Move compile_updown() from the Zones module to the Providers module

Signed-off-by: Tom Eastep <teastep@shorewall.net>
2025-01-30 17:39:33 +01:00 · 2012-06-01 08:12:07 -07:00 · 2012-06-01 08:12:07 -07:00 · f25187adb1
commit f25187adb1
parent 70e6bda3bb
2 changed files with 171 additions and 170 deletions
--- a/Shorewall/Perl/Shorewall/Providers.pm
+++ b/Shorewall/Perl/Shorewall/Providers.pm
@ -39,6 +39,7 @@ our @EXPORT = qw( process_providers
 		  @routemarked_interfaces
 		  handle_stickiness
 		  handle_optional_interfaces
 		  compile_updown
 		  setup_load_distribution
 	       );
 our @EXPORT_OK = qw( initialize lookup_provider );
@ -1354,6 +1355,175 @@ sub setup_providers() {
 }
 #
 # Emit the updown() function
 #
 sub compile_updown() {
    emit( '',
 	  '#',
 	  '# Handle the "up" and "down" commands',
 	  '#',
 	  'updown() # $1 = interface',
 	  '{',
 	);
    push_indent;
    emit( 'local state',
 	  'state=cleared',
 	  '' );
    emit 'progress_message3 "$g_product $COMMAND triggered by $1"';
    emit '';
    if ( $family == F_IPV4 ) {
 	emit 'if shorewall_is_started; then';
    } else {
 	emit 'if shorewall6_is_started; then';
    }
    emit( '    state=started',
 	  'elif [ -f ${VARDIR}/state ]; then',
 	  '    case "$(cat ${VARDIR}/state)" in',
 	  '        Stopped*)',
 	  '            state=stopped',
 	  '            ;;',
 	  '        Cleared*)',
 	  '            ;;',
 	  '        *)',
 	  '            state=unknown',
 	  '            ;;',
 	  '    esac',
 	  'else',
 	  '    state=unknown',
 	  'fi',
 	  ''
 	);
    emit( 'case $1 in' );
    push_indent;
    my $ignore   = find_interfaces_by_option 'ignore';
    my $required = find_interfaces_by_option 'required';
    my $optional = find_interfaces_by_option 'optional';
    if ( @$ignore ) {
 	my $interfaces = join '|', map get_physical( $_ ), @$ignore;
 	$interfaces =~ s/\+/*/g;
 	emit( "$interfaces)",
 	      '    progress_message3 "$COMMAND on interface $1 ignored"',
 	      '    exit 0',
 	      '    ;;'
 	    );
    }
    if ( @$required ) {
 	my $interfaces = join '|', map get_physical( $_ ), @$required;
 	my $wildcard = ( $interfaces =~ s/\+/*/g );
 	emit( "$interfaces)",
 	      '    if [ "$COMMAND" = up ]; then' );
 	if ( $wildcard ) {
 	    emit( '        if [ "$state" = started ]; then',
 		  '            COMMAND=restart',
 		  '        else',
 		  '            COMMAND=start',
 		  '        fi' );
 	} else {
 	    emit( '        COMMAND=start' );
 	}
 	emit( '        progress_message3 "$g_product attempting $COMMAND"',
 	      '        detect_configuration',
 	      '        define_firewall' );
 	if ( $wildcard ) {
 	    emit( '    elif [ "$state" = started ]; then',
 		  '        progress_message3 "$g_product attempting restart"',
 		  '        COMMAND=restart',
 		  '        detect_configuration',
 		  '        define_firewall' );
 	} else {
 	    emit( '    else',
 		  '        COMMAND=stop',
 		  '        progress_message3 "$g_product attempting stop"',
 		  '        detect_configuration',
 		  '        stop_firewall' );
 	}
 	emit( '    fi',
 	      '    ;;'
 	    );
    }
    if ( @$optional ) {
 	my @interfaces = map get_physical( $_ ), @$optional;
 	my $interfaces = join '|', @interfaces;
 	if ( $interfaces =~ s/\+/*/g || @interfaces > 1 ) {
 	    emit( "$interfaces)",
 		  '    if [ "$COMMAND" = up ]; then',
