]> xenbits.xensource.com Git - libvirt.git/commit
projects / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4dd7eaa) | patch
Merge nwfilter createRuleInstance driver into applyNewRules
authorDaniel P. Berrange <berrange@redhat.com>
Tue, 25 Mar 2014 13:44:50 +0000 (13:44 +0000)
committerDaniel P. Berrange <berrange@redhat.com>
Fri, 25 Apr 2014 14:44:09 +0000 (15:44 +0100)
commit3f74b2eb2cf995fe5a4dbef83004d5fef96e7417
treef56da1c1175799d75593df2c5b3b5a827f9ab0c2tree
parent4dd7eaa36f9ecb8ba72835dc7d07919c553542cacommit | diff
Merge nwfilter createRuleInstance driver into applyNewRules

The current nwfilter tech driver API has a 'createRuleInstance' method
which populates virNWFilterRuleInstPtr with a command line string
containing variable placeholders. The 'applyNewRules' method then
expands the variables and executes the commands. This split of
responsibility won't work when switching to the virFirewallPtr
APIs, since we can't just build up command line strings. This patch
this merges the functionality of 'createRuleInstance' into the
applyNewRules method.

The virNWFilterRuleInstPtr struct is changed from holding an array
of opaque pointers, into holding generic metadata about the rules
to be processed. In essence this is the result of taking a linked
set of virNWFilterDefPtr's and flattening the tree to get a list
of virNWFilterRuleDefPtr's. At the same time we must keep track of
any nested virNWFilterObjPtr instances, so that the locks are held
for the duration of the 'applyNewRules' method.

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
src/nwfilter/nwfilter_ebiptables_driver.c diff | blob | blame | history
src/nwfilter/nwfilter_gentech_driver.c diff | blob | blame | history
src/nwfilter/nwfilter_tech_driver.h diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.