git.samba.org - sfrench/cifs-2.6.git/commit

author	Pablo Neira Ayuso <pablo@netfilter.org>
	Wed, 18 Oct 2023 20:23:07 +0000 (22:23 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Tue, 24 Oct 2023 11:16:30 +0000 (13:16 +0200)
commit	9dad402b89e81a0516bad5e0ac009b7a0a80898f
tree	81dafe42dc001052ca13f89ab8e8c1f6a864b79d	tree
parent	6509a2e410c3cb36c78a0a85c6102debe171337e	commit \| diff

netfilter: nf_tables: expose opaque set element as struct nft_elem_priv

Add placeholder structure and place it at the beginning of each struct
nft_*_elem for each existing set backend, instead of exposing elements
as void type to the frontend which defeats compiler type checks. Use
this pointer to this new type to replace void *.

This patch updates the following set backend API to use this new struct
nft_elem_priv placeholder structure:

- update
- deactivate
- flush
- get

as well as the following helper functions:

- nft_set_elem_ext()
- nft_set_elem_init()
- nft_set_elem_destroy()
- nf_tables_set_elem_destroy()

This patch adds nft_elem_priv_cast() to cast struct nft_elem_priv to
native element representation from the corresponding set backend.
BUILD_BUG_ON() makes sure this .priv placeholder is always at the top
of the opaque set element representation.

Suggested-by: Florian Westphal <fw@strlen.de>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

include/net/netfilter/nf_tables.h		diff \| blob \| history
net/netfilter/nf_tables_api.c		diff \| blob \| history
net/netfilter/nft_dynset.c		diff \| blob \| history
net/netfilter/nft_set_bitmap.c		diff \| blob \| history
net/netfilter/nft_set_hash.c		diff \| blob \| history
net/netfilter/nft_set_pipapo.c		diff \| blob \| history
net/netfilter/nft_set_pipapo.h		diff \| blob \| history
net/netfilter/nft_set_rbtree.c		diff \| blob \| history