 		  '        echo 0 > ${VARDIR}/${1}.state',
 		  '    else',
 		  '        echo 1 > ${VARDIR}/${1}.state',
 		  '    fi' );
 	} else {
 	    emit( "$interfaces)",
 		  '    if [ "$COMMAND" = up ]; then',
 		  "        echo 0 > \${VARDIR}/$interfaces.state",
 		  '    else',
 		  "        echo 1 > \${VARDIR}/$interfaces.state",
 		  '    fi' );
 	}
 	emit( '',
 	      '    if [ "$state" = started ]; then',
 	      '        COMMAND=restart',
 	      '        progress_message3 "$g_product attempting restart"',
 	      '        detect_configuration',
 	      '        define_firewall',
 	      '    elif [ "$state" = stopped ]; then',
 	      '        COMMAND=start',
 	      '        progress_message3 "$g_product attempting start"',
 	      '        detect_configuration',
 	      '        define_firewall',
 	      '    else',
 	      '        progress_message3 "$COMMAND on interface $1 ignored"',
 	      '    fi',
 	      '    ;;',
 	    );
    }
    emit( "*)",
 	  '    case $state in',
 	  '        started)',
 	  '            COMMAND=restart',
 	  '            progress_message3 "$g_product attempting restart"',
 	  '            detect_configuration',
 	  '            define_firewall',
 	  '            ;;',
 	  '        *)',
 	  '            progress_message3 "$COMMAND on interface $1 ignored"',
 	  '            ;;',
 	  '    esac',
 	);
    pop_indent;
    emit( 'esac' );
    pop_indent;
    emit( '}',
 	  '',
 	);
 }
 sub lookup_provider( $ ) {
    my $provider    = $_[0];
    my $providerref = $providers{ $provider };
--- a/Shorewall/Perl/Shorewall/Zones.pm
+++ b/Shorewall/Perl/Shorewall/Zones.pm
@ -80,7 +80,6 @@ our @EXPORT = qw( NOTHING
 		  set_interface_provider
 		  interface_zones
 		  verify_required_interfaces
 		  compile_updown
 		  validate_hosts_file
 		  find_hosts_by_option
 		  find_zone_hosts_by_option
@ -173,6 +172,7 @@ my  %reservedName = ( all => 1,
 #                                     number      => <ordinal position in the interfaces file>
 #                                     physical    => <physical interface name>
 #                                     base        => <shell variable base representing this interface>
 #                                     provider    => <Provider Name, if interface is associated with a provider>
 #                                     zones       => { zone1 => 1, ... }
 #                                   }
 #                 }
@ -1634,175 +1634,6 @@ sub verify_required_interfaces( $ ) {
    $returnvalue;
 }
 #
 # Emit the updown() function
 #
 sub compile_updown() {
    emit( '',
 	  '#',
 	  '# Handle the "up" and "down" commands',
 	  '#',
 	  'updown() # $1 = interface',
 	  '{',
 	);
    push_indent;
    emit( 'local state',
 	  'state=cleared',
 	  '' );
    emit 'progress_message3 "$g_product $COMMAND triggered by $1"';
    emit '';
    if ( $family == F_IPV4 ) {
 	emit 'if shorewall_is_started; then';
    } else {
 	emit 'if shorewall6_is_started; then';
    }
    emit( '    state=started',
 	  'elif [ -f ${VARDIR}/state ]; then',
 	  '    case "$(cat ${VARDIR}/state)" in',
 	  '        Stopped*)',
 	  '            state=stopped',
 	  '            ;;',
 	  '        Cleared*)',
 	  '            ;;',
 	  '        *)',
 	  '            state=unknown',
 	  '            ;;',
 	  '    esac',
 	  'else',
 	  '    state=unknown',
 	  'fi',
 	  ''
 	);
    emit( 'case $1 in' );
    push_indent;
    my $ignore   = find_interfaces_by_option 'ignore';
    my $required = find_interfaces_by_option 'required';
    my $optional = find_interfaces_by_option 'optional';
    if ( @$ignore ) {
 	my $interfaces = join '|', map $interfaces{$_}->{physical}, @$ignore;
 	$interfaces =~ s/\+/*/g;
 	emit( "$interfaces)",
 	      '    progress_message3 "$COMMAND on interface $1 ignored"',
 	      '    exit 0',
 	      '    ;;'
 	    );
    }
    if ( @$required ) {
 	my $interfaces = join '|', map $interfaces{$_}->{physical}, @$required;
 	my $wildcard = ( $interfaces =~ s/\+/*/g );
 	emit( "$interfaces)",
 	      '    if [ "$COMMAND" = up ]; then' );
 	if ( $wildcard ) {
 	    emit( '        if [ "$state" = started ]; then',
 		  '            COMMAND=restart',
 		  '        else',
 		  '            COMMAND=start',
 		  '        fi' );
 	} else {
 	    emit( '        COMMAND=start' );
 	}
 	emit( '        progress_message3 "$g_product attempting $COMMAND"',
 	      '        detect_configuration',
 	      '        define_firewall' );
 	if ( $wildcard ) {
 	    emit( '    elif [ "$state" = started ]; then',
 		  '        progress_message3 "$g_product attempting restart"',
 		  '        COMMAND=restart',
 		  '        detect_configuration',
 		  '        define_firewall' );
 	} else {
 	    emit( '    else',
 		  '        COMMAND=stop',
 		  '        progress_message3 "$g_product attempting stop"',
 		  '        detect_configuration',
 		  '        stop_firewall' );
 	}
 	emit( '    fi',
 	      '    ;;'
 	    );
    }
    if ( @$optional ) {
 	my @interfaces = map $interfaces{$_}->{physical}, @$optional;
 	my $interfaces = join '|', @interfaces;
 	if ( $interfaces =~ s/\+/*/g || @interfaces > 1 ) {
 	    emit( "$interfaces)",
 		  '    if [ "$COMMAND" = up ]; then',
 		  '        echo 0 > ${VARDIR}/${1}.state',
 		  '    else',
 		  '        echo 1 > ${VARDIR}/${1}.state',
 		  '    fi' );
 	} else {
 	    emit( "$interfaces)",
 		  '    if [ "$COMMAND" = up ]; then',
 		  "        echo 0 > \${VARDIR}/$interfaces.state",
 		  '    else',
 		  "        echo 1 > \${VARDIR}/$interfaces.state",
 		  '    fi' );
 	}
 	emit( '',
 	      '    if [ "$state" = started ]; then',
 	      '        COMMAND=restart',
 	      '        progress_message3 "$g_product attempting restart"',
 	      '        detect_configuration',
 	      '        define_firewall',
 	      '    elif [ "$state" = stopped ]; then',
 	      '        COMMAND=start',
 	      '        progress_message3 "$g_product attempting start"',
 	      '        detect_configuration',
 	      '        define_firewall',
 	      '    else',
 	      '        progress_message3 "$COMMAND on interface $1 ignored"',
 	      '    fi',
 	      '    ;;',
 	    );
    }
    emit( "*)",
 	  '    case $state in',
 	  '        started)',
 	  '            COMMAND=restart',
 	  '            progress_message3 "$g_product attempting restart"',
 	  '            detect_configuration',
 	  '            define_firewall',
 	  '            ;;',
 	  '        *)',
 	  '            progress_message3 "$COMMAND on interface $1 ignored"',
 	  '            ;;',
 	  '    esac',
 	);
    pop_indent;
    emit( 'esac' );
    pop_indent;
    emit( '}',
 	  '',
 	);
 }
 #
 # Process a record in the hosts file
 #