Google Git
Sign in
fuchsia / fuchsia / refs/heads/releases/canary / . / sdk / fidl / fuchsia.net.routes.admin / ipv6.fidl
blob: b8a615aa1e3be6dcbfef6c506b97ab00c2b77573 [file] [log] [blame]
// Copyright 2023 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
// The fuchsia.net.routes.admin API is split into two variants, one supporting
// IPv4 routes and the other supporting IPv6 routes. The two halves are a mirror
// image of one another, and should be kept in sync moving forward. Edits
// made here should also be applied to "ipv4.fidl".
// LINT.IfChange
library fuchsia.net.routes.admin;
using fuchsia.net.interfaces.admin;
using fuchsia.net.routes;
/// Vends isolated administrative access to the system's IPv6 routing table.
///
/// A main route table is accessible through the discoverable [`RouteTableV6`]
/// protocol. Other tables can be installed using the `NewRouteTable` method
/// on [`RouteTableProviderV6`]. The [`RouteTableV6`] also encodes the lifetime
/// of the underlying route table, dropping the client end of the protocol
/// causes the underlying route table to be removed unless it is detached. The
/// main table is detached by default.
@discoverable
closed protocol RouteTableV6 {
compose BaseRouteTable;
/// Creates an empty route set.
///
/// + request `route_set` grants access to the [`RouteSetV6`] protocol.
strict NewRouteSet(resource struct {
route_set server_end:RouteSetV6;
});
};
/// This protocol allows the client to create route tables.
@discoverable
closed protocol RouteTableProviderV6 {
/// Creates a new route table. If the client end of the `provider` is
/// closed, the route table is removed (unless detached).
strict NewRouteTable(resource struct {
provider server_end:RouteTableV6;
options @generated_name("RouteTableOptionsV6") table {
/// This name is optional and only used for debugging purposes.
1: name fuchsia.net.routes.TableName;
};
});
};
/// Provides mutable access over a set of system's IPv6 routes.
///
/// The system maintains a single global routing table. A route set offers an
/// isolated window into a subset of the global routing table: clients are free
/// to manage the routes within their own route set, but not the route set of
/// others. Thus the global routing table represents the union of all existing
/// route sets. A route must be removed from all route sets to which it belongs
/// before it will be removed from the global table.
///
/// This protocol encodes the lifetime of the route set. Closing the client end
/// removes the route set, and will also remove any routes that were
/// solely-owned by this route set.
///
/// Note that the system reserves the right to remove routes out from underneath
/// this route set. This will always manifest as a `removed` event on the
/// [`fuchsia.net.routes/WatcherV6`] protocol.
closed protocol RouteSetV6 {
/// Authenticate this route set to manage routes on the provided interface.
/// Authentication is valid for the lifetime of the route set.
///
/// + request `interface` the authentication credential for an interface.
strict AuthenticateForInterface(resource struct {
credential fuchsia.net.interfaces.admin.ProofOfInterfaceAuthorization;
}) -> () error AuthenticateForInterfaceError;
/// Adds a route to this route set.
///
/// + request `route` the route to add.
/// - response `did_add` true iff the route was added to this `RouteSet`
/// as a result of this call.
strict AddRoute(resource struct {
route fuchsia.net.routes.RouteV6;
}) -> (struct {
did_add bool;
}) error RouteSetError;
/// Removes a route from this route set.
///
/// Note that if this route also exists other route sets, it will not be
/// removed from the global routing table.
///
/// + request `route` the route to remove.
/// - response `did_remove` true iff the route was removed from this
/// `RouteSet` as a result of this call.
strict RemoveRoute(resource struct {
route fuchsia.net.routes.RouteV6;
}) -> (struct {
did_remove bool;
}) error RouteSetError;
};
/// Gives isolated access to the system's policy routing rules.
@discoverable
closed protocol RuleTableV6 {
/// Returns an empty rule set at requested priority.
///
/// Clients are free to manage the rules within their own rule set, but not
/// the rule set of others. Only one rule set is allowed at each `priority`
/// level. Channel is closed with `ZX_ERR_ALREADY_EXISTS` if there's already
/// a rule set at the given `priority`.
///
/// + request `priority` the priority of this `RuleSetV6`, all rule sets are
/// globally ordered according to this number.
/// + request `rule_set` grants access to the `RuleSetV6` protocol.
strict NewRuleSet(resource struct {
priority fuchsia.net.routes.RuleSetPriority;
rule_set server_end:RuleSetV6;
});
};
/// Provides mutable access over a set of the system's IPv6 route rules.
///
/// A `RuleSet` has a priority and a rule has an index. A global order among the
/// rules is determined first by the priority of the `RuleSet` the rule belongs
/// to, and then the index of the rule inside the `RuleSet`.
///
/// This protocol encodes the lifetime of the rule set. Closing the client end
/// removes the rule set, and all the rules that are owned by the rule set.
closed protocol RuleSetV6 {
compose BaseRuleSet;
/// Adds a rule to this rule set.
///
/// If there is already a rule at the provided `index`, `RULE_ALREADY_EXISTS`
/// is returned.
///
/// + request `index` where to insert the rule.
/// + request `selector` the selector of the rule.
/// + request `action` action of the rule.
strict AddRule(resource struct {
index fuchsia.net.routes.RuleIndex;
selector fuchsia.net.routes.RuleSelectorV6;
action fuchsia.net.routes.RuleAction;
}) -> () error RuleSetError;
};
// LINT.ThenChange(ipv4.fidl)