverable/linux.git] / net / netlabel / netlabel_mgmt.h

/*
 * NetLabel Management Support
 *
 * This file defines the management functions for the NetLabel system.  The
 * NetLabel system manages static and dynamic label mappings for network
 * protocols such as CIPSO and RIPSO.
 *
 * Author: Paul Moore <paul.moore@hp.com>
 *
 */

/*
 * (c) Copyright Hewlett-Packard Development Company, L.P., 2006
 *
 * This program is free software;  you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY;  without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See
 * the GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program;  if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
 *
 */

#ifndef _NETLABEL_MGMT_H
#define _NETLABEL_MGMT_H

#include <net/netlabel.h>
#include <asm/atomic.h>

/*
 * The following NetLabel payloads are supported by the management interface.
 *
 * o ADD:
 *   Sent by an application to add a domain mapping to the NetLabel system.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_DOMAIN
 *     NLBL_MGMT_A_PROTOCOL
 *
 *   If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
 *
 *     NLBL_MGMT_A_CV4DOI
 *
 *   If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
 *
 * o REMOVE:
 *   Sent by an application to remove a domain mapping from the NetLabel
 *   system.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_DOMAIN
 *
 * o LISTALL:
 *   This message can be sent either from an application or by the kernel in
 *   response to an application generated LISTALL message.  When sent by an
 *   application there is no payload and the NLM_F_DUMP flag should be set.
 *   The kernel should respond with a series of the following messages.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_DOMAIN
 *     NLBL_MGMT_A_PROTOCOL
 *
 *   If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
 *
 *     NLBL_MGMT_A_CV4DOI
 *
 *   If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
 *
 * o ADDDEF:
 *   Sent by an application to set the default domain mapping for the NetLabel
 *   system.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_PROTOCOL
 *
 *   If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
 *
 *     NLBL_MGMT_A_CV4DOI
 *
 *   If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
 *
 * o REMOVEDEF:
 *   Sent by an application to remove the default domain mapping from the
 *   NetLabel system, there is no payload.
 *
 * o LISTDEF:
 *   This message can be sent either from an application or by the kernel in
 *   response to an application generated LISTDEF message.  When sent by an
 *   application there is no payload.  On success the kernel should send a
 *   response using the following format.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_PROTOCOL
 *
 *   If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
 *
 *     NLBL_MGMT_A_CV4DOI
 *
 *   If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
 *
 * o PROTOCOLS:
 *   Sent by an application to request a list of configured NetLabel protocols
 *   in the kernel.  When sent by an application there is no payload and the
 *   NLM_F_DUMP flag should be set.  The kernel should respond with a series of
 *   the following messages.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_PROTOCOL
 *
 * o VERSION:
 *   Sent by an application to request the NetLabel version.  When sent by an
 *   application there is no payload.  This message type is also used by the
 *   kernel to respond to an VERSION request.
 *
 *   Required attributes:
 *
 *     NLBL_MGMT_A_VERSION
 *
 */

/* NetLabel Management commands */
enum {
	NLBL_MGMT_C_UNSPEC,
	NLBL_MGMT_C_ADD,
	NLBL_MGMT_C_REMOVE,
	NLBL_MGMT_C_LISTALL,
	NLBL_MGMT_C_ADDDEF,
	NLBL_MGMT_C_REMOVEDEF,
	NLBL_MGMT_C_LISTDEF,
	NLBL_MGMT_C_PROTOCOLS,
	NLBL_MGMT_C_VERSION,
	__NLBL_MGMT_C_MAX,
};
#define NLBL_MGMT_C_MAX (__NLBL_MGMT_C_MAX - 1)

/* NetLabel Management attributes */
enum {
	NLBL_MGMT_A_UNSPEC,
	NLBL_MGMT_A_DOMAIN,
	/* (NLA_NUL_STRING)
	 * the NULL terminated LSM domain string */
	NLBL_MGMT_A_PROTOCOL,
	/* (NLA_U32)
	 * the NetLabel protocol type (defined by NETLBL_NLTYPE_*) */
	NLBL_MGMT_A_VERSION,
	/* (NLA_U32)
	 * the NetLabel protocol version number (defined by
	 * NETLBL_PROTO_VERSION) */
	NLBL_MGMT_A_CV4DOI,
	/* (NLA_U32)
	 * the CIPSOv4 DOI value */
	__NLBL_MGMT_A_MAX,
};
#define NLBL_MGMT_A_MAX (__NLBL_MGMT_A_MAX - 1)

