You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This ticket is to ask for comments, feedback and suggestions before starting a PR:
I could not help but write a vmod to support dynamic ACLs because of a stackoverflow post which triggered my buttons.
Doing so I noticed that we lack support in Varnish-Cache to do this properly:
vss.h could probably be added to the installed headers?
To properly support anything but vcc-compiled acls, struct vrt_acl should gain a void *priv pointer member to be passed as an argument to acl_match_f - or we could pass to acl_match_f all of the struct vrt_acl *.
Maybe for later: As with other types, we have a scope/lifetime issue here in particular. For example, how could a vmod prolong the lifetime of a VCL_ACL from task to vcl scope? As the acl implementation is arbitraty, I guess we might want to move the name and match members of struct vrt_acl to a struct vrt_acl_methods, which could also gain something like a struct vrt_acl *extend(struct vrt_acl *, enum scope) callback which to return a clone with an extended lifetime.
The text was updated successfully, but these errors were encountered:
This ticket is to ask for comments, feedback and suggestions before starting a PR:
I could not help but write a vmod to support dynamic ACLs because of a stackoverflow post which triggered my buttons.
Doing so I noticed that we lack support in Varnish-Cache to do this properly:
vrt.hstruct vrt_aclshould gain avoid *privpointer member to be passed as an argument toacl_match_f- or we could pass toacl_match_fall of thestruct vrt_acl *.VCL_ACLfrom task to vcl scope? As the acl implementation is arbitraty, I guess we might want to move thenameandmatchmembers ofstruct vrt_aclto astruct vrt_acl_methods, which could also gain something like astruct vrt_acl *extend(struct vrt_acl *, enum scope)callback which to return a clone with an extended lifetime.The text was updated successfully, but these errors were encountered: