diff options
author | Arturo Borrero <arturo.borrero.glez@gmail.com> | 2013-07-06 02:39:52 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2013-07-06 15:29:52 +0200 |
commit | ffb16b9416d5a77520388fc5c12ccd0570726e57 (patch) | |
tree | 7ac546f7b15a3140e71f007071d0b5fa31e96ff8 /src/set_elem.c | |
parent | 1e8e5d4b55efe4f11334a5b55483b802cb704071 (diff) |
set: add xml output
This patch adds XML output for sets.
Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/set_elem.c')
-rw-r--r-- | src/set_elem.c | 65 |
1 files changed, 64 insertions, 1 deletions
diff --git a/src/set_elem.c b/src/set_elem.c index c5c3de4..3966cd6 100644 --- a/src/set_elem.c +++ b/src/set_elem.c @@ -22,6 +22,7 @@ #include <linux/netfilter/nf_tables.h> #include <libnftables/set.h> +#include <libnftables/rule.h> #include "linux_list.h" #include "expr/data_reg.h" @@ -418,7 +419,8 @@ static int nft_set_elem_snprintf_json(char *buf, size_t size, struct nft_set_ele return offset; } -static int nft_set_elem_snprintf_default(char *buf, size_t size, struct nft_set_elem *e) +static int nft_set_elem_snprintf_default(char *buf, size_t size, + struct nft_set_elem *e) { int ret, len = size, offset = 0, i; @@ -444,12 +446,73 @@ static int nft_set_elem_snprintf_default(char *buf, size_t size, struct nft_set_ return offset; } +static int nft_set_elem_snprintf_xml(char *buf, size_t size, + struct nft_set_elem *e, uint32_t flags) +{ + int ret, len = size, offset = 0; + + ret = snprintf(buf, size, "<set_elem>" + "<set_elem_flags>%u</set_elem_flags>", + e->set_elem_flags); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = snprintf(buf+offset, size, "<set_elem_key>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = nft_data_reg_snprintf(buf+offset, len, &e->key, + NFT_RULE_O_XML, flags, DATA_VALUE); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = snprintf(buf+offset, size, "</set_elem_key>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + if (e->flags & (1 << NFT_SET_ELEM_ATTR_DATA)) { + ret = snprintf(buf+offset, size, "<set_elem_data>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = nft_data_reg_snprintf(buf+offset, len, &e->data, + NFT_RULE_O_XML, flags, DATA_VALUE); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = snprintf(buf+offset, size, "</set_elem_data>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + } else if (e->flags & (1 << NFT_SET_ELEM_ATTR_VERDICT)) { + ret = snprintf(buf+offset, size, "<set_elem_data>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = nft_data_reg_snprintf(buf+offset, len, &e->data, + NFT_RULE_O_XML, flags, + DATA_VERDICT); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = snprintf(buf+offset, size, "</set_elem_data>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + } else if (e->flags & (1 << NFT_SET_ELEM_ATTR_CHAIN)) { + ret = snprintf(buf+offset, size, "<set_elem_data>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = nft_data_reg_snprintf(buf+offset, len, &e->data, + NFT_RULE_O_XML, flags, DATA_CHAIN); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + ret = snprintf(buf+offset, size, "</set_elem_data>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + } + + ret = snprintf(buf+offset, size, "</set_elem>"); + SNPRINTF_BUFFER_SIZE(ret, size, len, offset); + + return offset; +} + int nft_set_elem_snprintf(char *buf, size_t size, struct nft_set_elem *e, uint32_t type, uint32_t flags) { switch(type) { case NFT_SET_O_DEFAULT: return nft_set_elem_snprintf_default(buf, size, e); + case NFT_SET_O_XML: + return nft_set_elem_snprintf_xml(buf, size, e, flags); case NFT_SET_O_JSON: return nft_set_elem_snprintf_json(buf, size, e); default: |