/* NetLabel protocol functions */
int netlbl_mgmt_genl_init(void);

/* NetLabel configured protocol reference counter */
extern atomic_t netlabel_mgmt_protocount;

#endif
Commit	Line	Data
d15c345f PM	1	/*
	2	* NetLabel Management Support
	3	*
	4	* This file defines the management functions for the NetLabel system. The
	5	* NetLabel system manages static and dynamic label mappings for network
	6	* protocols such as CIPSO and RIPSO.
	7	*
	8	* Author: Paul Moore <paul.moore@hp.com>
	9	*
	10	*/
	11
	12	/*
	13	* (c) Copyright Hewlett-Packard Development Company, L.P., 2006
	14	*
	15	* This program is free software; you can redistribute it and/or modify
	16	* it under the terms of the GNU General Public License as published by
	17	* the Free Software Foundation; either version 2 of the License, or
	18	* (at your option) any later version.
	19	*
	20	* This program is distributed in the hope that it will be useful,
	21	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	22	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
	23	* the GNU General Public License for more details.
	24	*
	25	* You should have received a copy of the GNU General Public License
	26	* along with this program; if not, write to the Free Software
	27	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
	28	*
	29	*/
	30
	31	#ifndef _NETLABEL_MGMT_H
	32	#define _NETLABEL_MGMT_H
	33
	34	#include <net/netlabel.h>
c783f1ce	35	#include <asm/atomic.h>
d15c345f PM	36
d15c345f PM	37	/*
fd385855	38	* The following NetLabel payloads are supported by the management interface.
d15c345f PM	39	*
	40	* o ADD:
	41	* Sent by an application to add a domain mapping to the NetLabel system.
d15c345f	42	*
fd385855	43	* Required attributes:
d15c345f	44	*
fd385855 PM	45	* NLBL_MGMT_A_DOMAIN
fd385855 PM	46	* NLBL_MGMT_A_PROTOCOL
d15c345f	47	*
fd385855	48	* If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
d15c345f	49	*
fd385855	50	* NLBL_MGMT_A_CV4DOI
d15c345f	51	*
fd385855	52	* If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
d15c345f PM	53	*
	54	* o REMOVE:
	55	* Sent by an application to remove a domain mapping from the NetLabel
fd385855	56	* system.
d15c345f	57	*
fd385855	58	* Required attributes:
d15c345f	59	*
fd385855	60	* NLBL_MGMT_A_DOMAIN
d15c345f	61	*
fd385855	62	* o LISTALL:
d15c345f	63	* This message can be sent either from an application or by the kernel in
fd385855 PM	64	* response to an application generated LISTALL message. When sent by an
	65	* application there is no payload and the NLM_F_DUMP flag should be set.
	66	* The kernel should respond with a series of the following messages.
d15c345f	67	*
fd385855	68	* Required attributes:
d15c345f	69	*
fd385855 PM	70	* NLBL_MGMT_A_DOMAIN
fd385855 PM	71	* NLBL_MGMT_A_PROTOCOL
d15c345f	72	*
fd385855	73	* If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
d15c345f	74	*
fd385855	75	* NLBL_MGMT_A_CV4DOI
d15c345f	76	*
fd385855	77	* If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
d15c345f PM	78	*
	79	* o ADDDEF:
	80	* Sent by an application to set the default domain mapping for the NetLabel
fd385855	81	* system.
d15c345f	82	*
fd385855	83	* Required attributes:
d15c345f	84	*
fd385855	85	* NLBL_MGMT_A_PROTOCOL
d15c345f	86	*
fd385855	87	* If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
d15c345f	88	*
fd385855	89	* NLBL_MGMT_A_CV4DOI
d15c345f	90	*
fd385855	91	* If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
d15c345f PM	92	*
	93	* o REMOVEDEF:
	94	* Sent by an application to remove the default domain mapping from the
fd385855	95	* NetLabel system, there is no payload.
d15c345f PM	96	*
	97	* o LISTDEF:
	98	* This message can be sent either from an application or by the kernel in
	99	* response to an application generated LISTDEF message. When sent by an
fd385855 PM	100	* application there is no payload. On success the kernel should send a
fd385855 PM	101	* response using the following format.
d15c345f	102	*
fd385855	103	* Required attributes:
d15c345f	104	*
fd385855	105	* NLBL_MGMT_A_PROTOCOL
d15c345f	106	*
fd385855	107	* If using NETLBL_NLTYPE_CIPSOV4 the following attributes are required:
d15c345f	108	*
fd385855	109	* NLBL_MGMT_A_CV4DOI
d15c345f	110	*
fd385855	111	* If using NETLBL_NLTYPE_UNLABELED no other attributes are required.
d15c345f	112	*
fd385855 PM	113	* o PROTOCOLS:
	114	* Sent by an application to request a list of configured NetLabel protocols
	115	* in the kernel. When sent by an application there is no payload and the
	116	* NLM_F_DUMP flag should be set. The kernel should respond with a series of
	117	* the following messages.
d15c345f	118	*
fd385855	119	* Required attributes:
d15c345f	120	*
fd385855	121	* NLBL_MGMT_A_PROTOCOL
d15c345f PM	122	*
d15c345f PM	123	* o VERSION:
fd385855 PM	124	* Sent by an application to request the NetLabel version. When sent by an
	125	* application there is no payload. This message type is also used by the
	126	* kernel to respond to an VERSION request.
d15c345f	127	*
fd385855	128	* Required attributes:
d15c345f	129	*
fd385855	130	* NLBL_MGMT_A_VERSION
d15c345f PM	131	*
	132	*/
	133
	134	/* NetLabel Management commands */
	135	enum {
	136	NLBL_MGMT_C_UNSPEC,
d15c345f PM	137	NLBL_MGMT_C_ADD,
d15c345f PM	138	NLBL_MGMT_C_REMOVE,
fd385855	139	NLBL_MGMT_C_LISTALL,
d15c345f PM	140	NLBL_MGMT_C_ADDDEF,
	141	NLBL_MGMT_C_REMOVEDEF,
	142	NLBL_MGMT_C_LISTDEF,
fd385855	143	NLBL_MGMT_C_PROTOCOLS,
d15c345f PM	144	NLBL_MGMT_C_VERSION,
	145	__NLBL_MGMT_C_MAX,
	146	};
	147	#define NLBL_MGMT_C_MAX (__NLBL_MGMT_C_MAX - 1)
	148
fd385855 PM	149	/* NetLabel Management attributes */
	150	enum {
	151	NLBL_MGMT_A_UNSPEC,
	152	NLBL_MGMT_A_DOMAIN,
	153	/* (NLA_NUL_STRING)
	154	* the NULL terminated LSM domain string */
	155	NLBL_MGMT_A_PROTOCOL,
	156	/* (NLA_U32)
	157	* the NetLabel protocol type (defined by NETLBL_NLTYPE_) /
	158	NLBL_MGMT_A_VERSION,
	159	/* (NLA_U32)
	160	* the NetLabel protocol version number (defined by
	161	* NETLBL_PROTO_VERSION) */
	162	NLBL_MGMT_A_CV4DOI,
	163	/* (NLA_U32)
	164	* the CIPSOv4 DOI value */
	165	__NLBL_MGMT_A_MAX,
	166	};
	167	#define NLBL_MGMT_A_MAX (__NLBL_MGMT_A_MAX - 1)
	168
d15c345f PM	169	/* NetLabel protocol functions */
	170	int netlbl_mgmt_genl_init(void);
	171
c783f1ce PM	172	/* NetLabel configured protocol reference counter */
c783f1ce PM	173	extern atomic_t netlabel_mgmt_protocount;
23bcdc1a	174
d15c345f	175	#endif